Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e36342e302f32302d3234203d3e203233303331.roa
File:                     36362e3233312e36342e302f32302d3234203d3e203233303331.roa (raw, json)
Hash identifier:          WS/N+VUeXkZ34B8dWmz7MmQkT4wetN93ijNaDzd3Eo4=
Subject key identifier:   9D:19:2D:B8:83:61:AA:DA:D0:CB:15:B7:E3:64:71:E6:1C:84:FE:93
Certificate issuer:       /CN=C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0
Certificate serial:       1081981063B43FEB5BC24C127AC0DC68F28623D6
Authority key identifier: C2:96:7F:F3:10:9E:0A:A7:EE:5E:C1:C6:40:30:0D:5A:00:FF:41:B0
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e36342e302f32302d3234203d3e203233303331.roa
Signing time:             Tue 05 Mar 2024 18:06:23 +0000
ROA not before:           Tue 05 Mar 2024 18:01:23 +0000
ROA not after:            Tue 04 Mar 2025 18:06:23 +0000
asID:                     23031
IP address blocks:        66.231.64.0/20 maxlen: 24

Validation:               Failed, certificate revoked on Mon 08 Jul 2024 23:55:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            10:81:98:10:63:b4:3f:eb:5b:c2:4c:12:7a:c0:dc:68:f2:86:23:d6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0
        Validity
            Not Before: Mar  5 18:01:23 2024 GMT
            Not After : Mar  4 18:06:23 2025 GMT
        Subject: CN=9D192DB88361AADAD0CB15B7E36471E61C84FE93
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:f5:56:a6:cc:76:00:8b:76:47:36:18:02:c9:
                    56:70:8f:e8:6c:98:71:2b:f8:06:ad:99:a3:4f:6c:
                    76:d4:62:c1:a6:09:cc:97:fd:4c:6e:be:88:5c:5e:
                    59:af:e9:b2:06:c9:fb:f5:79:b0:ae:07:e1:c7:22:
                    10:ae:a5:26:84:14:68:1e:ea:53:44:2b:0f:62:9d:
                    06:74:0b:ac:aa:63:be:3c:24:04:06:37:47:4f:19:
                    35:4c:c5:e8:9a:fe:ec:69:5b:7b:dc:1b:3b:a3:2b:
                    f0:fe:23:1e:23:6a:02:d3:88:2a:46:bd:9c:ce:87:
                    2a:8f:bd:2a:0b:c9:87:c8:bf:af:72:d9:2b:2f:a6:
                    52:e8:b8:52:2e:5d:7e:90:94:61:b8:5f:0d:dc:3c:
                    cc:bd:21:52:31:b2:01:34:7f:57:c0:21:9f:d5:fc:
                    d9:b7:40:00:14:7c:4a:f2:a6:35:2a:14:81:33:85:
                    e3:f3:02:6e:a7:cc:9e:f3:04:18:88:a4:37:12:0a:
                    b2:8c:32:92:61:1a:15:f2:ff:b9:15:ea:e8:d3:82:
                    e6:71:b9:55:00:7d:fa:8c:bd:d4:87:37:26:7e:6a:
                    45:f7:e0:ab:ba:e7:07:e3:4b:d6:aa:80:12:aa:ea:
                    26:c5:dc:fa:40:b8:8f:0e:77:4c:3d:da:7a:d4:68:
                    8d:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9D:19:2D:B8:83:61:AA:DA:D0:CB:15:B7:E3:64:71:E6:1C:84:FE:93
            X509v3 Authority Key Identifier:
                keyid:C2:96:7F:F3:10:9E:0A:A7:EE:5E:C1:C6:40:30:0D:5A:00:FF:41:B0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e36342e302f32302d3234203d3e203233303331.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  66.231.64.0/20

    Signature Algorithm: sha256WithRSAEncryption
         aa:e3:18:c2:4e:8f:c5:2a:c1:fb:2d:a9:43:1e:23:5e:c5:ae:
         30:53:4b:79:1e:c9:32:41:22:a9:2e:3e:f6:76:a2:d9:76:57:
         92:0d:0d:23:90:9a:66:98:8a:f4:03:1e:0b:41:fa:f5:dc:60:
         81:2d:f5:a2:14:94:1b:7f:85:ca:96:e2:2c:d4:79:b5:80:a1:
         63:cd:40:b4:21:93:41:d9:a0:9b:93:ec:90:30:fd:26:fb:40:
         40:0e:c1:bf:b3:77:12:0a:b2:f1:ab:6e:79:bd:1d:fd:15:cb:
         f7:78:97:a0:33:58:47:03:7b:b6:c1:e1:7b:0f:4d:1f:95:d4:
         ae:2d:93:3f:4c:41:ef:5a:ff:ea:1e:ec:98:1e:b3:a3:71:8b:
         c1:58:3f:9a:49:fc:88:cd:1e:48:6d:bd:d0:b3:52:91:5d:b4:
         1c:df:d5:fc:fa:a0:04:f5:c9:d3:75:5e:01:cc:8f:b8:5b:68:
         f2:d3:68:67:3f:3d:69:c2:dd:56:f6:84:57:d7:d7:ff:8e:d4:
         6b:1b:1f:09:f0:06:ac:80:ca:dd:33:37:04:a1:80:ea:f6:86:
         38:64:55:c3:e0:46:a1:58:78:89:64:37:a3:7e:0f:34:8a:f8:
         d6:75:2d:ba:34:56:58:30:70:95:56:30:aa:48:28:5d:56:15:
         54:a8:01:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 9 01:35:57 2024 by rpki-client on console-ams.rpki-client.org