Route Origin Authorization 

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/58520faa-6ff0-354b-bdd0-ac1e3486fbec.roa
File:                     58520faa-6ff0-354b-bdd0-ac1e3486fbec.roa (raw, json)
Hash identifier:          QMZFe8dm5Lk4gw6pkYQSMVftYYwOI0RaHuvI+yFq7X4=
Subject key identifier:   9E:02:AD:D8:CF:EF:37:0A:47:A2:B7:BD:C7:2D:BA:DA:39:1A:71:76
Certificate issuer:       /CN=66dea2a5-837d-46d8-8f8e-9447ece20c09
Certificate serial:       010D0C9F43285844F4655C55D29BB43E21017980
Authority key identifier: C3:86:AD:8B:F4:19:4B:35:94:24:9B:90:BA:9D:80:11:C2:08:71:C9
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/58520faa-6ff0-354b-bdd0-ac1e3486fbec.roa
Signing time:             Tue 20 Feb 2024 14:00:31 +0000
ROA not before:           Tue 20 Feb 2024 14:00:31 +0000
ROA not after:            Mon 20 May 2024 13:00:31 +0000
asID:                     11798
IP address blocks:        166.1.20.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 20 Mar 2024 22:46:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:44:f4:65:5c:55:d2:9b:b4:3e:21:01:79:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=66dea2a5-837d-46d8-8f8e-9447ece20c09
        Validity
            Not Before: Feb 20 14:00:31 2024 GMT
            Not After : May 20 13:00:31 2024 GMT
        Subject: CN=014b9b7e-7c1c-459c-a90d-6308bd4ee9dd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:76:ba:66:69:ae:c6:5f:00:62:91:5b:8e:f8:
                    b4:3c:8d:d6:04:f4:af:90:b9:60:59:f9:6b:1c:7f:
                    9e:d8:a6:ab:26:df:ae:00:f6:af:3f:64:c9:54:73:
                    80:ae:34:44:be:a1:9d:88:f4:30:48:8e:2f:b6:fe:
                    19:45:7c:60:bb:87:58:be:7e:47:a7:d9:7b:15:ab:
                    a8:a4:4f:8b:3d:e7:8f:35:de:8d:a8:8a:2c:41:b2:
                    f3:d0:42:91:11:6c:b0:17:bd:1c:89:42:84:1c:eb:
                    14:c7:dc:a3:de:fd:c3:d0:ef:66:69:2b:63:a8:04:
                    b6:e7:9f:ef:c3:2f:01:81:1e:47:c4:db:8a:0f:e8:
                    78:6f:2f:a7:31:1b:f2:38:9f:d2:b9:8b:3a:c0:44:
                    f9:c1:9f:ae:1c:0f:02:f2:aa:8f:0b:16:d3:b7:e4:
                    62:5d:f8:59:d5:0e:22:96:5c:a2:aa:3f:0e:46:66:
                    70:75:f7:b3:41:00:79:73:95:49:ba:5b:c8:75:71:
                    d9:8c:74:98:ca:d9:eb:6f:df:c1:a9:c9:ff:1e:3b:
                    05:07:a4:e9:f6:ba:2e:f1:a9:51:44:89:c5:42:ca:
                    23:22:c6:f4:b9:a9:9e:04:aa:92:83:07:16:57:ff:
                    ea:5f:9f:a1:aa:29:b2:06:ae:44:89:27:d0:ee:07:
                    b8:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:02:AD:D8:CF:EF:37:0A:47:A2:B7:BD:C7:2D:BA:DA:39:1A:71:76
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/58520faa-6ff0-354b-bdd0-ac1e3486fbec.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/66dea2a5-837d-46d8-8f8e-9447ece20c09.crl

            X509v3 Authority Key Identifier:
                keyid:C3:86:AD:8B:F4:19:4B:35:94:24:9B:90:BA:9D:80:11:C2:08:71:C9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  166.1.20.0/24

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         af:92:d3:22:1d:c5:ee:5a:17:a2:12:91:56:d1:72:07:a7:17:
         e9:f8:e4:59:de:63:6b:62:a6:db:28:dc:ee:b9:12:e8:e8:61:
         61:86:42:12:50:d7:78:54:e8:fb:d3:65:a8:f0:85:dd:29:e7:
         45:16:1e:fd:81:be:a2:dc:f3:bd:52:9d:d2:a4:2a:18:2f:82:
         a6:94:39:ee:f3:ab:bf:8b:1d:bc:c5:41:9d:9f:03:16:98:bc:
         75:75:76:ba:53:2e:ef:b2:c2:75:99:47:24:08:9f:1e:b7:42:
         7a:1e:04:33:28:57:29:1f:3e:40:fb:d3:b1:cd:48:55:b5:b2:
         f2:67:15:28:fb:b5:82:f1:ca:f5:5b:d1:b8:bb:0d:6f:89:a7:
         1a:73:a5:9c:b2:a6:b7:bd:be:c0:b3:22:fa:56:50:0f:58:46:
         76:50:30:05:2d:f7:cc:36:fa:34:9e:a3:ca:d3:f4:1e:4d:75:
         50:d0:e1:60:49:14:6d:4b:87:13:eb:f7:af:cf:03:07:65:a4:
         52:fe:5b:fb:33:5c:28:03:02:e1:8b:7c:d5:57:34:37:65:0e:
         c5:42:80:14:04:a0:27:ad:27:d4:b3:68:04:84:a2:53:3b:42:
         bd:6d:d7:2b:f2:11:92:4a:d4:b1:0e:d7:94:06:8b:71:af:82:
         76:fa:f8:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 20 23:37:46 2024 by rpki-client on console-fra.rpki-client.org