Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D0EB6D95615E36DCAD35164A699109792C3FCD3F861B8C7D1A60106AD33FFFE2/0/3230302e37372e3132382e302f32302d3234203d3e203133393939.roa
File:                     3230302e37372e3132382e302f32302d3234203d3e203133393939.roa (raw, json)
Hash identifier:          b/zr8GsO7F1909+y4Y2VM4iTzPDojPBtb05dMxfHkio=
Subject key identifier:   7B:EC:D1:37:95:D8:BF:16:46:DE:88:F0:63:57:C7:48:BB:07:7A:C5
Certificate issuer:       /CN=E9771B2D309B05BB8C2F0EA36FF17501E242A19E
Certificate serial:       6ED7FE97270E32DA40F1CB1DE85701A3FADC9790
Authority key identifier: E9:77:1B:2D:30:9B:05:BB:8C:2F:0E:A3:6F:F1:75:01:E2:42:A1:9E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E9771B2D309B05BB8C2F0EA36FF17501E242A19E.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D0EB6D95615E36DCAD35164A699109792C3FCD3F861B8C7D1A60106AD33FFFE2/0/3230302e37372e3132382e302f32302d3234203d3e203133393939.roa
Signing time:             Tue 13 Aug 2024 16:40:04 +0000
ROA not before:           Tue 13 Aug 2024 16:35:04 +0000
ROA not after:            Tue 12 Aug 2025 16:40:04 +0000
asID:                     13999
IP address blocks:        200.77.128.0/20 maxlen: 24
Validation:               Failed, certificate revoked on Fri 03 Jan 2025 22:10:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6e:d7:fe:97:27:0e:32:da:40:f1:cb:1d:e8:57:01:a3:fa:dc:97:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E9771B2D309B05BB8C2F0EA36FF17501E242A19E
        Validity
            Not Before: Aug 13 16:35:04 2024 GMT
            Not After : Aug 12 16:40:04 2025 GMT
        Subject: CN=7BECD13795D8BF1646DE88F06357C748BB077AC5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:91:92:e3:ce:12:0b:8a:44:2e:75:4e:2f:7a:
                    05:c7:e2:a2:45:0d:c1:cc:69:bc:5f:7e:93:07:17:
                    a2:3e:11:00:24:bb:2e:66:0f:a9:ff:58:a8:90:68:
                    74:eb:8a:44:15:c2:e7:de:85:14:53:73:0a:52:96:
                    61:9d:1d:75:c9:4d:31:de:3c:a8:06:c0:02:9a:1a:
                    98:3e:7c:3d:d7:7a:43:f0:7e:a0:a4:36:78:35:49:
                    9d:66:00:37:0d:8c:89:d8:a6:b2:4d:83:19:5b:ad:
                    00:45:1b:03:e6:92:8c:64:f1:23:81:f1:33:ff:15:
                    a8:3a:d0:05:96:41:c0:ce:e9:84:29:a7:a4:ce:55:
                    55:45:63:bc:d5:aa:52:f1:f1:1e:cf:cc:bf:8b:27:
                    2d:6d:f8:a5:19:fb:e5:a6:e7:4c:8c:53:34:da:b0:
                    fb:a4:e0:12:85:23:18:18:09:de:31:eb:d8:4e:a7:
                    e6:74:a7:ca:64:2a:98:59:4e:88:67:cf:37:74:1e:
                    bb:8d:da:80:01:b5:51:5b:b4:2c:46:be:47:68:9c:
                    e0:27:0e:fd:0d:86:5a:d9:62:23:9f:d0:da:c6:b5:
                    98:80:fa:54:b3:62:14:06:d0:e2:52:5a:7d:45:7d:
                    58:66:5a:3c:b3:09:8d:6f:78:f5:ce:63:53:19:84:
                    3e:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:EC:D1:37:95:D8:BF:16:46:DE:88:F0:63:57:C7:48:BB:07:7A:C5
            X509v3 Authority Key Identifier:
                keyid:E9:77:1B:2D:30:9B:05:BB:8C:2F:0E:A3:6F:F1:75:01:E2:42:A1:9E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D0EB6D95615E36DCAD35164A699109792C3FCD3F861B8C7D1A60106AD33FFFE2/0/E9771B2D309B05BB8C2F0EA36FF17501E242A19E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E9771B2D309B05BB8C2F0EA36FF17501E242A19E.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D0EB6D95615E36DCAD35164A699109792C3FCD3F861B8C7D1A60106AD33FFFE2/0/3230302e37372e3132382e302f32302d3234203d3e203133393939.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.77.128.0/20

    Signature Algorithm: sha256WithRSAEncryption
         74:9b:3e:f3:05:19:e0:63:1a:4a:fb:8d:18:e7:7e:65:54:58:
         e6:c2:4e:af:b4:3b:7e:7e:df:bf:55:42:5d:51:9b:62:ab:73:
         04:1c:fd:cc:ca:f5:48:e6:5d:39:12:09:9c:ad:56:97:0f:b4:
         3e:53:3e:ad:5b:fe:0b:01:36:9b:cb:dc:87:1a:f5:6a:ce:c1:
         34:74:d1:60:3c:02:40:d5:ad:37:c3:43:24:67:c5:a5:75:52:
         a1:6c:6f:63:f7:88:d1:76:2e:bd:af:29:d4:a2:23:3f:08:ba:
         14:16:60:78:ba:a2:c2:6f:c9:5d:66:b4:87:e2:6b:07:26:ec:
         d5:31:10:4c:e6:47:40:e5:26:10:e8:2d:62:9f:1d:6e:27:d1:
         55:4c:b6:44:dd:47:97:1d:0e:8d:f6:cc:2b:e1:08:6f:c3:22:
         77:d8:0e:45:39:57:74:0e:08:5d:fe:2b:98:41:d9:36:db:05:
         82:fc:55:4e:4d:d2:19:c0:28:07:57:42:ae:cb:a5:eb:65:5a:
         89:87:8f:27:c1:cd:fe:f3:b5:59:ec:2f:02:61:b6:fc:15:a7:
         52:5c:e6:6f:cb:ad:5b:cf:74:7f:80:69:06:a8:f5:de:6b:72:
         db:3c:91:62:77:8f:da:af:7b:ff:e0:0b:a2:d0:c3:59:78:b8:
         fb:d4:48:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----