Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D72CAB687FF381E3E817409612336C0F0F10ED7FEBEC4488B9E6F9194D290006/0/3230302e31322e3135342e302f32342d3234203d3e2033323733.roa
File:                     3230302e31322e3135342e302f32342d3234203d3e2033323733.roa (raw, json)
Hash identifier:          tzB0CNX7Px+q8m/0HIGt7r15a4RvbF63R8KWTspZvF8=
Subject key identifier:   64:25:5F:58:63:0F:38:B2:40:FE:70:B5:27:F1:0E:44:C7:41:79:F9
Certificate issuer:       /CN=DE8EFB8EE6F2460BF603813C969F24168454483E
Certificate serial:       20811F19310E72379D2DDC63F3324B1CE0275783
Authority key identifier: DE:8E:FB:8E:E6:F2:46:0B:F6:03:81:3C:96:9F:24:16:84:54:48:3E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DE8EFB8EE6F2460BF603813C969F24168454483E.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D72CAB687FF381E3E817409612336C0F0F10ED7FEBEC4488B9E6F9194D290006/0/3230302e31322e3135342e302f32342d3234203d3e2033323733.roa
Signing time:             Tue 05 Mar 2024 18:06:04 +0000
ROA not before:           Tue 05 Mar 2024 18:01:04 +0000
ROA not after:            Tue 04 Mar 2025 18:06:04 +0000
asID:                     3273
IP address blocks:        200.12.154.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 10 Jul 2024 22:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            20:81:1f:19:31:0e:72:37:9d:2d:dc:63:f3:32:4b:1c:e0:27:57:83
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=DE8EFB8EE6F2460BF603813C969F24168454483E
        Validity
            Not Before: Mar  5 18:01:04 2024 GMT
            Not After : Mar  4 18:06:04 2025 GMT
        Subject: CN=64255F58630F38B240FE70B527F10E44C74179F9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:54:1c:01:b9:75:97:2b:44:02:b6:b8:5d:a0:
                    88:3f:e9:f6:31:4c:66:cd:55:af:d8:93:f4:b2:74:
                    7f:d8:c1:d0:f1:2a:76:85:c5:15:a9:30:cf:f2:e6:
                    df:13:ac:5b:29:5c:86:1d:a6:33:a5:87:74:a3:1f:
                    d0:90:7d:be:c0:b8:f2:75:08:36:f9:8b:ef:c8:0e:
                    95:60:51:18:11:d4:15:24:00:89:71:af:75:40:68:
                    05:8d:27:ea:9b:c1:3c:68:c3:e7:aa:a3:f4:52:cf:
                    60:29:3a:2e:ba:67:c5:00:93:8f:35:52:94:a4:8f:
                    55:b6:e7:27:49:aa:b5:d1:fe:95:80:72:16:0c:11:
                    e6:9f:08:b0:03:d4:78:d7:f4:de:5c:26:e4:eb:27:
                    1c:af:15:12:55:fd:e9:c1:a3:36:23:81:27:bb:4b:
                    1f:ac:d8:df:29:98:96:16:e5:4c:91:a3:2a:34:b0:
                    fb:86:e8:54:ad:ee:e2:42:1e:1d:fa:9c:69:bb:df:
                    18:e3:ba:7c:4b:2f:26:29:d7:e5:e8:5f:ee:05:fa:
                    e1:80:a3:3e:76:37:99:79:dd:0a:59:e6:03:9c:65:
                    cd:99:31:58:e6:75:43:e6:c0:53:5c:2d:1f:db:28:
                    89:74:3b:b2:68:75:67:01:9d:c3:2f:48:17:33:b5:
                    e7:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:25:5F:58:63:0F:38:B2:40:FE:70:B5:27:F1:0E:44:C7:41:79:F9
            X509v3 Authority Key Identifier:
                keyid:DE:8E:FB:8E:E6:F2:46:0B:F6:03:81:3C:96:9F:24:16:84:54:48:3E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D72CAB687FF381E3E817409612336C0F0F10ED7FEBEC4488B9E6F9194D290006/0/DE8EFB8EE6F2460BF603813C969F24168454483E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DE8EFB8EE6F2460BF603813C969F24168454483E.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D72CAB687FF381E3E817409612336C0F0F10ED7FEBEC4488B9E6F9194D290006/0/3230302e31322e3135342e302f32342d3234203d3e2033323733.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.12.154.0/24

    Signature Algorithm: sha256WithRSAEncryption
         85:f0:34:93:0b:1b:42:7a:df:4a:bd:38:93:5e:c1:40:fa:0a:
         19:36:08:0e:c9:71:a0:15:e6:d3:45:df:78:19:45:38:9a:01:
         4f:d1:56:9e:4d:e5:e9:41:b0:19:7c:a8:a0:a2:62:54:aa:7d:
         80:df:72:57:49:45:a7:4b:8a:45:c7:fe:7c:e2:ea:2e:26:32:
         b7:b0:f5:cc:53:be:f3:50:d9:cd:20:29:56:17:9c:ad:dc:1e:
         81:e9:f2:44:70:b0:2a:0c:c5:c3:6f:bd:79:6c:0c:c3:74:b2:
         48:52:1a:5e:0c:5b:06:fc:05:93:6b:89:6e:52:17:f2:59:7b:
         a7:7a:b1:73:8c:75:ca:5f:5b:7b:52:b5:9f:74:9f:b3:c9:f7:
         08:c0:67:95:78:81:19:6c:f7:77:6a:93:6c:6e:80:cc:a6:57:
         13:13:b7:f3:bd:53:c0:29:59:52:4e:a2:e6:64:7c:03:03:0d:
         46:8a:55:da:8c:4d:6e:e3:a8:54:5d:b3:f3:78:93:5c:9e:75:
         7a:31:7e:35:ec:eb:93:ad:31:be:bd:97:61:23:ac:09:dd:80:
         b6:1a:47:e9:16:2d:2f:2c:d0:07:1d:21:1d:82:67:a6:22:88:
         bb:c6:8d:9c:e6:a0:5b:af:af:f6:84:a6:26:bb:09:d1:73:15:
         75:2e:f3:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 10 23:41:03 2024 by rpki-client on console-fra.rpki-client.org