Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/3230302e37332e32312e302f32342d3234203d3e203138373437.roa
File:                     3230302e37332e32312e302f32342d3234203d3e203138373437.roa (raw, json)
Hash identifier:          1+EWUeX2YeTtIEZF/QWsXaxrkhxw9fsnF6cUokK3080=
Subject key identifier:   7D:F1:7D:96:18:9A:D0:D2:96:81:E2:21:90:0C:C1:72:D1:8D:24:54
Certificate issuer:       /CN=92FBC72BC92E884A25F6521C6E009627B0E74602
Certificate serial:       20D14038D52A59213D37141089BEB366677DC280
Authority key identifier: 92:FB:C7:2B:C9:2E:88:4A:25:F6:52:1C:6E:00:96:27:B0:E7:46:02
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/3230302e37332e32312e302f32342d3234203d3e203138373437.roa
Signing time:             Tue 05 Mar 2024 17:59:06 +0000
ROA not before:           Tue 05 Mar 2024 17:54:06 +0000
ROA not after:            Tue 04 Mar 2025 17:59:06 +0000
asID:                     18747
IP address blocks:        200.73.21.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 05 Jun 2024 16:30:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            20:d1:40:38:d5:2a:59:21:3d:37:14:10:89:be:b3:66:67:7d:c2:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=92FBC72BC92E884A25F6521C6E009627B0E74602
        Validity
            Not Before: Mar  5 17:54:06 2024 GMT
            Not After : Mar  4 17:59:06 2025 GMT
        Subject: CN=7DF17D96189AD0D29681E221900CC172D18D2454
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:46:db:25:dc:a1:39:be:36:d2:d3:44:f2:8d:
                    45:2c:00:68:15:eb:cd:d1:ed:6e:99:48:83:81:c8:
                    bd:84:eb:36:3d:36:be:f3:10:9d:8f:c2:68:f7:68:
                    89:e4:8b:b9:a0:a3:fa:47:7c:ce:0e:72:09:a0:9e:
                    c7:54:a2:9e:49:0c:3d:35:c0:9e:2c:2a:f7:ae:db:
                    c3:ad:c6:46:ea:64:37:ac:40:c0:16:6a:64:40:a5:
                    37:90:53:1a:75:8f:e4:bc:45:24:67:60:b5:c2:10:
                    50:b4:db:9e:df:89:9f:79:c9:89:d3:49:54:84:32:
                    f6:59:4a:2b:fc:90:e3:85:d7:72:b9:1d:3d:b8:4a:
                    60:00:13:48:ba:35:03:51:98:dc:c5:6c:ea:93:3c:
                    d7:79:c3:3f:4b:ad:66:03:d3:56:d1:df:76:63:72:
                    8d:17:2f:e8:49:fc:a1:a7:9f:68:e7:5e:c5:84:84:
                    77:45:96:c3:5b:99:a2:2d:c4:0e:7d:ff:a8:bf:5b:
                    6b:dd:8c:cb:7f:7e:a6:1b:2e:09:60:9f:a1:82:59:
                    b6:6a:ae:69:ee:56:93:87:67:56:52:33:fe:e5:29:
                    f9:02:5e:d4:97:5c:3f:dd:e7:e4:a3:5c:97:2b:7e:
                    8a:5a:20:6f:f5:37:9f:82:f0:74:b6:98:32:33:0f:
                    57:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:F1:7D:96:18:9A:D0:D2:96:81:E2:21:90:0C:C1:72:D1:8D:24:54
            X509v3 Authority Key Identifier:
                keyid:92:FB:C7:2B:C9:2E:88:4A:25:F6:52:1C:6E:00:96:27:B0:E7:46:02

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/3230302e37332e32312e302f32342d3234203d3e203138373437.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.73.21.0/24

    Signature Algorithm: sha256WithRSAEncryption
         70:b9:56:a5:49:32:b7:9e:d5:26:e1:97:ac:28:b5:2d:6d:eb:
         1e:28:7f:d9:df:a4:17:b0:ab:5d:bb:99:ad:f7:5e:6d:1b:ca:
         33:42:4e:bf:aa:7e:60:5f:55:b2:1d:fb:dc:87:1c:72:19:f6:
         d9:6d:a6:9c:1f:5d:61:79:e7:d4:1f:21:9d:7b:98:09:72:2d:
         74:07:8a:f3:be:55:f6:e1:cf:77:6f:aa:fe:da:34:8b:30:26:
         4d:85:23:e4:c0:8b:61:79:78:5d:30:28:fb:cd:1b:7c:2a:61:
         ed:39:b6:61:41:5f:6e:51:73:8d:6a:58:50:ac:e3:06:0e:6f:
         eb:34:6f:80:d7:1f:69:40:97:f4:60:6b:62:88:19:69:a7:c5:
         d9:8b:4f:e4:00:9d:a9:67:d5:3f:ff:da:e1:7f:9f:12:c3:e7:
         9a:bb:07:cd:05:8c:9b:5d:fd:39:c4:57:51:76:ad:40:4c:83:
         be:e8:ac:45:47:9c:98:0f:bc:56:97:c2:42:b6:46:07:ae:4b:
         39:f7:e6:9e:2f:f2:c2:f9:aa:5b:4a:a4:ad:2e:47:b0:98:8d:
         dd:b5:77:7f:e0:5e:f3:5b:92:c9:27:15:9e:af:e7:7a:85:e6:
         47:58:0a:a5:f9:98:5f:b2:c6:8f:fb:b5:03:4e:7d:93:fd:0a:
         05:19:96:1a
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUINFAONUqWSE9NxQQib6zZmd9woAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTJGQkM3MkJDOTJFODg0QTI1RjY1MjFDNkUwMDk2MjdC
MEU3NDYwMjAeFw0yNDAzMDUxNzU0MDZaFw0yNTAzMDQxNzU5MDZaMDMxMTAvBgNV
BAMTKDdERjE3RDk2MTg5QUQwRDI5NjgxRTIyMTkwMENDMTcyRDE4RDI0NTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqRtsl3KE5vjbS00TyjUUsAGgV
683R7W6ZSIOByL2E6zY9Nr7zEJ2Pwmj3aInki7mgo/pHfM4OcgmgnsdUop5JDD01
wJ4sKveu28OtxkbqZDesQMAWamRApTeQUxp1j+S8RSRnYLXCEFC0257fiZ95yYnT
SVSEMvZZSiv8kOOF13K5HT24SmAAE0i6NQNRmNzFbOqTPNd5wz9LrWYD01bR33Zj
co0XL+hJ/KGnn2jnXsWEhHdFlsNbmaItxA59/6i/W2vdjMt/fqYbLglgn6GCWbZq
rmnuVpOHZ1ZSM/7lKfkCXtSXXD/d5+SjXJcrfopaIG/1N5+C8HS2mDIzD1eNAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUffF9lhia0NKWgeIhkAzBctGNJFQwHwYDVR0j
BBgwFoAUkvvHK8kuiEol9lIcbgCWJ7DnRgIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EMDU0MEFFNzFCRkVCMkEyMDc2QkY3REExOUJBMjk1QTA3
MjI4MDg2MjA3QjUxMEFDMjIwNTZCMzAxRThGNEQ0LzAvOTJGQkM3MkJDOTJFODg0
QTI1RjY1MjFDNkUwMDk2MjdCMEU3NDYwMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85MkZCQzcyQkM5MkU4ODRBMjVG
NjUyMUM2RTAwOTYyN0IwRTc0NjAyLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDA1NDBBRTcxQkZFQjJBMjA3NkJGN0RBMTlCQTI5NUEwNzIyODA4NjIw
N0I1MTBBQzIyMDU2QjMwMUU4RjRENC8wLzMyMzAzMDJlMzczMzJlMzIzMTJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzgzNzM0Mzcucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADISRUwDQYJ
KoZIhvcNAQELBQADggEBAHC5VqVJMree1Sbhl6wotS1t6x4of9nfpBewq127ma33
Xm0byjNCTr+qfmBfVbId+9yHHHIZ9tltppwfXWF559QfIZ17mAlyLXQHivO+Vfbh
z3dvqv7aNIswJk2FI+TAi2F5eF0wKPvNG3wqYe05tmFBX25Rc41qWFCs4wYOb+s0
b4DXH2lAl/Rga2KIGWmnxdmLT+QAnaln1T//2uF/nxLD55q7B80FjJtd/TnEV1F2
rUBMg77orEVHnJgPvFaXwkK2RgeuSzn35p4v8sL5qltKpK0uR7CYjd21d3/gXvNb
ksknFZ6v53qF5kdYCqX5mF+yxo/7tQNOfZP9CgUZlho=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:18 2024 by rpki-client on console-ams.rpki-client.org