Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/63817736-7e5e-4740-8ee1-ac6f2317f08d/71143635-9833-37f3-9cf1-571e77e93ca0.roa
File:                     71143635-9833-37f3-9cf1-571e77e93ca0.roa (download)
Hash identifier:          ltH8n+l3LiuWL1J5dkaX+R179nmWxaPL3LNRyKMzItI=
Subject key identifier:   49:44:67:3E:BD:00:FA:84:21:AE:20:0F:EF:E0:A9:D4:AA:7E:8F:52
Certificate issuer:       /CN=63817736-7e5e-4740-8ee1-ac6f2317f08d
Certificate serial:       010D0C9F4328583D8FA12B22CFE2797CE76B4600
Authority key identifier: B5:F4:FF:81:CB:E0:A0:26:F5:12:35:A7:B3:44:73:D0:89:4F:FC:77
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/63817736-7e5e-4740-8ee1-ac6f2317f08d.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/63817736-7e5e-4740-8ee1-ac6f2317f08d/71143635-9833-37f3-9cf1-571e77e93ca0.roa
ROA valid until:          Sep 25 04:00:00 2028 GMT
asID:                     20473
IP address blocks:
    1: 67.219.96.0/20 maxlen: 24
    2: 137.220.32.0/19 maxlen: 24
    3: 65.20.64.0/18 maxlen: 24
    4: 64.176.0.0/15 maxlen: 24
    5: 66.135.0.0/19 maxlen: 24
    6: 139.84.128.0/17 maxlen: 24
    7: 70.34.192.0/19 maxlen: 24
    8: 70.34.240.0/20 maxlen: 24
    9: 208.72.152.0/22 maxlen: 24
   10: 208.76.220.0/22 maxlen: 24
   11: 208.83.232.0/21 maxlen: 24
   12: 208.85.16.0/21 maxlen: 24
   13: 216.238.64.0/18 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:3d:8f:a1:2b:22:cf:e2:79:7c:e7:6b:46:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=63817736-7e5e-4740-8ee1-ac6f2317f08d
        Validity
            Not Before: Apr 12 04:00:00 2022 GMT
            Not After : Sep 25 04:00:00 2028 GMT
        Subject: CN=e729a885-5e9d-4e00-ad8c-b688623048ad
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:d4:11:71:58:c6:33:b6:d4:37:0d:0a:3d:77:
                    b3:6e:67:8c:75:c5:83:53:ab:0a:2e:6f:fc:a6:ee:
                    9b:45:aa:64:1a:bd:4c:e2:e2:2c:63:83:8c:ca:30:
                    a9:f8:85:4b:cb:85:10:9f:79:35:94:de:3d:8b:8a:
                    fc:79:53:ba:5b:b4:7d:d2:77:97:69:a7:30:f2:f6:
                    ea:5a:f6:b6:36:2b:57:e4:ef:e4:d0:31:87:ab:94:
                    b9:c9:2a:63:98:23:80:ab:c7:6e:d5:5f:71:f6:0e:
                    c5:d4:b7:cf:e1:04:cd:25:7e:91:af:49:e6:44:24:
                    f8:4d:0e:88:fe:c1:2f:32:a0:a9:23:04:13:d2:10:
                    52:2a:1a:fa:96:32:dd:6b:3f:d4:87:8a:a2:b7:65:
                    3b:4f:74:27:30:f5:37:ef:a9:58:6c:a3:5b:6a:07:
                    f9:4f:21:d3:b3:79:d9:1a:4e:cc:2b:a6:2c:15:48:
                    4f:86:78:38:44:a1:53:f6:d8:2c:fe:46:d6:bd:d3:
                    0a:2d:7f:b2:b7:97:9a:37:8c:e5:bd:75:5b:b4:db:
                    02:8e:35:3a:70:e3:0e:88:b0:2e:86:96:45:03:d9:
                    1d:f0:e4:a4:36:91:52:18:9f:dc:7c:df:ce:f3:c3:
                    bd:e1:20:d4:4a:18:f0:43:c4:a0:f3:d6:39:b8:1b:
                    46:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                49:44:67:3E:BD:00:FA:84:21:AE:20:0F:EF:E0:A9:D4:AA:7E:8F:52
            Subject Information Access: 
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/63817736-7e5e-4740-8ee1-ac6f2317f08d/71143635-9833-37f3-9cf1-571e77e93ca0.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/63817736-7e5e-4740-8ee1-ac6f2317f08d/63817736-7e5e-4740-8ee1-ac6f2317f08d.crl

            X509v3 Authority Key Identifier: 
                keyid:B5:F4:FF:81:CB:E0:A0:26:F5:12:35:A7:B3:44:73:D0:89:4F:FC:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/63817736-7e5e-4740-8ee1-ac6f2317f08d.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  64.176.0.0/15
                  65.20.64.0/18
                  66.135.0.0/19
                  67.219.96.0/20
                  70.34.192.0/19
                  70.34.240.0/20
                  137.220.32.0/19
                  139.84.128.0/17
                  208.72.152.0/22
                  208.76.220.0/22
                  208.83.232.0/21
                  208.85.16.0/21
                  216.238.64.0/18

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         05:58:e5:8e:70:14:00:b5:46:00:1a:e1:36:ae:b2:60:0a:4e:
         28:39:40:01:59:3f:f0:2a:b7:12:d2:05:15:eb:43:4e:78:38:
         5d:f3:dd:d3:91:62:9c:96:24:be:38:b6:58:53:fe:c8:cc:64:
         ca:18:cc:e1:73:6c:a3:2b:b7:f9:49:cc:d0:83:63:c8:93:d5:
         b9:91:a8:1d:65:71:a8:1a:cc:d6:83:7c:8f:e0:b7:3d:6d:2d:
         81:95:e7:db:d3:2f:7a:ce:34:62:30:1e:4c:d2:f2:a7:5d:26:
         af:ef:c1:4a:1b:46:3a:f4:1e:c7:5a:44:37:28:82:2b:96:99:
         0a:ed:96:86:91:1b:91:50:d3:cf:aa:f4:7a:0f:ed:41:43:38:
         7a:1e:c6:fb:8d:0f:87:ee:ea:4d:7a:b2:24:15:51:96:e8:f3:
         46:b9:2f:0a:2a:f5:67:0e:3b:a6:ce:c1:f6:4a:43:7b:04:66:
         cf:fb:00:86:df:04:4a:27:af:13:24:af:4c:d0:75:2a:0e:98:
         4c:12:33:3b:c1:77:70:0d:31:d1:ce:e4:2b:8f:62:00:64:7d:
         55:44:18:9f:bb:c5:1e:c7:d7:61:9b:d7:ce:0d:37:7a:a8:92:
         48:19:2b:3e:55:8b:4a:45:36:b0:1c:cb:19:5d:53:3b:2d:c0:
         66:4c:db:90
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Dec 9 02:12:06 2022 by rpki-client.