Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D1B8838FECB9462CAB890A0CBF5ECF1E295AF1326B83179E433DA04827BFDC30/0/323830333a383539303a3830303a3a2f34302d3430203d3e20323732393636.roa
File:                     323830333a383539303a3830303a3a2f34302d3430203d3e20323732393636.roa (raw, json)
Hash identifier:          gSKnC9AFoB0TTxltlAwhPe/fsOHmkg2wA5eFsgQd2Y8=
Subject key identifier:   3D:06:87:CB:8F:60:A2:7F:68:AE:6E:68:D7:D7:C4:E2:DA:24:1C:AF
Certificate issuer:       /CN=2122091F9E8EF8DB7097C3E806CDF34469265C93
Certificate serial:       132700C19AA0FC73E5CEECDB4D1411D4AC7958ED
Authority key identifier: 21:22:09:1F:9E:8E:F8:DB:70:97:C3:E8:06:CD:F3:44:69:26:5C:93
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2122091F9E8EF8DB7097C3E806CDF34469265C93.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D1B8838FECB9462CAB890A0CBF5ECF1E295AF1326B83179E433DA04827BFDC30/0/323830333a383539303a3830303a3a2f34302d3430203d3e20323732393636.roa
Signing time:             Tue 05 Mar 2024 17:44:04 +0000
ROA not before:           Tue 05 Mar 2024 17:39:04 +0000
ROA not after:            Tue 04 Mar 2025 17:44:04 +0000
asID:                     272966
IP address blocks:        2803:8590:800::/40 maxlen: 40

Validation:               Failed, certificate revoked on Fri 06 Sep 2024 17:00:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            13:27:00:c1:9a:a0:fc:73:e5:ce:ec:db:4d:14:11:d4:ac:79:58:ed
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2122091F9E8EF8DB7097C3E806CDF34469265C93
        Validity
            Not Before: Mar  5 17:39:04 2024 GMT
            Not After : Mar  4 17:44:04 2025 GMT
        Subject: CN=3D0687CB8F60A27F68AE6E68D7D7C4E2DA241CAF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:ed:c7:df:12:07:74:6a:4c:a4:65:a4:0a:b1:
                    33:83:82:5e:b2:01:e3:a6:85:64:3b:35:05:ce:ce:
                    18:c0:7e:1f:d7:e5:fa:ee:75:e8:01:20:07:ce:4e:
                    be:a5:9d:7d:2f:50:dc:0b:7e:b0:f5:e9:81:e0:cd:
                    f3:b5:18:5c:c2:bc:ef:6e:f2:9c:e8:33:6b:29:75:
                    07:64:3a:d4:5d:f3:0f:bf:2d:36:be:ce:5f:24:56:
                    3b:a5:8d:90:a2:6c:a6:23:f9:36:97:bf:70:55:2d:
                    e3:e3:c1:db:3b:1c:25:23:10:13:2c:82:3b:08:a7:
                    8c:28:8b:2f:dd:7a:a9:30:ed:aa:ba:39:38:b4:05:
                    30:f6:07:22:85:83:64:b4:6c:03:5c:0c:66:d7:60:
                    06:60:73:a4:2c:b2:41:5f:c7:6a:54:6f:17:9c:3d:
                    c1:5f:69:43:86:1d:e4:24:f4:e9:f8:40:81:10:e4:
                    93:e2:ec:e0:95:b3:2a:7f:7d:fd:f1:35:7a:c5:26:
                    b8:f7:ba:3a:6e:9d:5d:4e:7e:4d:df:77:67:58:22:
                    31:16:c8:09:9e:62:3a:63:09:a2:25:ff:c6:d5:9e:
                    2b:05:da:6b:23:9e:1b:6f:43:d0:48:c5:11:05:ff:
                    4c:8b:73:63:43:60:c7:78:f2:1b:f8:aa:44:c3:67:
                    07:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:06:87:CB:8F:60:A2:7F:68:AE:6E:68:D7:D7:C4:E2:DA:24:1C:AF
            X509v3 Authority Key Identifier:
                keyid:21:22:09:1F:9E:8E:F8:DB:70:97:C3:E8:06:CD:F3:44:69:26:5C:93

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D1B8838FECB9462CAB890A0CBF5ECF1E295AF1326B83179E433DA04827BFDC30/0/2122091F9E8EF8DB7097C3E806CDF34469265C93.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2122091F9E8EF8DB7097C3E806CDF34469265C93.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D1B8838FECB9462CAB890A0CBF5ECF1E295AF1326B83179E433DA04827BFDC30/0/323830333a383539303a3830303a3a2f34302d3430203d3e20323732393636.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:8590:800::/40

    Signature Algorithm: sha256WithRSAEncryption
         1d:e5:a2:b0:9d:cd:21:ed:4d:09:56:93:cd:eb:1d:d9:c1:40:
         0a:d5:1d:a8:c2:f6:f7:67:86:f1:e9:f0:b4:60:b3:47:cb:57:
         77:77:b7:be:11:45:fb:d4:a2:2c:2e:1c:7a:d7:3d:11:8e:f8:
         09:09:7f:4e:6d:bc:6b:8a:46:ba:4b:5e:83:d2:21:55:39:e5:
         5f:70:4e:6d:88:6b:9a:66:bb:9a:bb:fa:a3:5c:d1:68:09:6f:
         ae:41:91:0c:9e:b8:b3:6b:43:6d:97:41:0e:10:bc:f5:41:7a:
         d4:9f:27:ac:7d:ae:64:15:3b:9a:35:e6:46:12:10:2c:cd:33:
         c8:ae:d6:bd:67:3e:f5:54:d0:54:17:c9:f6:57:2b:72:d0:52:
         54:9a:19:9a:31:6e:55:fd:88:06:e0:91:a9:66:17:c1:84:0b:
         af:e6:09:b7:ef:ac:84:dd:65:f5:91:15:db:36:d2:1a:b0:99:
         80:37:86:ed:46:ce:da:f1:8f:e2:a7:5f:7c:42:34:76:a3:79:
         b9:9a:f5:2d:78:af:2c:2c:40:23:cf:69:44:84:47:42:12:24:
         a1:a2:8c:39:03:13:2a:72:e9:45:3b:14:47:52:10:87:16:41:
         21:bf:b5:82:40:d2:2b:9e:d9:83:61:f8:c9:7c:2c:4a:33:11:
         65:4f:6c:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 18:41:17 2024 by rpki-client on console-fra.rpki-client.org