Route Origin Authorization 

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8/156a65e1-46fe-3e70-b727-66bb929af592.roa
File:                     156a65e1-46fe-3e70-b727-66bb929af592.roa (raw, json)
Hash identifier:          cq/362RZU1zMhaWP11miH6VHv9iE43M3dw179DSvmPw=
Subject key identifier:   87:7B:ED:38:24:E2:8C:B4:8C:00:04:F3:93:6C:42:84:DC:05:8C:B8
Certificate issuer:       /CN=5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8
Certificate serial:       010D0C9F43285843A8382A81C38F214BCD22C5B0
Authority key identifier: 79:3F:09:5A:31:A3:25:A4:40:91:6E:51:4D:CD:AD:D9:75:0B:A8:B4
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8/156a65e1-46fe-3e70-b727-66bb929af592.roa
Signing time:             Tue 24 Oct 2023 14:21:10 +0000
ROA not before:           Tue 24 Oct 2023 14:21:10 +0000
ROA not after:            Mon 22 Jan 2024 15:21:10 +0000
asID:                     9009
IP address blocks:        172.111.224.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:43:a8:38:2a:81:c3:8f:21:4b:cd:22:c5:b0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8
        Validity
            Not Before: Oct 24 14:21:10 2023 GMT
            Not After : Jan 22 15:21:10 2024 GMT
        Subject: CN=ae0a17b0-1b69-4b75-9478-dec21a9d9874
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:25:a8:42:4a:92:0e:71:d4:16:59:c8:3b:a4:
                    a2:01:23:34:ca:0d:ec:ef:fa:32:e6:7c:a3:2a:08:
                    76:f4:92:f8:6d:bb:3c:f4:02:41:80:15:8b:dd:90:
                    9f:03:eb:5f:4b:40:e6:4a:9f:ab:b0:68:79:be:65:
                    a8:b1:af:da:f9:60:e4:82:57:53:aa:cc:58:49:cc:
                    99:18:ad:c8:d2:4d:f0:1b:ba:c4:a9:8e:ec:3e:a2:
                    ef:f9:7d:86:24:49:6d:6d:db:2e:23:a0:45:62:59:
                    45:1c:0f:79:5b:ca:3e:35:d4:87:79:f5:33:03:57:
                    45:63:6f:4e:34:14:2c:06:67:04:60:01:13:6d:5f:
                    7c:79:de:cc:1e:6b:97:81:a0:ba:23:d8:47:f4:88:
                    60:40:fd:58:f8:cc:05:cf:ef:d9:26:0d:8c:13:e9:
                    d8:9b:dc:5c:23:66:4f:5b:07:99:62:cc:4e:62:05:
                    6e:14:45:09:d2:15:60:a6:ac:73:79:e4:bb:96:03:
                    e9:5f:31:e4:45:47:62:5c:4a:f7:bd:c1:b2:b3:93:
                    68:01:bf:1c:2b:42:2e:c1:3a:9c:60:f3:c2:0c:b2:
                    41:6f:c7:a5:ad:62:30:7d:b7:29:a1:05:52:24:e1:
                    24:e2:12:28:f1:ef:6b:50:fc:2d:b1:28:96:a8:27:
                    1d:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:7B:ED:38:24:E2:8C:B4:8C:00:04:F3:93:6C:42:84:DC:05:8C:B8
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8/156a65e1-46fe-3e70-b727-66bb929af592.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8.crl

            X509v3 Authority Key Identifier:
                keyid:79:3F:09:5A:31:A3:25:A4:40:91:6E:51:4D:CD:AD:D9:75:0B:A8:B4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  172.111.224.0/24

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         38:40:9e:5f:d4:6a:c7:4c:5a:01:af:3f:d0:0d:3c:60:9d:3c:
         ee:ec:d2:aa:f1:1c:67:a9:7b:3c:41:b3:51:84:3f:b4:aa:5b:
         44:37:d6:cb:1f:0e:71:d0:ae:ab:6d:65:6b:4f:02:36:25:f7:
         5c:6f:4e:a1:03:4d:ea:91:88:07:22:86:ff:db:d5:b9:55:05:
         2a:3b:c7:28:15:bf:72:05:0d:6c:2b:9b:7c:a6:84:17:3a:47:
         82:79:d3:3d:9a:a4:9a:e7:fa:73:d4:32:67:66:22:09:11:03:
         21:f1:6d:cf:cd:ba:eb:da:a4:c3:2a:dd:3f:20:3d:b1:dd:de:
         b1:12:02:64:fd:fa:87:ea:75:43:c4:0e:e1:d7:e9:70:52:e1:
         bb:b4:ef:70:00:c8:20:c3:34:71:78:3d:2e:d1:8d:b6:ac:4d:
         fd:30:9a:2c:23:22:c0:a6:0b:70:d8:67:25:9f:b0:a3:b6:e9:
         c5:16:0d:6f:9a:6a:ee:bf:9d:98:ed:51:8d:08:0b:f8:05:75:
         c4:28:45:a3:87:68:08:44:c2:b7:4d:17:7b:87:00:49:76:eb:
         07:6a:f7:3a:8d:06:1f:c2:84:c6:11:55:f4:fa:e7:3f:cd:b9:
         1c:f0:cc:16:fd:c4:59:af:63:f5:87:d2:97:10:ed:8c:63:00:
         09:09:89:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:09:58 2024 by rpki-client on console-fra.rpki-client.org