Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D1B8838FECB9462CAB890A0CBF5ECF1E295AF1326B83179E433DA04827BFDC30/0/323830333a383539303a3230303a3a2f34302d3430203d3e20323732393636.roa
File:                     323830333a383539303a3230303a3a2f34302d3430203d3e20323732393636.roa (raw, json)
Hash identifier:          HkhuSBBCAeSqLNuKv4S9a7Ynmt7NHbVYIdUsqOhIRbE=
Subject key identifier:   18:DE:79:92:C0:25:A0:AA:55:16:E1:3C:CB:7D:4C:B1:CB:92:2B:42
Certificate issuer:       /CN=2122091F9E8EF8DB7097C3E806CDF34469265C93
Certificate serial:       43C1B6AFC45487DF6399D3261C48F6612DDE2209
Authority key identifier: 21:22:09:1F:9E:8E:F8:DB:70:97:C3:E8:06:CD:F3:44:69:26:5C:93
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2122091F9E8EF8DB7097C3E806CDF34469265C93.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D1B8838FECB9462CAB890A0CBF5ECF1E295AF1326B83179E433DA04827BFDC30/0/323830333a383539303a3230303a3a2f34302d3430203d3e20323732393636.roa
Signing time:             Tue 05 Mar 2024 17:44:03 +0000
ROA not before:           Tue 05 Mar 2024 17:39:03 +0000
ROA not after:            Tue 04 Mar 2025 17:44:03 +0000
asID:                     272966
IP address blocks:        2803:8590:200::/40 maxlen: 40

Validation:               Failed, certificate revoked on Fri 06 Sep 2024 17:00:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            43:c1:b6:af:c4:54:87:df:63:99:d3:26:1c:48:f6:61:2d:de:22:09
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2122091F9E8EF8DB7097C3E806CDF34469265C93
        Validity
            Not Before: Mar  5 17:39:03 2024 GMT
            Not After : Mar  4 17:44:03 2025 GMT
        Subject: CN=18DE7992C025A0AA5516E13CCB7D4CB1CB922B42
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:ee:db:c3:2a:59:96:05:e6:dd:36:12:3d:cf:
                    67:65:57:10:fc:c0:54:e1:56:d0:55:36:4d:68:f1:
                    d7:3b:e4:f1:0b:81:a1:9a:87:f4:f7:7c:1b:c3:26:
                    a7:8b:28:b3:21:b7:3f:ed:79:23:d8:5f:9e:63:7c:
                    9f:3b:a1:b8:0e:03:dd:f5:49:d7:75:9b:b9:a9:e5:
                    d2:ed:ae:d8:36:34:9f:5c:10:49:d1:65:e7:d0:5b:
                    a4:08:1c:96:bb:ae:7b:d5:5f:05:96:31:5f:53:0f:
                    64:bc:3c:67:ba:db:08:96:1f:cd:98:8e:da:4e:f7:
                    8f:96:52:53:15:79:59:2a:21:50:f3:53:b9:7c:25:
                    7f:d9:b3:8c:2c:f8:eb:8c:c3:4f:86:97:b8:7a:49:
                    55:0b:f6:88:6b:81:16:18:71:af:b0:e4:d7:7c:7b:
                    e6:b5:2e:0a:7a:6e:fa:86:39:be:65:97:bf:1f:d4:
                    d2:4d:f9:c5:d6:40:b3:5e:ff:d3:e3:f8:c3:01:af:
                    bd:f3:f7:9e:a8:c2:59:bf:51:bf:8c:12:73:95:95:
                    ab:53:ac:b4:fc:94:9e:9c:87:1b:9e:70:a8:18:0f:
                    6d:03:91:22:cc:62:b0:14:9d:a7:bb:76:18:c8:ee:
                    a9:dc:70:88:2f:0d:44:e3:ec:81:80:15:ca:d4:ba:
                    6c:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:DE:79:92:C0:25:A0:AA:55:16:E1:3C:CB:7D:4C:B1:CB:92:2B:42
            X509v3 Authority Key Identifier:
                keyid:21:22:09:1F:9E:8E:F8:DB:70:97:C3:E8:06:CD:F3:44:69:26:5C:93

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D1B8838FECB9462CAB890A0CBF5ECF1E295AF1326B83179E433DA04827BFDC30/0/2122091F9E8EF8DB7097C3E806CDF34469265C93.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2122091F9E8EF8DB7097C3E806CDF34469265C93.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D1B8838FECB9462CAB890A0CBF5ECF1E295AF1326B83179E433DA04827BFDC30/0/323830333a383539303a3230303a3a2f34302d3430203d3e20323732393636.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:8590:200::/40

    Signature Algorithm: sha256WithRSAEncryption
         12:8e:64:bd:f8:a8:d9:70:3a:fc:65:74:f2:9a:b3:4b:99:68:
         f8:01:f2:ca:76:04:75:12:e0:5c:cf:93:29:f9:3d:74:ed:d2:
         71:d0:71:70:ea:d6:4b:71:b1:2e:11:a9:d9:9e:11:37:ce:d2:
         82:b4:58:6c:a2:e1:79:63:66:5d:f5:df:44:88:7f:0c:50:0d:
         23:c8:d8:d6:70:be:e2:17:db:1f:20:c6:66:02:21:84:7b:ce:
         35:66:f3:61:63:e7:fd:91:3e:44:22:70:e0:5f:7a:ce:2f:ba:
         37:3c:c1:e8:fe:bc:6b:76:d9:bd:10:8e:27:06:87:48:70:a8:
         a1:0a:ff:e4:a5:fd:e1:36:bf:28:1a:e5:05:90:9e:ba:d0:e0:
         6a:62:df:b0:25:60:7c:a2:79:32:21:97:91:5c:ed:d9:9f:a2:
         93:ff:35:56:9d:e1:59:3c:6c:9f:69:b6:31:66:45:62:6c:88:
         37:47:50:e2:b6:55:b5:16:d8:ac:a9:9e:7d:8b:ac:ee:c6:f0:
         ba:54:74:e0:a2:66:1d:92:93:a4:e0:3a:0f:bd:e6:03:21:de:
         8c:1d:37:c8:e3:7e:72:fc:97:5a:ca:80:bb:6d:94:32:74:fa:
         72:0b:62:bb:9a:54:66:b5:da:6c:1b:76:06:ff:b6:22:bc:4f:
         11:77:41:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 19:15:47 2024 by rpki-client on console-ams.rpki-client.org