Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AABDF4095FE8B22882D20B16DB7D2BFD381C0F9E62C6EB659447D44BE7E1CBC2/0/3138312e3131392e37392e302f32342d3234203d3e20323636373235.roa
File:                     3138312e3131392e37392e302f32342d3234203d3e20323636373235.roa (raw, json)
Hash identifier:          TTvrgQvJue7EkTp3JvMR2YJhIu4rk4mIQB4fdYh7VnU=
Subject key identifier:   DA:AA:25:3E:78:91:08:3A:A0:8D:69:B4:85:9C:08:F9:03:00:1C:D2
Certificate issuer:       /CN=99D923A2527D78CBCA1BC2B6B15DAC0F1F6C7E50
Certificate serial:       21B7B08D920E0D16E3C5BD5BB3078F19D4801176
Authority key identifier: 99:D9:23:A2:52:7D:78:CB:CA:1B:C2:B6:B1:5D:AC:0F:1F:6C:7E:50
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/99D923A2527D78CBCA1BC2B6B15DAC0F1F6C7E50.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/AABDF4095FE8B22882D20B16DB7D2BFD381C0F9E62C6EB659447D44BE7E1CBC2/0/3138312e3131392e37392e302f32342d3234203d3e20323636373235.roa
Signing time:             Tue 05 Mar 2024 18:04:34 +0000
ROA not before:           Tue 05 Mar 2024 17:59:34 +0000
ROA not after:            Tue 04 Mar 2025 18:04:34 +0000
asID:                     266725
IP address blocks:        181.119.79.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 24 Sep 2024 22:10:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            21:b7:b0:8d:92:0e:0d:16:e3:c5:bd:5b:b3:07:8f:19:d4:80:11:76
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=99D923A2527D78CBCA1BC2B6B15DAC0F1F6C7E50
        Validity
            Not Before: Mar  5 17:59:34 2024 GMT
            Not After : Mar  4 18:04:34 2025 GMT
        Subject: CN=DAAA253E7891083AA08D69B4859C08F903001CD2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:4a:7c:0f:37:2b:e6:6c:f6:5c:45:5d:f7:82:
                    12:10:ed:c5:fe:94:69:51:8b:40:f5:7a:05:3e:52:
                    3f:ff:8e:3c:b2:e7:96:2b:4c:15:42:17:59:65:48:
                    cf:1c:c0:48:6d:66:b9:5a:51:e9:56:61:1d:4a:38:
                    ff:6a:d9:43:99:b5:eb:12:a3:da:18:5c:68:4e:cf:
                    35:82:b1:b2:52:c0:3b:b1:b5:bd:fd:9b:01:dc:81:
                    f5:78:6b:8d:e6:e9:a7:14:35:77:73:4b:38:1a:82:
                    a8:dd:f1:60:eb:c1:d0:22:8a:18:db:9f:cf:9b:ec:
                    32:68:b1:d9:4a:84:5a:ea:6a:be:1d:89:e1:32:6a:
                    be:1d:7a:f2:de:16:0e:cc:b0:b3:23:b2:b4:4d:8f:
                    d2:6d:1e:be:0c:3c:8c:0e:53:f4:d3:e9:65:80:b6:
                    b4:6e:f1:78:e8:9c:05:be:ed:34:6a:99:02:59:a3:
                    d1:8f:b6:ba:5d:c2:6d:44:5d:dd:91:ae:e3:5e:67:
                    f8:3e:ca:35:d2:30:ee:b7:f1:d4:e6:79:0d:7d:e1:
                    69:93:ad:ef:8b:1d:7e:97:a1:a8:73:79:f0:ef:15:
                    c1:da:cf:ab:b6:b5:81:78:3f:d6:20:1c:5e:27:e4:
                    ef:d6:4d:e6:d7:65:ea:1c:8c:d8:5e:a6:92:1c:5b:
                    11:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:AA:25:3E:78:91:08:3A:A0:8D:69:B4:85:9C:08:F9:03:00:1C:D2
            X509v3 Authority Key Identifier:
                keyid:99:D9:23:A2:52:7D:78:CB:CA:1B:C2:B6:B1:5D:AC:0F:1F:6C:7E:50

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/AABDF4095FE8B22882D20B16DB7D2BFD381C0F9E62C6EB659447D44BE7E1CBC2/0/99D923A2527D78CBCA1BC2B6B15DAC0F1F6C7E50.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/99D923A2527D78CBCA1BC2B6B15DAC0F1F6C7E50.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AABDF4095FE8B22882D20B16DB7D2BFD381C0F9E62C6EB659447D44BE7E1CBC2/0/3138312e3131392e37392e302f32342d3234203d3e20323636373235.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  181.119.79.0/24

    Signature Algorithm: sha256WithRSAEncryption
         4e:0d:58:cc:e7:44:0d:d4:05:7d:22:7b:7d:73:f0:21:b0:c5:
         9e:16:04:a7:ac:5c:a7:60:26:31:d7:9a:5d:e5:44:c4:ae:47:
         9c:34:ec:ea:55:65:cf:5d:06:fa:87:22:50:f6:54:20:e1:76:
         19:cf:76:2e:52:e2:f3:74:47:a2:59:25:cb:64:1b:1c:d9:0f:
         65:cb:f7:dc:ba:ef:a7:c9:45:51:00:2d:4b:4c:a0:a9:6c:ec:
         2a:9c:d8:50:b9:5f:e7:8a:76:72:2d:d6:14:9a:c6:a2:ca:5b:
         1b:df:dd:1e:0e:fa:c3:ee:d6:c3:a8:fe:24:b0:95:89:6f:95:
         b0:c6:9d:14:5d:6a:da:89:54:8c:d0:df:07:42:0c:a6:f1:b8:
         a3:6a:17:01:55:24:9b:57:42:c3:bb:6f:ee:b1:d5:0d:ab:33:
         f3:d0:d0:2b:6e:98:4d:f7:76:c6:df:a2:16:f0:b7:98:0e:20:
         06:14:8e:fd:7d:c7:e1:75:92:a5:2b:59:7b:78:b2:9a:bb:94:
         1d:7b:37:59:81:6d:8d:55:0d:ee:fd:16:ff:2b:04:cb:67:b4:
         17:e0:4c:41:65:c8:20:7b:ea:c7:26:1c:d0:21:23:56:b4:17:
         21:6b:70:be:aa:af:85:b8:c6:af:10:36:99:17:55:b5:0c:58:
         19:7c:87:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 23:11:54 2024 by rpki-client on console-fra.rpki-client.org