Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/3230302e37332e36362e302f32342d3234203d3e203138373437.roa
File:                     3230302e37332e36362e302f32342d3234203d3e203138373437.roa (raw, json)
Hash identifier:          w9YKOMxKtgu5v1FZgnvgu1dxnsefbI6PvfeFM4FsH6o=
Subject key identifier:   A3:F3:87:F9:5F:EE:CE:5B:AB:73:7A:3D:40:F4:A3:F7:F8:EF:95:73
Certificate issuer:       /CN=92FBC72BC92E884A25F6521C6E009627B0E74602
Certificate serial:       684FFC613B749B2D9AC4E4E0BDEF7D4F4E2A43D0
Authority key identifier: 92:FB:C7:2B:C9:2E:88:4A:25:F6:52:1C:6E:00:96:27:B0:E7:46:02
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/3230302e37332e36362e302f32342d3234203d3e203138373437.roa
Signing time:             Tue 05 Mar 2024 17:59:07 +0000
ROA not before:           Tue 05 Mar 2024 17:54:07 +0000
ROA not after:            Tue 04 Mar 2025 17:59:07 +0000
asID:                     18747
IP address blocks:        200.73.66.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 05 Jun 2024 16:30:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            68:4f:fc:61:3b:74:9b:2d:9a:c4:e4:e0:bd:ef:7d:4f:4e:2a:43:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=92FBC72BC92E884A25F6521C6E009627B0E74602
        Validity
            Not Before: Mar  5 17:54:07 2024 GMT
            Not After : Mar  4 17:59:07 2025 GMT
        Subject: CN=A3F387F95FEECE5BAB737A3D40F4A3F7F8EF9573
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:2d:6f:b2:9b:29:52:af:9f:1a:cb:d1:57:81:
                    79:ef:ff:cd:a2:9e:2c:47:67:f1:b9:41:a6:b9:0c:
                    56:48:0b:21:72:5a:48:a1:a9:5a:64:8c:da:1d:9e:
                    79:b6:0d:76:21:fa:70:64:18:71:95:17:69:e9:86:
                    ee:39:f0:13:fb:48:8d:3b:62:5b:dd:1a:aa:a9:41:
                    78:d3:5e:7b:b2:72:2f:c2:0c:41:82:81:66:de:1a:
                    61:ca:bd:89:fa:dd:23:be:79:11:a5:47:88:28:cb:
                    81:f6:22:2e:b4:6c:b2:a3:a0:22:8d:b9:76:39:ee:
                    ca:38:b9:4e:ce:79:2f:2a:df:45:11:b1:6b:ce:e8:
                    fe:b4:88:88:27:85:c6:a5:a4:20:6b:06:78:97:89:
                    f1:ca:7b:37:ab:16:b4:f8:4d:66:93:1a:1e:a9:d5:
                    48:74:31:e0:77:00:22:ec:ec:cd:e0:9e:e5:da:6f:
                    81:31:81:b5:01:a6:17:17:20:24:2c:94:be:0c:ce:
                    66:48:f8:1e:70:26:b9:ed:ca:38:2f:88:c1:55:4b:
                    f5:29:c2:4e:ae:18:21:3f:85:4e:19:95:8c:df:9a:
                    4a:94:84:13:56:32:7a:08:a1:8a:1e:cf:a1:dd:23:
                    08:7a:fb:96:e5:63:d2:f2:cf:b2:b1:21:47:b1:0a:
                    b5:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A3:F3:87:F9:5F:EE:CE:5B:AB:73:7A:3D:40:F4:A3:F7:F8:EF:95:73
            X509v3 Authority Key Identifier:
                keyid:92:FB:C7:2B:C9:2E:88:4A:25:F6:52:1C:6E:00:96:27:B0:E7:46:02

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/3230302e37332e36362e302f32342d3234203d3e203138373437.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.73.66.0/24

    Signature Algorithm: sha256WithRSAEncryption
         45:4a:b7:29:d3:4c:94:46:0d:83:e1:1e:26:85:ce:03:28:ec:
         fa:05:0d:a0:38:32:f4:37:52:12:ad:3d:64:ce:f2:dd:f1:8c:
         3a:97:f8:af:d5:f0:ab:f9:f4:70:e3:1c:65:d8:c8:c4:6f:d0:
         f1:b8:62:e1:03:37:cc:bb:0e:7b:e8:c6:fc:9f:31:f7:41:11:
         7e:61:9b:02:b5:99:12:ef:54:4a:1e:3e:6c:eb:18:28:91:93:
         e6:0f:12:5c:56:a0:1c:75:9b:95:a9:76:4b:b8:3f:4b:73:7e:
         81:3a:e2:95:09:f8:2c:a2:e5:1b:f4:bc:94:88:e7:e5:65:26:
         fb:a0:b9:30:63:8d:be:b9:c1:59:8a:d9:61:b3:2d:2d:4b:2d:
         8e:91:76:71:d2:ab:c5:f5:82:89:7f:46:4d:29:36:12:82:31:
         be:a2:17:f4:f5:f8:91:25:e5:57:7d:64:32:e3:22:92:9c:06:
         e3:fa:72:d1:d0:c7:4b:f8:ae:ae:69:75:aa:46:fc:97:16:b6:
         71:61:3b:bd:68:06:0f:b4:41:6a:47:42:a4:a1:38:59:f9:ce:
         44:f4:19:e6:2c:bf:9d:f9:d0:03:c9:63:7a:b0:a5:2b:13:d2:
         46:8e:e6:09:c7:a2:4e:b6:59:e9:b4:5d:09:07:6a:7f:e4:df:
         f2:0f:6d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:18 2024 by rpki-client on console-ams.rpki-client.org