Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D6F9D14BE9A2843E565E9AD1DEB4EA82763CE085815633D8F8CF60693B85B714/0/34352e3233382e3137392e302f32342d3234203d3e20323635373033.roa
File:                     34352e3233382e3137392e302f32342d3234203d3e20323635373033.roa (raw, json)
Hash identifier:          Q8piXEXJxgYCdKTZ2RUmx/jEEOJPP0CyUCDRgnwwS/I=
Subject key identifier:   64:42:1F:DB:64:00:3A:30:B9:E4:2F:22:7A:DA:F1:01:DD:98:D0:EB
Certificate issuer:       /CN=84B320834CA10CE018169848F7AE0810EB3E7C5D
Certificate serial:       5CA0820A6D4EFA2E5F7C466919AF351B8CE9CF7D
Authority key identifier: 84:B3:20:83:4C:A1:0C:E0:18:16:98:48:F7:AE:08:10:EB:3E:7C:5D
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/84B320834CA10CE018169848F7AE0810EB3E7C5D.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D6F9D14BE9A2843E565E9AD1DEB4EA82763CE085815633D8F8CF60693B85B714/0/34352e3233382e3137392e302f32342d3234203d3e20323635373033.roa
Signing time:             Tue 05 Mar 2024 18:13:17 +0000
ROA not before:           Tue 05 Mar 2024 18:08:17 +0000
ROA not after:            Tue 04 Mar 2025 18:13:17 +0000
asID:                     265703
IP address blocks:        45.238.179.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Sun 25 Aug 2024 18:20:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5c:a0:82:0a:6d:4e:fa:2e:5f:7c:46:69:19:af:35:1b:8c:e9:cf:7d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=84B320834CA10CE018169848F7AE0810EB3E7C5D
        Validity
            Not Before: Mar  5 18:08:17 2024 GMT
            Not After : Mar  4 18:13:17 2025 GMT
        Subject: CN=64421FDB64003A30B9E42F227ADAF101DD98D0EB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:ee:dd:75:ee:94:f7:c0:29:c6:04:2b:e1:4d:
                    61:19:22:c5:3c:ff:b1:43:52:0a:c1:23:dc:d8:3c:
                    4c:bc:18:bc:b2:74:f4:b7:31:fb:ee:18:cc:a2:6c:
                    0e:85:e2:f0:d6:0b:18:a3:f7:84:69:3c:4b:9a:31:
                    79:08:54:b3:d8:b1:00:8f:e1:8e:93:4e:25:96:7b:
                    41:68:8d:29:ca:4e:a7:f1:21:ec:2c:c5:24:7f:d3:
                    68:88:65:18:9e:70:9b:9d:d0:1a:c6:6f:0f:5a:65:
                    67:d4:48:9d:ad:f2:17:48:9d:de:ab:3a:d3:aa:3e:
                    2d:5e:9d:75:99:d7:70:b5:2b:f5:d5:35:65:5b:a3:
                    dd:42:b5:d6:1c:ed:8b:e1:c7:d5:30:1a:c3:b4:1e:
                    7a:fa:b5:ee:de:98:21:93:47:5c:97:50:1d:fc:b8:
                    dc:22:5d:6e:9d:c5:2c:cf:a6:4a:04:53:05:38:1d:
                    7f:06:b8:da:03:4f:2f:e3:ed:3d:e3:1e:b6:9d:c9:
                    41:38:b3:8f:5d:f1:28:91:3c:b6:ec:9d:55:a7:00:
                    97:25:d4:f4:b3:fc:80:a3:17:48:f3:13:cf:ce:45:
                    d6:e6:6d:f9:f5:89:40:5a:ae:4b:aa:4b:cd:af:30:
                    82:99:15:9d:b3:1e:ce:f6:1a:02:79:95:ca:77:de:
                    5b:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:42:1F:DB:64:00:3A:30:B9:E4:2F:22:7A:DA:F1:01:DD:98:D0:EB
            X509v3 Authority Key Identifier:
                keyid:84:B3:20:83:4C:A1:0C:E0:18:16:98:48:F7:AE:08:10:EB:3E:7C:5D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D6F9D14BE9A2843E565E9AD1DEB4EA82763CE085815633D8F8CF60693B85B714/0/84B320834CA10CE018169848F7AE0810EB3E7C5D.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/84B320834CA10CE018169848F7AE0810EB3E7C5D.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D6F9D14BE9A2843E565E9AD1DEB4EA82763CE085815633D8F8CF60693B85B714/0/34352e3233382e3137392e302f32342d3234203d3e20323635373033.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.238.179.0/24

    Signature Algorithm: sha256WithRSAEncryption
         3e:f6:0d:23:b1:89:7d:0a:a7:30:fb:1c:e2:c7:fa:b1:14:c2:
         40:94:26:c6:07:22:a2:27:34:ec:bd:4a:00:94:4b:26:e5:71:
         6b:fe:4c:e8:b0:e5:90:6e:60:c2:c3:4c:e7:bd:2d:a1:a5:b7:
         9e:ee:58:9c:ca:e1:5f:e6:3e:aa:45:f1:2d:a1:29:0d:c0:01:
         5f:25:1e:25:6d:a9:9e:23:cd:90:e5:52:59:f6:cc:d3:f9:62:
         96:f9:58:c8:ce:7e:b2:2b:52:88:86:7e:18:76:60:e5:82:c7:
         ba:90:99:ca:40:d4:d8:87:44:35:bc:43:f9:a7:80:8d:01:11:
         de:98:cc:fc:5e:3b:65:cf:53:89:17:4d:8c:6b:f9:24:9f:f6:
         9c:3c:26:15:92:b4:4f:11:f3:fe:28:d4:b6:11:5a:b1:17:10:
         34:6a:0c:e5:fb:87:c0:64:eb:e5:0b:0c:4a:69:4b:d1:38:3b:
         17:21:64:5b:e7:0b:c7:0a:aa:a4:7f:d9:c2:37:ec:71:76:cf:
         f1:f7:12:24:8c:03:d6:c6:cb:ba:30:df:21:93:fe:07:06:0c:
         04:e6:5b:b2:16:a5:0a:40:d2:a6:4e:68:94:dd:65:e9:e2:ae:
         e8:9c:cb:16:6c:24:77:18:ee:32:8a:8d:a4:63:70:12:48:1e:
         d0:6f:8a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----