Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D4B56D8CB7B0666463ACAE31C3496971109B4D5151D62FBE8CF7EB3069FD6FC8/0/3139302e31332e3139362e302f32342d3234203d3e20323731373733.roa
File:                     3139302e31332e3139362e302f32342d3234203d3e20323731373733.roa (raw, json)
Hash identifier:          PwtFiYc2knL32G0Qf8Vu7R4bCXxc2ANmiV9awA2tqXs=
Subject key identifier:   76:64:C6:F9:39:79:5F:C5:AA:07:31:98:F9:1C:52:6F:CE:0B:14:5D
Certificate issuer:       /CN=928052F0CB3F37ACD3ABCCCBC8A740B04DA13237
Certificate serial:       48DDDAE358253BB43E39057FE400A8A8B655E8A8
Authority key identifier: 92:80:52:F0:CB:3F:37:AC:D3:AB:CC:CB:C8:A7:40:B0:4D:A1:32:37
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/928052F0CB3F37ACD3ABCCCBC8A740B04DA13237.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D4B56D8CB7B0666463ACAE31C3496971109B4D5151D62FBE8CF7EB3069FD6FC8/0/3139302e31332e3139362e302f32342d3234203d3e20323731373733.roa
Signing time:             Tue 05 Mar 2024 17:41:15 +0000
ROA not before:           Tue 05 Mar 2024 17:36:15 +0000
ROA not after:            Tue 04 Mar 2025 17:41:15 +0000
asID:                     271773
IP address blocks:        190.13.196.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Fri 12 Jul 2024 16:10:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            48:dd:da:e3:58:25:3b:b4:3e:39:05:7f:e4:00:a8:a8:b6:55:e8:a8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=928052F0CB3F37ACD3ABCCCBC8A740B04DA13237
        Validity
            Not Before: Mar  5 17:36:15 2024 GMT
            Not After : Mar  4 17:41:15 2025 GMT
        Subject: CN=7664C6F939795FC5AA073198F91C526FCE0B145D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:27:66:64:e3:57:2e:f8:f5:b7:13:a2:93:56:
                    7e:a6:47:0a:fd:39:f2:53:4e:bd:5f:f7:4c:ff:23:
                    08:90:2f:03:77:68:1b:6d:59:b6:c8:01:38:80:43:
                    ec:1e:12:23:7a:37:78:7e:af:5e:17:47:49:54:a8:
                    99:15:33:6a:e8:72:b7:26:bd:a5:cd:d1:f8:d1:17:
                    c5:ca:cd:ee:51:fa:f5:c6:25:23:3e:e5:cb:43:15:
                    81:b6:fc:7a:7f:35:39:d4:11:fd:61:65:3a:b4:7b:
                    43:39:f1:e2:9c:cb:fd:4f:ea:bf:c3:9b:ac:32:9d:
                    68:66:89:b6:d7:1c:6b:3a:25:bf:27:1c:56:11:a8:
                    c8:e7:6f:37:f0:22:ba:ab:27:4e:03:af:01:7a:7b:
                    f7:b0:92:ea:da:96:bf:f9:f4:e0:9a:9e:4b:b9:27:
                    b6:2f:66:af:6b:41:09:d4:60:55:0d:7e:53:29:eb:
                    14:9e:67:cb:24:19:60:a6:16:db:33:16:39:1f:38:
                    0e:40:2c:b2:a3:67:b6:91:67:cf:2c:0a:b7:ae:a2:
                    dd:08:39:0a:64:3f:fd:6a:48:81:1a:78:c4:1a:eb:
                    7e:77:65:4e:b3:99:49:b6:61:43:b1:0b:06:53:c9:
                    78:0c:a1:c6:33:05:49:6a:26:21:d2:6a:0d:97:40:
                    c9:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:64:C6:F9:39:79:5F:C5:AA:07:31:98:F9:1C:52:6F:CE:0B:14:5D
            X509v3 Authority Key Identifier:
                keyid:92:80:52:F0:CB:3F:37:AC:D3:AB:CC:CB:C8:A7:40:B0:4D:A1:32:37

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D4B56D8CB7B0666463ACAE31C3496971109B4D5151D62FBE8CF7EB3069FD6FC8/0/928052F0CB3F37ACD3ABCCCBC8A740B04DA13237.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/928052F0CB3F37ACD3ABCCCBC8A740B04DA13237.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D4B56D8CB7B0666463ACAE31C3496971109B4D5151D62FBE8CF7EB3069FD6FC8/0/3139302e31332e3139362e302f32342d3234203d3e20323731373733.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.13.196.0/24

    Signature Algorithm: sha256WithRSAEncryption
         78:30:16:c1:f2:ab:30:22:bc:02:66:ea:87:7d:ea:82:c8:c4:
         fd:42:d6:1f:c8:4e:1f:e8:fe:1c:3b:c3:8e:1c:b8:f3:42:94:
         13:1a:d1:00:ce:b5:05:88:1c:8a:b1:90:68:38:f8:47:c1:75:
         77:23:08:a5:f6:bd:39:52:fd:9f:f9:1b:89:e1:44:04:36:fd:
         3c:2e:49:d5:aa:b9:3a:81:c8:c9:c2:0e:b2:e1:2f:18:9c:03:
         20:ad:58:d6:8d:49:a0:e1:19:f7:e3:7f:b3:91:bb:8f:bb:92:
         30:50:f3:27:4a:5c:23:80:c6:25:a0:6c:8c:4d:82:b2:f7:6c:
         fb:e0:41:1f:e8:a9:f8:9e:8e:88:e3:e7:3e:f5:79:7e:96:c7:
         b5:7c:81:d9:d5:46:61:4c:2c:5a:f0:de:29:80:81:48:b0:4b:
         f8:9d:76:81:c7:18:70:fc:ef:3e:42:9e:b5:55:dc:05:ab:e7:
         cd:d9:5d:09:83:86:bc:fa:e8:71:12:fa:47:ed:71:86:c5:37:
         a6:1c:2a:d7:82:f1:d1:78:af:ec:35:fc:3d:df:78:7c:ed:c4:
         81:6c:98:c1:39:72:ff:e9:30:aa:80:58:c6:8e:a2:67:99:55:
         7a:7d:34:83:f4:40:af:c1:9f:b3:52:0c:b4:05:26:04:e3:2c:
         a0:7f:f7:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 20:12:23 2024 by rpki-client on console-ams.rpki-client.org