Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/a15b56b168d722d1a953731311e76688bd4d35da.roa
File:                     a15b56b168d722d1a953731311e76688bd4d35da.roa (raw, json)
Hash identifier:          4st9cs2xLOyPR1IqEXIsVhiU7iNR2xa0AcF4OOjUuJw=
Subject key identifier:   47:17:F8:3D:AB:4B:30:44:A6:F7:9B:2C:BE:2F:5C:7F:47:38:51:56
Certificate issuer:       /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial:       1FB357
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/a15b56b168d722d1a953731311e76688bd4d35da.roa
Signing time:             Thu 19 Jan 2023 11:04:36 +0000
ROA not before:           Tue 23 Mar 2021 14:35:22 +0000
ROA not after:            Tue 24 Mar 2026 14:35:22 +0000
asID:                     27837
IP address blocks:        190.90.40.0/21 maxlen: 24
                          190.90.48.0/22 maxlen: 24
                          190.90.66.0/24 maxlen: 24
                          190.90.87.0/24 maxlen: 24
                          190.90.122.0/24 maxlen: 24
                          190.90.123.0/24 maxlen: 24
                          190.90.124.0/24 maxlen: 24
                          190.90.195.0/24 maxlen: 24
                          190.90.196.0/24 maxlen: 24
                          190.90.197.0/24 maxlen: 24
                          190.90.228.0/24 maxlen: 24
                          190.90.243.0/24 maxlen: 24
                          190.90.246.0/23 maxlen: 24

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2077527 (0x1fb357)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
        Validity
            Not Before: Mar 23 14:35:22 2021 GMT
            Not After : Mar 24 14:35:22 2026 GMT
        Subject: CN=a15b56b168d722d1a953731311e76688bd4d35da
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:7d:85:94:2a:fd:bd:8e:da:80:65:0a:a3:1e:
                    1d:aa:61:b8:f1:c5:e7:53:00:ce:0f:99:dc:c5:0d:
                    ef:94:1d:07:10:5b:bd:c5:62:4a:5a:7f:2c:45:cb:
                    8a:e2:7d:ae:38:47:a3:89:27:1c:56:82:b3:e2:39:
                    82:72:44:4c:9c:a0:1d:10:88:f3:ab:4a:b1:b4:b0:
                    e1:bf:93:d4:45:0c:50:57:7a:64:13:66:c1:b8:c1:
                    aa:00:ba:a9:bd:52:54:4b:be:47:65:bb:2f:3b:96:
                    8d:94:cf:4c:cc:7c:b2:5b:d5:09:46:d7:fc:45:cd:
                    00:69:6d:e7:e9:00:1f:7a:2e:e5:ba:1b:ff:ae:e7:
                    fa:05:fa:95:af:8e:73:90:37:14:d8:29:0f:43:4c:
                    08:d7:d7:d5:06:64:b9:df:a4:26:73:7e:6d:be:6b:
                    36:28:b6:69:6d:ea:25:12:74:72:29:84:1a:c8:21:
                    94:80:17:0e:44:c3:9d:3c:95:a8:cf:aa:28:d1:75:
                    b0:99:e4:4f:e8:68:e6:e4:72:f2:96:f3:d4:95:4b:
                    79:7d:af:3d:99:f3:bc:22:28:b6:33:32:fc:a5:b5:
                    9e:78:52:43:57:41:9c:6c:5f:61:2a:78:dc:a1:17:
                    00:35:7e:ae:bb:fa:bd:f5:5d:cd:1c:64:66:2e:68:
                    31:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:17:F8:3D:AB:4B:30:44:A6:F7:9B:2C:BE:2F:5C:7F:47:38:51:56
            X509v3 Authority Key Identifier:
                keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/a15b56b168d722d1a953731311e76688bd4d35da.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.90.40.0-190.90.51.255
                  190.90.66.0/24
                  190.90.87.0/24
                  190.90.122.0-190.90.124.255
                  190.90.195.0-190.90.197.255
                  190.90.228.0/24
                  190.90.243.0/24
                  190.90.246.0/23

    Signature Algorithm: sha256WithRSAEncryption
         34:89:54:42:58:8e:06:db:b3:c1:b2:90:f6:c5:93:a0:ad:3b:
         b4:80:e4:c1:94:7a:69:f1:37:26:20:34:b7:b7:5e:f1:80:a4:
         10:d9:7c:db:21:2d:6e:b0:42:e8:19:c9:4f:25:d7:22:ea:74:
         ac:d5:45:50:21:aa:cc:11:b9:f5:d2:56:9b:29:92:64:1e:fd:
         30:0d:46:f8:cc:06:b0:db:a9:27:dd:fd:1e:b2:c4:00:22:c1:
         66:ed:3b:80:1c:10:af:a0:88:65:46:e9:6c:0b:bb:d9:34:59:
         71:b7:06:c8:bb:f4:90:47:5d:1f:12:b1:4e:4b:cf:f8:52:fb:
         5e:16:01:11:da:e0:75:ca:b3:91:16:82:95:bf:06:7f:6d:12:
         75:72:60:7d:b0:17:37:74:bb:04:7d:49:ca:a6:b9:7e:90:c6:
         cf:51:7d:ee:f0:73:87:a6:60:d5:c9:3c:de:27:62:5b:ec:84:
         4c:c1:2a:88:42:36:1c:7d:51:e6:4d:ce:b5:1c:36:b1:10:9a:
         e9:dc:9b:45:b2:88:af:ab:2d:5d:21:70:bd:9b:9f:bc:fb:11:
         40:6b:45:5e:73:fd:d7:4d:52:c2:f2:5f:85:0c:61:61:f8:09:
         04:c4:cc:17:28:b0:67:92:80:e4:b8:2c:42:65:11:4e:06:cf:
         87:25:c6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:36 2023 by rpki-client on console-fra.rpki-client.org