Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AD9D8109B5B0ED86FF91C022D96412D6DA086B8649C5975BADEB369F50F23923/0/3138312e3139392e3230382e302f32302d3234203d3e203132393536.roa
File:                     3138312e3139392e3230382e302f32302d3234203d3e203132393536.roa (raw, json)
Hash identifier:          nNdb8TLr+reIvhljduTMSo5ekcTBHeaNJeBqYEjGqKg=
Subject key identifier:   73:CF:09:3B:F5:E6:FE:8C:F4:F0:9F:E2:99:2C:62:D9:D2:27:D3:FA
Certificate issuer:       /CN=B61ABF237277FEAF24117EBBE28D9D57E442433A
Certificate serial:       135B880116A6888E41B1487359247E4E93DD16D0
Authority key identifier: B6:1A:BF:23:72:77:FE:AF:24:11:7E:BB:E2:8D:9D:57:E4:42:43:3A
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B61ABF237277FEAF24117EBBE28D9D57E442433A.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/AD9D8109B5B0ED86FF91C022D96412D6DA086B8649C5975BADEB369F50F23923/0/3138312e3139392e3230382e302f32302d3234203d3e203132393536.roa
Signing time:             Tue 05 Mar 2024 18:18:39 +0000
ROA not before:           Tue 05 Mar 2024 18:13:39 +0000
ROA not after:            Tue 04 Mar 2025 18:18:39 +0000
asID:                     12956
IP address blocks:        181.199.208.0/20 maxlen: 24

Validation:               Failed, certificate revoked on Mon 04 Nov 2024 10:30:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            13:5b:88:01:16:a6:88:8e:41:b1:48:73:59:24:7e:4e:93:dd:16:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=B61ABF237277FEAF24117EBBE28D9D57E442433A
        Validity
            Not Before: Mar  5 18:13:39 2024 GMT
            Not After : Mar  4 18:18:39 2025 GMT
        Subject: CN=73CF093BF5E6FE8CF4F09FE2992C62D9D227D3FA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:7e:e7:52:8e:fa:f8:4e:a2:c7:6a:e2:e0:56:
                    a7:10:af:3b:ad:28:61:43:37:da:83:2d:ad:e7:f7:
                    8a:1b:a7:23:3a:1d:d9:46:c7:19:b1:72:11:94:3a:
                    e4:e0:f3:19:91:a7:27:a2:82:22:55:b2:d3:dd:94:
                    d4:10:05:af:31:50:2b:fd:42:62:c4:82:c3:e7:d0:
                    7d:84:b2:eb:ad:79:8d:a0:65:28:bf:b6:2f:51:71:
                    68:b2:19:ce:89:4b:ee:ca:d5:c5:c9:22:48:3b:cb:
                    03:b7:64:b9:20:d3:ee:a0:e5:80:36:40:ab:db:e2:
                    13:8e:47:d2:87:c6:95:3a:db:31:d1:cf:09:3d:62:
                    88:d1:f7:06:5b:bd:ba:3c:25:0c:49:0f:3f:00:45:
                    bd:7d:06:e7:4e:bb:95:84:f4:e2:09:7f:89:c4:6f:
                    66:68:00:d7:a2:d3:2f:e9:56:e3:6e:1f:7b:43:7f:
                    57:0f:f4:e4:03:04:1e:47:42:2b:6e:54:3e:11:5e:
                    66:80:10:76:58:83:bc:29:cc:14:e9:40:b9:6f:d4:
                    61:09:0d:57:31:22:d1:83:22:a2:cd:60:44:ed:0c:
                    5d:90:30:a1:da:f0:4d:ff:34:3a:cd:87:af:e7:a6:
                    3d:d5:3d:18:35:b5:7e:92:b1:b4:60:4b:18:71:14:
                    f5:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:CF:09:3B:F5:E6:FE:8C:F4:F0:9F:E2:99:2C:62:D9:D2:27:D3:FA
            X509v3 Authority Key Identifier:
                keyid:B6:1A:BF:23:72:77:FE:AF:24:11:7E:BB:E2:8D:9D:57:E4:42:43:3A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/AD9D8109B5B0ED86FF91C022D96412D6DA086B8649C5975BADEB369F50F23923/0/B61ABF237277FEAF24117EBBE28D9D57E442433A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B61ABF237277FEAF24117EBBE28D9D57E442433A.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AD9D8109B5B0ED86FF91C022D96412D6DA086B8649C5975BADEB369F50F23923/0/3138312e3139392e3230382e302f32302d3234203d3e203132393536.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  181.199.208.0/20

    Signature Algorithm: sha256WithRSAEncryption
         53:98:ae:17:ae:73:23:b7:21:ff:a7:af:18:ac:40:ed:40:c7:
         91:71:25:e0:47:da:35:ab:2a:11:2e:eb:f6:9b:52:9a:d2:24:
         6d:43:09:fb:02:1c:2a:f6:34:eb:38:11:ba:9c:37:61:6d:6b:
         5e:91:82:ce:fc:3d:88:01:72:50:6a:87:d0:c5:41:e3:16:fa:
         c6:50:0b:5a:3f:5a:7c:3e:94:2e:fc:61:97:61:62:4a:de:c5:
         da:7f:eb:fc:c6:d6:76:bb:6a:cd:a7:d7:d9:f1:c0:f8:ae:b1:
         3f:09:d9:28:39:e5:aa:b1:6e:de:78:cb:ad:8b:d8:aa:d8:7f:
         4a:3d:f6:53:60:0a:f3:93:93:06:b9:d6:45:a6:44:cb:aa:b7:
         fa:ca:89:43:19:ea:56:ef:8a:43:16:15:ff:09:85:2b:b2:89:
         80:a4:51:f9:bb:44:85:64:9f:03:ab:19:d9:97:76:70:b2:17:
         b1:7c:30:02:42:bb:74:21:85:e0:a5:42:81:42:12:b5:24:07:
         3f:f8:69:66:db:a5:02:97:d6:9a:a5:a9:a4:d5:15:35:72:48:
         71:73:fc:91:01:7c:d1:e6:06:3f:7f:5f:89:a0:36:4b:54:51:
         17:60:de:68:c8:f3:fc:9b:8d:c4:4a:09:a1:9d:d3:53:49:ab:
         94:cc:22:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----