Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B03E0A1A0A44457B89FBD807DFD3AD6A10A42D15BE955EF769046F44AA8A412B/0/34352e3137362e3138392e302f32342d3234203d3e20323732383132.roa
File:                     34352e3137362e3138392e302f32342d3234203d3e20323732383132.roa (raw, json)
Hash identifier:          j+T2LXCSTZcm70L/VhkEiNjth2/mjijOxpxdE6fK37U=
Subject key identifier:   2D:65:2E:47:7E:54:77:3A:97:D7:46:72:EA:23:D9:91:FD:0C:CC:5D
Certificate issuer:       /CN=94E9005D15C15058534566156E00BB03244C911D
Certificate serial:       3704E563D75140ED13821EE72071C4B14CEF9480
Authority key identifier: 94:E9:00:5D:15:C1:50:58:53:45:66:15:6E:00:BB:03:24:4C:91:1D
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/94E9005D15C15058534566156E00BB03244C911D.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/B03E0A1A0A44457B89FBD807DFD3AD6A10A42D15BE955EF769046F44AA8A412B/0/34352e3137362e3138392e302f32342d3234203d3e20323732383132.roa
Signing time:             Tue 05 Mar 2024 18:20:37 +0000
ROA not before:           Tue 05 Mar 2024 18:15:37 +0000
ROA not after:            Tue 04 Mar 2025 18:20:37 +0000
asID:                     272812
IP address blocks:        45.176.189.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Fri 26 Apr 2024 18:20:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            37:04:e5:63:d7:51:40:ed:13:82:1e:e7:20:71:c4:b1:4c:ef:94:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=94E9005D15C15058534566156E00BB03244C911D
        Validity
            Not Before: Mar  5 18:15:37 2024 GMT
            Not After : Mar  4 18:20:37 2025 GMT
        Subject: CN=2D652E477E54773A97D74672EA23D991FD0CCC5D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:e4:1f:e1:90:74:50:83:45:e4:1a:25:3c:ac:
                    78:88:49:e8:1b:28:48:4a:bb:6a:f6:ab:3b:84:14:
                    30:4d:e6:a9:a2:e7:92:3e:f9:7d:35:12:7b:02:98:
                    7b:7d:94:cb:51:3c:78:37:ab:90:41:10:2f:52:bb:
                    7b:05:dc:73:fe:b0:91:bc:7e:88:4c:00:51:66:db:
                    13:c2:0b:fe:bf:62:d8:49:d1:66:63:35:74:66:82:
                    6c:cf:e9:1d:00:0f:48:42:7d:8e:32:ad:c3:7f:0f:
                    51:85:3b:5c:0d:c4:48:a9:93:46:74:33:91:19:3b:
                    ef:da:5f:f5:e8:e9:54:d4:6d:06:cd:db:d5:70:b3:
                    40:40:25:17:83:9b:b3:7b:db:47:5b:40:c7:1d:b6:
                    b5:17:99:10:34:93:48:10:90:7a:70:f7:f1:22:13:
                    9e:8c:18:67:6e:f8:d8:c0:d2:3f:0f:f8:eb:5f:a5:
                    a1:cb:54:64:8c:88:98:da:96:fb:53:65:8f:f6:09:
                    8e:10:79:19:b7:bd:57:65:a7:41:5c:32:11:d0:18:
                    9f:33:e9:81:20:da:43:7e:13:5b:5f:37:70:01:cb:
                    a3:df:53:9c:be:ca:6e:a1:50:cd:06:db:ac:8a:76:
                    7a:3f:fd:b2:ed:41:38:f4:a3:8f:8f:52:19:0a:80:
                    30:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:65:2E:47:7E:54:77:3A:97:D7:46:72:EA:23:D9:91:FD:0C:CC:5D
            X509v3 Authority Key Identifier:
                keyid:94:E9:00:5D:15:C1:50:58:53:45:66:15:6E:00:BB:03:24:4C:91:1D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/B03E0A1A0A44457B89FBD807DFD3AD6A10A42D15BE955EF769046F44AA8A412B/0/94E9005D15C15058534566156E00BB03244C911D.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/94E9005D15C15058534566156E00BB03244C911D.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B03E0A1A0A44457B89FBD807DFD3AD6A10A42D15BE955EF769046F44AA8A412B/0/34352e3137362e3138392e302f32342d3234203d3e20323732383132.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.176.189.0/24

    Signature Algorithm: sha256WithRSAEncryption
         64:60:27:84:8d:a8:8f:73:92:d8:1e:f3:0e:a3:12:b3:e2:60:
         df:ae:4c:79:88:52:d1:c7:a8:ec:9c:f7:3e:58:f1:c9:9f:1b:
         23:a7:50:db:9e:36:98:0c:bf:7e:7f:ff:30:b3:53:1c:f4:d3:
         90:f1:ca:bf:ad:f9:7c:c4:6e:5e:dd:c5:1d:42:ef:e3:29:3c:
         9d:9c:38:71:21:4f:17:bb:d1:93:96:b9:92:72:36:64:5c:56:
         f3:77:6e:93:f2:f0:8d:ec:c9:a9:45:e3:db:5e:55:39:65:18:
         1e:98:71:81:52:b6:e9:37:48:a1:9b:3f:c1:f0:b8:54:13:7e:
         f6:53:e6:af:39:66:d8:bb:f7:79:04:ef:53:3a:c5:2c:0c:0a:
         7c:01:56:a4:13:32:2e:e6:aa:cf:04:4d:d3:e6:ed:f2:43:c6:
         88:02:01:dd:90:25:fc:bd:f5:a3:c0:58:84:04:ec:f0:2e:64:
         3e:a4:34:7c:01:28:d0:44:b4:a1:78:3f:b5:42:95:7b:4c:1b:
         9a:56:7e:cc:37:ad:0a:b2:9e:18:47:a9:8a:a9:c5:54:b4:22:
         e3:62:ca:28:c3:93:c9:22:b0:6b:a5:6a:59:5e:0f:32:6c:01:
         01:71:f6:4e:39:79:64:da:a4:89:99:87:3a:5d:b1:ad:b3:01:
         03:b3:e5:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:59 2024 by rpki-client on console-fra.rpki-client.org