Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AABDF4095FE8B22882D20B16DB7D2BFD381C0F9E62C6EB659447D44BE7E1CBC2/0/3138312e3131392e3135382e302f32332d3234203d3e20323636373235.roa
File:                     3138312e3131392e3135382e302f32332d3234203d3e20323636373235.roa (raw, json)
Hash identifier:          r7ncQ2bbHL+z1Ejj4rNXX3N1+pup1r2Yj7226/7Io50=
Subject key identifier:   FC:A8:0D:37:AD:49:F7:7B:22:76:86:B4:D7:59:0D:E3:C3:5C:9A:12
Certificate issuer:       /CN=99D923A2527D78CBCA1BC2B6B15DAC0F1F6C7E50
Certificate serial:       7851581600CFA17B25D7788EEF5F93AD5D63CBE1
Authority key identifier: 99:D9:23:A2:52:7D:78:CB:CA:1B:C2:B6:B1:5D:AC:0F:1F:6C:7E:50
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/99D923A2527D78CBCA1BC2B6B15DAC0F1F6C7E50.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/AABDF4095FE8B22882D20B16DB7D2BFD381C0F9E62C6EB659447D44BE7E1CBC2/0/3138312e3131392e3135382e302f32332d3234203d3e20323636373235.roa
Signing time:             Tue 05 Mar 2024 18:04:50 +0000
ROA not before:           Tue 05 Mar 2024 17:59:50 +0000
ROA not after:            Tue 04 Mar 2025 18:04:50 +0000
asID:                     266725
IP address blocks:        181.119.158.0/23 maxlen: 24

Validation:               Failed, certificate revoked on Tue 24 Sep 2024 22:10:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            78:51:58:16:00:cf:a1:7b:25:d7:78:8e:ef:5f:93:ad:5d:63:cb:e1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=99D923A2527D78CBCA1BC2B6B15DAC0F1F6C7E50
        Validity
            Not Before: Mar  5 17:59:50 2024 GMT
            Not After : Mar  4 18:04:50 2025 GMT
        Subject: CN=FCA80D37AD49F77B227686B4D7590DE3C35C9A12
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:cb:ce:7b:3b:47:cc:85:d1:fa:21:fb:82:b8:
                    96:f5:f3:f9:49:cc:25:7c:1f:98:32:73:29:47:57:
                    59:2a:d1:15:19:5f:79:4f:6f:3e:2b:e3:32:16:d3:
                    d1:9d:57:c8:dc:b6:8a:d3:5d:34:32:0f:cd:15:47:
                    e5:74:05:f0:f0:39:9b:c1:57:76:82:8e:8d:31:3e:
                    00:8a:01:bd:29:7e:36:e4:f1:eb:33:5f:5d:7c:ac:
                    e6:b8:e4:2a:17:ab:c2:27:d6:92:13:78:38:e7:89:
                    10:56:1f:bc:10:1e:0e:1a:8d:dc:33:fd:db:a4:27:
                    c8:50:5d:a4:0f:12:c7:ad:0a:12:85:d4:e8:f0:0a:
                    b1:ae:77:ac:d4:36:6a:22:bb:56:2d:05:70:ec:b7:
                    9d:ce:e5:3f:fd:19:77:ae:5b:1d:cd:85:be:19:c3:
                    4f:84:0e:2f:52:a2:62:48:cf:83:08:f3:6f:83:7e:
                    89:83:d7:cf:24:5d:ea:d2:2f:71:64:ae:be:6a:a9:
                    fc:a0:91:2b:5e:ea:4d:1f:de:f8:5d:dd:92:25:59:
                    8d:26:0d:d3:a8:c5:af:f9:21:3f:49:1c:cc:26:7f:
                    ba:3b:c6:4e:d8:47:ae:f1:fa:35:08:92:80:34:0e:
                    77:d8:99:e2:a4:cd:40:71:55:b0:12:88:f3:62:22:
                    e5:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:A8:0D:37:AD:49:F7:7B:22:76:86:B4:D7:59:0D:E3:C3:5C:9A:12
            X509v3 Authority Key Identifier:
                keyid:99:D9:23:A2:52:7D:78:CB:CA:1B:C2:B6:B1:5D:AC:0F:1F:6C:7E:50

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/AABDF4095FE8B22882D20B16DB7D2BFD381C0F9E62C6EB659447D44BE7E1CBC2/0/99D923A2527D78CBCA1BC2B6B15DAC0F1F6C7E50.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/99D923A2527D78CBCA1BC2B6B15DAC0F1F6C7E50.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AABDF4095FE8B22882D20B16DB7D2BFD381C0F9E62C6EB659447D44BE7E1CBC2/0/3138312e3131392e3135382e302f32332d3234203d3e20323636373235.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  181.119.158.0/23

    Signature Algorithm: sha256WithRSAEncryption
         a8:17:33:69:6c:0c:77:d2:9e:b0:9e:36:c2:7e:03:67:d2:96:
         b6:d4:3e:69:05:e3:30:30:05:aa:e4:e8:c7:b3:27:cc:9b:1d:
         d1:33:b1:9a:97:c3:5c:ce:31:4f:0c:21:a4:b5:63:75:90:2e:
         d7:80:42:f8:ef:ed:47:ac:46:dd:41:96:c6:b2:65:49:37:31:
         9d:a4:cb:21:73:32:55:47:28:4f:57:b4:8c:09:bf:b9:8b:10:
         d0:37:9b:62:5b:2d:83:d3:da:4a:ee:35:1c:84:6a:c2:14:bb:
         7d:25:96:19:40:23:fb:52:ed:1e:b5:fc:59:02:f4:27:fb:7c:
         c0:24:88:3a:07:65:ac:46:01:4e:e3:ba:74:e4:fb:da:ad:60:
         21:1f:b6:62:a2:c9:2e:5e:ed:62:3f:6c:5c:34:67:ea:92:3f:
         2c:56:6f:ea:d5:55:57:d9:d3:a0:3e:d4:ff:4a:46:9c:9d:f5:
         89:5e:80:d7:2b:d7:20:1a:80:6c:6c:98:c1:af:71:54:5b:7c:
         ef:b0:a3:85:f6:28:e5:45:ef:aa:02:05:76:da:e8:72:22:f5:
         30:99:eb:0f:66:60:d1:3a:d2:51:b0:fb:69:f1:1f:36:20:40:
         e9:91:48:d4:97:6e:09:33:a0:47:0a:cb:76:36:e5:7d:6f:8a:
         9f:22:76:58
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIUeFFYFgDPoXsl13iO71+TrV1jy+EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTlEOTIzQTI1MjdENzhDQkNBMUJDMkI2QjE1REFDMEYx
RjZDN0U1MDAeFw0yNDAzMDUxNzU5NTBaFw0yNTAzMDQxODA0NTBaMDMxMTAvBgNV
BAMTKEZDQTgwRDM3QUQ0OUY3N0IyMjc2ODZCNEQ3NTkwREUzQzM1QzlBMTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+y857O0fMhdH6IfuCuJb18/lJ
zCV8H5gycylHV1kq0RUZX3lPbz4r4zIW09GdV8jctorTXTQyD80VR+V0BfDwOZvB
V3aCjo0xPgCKAb0pfjbk8eszX118rOa45CoXq8In1pITeDjniRBWH7wQHg4ajdwz
/dukJ8hQXaQPEsetChKF1OjwCrGud6zUNmoiu1YtBXDst53O5T/9GXeuWx3Nhb4Z
w0+EDi9SomJIz4MI82+DfomD188kXerSL3Fkrr5qqfygkSte6k0f3vhd3ZIlWY0m
DdOoxa/5IT9JHMwmf7o7xk7YR67x+jUIkoA0DnfYmeKkzUBxVbASiPNiIuWXAgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQU/KgNN61J93sidoa011kN48NcmhIwHwYDVR0j
BBgwFoAUmdkjolJ9eMvKG8K2sV2sDx9sflAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9BQUJERjQwOTVGRThCMjI4ODJEMjBCMTZEQjdEMkJGRDM4
MUMwRjlFNjJDNkVCNjU5NDQ3RDQ0QkU3RTFDQkMyLzAvOTlEOTIzQTI1MjdENzhD
QkNBMUJDMkI2QjE1REFDMEYxRjZDN0U1MC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85OUQ5MjNBMjUyN0Q3OENCQ0Ex
QkMyQjZCMTVEQUMwRjFGNkM3RTUwLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQUFCREY0MDk1RkU4QjIyODgyRDIwQjE2REI3RDJCRkQzODFDMEY5RTYy
QzZFQjY1OTQ0N0Q0NEJFN0UxQ0JDMi8wLzMxMzgzMTJlMzEzMTM5MmUzMTM1Mzgy
ZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMjM2MzYzNzMyMzUucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG1
d54wDQYJKoZIhvcNAQELBQADggEBAKgXM2lsDHfSnrCeNsJ+A2fSlrbUPmkF4zAw
Bark6MezJ8ybHdEzsZqXw1zOMU8MIaS1Y3WQLteAQvjv7UesRt1BlsayZUk3MZ2k
yyFzMlVHKE9XtIwJv7mLENA3m2JbLYPT2kruNRyEasIUu30llhlAI/tS7R61/FkC
9Cf7fMAkiDoHZaxGAU7junTk+9qtYCEftmKiyS5e7WI/bFw0Z+qSPyxWb+rVVVfZ
06A+1P9KRpyd9YlegNcr1yAagGxsmMGvcVRbfO+wo4X2KOVF76oCBXba6HIi9TCZ
6w9mYNE60lGw+2nxHzYgQOmRSNSXbgkzoEcKy3Y25X1vip8idlg=
-----END CERTIFICATE-----
Generated at Tue Sep 24 23:11:54 2024 by rpki-client on console-fra.rpki-client.org