Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D4B56D8CB7B0666463ACAE31C3496971109B4D5151D62FBE8CF7EB3069FD6FC8/0/3139302e31332e3139382e302f32342d3234203d3e20323731373733.roa
File:                     3139302e31332e3139382e302f32342d3234203d3e20323731373733.roa (raw, json)
Hash identifier:          Ilf2jJ5XVF0ZSTmM2sgv1g1d0i1qSOIGv/r7xSl+SU0=
Subject key identifier:   3B:7A:2C:C8:1C:9F:CE:B1:FE:29:29:C1:54:81:EC:DA:48:AE:F2:24
Certificate issuer:       /CN=928052F0CB3F37ACD3ABCCCBC8A740B04DA13237
Certificate serial:       5E30C9702DFB9BED7FF2E6D1C29C7A8B9CE801BA
Authority key identifier: 92:80:52:F0:CB:3F:37:AC:D3:AB:CC:CB:C8:A7:40:B0:4D:A1:32:37
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/928052F0CB3F37ACD3ABCCCBC8A740B04DA13237.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D4B56D8CB7B0666463ACAE31C3496971109B4D5151D62FBE8CF7EB3069FD6FC8/0/3139302e31332e3139382e302f32342d3234203d3e20323731373733.roa
Signing time:             Tue 05 Mar 2024 17:41:15 +0000
ROA not before:           Tue 05 Mar 2024 17:36:15 +0000
ROA not after:            Tue 04 Mar 2025 17:41:15 +0000
asID:                     271773
IP address blocks:        190.13.198.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Fri 12 Jul 2024 16:10:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5e:30:c9:70:2d:fb:9b:ed:7f:f2:e6:d1:c2:9c:7a:8b:9c:e8:01:ba
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=928052F0CB3F37ACD3ABCCCBC8A740B04DA13237
        Validity
            Not Before: Mar  5 17:36:15 2024 GMT
            Not After : Mar  4 17:41:15 2025 GMT
        Subject: CN=3B7A2CC81C9FCEB1FE2929C15481ECDA48AEF224
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:a5:1d:5f:dc:62:ce:23:91:e2:3e:9f:94:0d:
                    1e:b7:82:bb:16:ac:b5:ed:73:5a:ed:30:24:78:39:
                    25:d0:d2:e3:25:63:f5:ad:00:19:ed:9d:fc:e1:c1:
                    52:ec:f1:f7:41:0a:c0:1c:2a:0d:c1:3c:ee:73:4a:
                    e7:ac:7b:69:56:ef:64:ea:bd:63:fc:a3:37:94:8c:
                    d5:ae:67:fc:ab:65:70:9a:9f:c2:bd:69:0f:da:fe:
                    08:9c:1f:68:fb:81:a8:1c:a6:71:11:c6:6d:c3:8c:
                    dd:9a:74:eb:4c:84:a8:c9:23:01:26:4e:dd:ab:16:
                    43:99:d4:af:51:7f:74:f6:92:dc:aa:ed:8a:37:fd:
                    5c:3c:de:04:64:1c:59:5f:17:00:c3:89:d0:f9:51:
                    30:30:a8:7f:fc:45:a6:b3:93:74:a6:71:b0:a0:2d:
                    67:36:36:18:23:29:78:88:18:30:68:d2:65:3d:76:
                    59:15:85:4c:7f:55:76:09:65:21:3f:36:67:a6:b7:
                    30:90:db:74:b2:6f:17:1c:d0:19:19:6f:a9:0f:dc:
                    67:8e:43:29:8c:47:1a:8d:ee:2a:62:0c:9a:75:9a:
                    42:88:5c:13:c2:d9:e8:fb:30:55:dc:b4:cb:5c:cf:
                    b3:ad:b1:c3:84:bf:2f:37:75:9d:a9:1f:9d:73:ef:
                    f8:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3B:7A:2C:C8:1C:9F:CE:B1:FE:29:29:C1:54:81:EC:DA:48:AE:F2:24
            X509v3 Authority Key Identifier:
                keyid:92:80:52:F0:CB:3F:37:AC:D3:AB:CC:CB:C8:A7:40:B0:4D:A1:32:37

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D4B56D8CB7B0666463ACAE31C3496971109B4D5151D62FBE8CF7EB3069FD6FC8/0/928052F0CB3F37ACD3ABCCCBC8A740B04DA13237.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/928052F0CB3F37ACD3ABCCCBC8A740B04DA13237.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D4B56D8CB7B0666463ACAE31C3496971109B4D5151D62FBE8CF7EB3069FD6FC8/0/3139302e31332e3139382e302f32342d3234203d3e20323731373733.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.13.198.0/24

    Signature Algorithm: sha256WithRSAEncryption
         81:fe:79:51:d6:3a:62:d1:fb:07:94:38:29:77:a3:34:a3:60:
         62:ca:6f:9d:fe:f6:80:22:e4:f4:c3:d2:cf:f4:73:31:a7:21:
         fb:e1:ee:35:05:97:ed:0a:72:4e:bc:cf:52:f7:93:69:b6:18:
         ef:52:33:c7:59:35:02:7b:6b:8f:ef:38:b4:3d:c8:85:ca:45:
         fa:a9:11:63:79:3e:e9:6d:9a:8f:b6:62:e2:b9:07:41:d9:ca:
         9d:6c:bd:6d:36:d9:f2:b7:bf:ea:e1:8f:06:48:07:6e:36:fa:
         e7:29:bc:20:97:00:f6:73:58:d8:53:6e:38:b3:bc:aa:4e:fe:
         e1:3b:87:33:58:af:5a:ac:e1:3a:b9:42:be:a6:28:7c:cf:99:
         74:de:5f:0c:b6:25:1f:3a:be:07:c2:2f:bb:ef:38:13:ee:e7:
         cd:a1:73:ad:0f:d4:32:27:c0:f2:0a:6c:13:eb:cf:3b:29:b0:
         83:4a:86:6d:64:92:5f:15:b3:a2:ef:f6:1d:05:57:2b:58:0c:
         ae:2c:6a:39:fb:62:28:0e:9d:3c:6e:d4:70:68:41:16:44:24:
         cb:94:c9:f4:f4:51:38:11:97:d3:79:c1:b5:ab:7a:ea:f0:17:
         2a:cb:c7:07:9e:32:35:37:3a:0a:48:b5:b3:c9:93:23:9b:bb:
         87:b3:3d:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 20:12:23 2024 by rpki-client on console-ams.rpki-client.org