Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/0846bab1-3892-302b-abc3-d7969a1c9764.roa
File:                     0846bab1-3892-302b-abc3-d7969a1c9764.roa (raw, json)
Hash identifier:          T4ccCm0UohBvbFP2+PQx4qavxRoFKTinRqPTqow1/cI=
Subject key identifier:   46:A3:06:60:CA:16:1B:C5:CA:CF:39:D4:A3:A0:21:67:FC:4D:7F:E0
Certificate issuer:       /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial:       010D0C9F4328583AD5E5655D7D797B3B06420E80
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/0846bab1-3892-302b-abc3-d7969a1c9764.roa
Signing time:             Wed 26 Aug 2020 04:00:00 +0000
ROA not before:           Wed 26 Aug 2020 04:00:00 +0000
ROA not after:            Thu 09 Nov 2023 05:00:00 +0000
asID:                     11351
IP address blocks:        104.165.16.0/24 maxlen: 24
                          45.39.178.0/24 maxlen: 24
                          45.39.188.0/24 maxlen: 24
                          45.39.87.0/24 maxlen: 24
                          23.230.215.0/24 maxlen: 24
                          45.38.250.0/24 maxlen: 24
                          45.39.52.0/24 maxlen: 24
                          45.39.171.0/24 maxlen: 24
                          45.39.185.0/24 maxlen: 24
                          45.39.239.0/24 maxlen: 24
                          104.165.67.0/24 maxlen: 24
                          104.252.51.0/24 maxlen: 24
                          104.252.158.0/24 maxlen: 24
                          104.252.240.0/24 maxlen: 24
                          104.253.49.0/24 maxlen: 24
                          107.165.213.0/24 maxlen: 24
                          107.165.230.0/24 maxlen: 24
                          107.186.6.0/24 maxlen: 24
                          107.186.54.0/24 maxlen: 24
                          107.186.65.0/24 maxlen: 24
                          107.186.232.0/24 maxlen: 24
                          107.187.126.0/24 maxlen: 24
                          136.0.68.0/24 maxlen: 24
                          136.0.83.0/24 maxlen: 24
                          136.0.209.0/24 maxlen: 24
                          142.111.143.0/24 maxlen: 24
                          142.252.3.0/24 maxlen: 24
                          142.252.154.0/24 maxlen: 24
                          166.88.78.0/24 maxlen: 24
                          172.120.23.0/24 maxlen: 24
                          172.252.230.0/24 maxlen: 24
                          205.164.42.0/24 maxlen: 24

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:3a:d5:e5:65:5d:7d:79:7b:3b:06:42:0e:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
        Validity
            Not Before: Aug 26 04:00:00 2020 GMT
            Not After : Nov  9 05:00:00 2023 GMT
        Subject: CN=153bdcf8-2d1c-448c-9c50-104f74f077ab
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:84:72:59:b5:fa:30:a2:63:d3:3b:64:38:d3:6c:
                    e4:c7:20:60:4b:81:83:80:56:6e:5d:f9:84:fb:83:
                    96:21:64:58:92:17:b9:2e:0f:c1:23:f0:a1:2e:87:
                    6b:a5:96:fb:af:80:2a:3f:e6:b3:e8:25:4b:49:fa:
                    3e:b7:31:6d:ba:3c:a9:a9:f0:41:d9:38:f6:c9:f8:
                    55:64:c7:49:d9:8c:d7:11:e6:2e:71:47:e8:e2:c2:
                    50:00:92:19:0a:b0:88:8c:c1:f7:f9:d6:43:ae:0e:
                    ee:fc:55:a5:eb:8e:c2:2b:71:34:a2:b3:42:73:c6:
                    5e:5a:64:eb:10:43:1c:3f:39:26:21:c2:7f:5c:5b:
                    65:3f:b8:2f:33:8f:e8:fe:4c:7b:ff:66:29:b2:1a:
                    3b:91:44:ce:ed:ec:8d:82:f6:dd:86:42:c7:3f:39:
                    e9:d6:43:c6:0a:83:74:3d:b1:44:8a:a0:c7:4c:3a:
                    58:5b:6b:8a:13:76:fe:65:5e:71:d8:a8:6c:75:f6:
                    b6:54:f8:5b:92:d3:60:82:b3:f9:ee:7c:8a:bc:41:
                    00:df:49:d0:d6:6f:2a:ef:dd:84:15:cd:ca:d7:07:
                    b4:62:8c:bc:25:a0:10:52:a7:13:5b:94:1b:8d:d6:
                    a9:f2:9d:99:d5:a1:d3:37:ab:9a:85:14:b7:12:fa:
                    eb:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:A3:06:60:CA:16:1B:C5:CA:CF:39:D4:A3:A0:21:67:FC:4D:7F:E0
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/0846bab1-3892-302b-abc3-d7969a1c9764.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl

            X509v3 Authority Key Identifier:
                keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  23.230.215.0/24
                  45.38.250.0/24
                  45.39.52.0/24
                  45.39.87.0/24
                  45.39.171.0/24
                  45.39.178.0/24
                  45.39.185.0/24
                  45.39.188.0/24
                  45.39.239.0/24
                  104.165.16.0/24
                  104.165.67.0/24
                  104.252.51.0/24
                  104.252.158.0/24
                  104.252.240.0/24
                  104.253.49.0/24
                  107.165.213.0/24
                  107.165.230.0/24
                  107.186.6.0/24
                  107.186.54.0/24
                  107.186.65.0/24
                  107.186.232.0/24
                  107.187.126.0/24
                  136.0.68.0/24
                  136.0.83.0/24
                  136.0.209.0/24
                  142.111.143.0/24
                  142.252.3.0/24
                  142.252.154.0/24
                  166.88.78.0/24
                  172.120.23.0/24
                  172.252.230.0/24
                  205.164.42.0/24

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         2d:e2:05:eb:77:ac:48:09:e5:ee:fd:ad:ab:04:00:1b:92:ab:
         bf:05:dd:7d:63:57:2c:8e:13:b5:fb:d4:b3:57:66:b6:e0:5b:
         1c:e5:ef:29:b6:ee:4d:0b:71:40:82:57:26:2a:28:cc:c5:15:
         ad:3b:57:17:d6:b8:33:f2:c0:39:b3:ac:74:16:33:27:1e:ba:
         a1:0f:27:30:4d:f8:80:df:90:51:02:1f:5d:ce:73:9c:84:14:
         fc:5f:5d:9e:6a:9f:0e:5d:da:0d:ff:bb:28:fb:4d:cc:28:be:
         cf:86:27:13:1b:6a:08:47:ec:eb:77:9f:80:32:65:85:be:d0:
         cf:79:97:a6:e7:aa:3b:b3:55:82:ed:f6:b5:bf:75:4f:2f:dc:
         d2:5d:c5:8a:ce:ad:49:49:58:90:6a:06:8c:bc:83:de:08:e1:
         cf:9c:a8:06:16:3d:0e:88:80:11:06:44:0a:9e:91:a5:c5:0d:
         83:27:39:42:ed:b9:24:4a:70:12:4c:f4:b1:ff:df:a4:bb:54:
         6b:ee:e0:e6:b6:2d:60:56:5a:ec:0c:8a:94:09:10:68:f7:d8:
         ed:f9:e5:6b:fe:c0:3f:5d:64:cc:11:bf:b4:45:aa:a2:20:9b:
         5c:38:7d:90:ac:1f:a8:f9:25:01:6d:72:4f:35:ac:0b:47:95:
         4d:66:d3:40
-----BEGIN CERTIFICATE-----
MIIHAjCCBeqgAwIBAgIUAQ0Mn0MoWDrV5WVdfXl7OwZCDoAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMTg4MDAzMjQtNTE1MC00OTgxLWExNDQtYmRiODBlNmJj
YjdjMB4XDTIwMDgyNjA0MDAwMFoXDTIzMTEwOTA1MDAwMFowLzEtMCsGA1UEAxMk
MTUzYmRjZjgtMmQxYy00NDhjLTljNTAtMTA0Zjc0ZjA3N2FiMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhHJZtfowomPTO2Q402zkxyBgS4GDgFZuXfmE
+4OWIWRYkhe5Lg/BI/ChLodrpZb7r4AqP+az6CVLSfo+tzFtujypqfBB2Tj2yfhV
ZMdJ2YzXEeYucUfo4sJQAJIZCrCIjMH3+dZDrg7u/FWl647CK3E0orNCc8ZeWmTr
EEMcPzkmIcJ/XFtlP7gvM4/o/kx7/2Ypsho7kUTO7eyNgvbdhkLHPznp1kPGCoN0
PbFEiqDHTDpYW2uKE3b+ZV5x2Khsdfa2VPhbktNggrP57nyKvEEA30nQ1m8q792E
Fc3K1we0Yoy8JaAQUqcTW5Qbjdap8p2Z1aHTN6uahRS3EvrrlQIDAQABo4IEFDCC
BBAwHQYDVR0OBBYEFEajBmDKFhvFys851KOgIWf8TX/gMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8xODgw
MDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4MGU2YmNiN2MvMDg0NmJhYjEtMzg5Mi0z
MDJiLWFiYzMtZDc5NjlhMWM5NzY0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m
YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMTg4MDAzMjQtNTE1MC00OTgxLWEx
NDQtYmRiODBlNmJjYjdjLzE4ODAwMzI0LTUxNTAtNDk4MS1hMTQ0LWJkYjgwZTZi
Y2I3Yy5jcmwwHwYDVR0jBBgwFoAUEWtHMzbZ6J21lhte76NAIq7eabYwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw
Zi1iNzc4LWQyMDRjZmNkOTlhOC8xODgwMDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4
MGU2YmNiN2MuY2VyMIHdBggrBgEFBQcBBwEB/wSBzTCByjCBxwQCAAEwgcADBAAX
5tcDBAAtJvoDBAAtJzQDBAAtJ1cDBAAtJ6sDBAAtJ7IDBAAtJ7kDBAAtJ7wDBAAt
J+8DBABopRADBABopUMDBABo/DMDBABo/J4DBABo/PADBABo/TEDBABrpdUDBABr
peYDBABrugYDBABrujYDBABrukEDBABruugDBABru34DBACIAEQDBACIAFMDBACI
ANEDBACOb48DBACO/AMDBACO/JoDBACmWE4DBACseBcDBACs/OYDBADNpCowVAYD
VR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3
dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsF
AAOCAQEALeIF63esSAnl7v2tqwQAG5KrvwXdfWNXLI4TtfvUs1dmtuBbHOXvKbbu
TQtxQIJXJioozMUVrTtXF9a4M/LAObOsdBYzJx66oQ8nME34gN+QUQIfXc5znIQU
/F9dnmqfDl3aDf+7KPtNzCi+z4YnExtqCEfs63efgDJlhb7Qz3mXpueqO7NVgu32
tb91Ty/c0l3Fis6tSUlYkGoGjLyD3gjhz5yoBhY9DoiAEQZECp6RpcUNgyc5Qu25
JEpwEkz0sf/fpLtUa+7g5rYtYFZa7AyKlAkQaPfY7fnla/7AP11kzBG/tEWqoiCb
XDh9kKwfqPklAW1yTzWsC0eVTWbTQA==
-----END CERTIFICATE-----
Generated at Fri Sep 8 17:12:11 2023 by rpki-client on console-ams.rpki-client.org