Route Origin Authorization 

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/56a23346-5a0e-4976-9b33-3b4d1d90cfa3/64adb5be-cfaf-3b0b-8174-d37827b8d31c.roa
File:                     64adb5be-cfaf-3b0b-8174-d37827b8d31c.roa (raw, json)
Hash identifier:          OmrhyuWJyB8/OmYHjS+PtywDwcvuEts+GkZfDR8ZvWY=
Subject key identifier:   26:31:9D:73:F2:42:CA:08:59:AC:55:37:CB:C4:F5:03:BD:6B:31:6A
Certificate issuer:       /CN=56a23346-5a0e-4976-9b33-3b4d1d90cfa3
Certificate serial:       010D0C9F43285844A75A147E7EE7D0DF22D3DB50
Authority key identifier: BF:20:32:E5:7B:D7:81:C7:C0:B0:29:98:B3:33:55:D1:62:33:E8:99
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/56a23346-5a0e-4976-9b33-3b4d1d90cfa3.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/56a23346-5a0e-4976-9b33-3b4d1d90cfa3/64adb5be-cfaf-3b0b-8174-d37827b8d31c.roa
Signing time:             Tue 23 Jan 2024 23:40:38 +0000
ROA not before:           Tue 23 Jan 2024 23:40:38 +0000
ROA not after:            Mon 22 Apr 2024 22:40:38 +0000
asID:                     22765
IP address blocks:        72.20.192.0/22 maxlen: 24

Validation:               Failed, certificate revoked on Tue 30 Jan 2024 16:56:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:44:a7:5a:14:7e:7e:e7:d0:df:22:d3:db:50
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=56a23346-5a0e-4976-9b33-3b4d1d90cfa3
        Validity
            Not Before: Jan 23 23:40:38 2024 GMT
            Not After : Apr 22 22:40:38 2024 GMT
        Subject: CN=e8701c18-a38c-4c6b-b79c-97a9a8d82a55
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:0c:2a:bf:72:2d:85:c3:9f:a9:00:32:7f:fa:
                    93:19:ea:a7:a6:5b:22:79:32:6f:55:7c:1d:61:8a:
                    f7:82:9d:90:80:b1:94:84:22:5f:16:0e:3c:e4:fb:
                    4a:e5:c7:4b:03:5c:8b:71:e3:f6:27:5a:86:0d:fe:
                    af:17:49:11:d3:af:26:97:78:9c:7f:3e:de:94:61:
                    d6:b6:72:13:7a:24:8a:1f:f9:7e:ac:4e:a2:6b:75:
                    91:0c:53:0f:18:55:3a:30:22:4e:62:00:76:9a:b6:
                    7d:8e:e0:75:3a:0f:c8:c1:3b:f5:8c:2a:33:1a:bd:
                    7a:c0:45:0f:33:9b:4d:10:4e:53:fa:23:2d:37:98:
                    35:05:b5:c9:e3:63:a7:04:a2:01:65:56:ad:d4:33:
                    a4:ed:08:f8:7f:6d:9e:03:50:f9:54:43:18:1a:7d:
                    3a:2d:1b:f5:30:09:35:f0:4a:56:44:c7:9b:47:58:
                    ce:d7:30:c2:b7:a8:aa:e8:6a:60:74:74:a7:61:da:
                    82:b1:39:70:b2:7a:e4:b9:05:7c:f1:8c:f7:b3:7a:
                    5a:ec:52:9d:64:94:b3:ca:d9:22:30:d4:be:1e:31:
                    ae:44:62:7b:fb:fd:ad:36:28:17:2f:eb:81:b7:6c:
                    9d:d4:4a:6f:f8:d3:57:50:f7:24:0e:cd:1c:d0:d9:
                    2a:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:31:9D:73:F2:42:CA:08:59:AC:55:37:CB:C4:F5:03:BD:6B:31:6A
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/56a23346-5a0e-4976-9b33-3b4d1d90cfa3/64adb5be-cfaf-3b0b-8174-d37827b8d31c.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/56a23346-5a0e-4976-9b33-3b4d1d90cfa3/56a23346-5a0e-4976-9b33-3b4d1d90cfa3.crl

            X509v3 Authority Key Identifier:
                keyid:BF:20:32:E5:7B:D7:81:C7:C0:B0:29:98:B3:33:55:D1:62:33:E8:99

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/56a23346-5a0e-4976-9b33-3b4d1d90cfa3.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  72.20.192.0/22

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         1b:08:9d:40:a1:ef:b8:50:02:db:d0:8a:6a:de:c3:47:20:9c:
         e5:b2:fe:43:99:24:f7:3f:27:38:c5:63:52:6e:d8:de:df:91:
         ba:33:e9:55:33:af:5f:07:40:9a:e9:cc:37:8e:a1:67:3d:c0:
         d9:d5:b8:0e:86:a0:df:75:63:14:f0:d0:ab:5f:65:32:e6:2c:
         ec:dc:b4:4f:1b:90:6d:ed:ca:90:c8:b3:8a:9d:e9:9e:6f:05:
         4b:f4:fd:f9:ef:2b:24:92:b5:90:96:5a:8b:c0:ae:36:85:f5:
         46:a4:a1:1f:94:65:39:36:da:2c:c7:4e:bb:30:02:80:8e:b9:
         a7:77:44:87:c8:f3:ba:43:b1:7b:95:27:a7:4c:38:b4:64:10:
         f6:1f:b1:c0:83:d0:04:02:0a:c3:45:6a:55:93:fe:2f:fa:7d:
         1b:f3:d9:c5:a8:27:01:b8:87:20:2e:93:5d:bd:0c:1d:26:36:
         aa:48:c1:48:6e:5e:f5:98:75:da:c3:3a:f2:b2:5f:07:11:cc:
         22:78:20:1c:c8:63:86:c6:11:ff:b4:43:56:b4:0d:29:73:dd:
         08:61:88:c0:a1:e2:82:19:ae:35:64:23:bf:a5:a9:0b:e0:f8:
         6d:ef:ad:bf:8c:f9:1d:4b:81:8f:95:33:90:e3:92:40:6f:fd:
         fc:43:cf:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 30 20:09:05 2024 by rpki-client on console-ams.rpki-client.org