Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/0d9042d3-9b76-3ff5-a1e3-900db67cac09.roa
File:                     0d9042d3-9b76-3ff5-a1e3-900db67cac09.roa (download)
Hash identifier:          sPDAGt40URXg+zQzv6RqprWtn7SRvcwneykBbSQXr0w=
Subject key identifier:   47:78:05:64:3C:76:30:7E:F4:35:B0:21:B0:14:1A:15:02:50:7A:92
Certificate issuer:       /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial:       010D0C9F4328583CB69E8664968D1B3C321BFA00
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/0d9042d3-9b76-3ff5-a1e3-900db67cac09.roa
ROA valid until:          Apr 29 04:00:00 2024 GMT
asID:                     399114
IP address blocks:
    1: 107.165.224.0/24 maxlen: 24
    2: 107.165.176.0/24 maxlen: 24
    3: 107.165.219.0/24 maxlen: 24
    4: 107.164.213.0/24 maxlen: 24
    5: 107.164.146.0/24 maxlen: 24
    6: 107.164.151.0/24 maxlen: 24
    7: 142.111.5.0/24 maxlen: 24
    8: 142.111.187.0/24 maxlen: 24
    9: 107.164.207.0/24 maxlen: 24
   10: 107.165.136.0/24 maxlen: 24
   11: 107.165.182.0/24 maxlen: 24
   12: 107.165.221.0/24 maxlen: 24
   13: 107.165.253.0/24 maxlen: 24
   14: 107.165.254.0/24 maxlen: 24
   15: 107.186.0.0/24 maxlen: 24
   16: 107.186.29.0/24 maxlen: 24
   17: 107.186.86.0/24 maxlen: 24
   18: 107.186.157.0/24 maxlen: 24
   19: 107.186.194.0/24 maxlen: 24
   20: 107.186.196.0/24 maxlen: 24
   21: 107.186.203.0/24 maxlen: 24
   22: 107.187.45.0/24 maxlen: 24
   23: 107.187.108.0/24 maxlen: 24
   24: 136.0.78.0/24 maxlen: 24
   25: 136.0.88.0/24 maxlen: 24
   26: 136.0.92.0/24 maxlen: 24
   27: 136.0.108.0/24 maxlen: 24
   28: 136.0.199.0/24 maxlen: 24
   29: 136.0.206.0/24 maxlen: 24
   30: 136.0.241.0/24 maxlen: 24
   31: 136.0.248.0/24 maxlen: 24
   32: 136.0.251.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:3c:b6:9e:86:64:96:8d:1b:3c:32:1b:fa:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
        Validity
            Not Before: Aug 26 04:00:00 2020 GMT
            Not After : Apr 29 04:00:00 2024 GMT
        Subject: CN=a6ec60e5-a607-4076-9f30-f31bbb896eb6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:86:80:73:fb:23:cc:7b:20:a0:7d:16:dd:20:b4:
                    ec:76:52:cc:04:e9:ac:34:c3:e1:8d:ec:ff:db:1c:
                    86:97:5d:fb:57:fd:38:75:a3:50:d7:0a:d4:eb:62:
                    73:02:4a:a3:11:94:66:07:47:71:56:81:7b:89:45:
                    81:2d:a9:33:d4:e1:d1:71:94:86:e5:ae:c5:ec:c2:
                    c5:f9:42:f2:e5:a9:4d:e5:07:e3:b6:c6:a3:cd:94:
                    20:e3:99:2f:b2:79:ac:68:51:f1:13:e0:44:24:79:
                    89:39:24:61:13:db:27:51:4d:25:8b:20:1b:13:62:
                    09:a2:54:d5:4f:fe:92:5e:4e:6f:ab:89:8e:ee:cd:
                    9b:91:72:31:d6:f3:70:e5:27:08:03:46:07:a3:75:
                    5c:98:e3:cd:80:95:09:60:96:a1:9f:d2:4f:5e:cd:
                    d3:dd:5d:d5:9f:be:c6:4b:37:9d:df:19:23:23:6a:
                    b8:08:a8:f2:0f:6d:67:8b:59:f3:77:f9:57:e0:16:
                    49:3f:a5:b2:63:2e:a6:ec:e1:4c:63:73:56:eb:3c:
                    6b:94:46:84:e8:ca:41:c4:0c:09:b6:d7:30:e4:c0:
                    29:d0:ed:cd:95:6c:a9:1c:55:f9:04:4c:fb:67:6d:
                    6b:40:5f:b5:d4:93:5c:ed:c0:0d:a2:d5:f4:99:70:
                    ca:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                47:78:05:64:3C:76:30:7E:F4:35:B0:21:B0:14:1A:15:02:50:7A:92
            Subject Information Access: 
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/0d9042d3-9b76-3ff5-a1e3-900db67cac09.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl

            X509v3 Authority Key Identifier: 
                keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  107.164.146.0/24
                  107.164.151.0/24
                  107.164.207.0/24
                  107.164.213.0/24
                  107.165.136.0/24
                  107.165.176.0/24
                  107.165.182.0/24
                  107.165.219.0/24
                  107.165.221.0/24
                  107.165.224.0/24
                  107.165.253.0-107.165.254.255
                  107.186.0.0/24
                  107.186.29.0/24
                  107.186.86.0/24
                  107.186.157.0/24
                  107.186.194.0/24
                  107.186.196.0/24
                  107.186.203.0/24
                  107.187.45.0/24
                  107.187.108.0/24
                  136.0.78.0/24
                  136.0.88.0/24
                  136.0.92.0/24
                  136.0.108.0/24
                  136.0.199.0/24
                  136.0.206.0/24
                  136.0.241.0/24
                  136.0.248.0/24
                  136.0.251.0/24
                  142.111.5.0/24
                  142.111.187.0/24

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         8e:36:1c:4d:ec:f3:f8:54:cd:a2:bc:38:da:47:88:fa:ec:7c:
         48:98:a9:40:fa:d7:53:a1:2f:d5:8a:b1:d3:84:c1:83:1e:7d:
         da:8e:3b:61:b9:d1:7f:9f:9b:d5:99:71:75:38:3c:7c:b5:c8:
         9c:a5:bc:fa:4e:1c:cc:73:d0:ff:e2:45:af:1b:b8:1a:96:cb:
         fe:27:c4:2a:b2:05:30:8c:11:f5:83:74:c6:0e:30:ae:88:c2:
         c9:df:b2:4f:94:f6:0d:28:df:62:0b:90:93:10:b6:c5:03:35:
         a0:28:5a:f8:ac:ee:1f:77:45:55:9e:48:3d:3b:a5:39:98:31:
         d3:59:47:55:08:96:ee:7d:fa:14:48:69:d4:43:93:2f:5c:6a:
         60:e6:43:3d:1c:2c:76:ff:95:fd:0c:5f:f2:8b:e4:cc:c8:97:
         5b:3a:16:de:b3:1b:f1:28:98:c9:ae:1e:12:42:70:43:bd:ee:
         a8:e2:63:d6:df:66:2d:9c:e6:c3:ad:97:f8:69:28:3b:de:53:
         8e:d2:86:1c:c6:3c:c6:7b:76:38:56:c2:4a:88:3c:48:82:df:
         51:19:99:20:81:49:2b:20:f1:c6:c1:59:ee:69:c4:04:99:b9:
         3a:05:24:72:ff:12:ce:2a:2e:59:19:05:e5:11:27:d8:d1:27:
         0e:96:d9:77
-----BEGIN CERTIFICATE-----
MIIHBDCCBeygAwIBAgIUAQ0Mn0MoWDy2noZklo0bPDIb+gAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMTg4MDAzMjQtNTE1MC00OTgxLWExNDQtYmRiODBlNmJj
YjdjMB4XDTIwMDgyNjA0MDAwMFoXDTI0MDQyOTA0MDAwMFowLzEtMCsGA1UEAxMk
YTZlYzYwZTUtYTYwNy00MDc2LTlmMzAtZjMxYmJiODk2ZWI2MIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhoBz+yPMeyCgfRbdILTsdlLMBOmsNMPhjez/
2xyGl137V/04daNQ1wrU62JzAkqjEZRmB0dxVoF7iUWBLakz1OHRcZSG5a7F7MLF
+ULy5alN5QfjtsajzZQg45kvsnmsaFHxE+BEJHmJOSRhE9snUU0liyAbE2IJolTV
T/6SXk5vq4mO7s2bkXIx1vNw5ScIA0YHo3VcmOPNgJUJYJahn9JPXs3T3V3Vn77G
Szed3xkjI2q4CKjyD21ni1nzd/lX4BZJP6WyYy6m7OFMY3NW6zxrlEaE6MpBxAwJ
ttcw5MAp0O3NlWypHFX5BEz7Z21rQF+11JNc7cANotX0mXDKrwIDAQABo4IEFjCC
BBIwHQYDVR0OBBYEFEd4BWQ8djB+9DWwIbAUGhUCUHqSMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8xODgw
MDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4MGU2YmNiN2MvMGQ5MDQyZDMtOWI3Ni0z
ZmY1LWExZTMtOTAwZGI2N2NhYzA5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m
YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMTg4MDAzMjQtNTE1MC00OTgxLWEx
NDQtYmRiODBlNmJjYjdjLzE4ODAwMzI0LTUxNTAtNDk4MS1hMTQ0LWJkYjgwZTZi
Y2I3Yy5jcmwwHwYDVR0jBBgwFoAUEWtHMzbZ6J21lhte76NAIq7eabYwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw
Zi1iNzc4LWQyMDRjZmNkOTlhOC8xODgwMDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4
MGU2YmNiN2MuY2VyMIHfBggrBgEFBQcBBwEB/wSBzzCBzDCByQQCAAEwgcIDBABr
pJIDBABrpJcDBABrpM8DBABrpNUDBABrpYgDBABrpbADBABrpbYDBABrpdsDBABr
pd0DBABrpeAwDAMEAGul/QMEAGul/gMEAGu6AAMEAGu6HQMEAGu6VgMEAGu6nQME
AGu6wgMEAGu6xAMEAGu6ywMEAGu7LQMEAGu7bAMEAIgATgMEAIgAWAMEAIgAXAME
AIgAbAMEAIgAxwMEAIgAzgMEAIgA8QMEAIgA+AMEAIgA+wMEAI5vBQMEAI5vuzBU
BgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8v
d3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEB
CwUAA4IBAQCONhxN7PP4VM2ivDjaR4j67HxImKlA+tdToS/VirHThMGDHn3ajjth
udF/n5vVmXF1ODx8tcicpbz6ThzMc9D/4kWvG7galsv+J8QqsgUwjBH1g3TGDjCu
iMLJ37JPlPYNKN9iC5CTELbFAzWgKFr4rO4fd0VVnkg9O6U5mDHTWUdVCJbuffoU
SGnUQ5MvXGpg5kM9HCx2/5X9DF/yi+TMyJdbOhbesxvxKJjJrh4SQnBDve6o4mPW
32YtnObDrZf4aSg73lOO0oYcxjzGe3Y4VsJKiDxIgt9RGZkggUkrIPHGwVnuacQE
mbk6BSRy/xLOKi5ZGQXlESfY0ScOltl3
-----END CERTIFICATE-----
Generated at Wed Dec 7 18:02:01 2022 by rpki-client.