Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D4B56D8CB7B0666463ACAE31C3496971109B4D5151D62FBE8CF7EB3069FD6FC8/0/3139302e31332e3230322e302f32342d3234203d3e20323731373733.roa
File:                     3139302e31332e3230322e302f32342d3234203d3e20323731373733.roa (raw, json)
Hash identifier:          5dpuGCSHL9ouvBME8c4Kzq5OV2lsS8eOFJG6NFQXEkY=
Subject key identifier:   FF:3E:8A:40:E4:4A:FC:E2:A6:D7:62:B9:82:9D:1D:79:E4:5F:2D:53
Certificate issuer:       /CN=928052F0CB3F37ACD3ABCCCBC8A740B04DA13237
Certificate serial:       113246B469BF339D40BC33E39AA1F88928BBB457
Authority key identifier: 92:80:52:F0:CB:3F:37:AC:D3:AB:CC:CB:C8:A7:40:B0:4D:A1:32:37
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/928052F0CB3F37ACD3ABCCCBC8A740B04DA13237.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D4B56D8CB7B0666463ACAE31C3496971109B4D5151D62FBE8CF7EB3069FD6FC8/0/3139302e31332e3230322e302f32342d3234203d3e20323731373733.roa
Signing time:             Tue 05 Mar 2024 17:41:16 +0000
ROA not before:           Tue 05 Mar 2024 17:36:16 +0000
ROA not after:            Tue 04 Mar 2025 17:41:16 +0000
asID:                     271773
IP address blocks:        190.13.202.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Fri 12 Jul 2024 16:10:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            11:32:46:b4:69:bf:33:9d:40:bc:33:e3:9a:a1:f8:89:28:bb:b4:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=928052F0CB3F37ACD3ABCCCBC8A740B04DA13237
        Validity
            Not Before: Mar  5 17:36:16 2024 GMT
            Not After : Mar  4 17:41:16 2025 GMT
        Subject: CN=FF3E8A40E44AFCE2A6D762B9829D1D79E45F2D53
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:c2:3e:87:8a:5e:17:ed:c7:56:8b:44:22:5d:
                    12:e5:dc:da:52:d1:85:68:e9:c4:11:4e:df:e7:e8:
                    df:fb:a7:83:cf:d2:ad:6d:c7:12:b5:58:da:0d:8b:
                    4b:23:78:72:be:99:f8:29:44:11:5c:0d:07:4d:7a:
                    ba:e0:9b:a5:55:ae:54:14:3e:a6:1f:c7:15:a5:47:
                    57:ee:74:d7:5a:ab:a0:18:ec:96:6b:fa:61:c6:50:
                    1c:e4:02:c9:1f:9e:ff:e5:a4:95:54:a2:85:bb:67:
                    88:d5:b2:2f:b9:04:e0:11:9d:bb:0d:49:12:58:6f:
                    2f:8e:c0:13:02:fd:70:89:bb:3d:37:e6:9d:fe:1a:
                    f1:8e:94:7c:cd:28:27:63:39:9a:c2:fe:35:a8:7e:
                    48:15:a6:f8:93:ef:fb:ce:d0:d7:71:ff:d3:46:c3:
                    97:d6:c6:67:b9:15:7d:99:74:72:a5:f2:f1:ac:9e:
                    8c:50:7f:3f:52:c3:21:ad:ee:86:d4:d8:ec:4c:d2:
                    60:02:5e:38:ce:c6:6e:0e:12:e0:f9:d3:62:fd:62:
                    03:2d:86:2f:8d:f5:69:68:77:0a:8b:12:3d:9d:a8:
                    80:84:2f:16:ca:6b:0a:46:62:0b:6f:93:a4:12:57:
                    58:c7:ee:1a:5f:c0:d2:29:3a:08:39:8d:4b:66:79:
                    69:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:3E:8A:40:E4:4A:FC:E2:A6:D7:62:B9:82:9D:1D:79:E4:5F:2D:53
            X509v3 Authority Key Identifier:
                keyid:92:80:52:F0:CB:3F:37:AC:D3:AB:CC:CB:C8:A7:40:B0:4D:A1:32:37

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D4B56D8CB7B0666463ACAE31C3496971109B4D5151D62FBE8CF7EB3069FD6FC8/0/928052F0CB3F37ACD3ABCCCBC8A740B04DA13237.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/928052F0CB3F37ACD3ABCCCBC8A740B04DA13237.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D4B56D8CB7B0666463ACAE31C3496971109B4D5151D62FBE8CF7EB3069FD6FC8/0/3139302e31332e3230322e302f32342d3234203d3e20323731373733.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.13.202.0/24

    Signature Algorithm: sha256WithRSAEncryption
         60:1d:85:bf:63:e7:56:80:f8:8d:1c:6f:b7:a6:4a:74:84:33:
         93:8b:a1:8a:c5:9d:80:ef:24:7f:2b:79:ef:ae:af:14:84:f0:
         49:b0:36:56:e4:7b:25:05:27:a0:6d:17:c9:b9:e6:ab:5f:f4:
         4b:6a:80:cf:e2:4b:db:9a:29:82:53:c9:95:32:3b:e0:31:2c:
         6b:21:54:df:3a:bc:93:e4:d0:35:e6:4b:18:d5:5a:28:8a:66:
         b6:d1:0b:37:58:46:76:c5:45:84:eb:2b:d1:bc:32:60:4b:d4:
         6a:2d:47:77:bb:45:ed:7b:83:44:5f:a5:dd:1e:a7:01:72:52:
         82:26:19:64:61:fc:aa:f7:d4:2e:c3:b5:82:93:d6:f9:a7:aa:
         ee:15:b5:56:a7:94:29:d8:74:60:4d:b8:96:83:9d:ff:c4:3a:
         bc:9f:b5:b0:a4:32:79:cc:77:dc:f2:ea:4f:ee:9a:c1:e4:fa:
         d8:42:62:24:32:91:0b:72:f7:78:3e:fe:c1:c2:65:37:36:4d:
         09:6f:fe:3d:0e:1f:fb:ab:a8:0f:74:8e:5a:a8:3c:89:72:e3:
         b9:3c:df:43:6f:82:57:53:f6:38:69:6d:06:0c:c6:31:0c:1d:
         f5:4d:17:cc:35:14:3a:d3:5b:9e:a2:80:d3:5b:32:c5:b2:7c:
         2f:d4:bd:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 20:12:23 2024 by rpki-client on console-ams.rpki-client.org