Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/3230302e37332e36342e302f32342d3234203d3e203138373437.roa
File:                     3230302e37332e36342e302f32342d3234203d3e203138373437.roa (raw, json)
Hash identifier:          MtHcDqjV7Q+MJDYhr4bJF/+/2wcw8JXBfqYeFpf8yco=
Subject key identifier:   68:51:BC:C6:76:EC:F7:6E:A4:58:5F:1F:2F:FB:D2:DF:BC:30:15:4E
Certificate issuer:       /CN=92FBC72BC92E884A25F6521C6E009627B0E74602
Certificate serial:       339D7945BC91B72EC3DBDC4F719FD438E2BA6BC8
Authority key identifier: 92:FB:C7:2B:C9:2E:88:4A:25:F6:52:1C:6E:00:96:27:B0:E7:46:02
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/3230302e37332e36342e302f32342d3234203d3e203138373437.roa
Signing time:             Tue 05 Mar 2024 17:59:17 +0000
ROA not before:           Tue 05 Mar 2024 17:54:17 +0000
ROA not after:            Tue 04 Mar 2025 17:59:17 +0000
asID:                     18747
IP address blocks:        200.73.64.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 05 Jun 2024 16:30:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            33:9d:79:45:bc:91:b7:2e:c3:db:dc:4f:71:9f:d4:38:e2:ba:6b:c8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=92FBC72BC92E884A25F6521C6E009627B0E74602
        Validity
            Not Before: Mar  5 17:54:17 2024 GMT
            Not After : Mar  4 17:59:17 2025 GMT
        Subject: CN=6851BCC676ECF76EA4585F1F2FFBD2DFBC30154E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:fe:dc:e8:8a:18:ee:bc:e2:1f:a4:92:a2:0e:
                    5a:80:57:e1:fd:7d:d2:92:16:7b:14:c3:96:f3:d6:
                    74:29:7d:93:83:93:51:cf:92:51:58:ae:5d:4a:5b:
                    b5:af:26:f7:1b:3a:b9:8f:75:5a:ef:cb:42:1c:0f:
                    42:55:22:65:8c:7a:4c:87:38:40:a5:98:90:3f:d1:
                    81:91:81:41:dd:8f:e8:51:45:89:d7:bd:4d:44:ca:
                    7c:f9:a6:47:4b:2a:23:62:97:55:41:15:a1:e6:a1:
                    e6:53:43:07:f8:53:bb:00:6a:19:6e:75:86:7f:56:
                    e4:f0:f4:89:6f:01:b6:6d:82:36:a9:27:88:3f:f2:
                    2c:74:f5:28:e5:6f:e5:fd:c3:1a:1f:08:0f:c9:6f:
                    cc:b6:c3:3b:2c:10:43:e2:a8:03:43:8c:74:74:11:
                    59:b5:37:20:35:2a:1d:66:30:15:3c:c9:46:95:ad:
                    a7:e3:c2:3f:6f:0d:7f:f8:f6:11:4f:b1:33:aa:90:
                    c7:e9:3c:35:62:02:43:5f:e5:79:3d:04:82:f1:bf:
                    aa:e9:19:6c:da:be:f2:32:19:3e:4f:17:3b:97:42:
                    62:23:48:85:88:34:d0:01:40:96:f0:b4:4f:a3:c6:
                    a6:2e:b3:e9:ab:36:20:12:c1:c3:4b:84:63:c0:3f:
                    8d:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:51:BC:C6:76:EC:F7:6E:A4:58:5F:1F:2F:FB:D2:DF:BC:30:15:4E
            X509v3 Authority Key Identifier:
                keyid:92:FB:C7:2B:C9:2E:88:4A:25:F6:52:1C:6E:00:96:27:B0:E7:46:02

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/3230302e37332e36342e302f32342d3234203d3e203138373437.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.73.64.0/24

    Signature Algorithm: sha256WithRSAEncryption
         50:dd:14:94:ca:d6:df:ba:08:b6:84:82:bc:ef:50:f5:7f:5b:
         e8:94:ce:90:b6:5a:e2:e2:6f:75:39:5e:b6:ae:4b:af:38:64:
         fc:c7:19:32:d3:96:c7:22:40:2c:0d:12:f7:ec:c8:b7:a9:de:
         98:43:60:82:cc:1f:b4:5a:6b:f8:59:84:f2:71:29:3a:3a:5f:
         89:68:ab:fa:5d:e4:16:5d:50:9b:46:cb:e9:3b:21:3c:e3:26:
         12:34:64:8b:95:d9:10:15:ac:b4:75:53:b4:87:1a:61:23:a8:
         e6:7f:46:d9:81:ad:63:26:1e:1a:01:a0:a4:cc:b7:6f:78:98:
         05:bd:05:61:7f:c6:98:32:15:6b:99:5d:b5:df:6e:05:af:2d:
         20:e2:66:67:91:31:83:da:a8:62:ad:71:55:69:4e:1a:75:90:
         8c:d9:cf:02:cf:76:21:78:15:b1:ce:0b:8c:0a:b6:b3:e3:52:
         1d:19:b0:c3:a8:bb:76:0a:c6:5d:77:e8:6b:64:0d:6e:3a:5f:
         73:dd:71:11:5a:4e:67:08:5b:ae:0a:82:97:ee:d8:52:26:ee:
         f9:0e:73:d1:cd:b2:8f:16:9d:42:38:0d:13:f8:95:9c:c0:51:
         cc:1b:78:98:fc:17:be:d8:b4:0c:a9:a5:62:29:60:04:26:92:
         90:9a:79:6c
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUM515RbyRty7D29xPcZ/UOOK6a8gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTJGQkM3MkJDOTJFODg0QTI1RjY1MjFDNkUwMDk2MjdC
MEU3NDYwMjAeFw0yNDAzMDUxNzU0MTdaFw0yNTAzMDQxNzU5MTdaMDMxMTAvBgNV
BAMTKDY4NTFCQ0M2NzZFQ0Y3NkVBNDU4NUYxRjJGRkJEMkRGQkMzMDE1NEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk/tzoihjuvOIfpJKiDlqAV+H9
fdKSFnsUw5bz1nQpfZODk1HPklFYrl1KW7WvJvcbOrmPdVrvy0IcD0JVImWMekyH
OEClmJA/0YGRgUHdj+hRRYnXvU1Eynz5pkdLKiNil1VBFaHmoeZTQwf4U7sAahlu
dYZ/VuTw9IlvAbZtgjapJ4g/8ix09Sjlb+X9wxofCA/Jb8y2wzssEEPiqANDjHR0
EVm1NyA1Kh1mMBU8yUaVrafjwj9vDX/49hFPsTOqkMfpPDViAkNf5Xk9BILxv6rp
GWzavvIyGT5PFzuXQmIjSIWINNABQJbwtE+jxqYus+mrNiASwcNLhGPAP41nAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUaFG8xnbs926kWF8fL/vS37wwFU4wHwYDVR0j
BBgwFoAUkvvHK8kuiEol9lIcbgCWJ7DnRgIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EMDU0MEFFNzFCRkVCMkEyMDc2QkY3REExOUJBMjk1QTA3
MjI4MDg2MjA3QjUxMEFDMjIwNTZCMzAxRThGNEQ0LzAvOTJGQkM3MkJDOTJFODg0
QTI1RjY1MjFDNkUwMDk2MjdCMEU3NDYwMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85MkZCQzcyQkM5MkU4ODRBMjVG
NjUyMUM2RTAwOTYyN0IwRTc0NjAyLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDA1NDBBRTcxQkZFQjJBMjA3NkJGN0RBMTlCQTI5NUEwNzIyODA4NjIw
N0I1MTBBQzIyMDU2QjMwMUU4RjRENC8wLzMyMzAzMDJlMzczMzJlMzYzNDJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzgzNzM0Mzcucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADISUAwDQYJ
KoZIhvcNAQELBQADggEBAFDdFJTK1t+6CLaEgrzvUPV/W+iUzpC2WuLib3U5Xrau
S684ZPzHGTLTlsciQCwNEvfsyLep3phDYILMH7Raa/hZhPJxKTo6X4loq/pd5BZd
UJtGy+k7ITzjJhI0ZIuV2RAVrLR1U7SHGmEjqOZ/RtmBrWMmHhoBoKTMt294mAW9
BWF/xpgyFWuZXbXfbgWvLSDiZmeRMYPaqGKtcVVpThp1kIzZzwLPdiF4FbHOC4wK
trPjUh0ZsMOou3YKxl136GtkDW46X3PdcRFaTmcIW64Kgpfu2FIm7vkOc9HNso8W
nUI4DRP4lZzAUcwbeJj8F77YtAyppWIpYAQmkpCaeWw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:59 2024 by rpki-client on console-fra.rpki-client.org