Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9DF9937177B1EC160552C5AD2FA05E41CEA78C00D571BB4C755834E4C0DCD487/0/3133312e3139362e3138332e302f32342d3234203d3e20323635373538.roa
File:                     3133312e3139362e3138332e302f32342d3234203d3e20323635373538.roa (raw, json)
Hash identifier:          bQHFbbopQ77bZhNCs+dbQWpmF6ctjXbft45WqfCpTYU=
Subject key identifier:   CE:E9:DF:2D:40:12:5F:C3:77:96:07:21:BF:F8:58:A6:BE:79:5F:8C
Certificate issuer:       /CN=596D2EDA6ECC42DC0132B3F7028F4D838CA0BF5F
Certificate serial:       36F4A892EB75FDDED6FE7BDC6E0C1058D984FEBB
Authority key identifier: 59:6D:2E:DA:6E:CC:42:DC:01:32:B3:F7:02:8F:4D:83:8C:A0:BF:5F
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/596D2EDA6ECC42DC0132B3F7028F4D838CA0BF5F.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/9DF9937177B1EC160552C5AD2FA05E41CEA78C00D571BB4C755834E4C0DCD487/0/3133312e3139362e3138332e302f32342d3234203d3e20323635373538.roa
Signing time:             Tue 05 Mar 2024 18:14:19 +0000
ROA not before:           Tue 05 Mar 2024 18:09:19 +0000
ROA not after:            Tue 04 Mar 2025 18:14:19 +0000
asID:                     265758
IP address blocks:        131.196.183.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Thu 31 Oct 2024 00:25:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            36:f4:a8:92:eb:75:fd:de:d6:fe:7b:dc:6e:0c:10:58:d9:84:fe:bb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=596D2EDA6ECC42DC0132B3F7028F4D838CA0BF5F
        Validity
            Not Before: Mar  5 18:09:19 2024 GMT
            Not After : Mar  4 18:14:19 2025 GMT
        Subject: CN=CEE9DF2D40125FC377960721BFF858A6BE795F8C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:83:ca:e7:f4:c8:65:89:e8:c1:94:48:3a:c7:df:
                    c6:8d:df:b8:52:97:00:f5:e4:d8:1b:97:82:83:54:
                    d6:34:13:72:35:22:d2:82:4a:2e:66:3d:ba:ad:5e:
                    10:f4:be:15:2e:9d:32:e1:d0:58:74:ec:a5:21:31:
                    4f:6a:4a:cc:e5:e6:19:e9:02:91:a1:0d:18:2e:23:
                    75:17:b5:7b:b3:0b:f1:48:1b:81:6b:6a:a4:ec:0b:
                    92:de:32:b2:5f:8d:ae:39:8c:a5:93:0c:c0:aa:1a:
                    45:6b:e8:4b:4b:8a:76:57:66:bd:e5:57:17:ba:61:
                    bc:53:53:5b:59:c6:ac:f2:11:5a:d8:50:3c:4e:d6:
                    ff:a8:f4:d4:55:e6:5d:d5:d6:95:b5:6a:f3:bc:e1:
                    e6:28:8e:18:71:18:73:6d:69:50:cd:6b:32:d7:cd:
                    a7:16:ca:17:41:72:b7:53:07:6d:52:fc:cc:2d:c8:
                    9c:61:82:18:a4:72:6f:c6:b1:00:fd:85:65:a2:a9:
                    0d:23:d1:73:38:01:a4:d1:f7:8c:8b:09:0a:e8:0c:
                    18:96:4c:6a:c1:70:68:01:1e:4e:76:6e:ae:e8:e3:
                    da:46:ab:79:de:74:24:de:14:d3:02:70:cf:5d:15:
                    43:1f:84:86:6b:00:d6:0d:ee:8c:13:d0:3e:36:04:
                    ac:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:E9:DF:2D:40:12:5F:C3:77:96:07:21:BF:F8:58:A6:BE:79:5F:8C
            X509v3 Authority Key Identifier:
                keyid:59:6D:2E:DA:6E:CC:42:DC:01:32:B3:F7:02:8F:4D:83:8C:A0:BF:5F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/9DF9937177B1EC160552C5AD2FA05E41CEA78C00D571BB4C755834E4C0DCD487/0/596D2EDA6ECC42DC0132B3F7028F4D838CA0BF5F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/596D2EDA6ECC42DC0132B3F7028F4D838CA0BF5F.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9DF9937177B1EC160552C5AD2FA05E41CEA78C00D571BB4C755834E4C0DCD487/0/3133312e3139362e3138332e302f32342d3234203d3e20323635373538.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  131.196.183.0/24

    Signature Algorithm: sha256WithRSAEncryption
         14:f4:10:ea:05:f1:39:18:c1:c1:03:91:f6:8c:96:ba:10:ad:
         69:a9:01:27:6f:dd:0a:9b:c1:d5:30:80:f0:ef:32:80:e9:92:
         a3:15:23:46:6c:05:3b:90:3d:74:ee:4b:d7:de:70:51:b6:9d:
         62:3e:0c:1f:90:0a:06:5d:db:34:be:4a:68:2c:30:60:7e:6b:
         19:49:f1:4f:ca:3e:13:1a:ee:9a:b6:21:11:50:d2:29:c9:20:
         f7:6a:92:ff:c9:47:8a:2f:4f:54:97:ee:ff:db:3b:1e:a7:81:
         0c:a1:7c:35:9a:9a:d2:f4:97:c1:f2:d6:94:af:c8:68:ca:5b:
         e3:f1:26:e1:10:32:d1:c1:37:1a:3b:09:49:81:66:6f:4f:89:
         bc:cc:78:18:76:7b:a4:14:b9:18:a2:90:e7:6d:19:31:1e:d8:
         41:f2:36:1e:46:18:13:85:7c:80:8d:d7:3b:51:ce:9b:01:63:
         12:f8:4e:51:ae:87:f9:6c:b2:60:ef:9c:36:36:6b:d3:b4:41:
         9e:0a:fa:07:d7:e2:92:e9:52:3a:c6:31:4c:a7:86:32:14:3b:
         bd:55:f4:3e:6c:f6:4d:6f:c6:7b:c1:be:d9:5a:ae:17:72:e8:
         4e:80:f5:dc:a3:f7:36:50:5a:73:4a:10:6b:f0:b4:6c:c4:4a:
         5c:ce:7e:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----