Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B7EBCF407F62BAF133DCE080C31AE7D4F2CEF8A603A472BCE4A78EBCA932C84E/0/34352e3233352e39382e302f32342d3234203d3e203634313233.roa
File:                     34352e3233352e39382e302f32342d3234203d3e203634313233.roa (raw, json)
Hash identifier:          aikzYpMJjh676H80KIHr+/9gKPpdLyfexmwNKC5Ef/E=
Subject key identifier:   BB:0F:15:2C:BC:49:4F:91:6E:11:E7:A8:11:E6:60:EA:53:AB:4B:68
Certificate issuer:       /CN=E99008F3C333627E9F8C6939370696F7049C22EB
Certificate serial:       72D3A3884A0AAA1420BABF3D629A7F200749E45E
Authority key identifier: E9:90:08:F3:C3:33:62:7E:9F:8C:69:39:37:06:96:F7:04:9C:22:EB
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E99008F3C333627E9F8C6939370696F7049C22EB.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/B7EBCF407F62BAF133DCE080C31AE7D4F2CEF8A603A472BCE4A78EBCA932C84E/0/34352e3233352e39382e302f32342d3234203d3e203634313233.roa
Signing time:             Wed 02 Oct 2024 16:35:01 +0000
ROA not before:           Wed 02 Oct 2024 16:30:01 +0000
ROA not after:            Wed 01 Oct 2025 16:35:01 +0000
asID:                     64123
IP address blocks:        45.235.98.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 19 Nov 2024 01:35:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            72:d3:a3:88:4a:0a:aa:14:20:ba:bf:3d:62:9a:7f:20:07:49:e4:5e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E99008F3C333627E9F8C6939370696F7049C22EB
        Validity
            Not Before: Oct  2 16:30:01 2024 GMT
            Not After : Oct  1 16:35:01 2025 GMT
        Subject: CN=BB0F152CBC494F916E11E7A811E660EA53AB4B68
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:ca:5d:4e:37:c5:7f:05:5f:2f:fd:b9:6a:88:
                    e4:2e:df:8e:f1:39:bd:51:40:bf:7b:d8:ea:44:06:
                    0d:cd:01:46:56:a0:e1:61:5c:80:9e:a7:75:45:20:
                    97:f8:70:52:7d:f8:7e:08:07:19:75:c8:57:af:53:
                    a8:d2:7e:db:e0:1c:1e:b6:2d:36:19:17:4f:36:f6:
                    79:9c:7d:b3:ca:bb:6f:0d:55:99:8d:41:5c:1a:11:
                    62:11:91:76:49:f5:af:04:fd:62:87:57:b8:ae:53:
                    73:d2:1f:05:7f:ba:75:86:08:a6:9a:ac:b7:35:f2:
                    cd:15:1b:66:20:34:e2:ac:bb:22:4f:11:ec:27:e6:
                    15:c9:d3:fd:b3:94:99:aa:ef:76:cd:03:49:16:6a:
                    f1:4f:2f:0a:07:18:1f:b1:45:e5:09:26:4a:10:af:
                    4a:f5:0b:c2:fa:c4:37:0f:c4:72:c6:27:bf:9a:b1:
                    e7:c6:f7:39:04:fb:a9:42:ac:c6:20:8f:21:ed:f3:
                    cf:eb:12:b5:01:90:d0:ff:40:5b:9d:bf:98:b0:a0:
                    1f:75:2b:42:f6:2d:7e:3f:6c:7e:d9:8a:20:9f:f0:
                    34:51:6b:30:d0:b7:67:6b:24:5e:34:9c:25:e0:7f:
                    10:be:db:06:8e:5e:f5:39:6e:6b:08:03:cb:50:9e:
                    e6:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:0F:15:2C:BC:49:4F:91:6E:11:E7:A8:11:E6:60:EA:53:AB:4B:68
            X509v3 Authority Key Identifier:
                keyid:E9:90:08:F3:C3:33:62:7E:9F:8C:69:39:37:06:96:F7:04:9C:22:EB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/B7EBCF407F62BAF133DCE080C31AE7D4F2CEF8A603A472BCE4A78EBCA932C84E/0/E99008F3C333627E9F8C6939370696F7049C22EB.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E99008F3C333627E9F8C6939370696F7049C22EB.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B7EBCF407F62BAF133DCE080C31AE7D4F2CEF8A603A472BCE4A78EBCA932C84E/0/34352e3233352e39382e302f32342d3234203d3e203634313233.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.235.98.0/24

    Signature Algorithm: sha256WithRSAEncryption
         43:c6:c1:ab:be:76:e4:e4:7d:c1:1e:89:2d:06:7a:2a:41:3f:
         90:cc:47:2d:8b:74:c2:1f:ff:e4:ef:e7:5e:57:bf:dc:25:73:
         f3:c6:b4:51:53:04:d4:3f:16:14:90:b4:85:58:d0:64:51:69:
         38:d5:10:b6:8b:e8:da:02:8b:fe:59:c7:2b:c8:46:a7:46:9b:
         3a:f6:67:d9:c0:fc:b2:07:4f:74:10:5f:62:bb:07:46:7a:8e:
         ab:02:41:65:e2:d8:aa:ba:dd:e9:e4:6b:ae:f3:81:ec:7b:5d:
         4e:f7:6b:2c:5b:75:6a:92:be:df:ab:a9:18:4a:fc:4f:53:aa:
         30:96:c9:e4:38:de:3d:33:fe:bb:65:56:ff:68:19:7f:fa:26:
         68:89:4f:d5:5c:b0:74:86:9c:0c:86:d4:1d:84:ac:68:12:97:
         dd:58:72:e5:34:fb:a7:f8:ee:13:45:a5:67:1b:4b:41:ba:7e:
         93:16:a1:df:0a:37:56:12:87:9a:af:c2:e8:e8:da:dd:c0:4d:
         13:a1:c4:7a:8f:d4:fc:67:37:32:61:fc:2a:db:a4:30:06:28:
         a6:b2:04:81:7a:5e:9b:db:54:97:0a:e4:fb:42:94:03:98:80:
         2a:0d:57:85:8b:03:a5:01:4f:04:e8:ff:fd:a8:76:b5:56:28:
         b6:1a:28:e7
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUctOjiEoKqhQgur89Ypp/IAdJ5F4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTk5MDA4RjNDMzMzNjI3RTlGOEM2OTM5MzcwNjk2Rjcw
NDlDMjJFQjAeFw0yNDEwMDIxNjMwMDFaFw0yNTEwMDExNjM1MDFaMDMxMTAvBgNV
BAMTKEJCMEYxNTJDQkM0OTRGOTE2RTExRTdBODExRTY2MEVBNTNBQjRCNjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZyl1ON8V/BV8v/blqiOQu347x
Ob1RQL972OpEBg3NAUZWoOFhXICep3VFIJf4cFJ9+H4IBxl1yFevU6jSftvgHB62
LTYZF0829nmcfbPKu28NVZmNQVwaEWIRkXZJ9a8E/WKHV7iuU3PSHwV/unWGCKaa
rLc18s0VG2YgNOKsuyJPEewn5hXJ0/2zlJmq73bNA0kWavFPLwoHGB+xReUJJkoQ
r0r1C8L6xDcPxHLGJ7+asefG9zkE+6lCrMYgjyHt88/rErUBkND/QFudv5iwoB91
K0L2LX4/bH7ZiiCf8DRRazDQt2drJF40nCXgfxC+2waOXvU5bmsIA8tQnuY9AgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUuw8VLLxJT5FuEeeoEeZg6lOrS2gwHwYDVR0j
BBgwFoAU6ZAI88MzYn6fjGk5NwaW9wScIuswDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9CN0VCQ0Y0MDdGNjJCQUYxMzNEQ0UwODBDMzFBRTdENEYy
Q0VGOEE2MDNBNDcyQkNFNEE3OEVCQ0E5MzJDODRFLzAvRTk5MDA4RjNDMzMzNjI3
RTlGOEM2OTM5MzcwNjk2RjcwNDlDMjJFQi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FOTkwMDhGM0MzMzM2MjdFOUY4
QzY5MzkzNzA2OTZGNzA0OUMyMkVCLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQjdFQkNGNDA3RjYyQkFGMTMzRENFMDgwQzMxQUU3RDRGMkNFRjhBNjAz
QTQ3MkJDRTRBNzhFQkNBOTMyQzg0RS8wLzM0MzUyZTMyMzMzNTJlMzkzODJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDM2MzQzMTMyMzMucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAt62IwDQYJ
KoZIhvcNAQELBQADggEBAEPGwau+duTkfcEeiS0GeipBP5DMRy2LdMIf/+Tv515X
v9wlc/PGtFFTBNQ/FhSQtIVY0GRRaTjVELaL6NoCi/5ZxyvIRqdGmzr2Z9nA/LIH
T3QQX2K7B0Z6jqsCQWXi2Kq63enka67zgex7XU73ayxbdWqSvt+rqRhK/E9TqjCW
yeQ43j0z/rtlVv9oGX/6JmiJT9VcsHSGnAyG1B2ErGgSl91YcuU0+6f47hNFpWcb
S0G6fpMWod8KN1YSh5qvwujo2t3ATROhxHqP1PxnNzJh/CrbpDAGKKayBIF6Xpvb
VJcK5PtClAOYgCoNV4WLA6UBTwTo//2odrVWKLYaKOc=
-----END CERTIFICATE-----
Generated at Tue Nov 19 05:33:12 2024 by rpki-client on console-fra.rpki-client.org