Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A0FA9469509CC9FE9F7036C89AD8ADE54310556578A28D2AD9DB03851327846F/0/34352e3233352e3231332e302f32342d3234203d3e203237383535.roa
File:                     34352e3233352e3231332e302f32342d3234203d3e203237383535.roa (raw, json)
Hash identifier:          huZSU785r+vnBFWDIUgeUmgV5zExo7Rf3ebPA0DCPao=
Subject key identifier:   B0:EC:4E:93:20:54:42:B1:53:9B:EB:19:6B:78:81:26:67:D3:55:0A
Certificate issuer:       /CN=8757D927DFA4B315CF6FB1395FE66CA8EB272638
Certificate serial:       6D631BE46E9B2C6D47D788CFEB705F5053D2D115
Authority key identifier: 87:57:D9:27:DF:A4:B3:15:CF:6F:B1:39:5F:E6:6C:A8:EB:27:26:38
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8757D927DFA4B315CF6FB1395FE66CA8EB272638.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/A0FA9469509CC9FE9F7036C89AD8ADE54310556578A28D2AD9DB03851327846F/0/34352e3233352e3231332e302f32342d3234203d3e203237383535.roa
Signing time:             Tue 05 Mar 2024 18:03:47 +0000
ROA not before:           Tue 05 Mar 2024 17:58:47 +0000
ROA not after:            Tue 04 Mar 2025 18:03:47 +0000
asID:                     27855
IP address blocks:        45.235.213.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 13 Aug 2024 21:45:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6d:63:1b:e4:6e:9b:2c:6d:47:d7:88:cf:eb:70:5f:50:53:d2:d1:15
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8757D927DFA4B315CF6FB1395FE66CA8EB272638
        Validity
            Not Before: Mar  5 17:58:47 2024 GMT
            Not After : Mar  4 18:03:47 2025 GMT
        Subject: CN=B0EC4E93205442B1539BEB196B78812667D3550A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:b7:dc:99:04:bd:a1:ed:e5:38:44:71:52:13:
                    0b:eb:dc:73:d5:19:0d:98:59:df:e7:20:4b:af:5d:
                    6b:99:51:77:86:4f:05:1c:0d:f6:2e:fc:66:df:94:
                    d1:64:62:d7:d9:e1:b0:99:40:85:86:4b:cd:bf:ab:
                    bd:b9:7d:84:8b:5f:6e:0c:c1:f2:0b:31:eb:11:1a:
                    b8:7e:98:60:c0:97:40:16:01:3f:da:23:3a:cf:34:
                    22:03:88:8c:20:44:58:e9:e9:a9:2f:b8:21:4b:03:
                    2d:5b:0f:48:e1:61:f9:48:06:45:62:7b:0b:f5:89:
                    d8:e1:2d:5a:58:97:23:58:4f:9f:13:69:03:88:9d:
                    3f:b8:f3:9c:9c:62:91:db:7e:60:cc:37:13:28:4a:
                    95:d5:7d:94:92:bd:f1:1c:90:a8:b2:c0:c3:42:9b:
                    01:01:d5:ca:d6:4b:b4:4f:ba:75:81:0d:64:35:2b:
                    4d:19:88:40:7a:9a:b2:28:4d:18:09:1f:d0:0a:e0:
                    a9:62:f0:68:7f:b7:db:6c:05:39:44:fa:13:93:ce:
                    b5:e7:74:65:fe:aa:32:91:53:4e:1d:9f:d7:1a:d6:
                    1a:15:68:66:0d:c4:de:c2:9c:9d:8e:a8:8c:7d:79:
                    0f:1d:45:89:c3:1b:88:a5:70:ec:d4:ef:da:5d:f9:
                    c6:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:EC:4E:93:20:54:42:B1:53:9B:EB:19:6B:78:81:26:67:D3:55:0A
            X509v3 Authority Key Identifier:
                keyid:87:57:D9:27:DF:A4:B3:15:CF:6F:B1:39:5F:E6:6C:A8:EB:27:26:38

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/A0FA9469509CC9FE9F7036C89AD8ADE54310556578A28D2AD9DB03851327846F/0/8757D927DFA4B315CF6FB1395FE66CA8EB272638.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8757D927DFA4B315CF6FB1395FE66CA8EB272638.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A0FA9469509CC9FE9F7036C89AD8ADE54310556578A28D2AD9DB03851327846F/0/34352e3233352e3231332e302f32342d3234203d3e203237383535.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.235.213.0/24

    Signature Algorithm: sha256WithRSAEncryption
         12:d0:38:3c:a6:70:ba:43:89:90:d6:82:5d:6d:82:9f:d6:92:
         22:d1:a0:84:bc:f8:5f:b4:39:a5:bd:17:dc:11:90:50:05:84:
         1d:19:41:1e:6b:a3:8a:7b:36:39:7c:40:b5:bf:8c:84:32:22:
         b0:3f:66:df:d7:80:5a:75:5e:e6:86:8f:6c:df:e6:16:00:00:
         1a:d1:9a:f9:c0:56:01:a5:15:08:c0:dd:78:e3:28:51:45:a2:
         74:1b:52:c2:d7:d4:e8:8f:09:1c:05:b3:1c:1a:a1:f2:18:64:
         53:07:1d:c5:35:ab:4c:c3:e7:e8:bd:6c:18:59:1b:4e:ff:cd:
         66:36:4a:5e:d2:7e:58:4b:2c:40:7b:88:80:be:db:0d:a8:ad:
         24:27:e6:e0:d9:4f:ad:eb:2c:3c:a2:4e:4a:9c:b4:0d:b4:b7:
         30:98:2a:15:ff:51:0e:33:5d:9a:f9:89:63:a4:41:59:9c:09:
         5d:08:f8:75:6a:94:f8:3c:38:21:b5:70:e3:33:24:2e:a1:38:
         8d:36:b6:73:83:3a:3e:34:ea:20:69:ac:04:e4:8a:6b:21:03:
         28:b4:c7:08:98:a7:58:30:8b:3a:0f:6b:e0:7d:4f:a9:a0:64:
         c3:76:c7:a3:1a:aa:fc:b6:4d:44:14:b8:19:4a:79:d5:4a:c6:
         56:4c:52:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 14 00:01:14 2024 by rpki-client on console-ams.rpki-client.org