Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/3137302e3233332e33302e302f32332d3233203d3e20323634373338.roa
File:                     3137302e3233332e33302e302f32332d3233203d3e20323634373338.roa (raw, json)
Hash identifier:          C5zozrZsCbNMM4bEuT3fVOJd4kcV0cI1a0dPNn9r/E4=
Subject key identifier:   61:06:98:93:52:22:7C:C1:06:FF:35:5B:89:D2:78:BC:7C:62:F6:F7
Certificate issuer:       /CN=D7EE67424E7FC3136531741689B53CDA16769DD7
Certificate serial:       5052817EC220BA0BC0B4DE62994EB07EA3DC3CF7
Authority key identifier: D7:EE:67:42:4E:7F:C3:13:65:31:74:16:89:B5:3C:DA:16:76:9D:D7
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7EE67424E7FC3136531741689B53CDA16769DD7.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/3137302e3233332e33302e302f32332d3233203d3e20323634373338.roa
Signing time:             Tue 05 Mar 2024 18:19:54 +0000
ROA not before:           Tue 05 Mar 2024 18:14:54 +0000
ROA not after:            Tue 04 Mar 2025 18:19:54 +0000
asID:                     264738
IP address blocks:        170.233.30.0/23 maxlen: 23

Validation:               Failed, certificate revoked on Wed 21 Aug 2024 17:35:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            50:52:81:7e:c2:20:ba:0b:c0:b4:de:62:99:4e:b0:7e:a3:dc:3c:f7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=D7EE67424E7FC3136531741689B53CDA16769DD7
        Validity
            Not Before: Mar  5 18:14:54 2024 GMT
            Not After : Mar  4 18:19:54 2025 GMT
        Subject: CN=6106989352227CC106FF355B89D278BC7C62F6F7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:fd:ec:e5:c0:a6:38:c3:cf:ae:c1:c4:3f:2c:
                    25:2e:3f:21:79:a0:37:80:84:c7:ff:e6:d2:74:a4:
                    76:f6:fe:ed:48:d0:db:ed:3b:70:de:f7:da:3d:7d:
                    9d:b8:79:88:e6:ae:e1:ec:d7:aa:fa:12:81:49:04:
                    da:d0:4d:6b:f0:0b:27:af:35:ea:71:89:9c:c0:84:
                    71:4c:0e:6e:8c:78:10:8a:85:dc:5b:46:73:a2:e7:
                    71:a1:e9:9a:b5:f1:79:8f:fb:53:90:23:d7:9c:c4:
                    cc:72:fa:15:3f:ae:a6:90:7c:18:e6:fe:11:ca:bb:
                    f3:7f:43:e1:33:8a:b6:fc:65:ec:cb:d3:74:85:6b:
                    ea:ca:39:31:4e:6d:ed:e0:7f:64:14:10:f2:04:55:
                    91:64:84:ae:ba:81:2d:43:ef:c4:6f:a4:e2:32:c6:
                    6c:a2:ea:13:7e:ab:90:27:d7:08:49:5d:8c:f1:9d:
                    42:ab:23:d2:45:d9:bb:0d:bd:69:36:5b:34:54:75:
                    0a:30:41:b8:2b:66:ae:f3:dc:92:9f:8f:6a:70:16:
                    4c:35:63:7a:9c:e0:74:87:4e:5b:27:31:88:83:c5:
                    fe:07:e5:9a:a0:7d:82:bf:d9:d6:3b:1d:89:88:70:
                    21:5c:19:d8:5e:dd:97:76:48:3c:a7:7f:90:40:e3:
                    fd:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:06:98:93:52:22:7C:C1:06:FF:35:5B:89:D2:78:BC:7C:62:F6:F7
            X509v3 Authority Key Identifier:
                keyid:D7:EE:67:42:4E:7F:C3:13:65:31:74:16:89:B5:3C:DA:16:76:9D:D7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/D7EE67424E7FC3136531741689B53CDA16769DD7.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7EE67424E7FC3136531741689B53CDA16769DD7.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/3137302e3233332e33302e302f32332d3233203d3e20323634373338.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  170.233.30.0/23

    Signature Algorithm: sha256WithRSAEncryption
         64:fe:92:5b:2f:38:a0:ca:79:df:11:15:e2:5e:51:08:fa:ac:
         e2:d5:5c:fb:61:d0:2b:e4:04:52:e5:67:2d:97:65:65:05:8c:
         86:1d:56:28:34:c7:51:21:90:86:6a:fb:06:11:49:81:42:14:
         01:2e:34:5c:fd:e4:9d:f8:be:47:f9:72:d6:24:5a:46:af:f5:
         b4:e6:44:0c:2e:15:25:55:56:92:e8:f8:d6:08:86:29:17:0d:
         fc:56:9b:7b:da:78:62:91:7d:57:ca:1c:50:36:96:5f:97:4a:
         9d:98:0f:b1:da:19:ee:0d:32:f1:97:75:50:2f:d0:e5:e6:d0:
         d3:c7:19:c9:42:95:8b:8b:e1:ba:06:30:cd:12:5d:2c:96:a5:
         e4:e9:02:ba:68:49:bb:da:dd:2b:40:fb:f9:bb:e2:1a:db:c3:
         0b:1e:0d:56:be:ad:47:68:1a:e3:fd:7c:6c:36:4a:91:02:4d:
         64:e3:b8:f6:a9:b8:a0:bf:ee:c5:e3:ea:19:f2:d4:c5:3a:cf:
         46:d3:dd:ac:71:90:c2:1e:ce:fe:11:3b:76:b5:ee:07:5e:8d:
         01:5a:78:de:b4:5b:7f:ff:e2:b1:86:a5:fe:d2:cb:bb:e5:3f:
         33:cb:88:47:7a:67:fe:54:78:22:83:bd:9a:13:ea:72:75:bb:
         e7:9e:f9:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 21 22:37:03 2024 by rpki-client on console-fra.rpki-client.org