Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/4b538b6b-469b-3b66-8614-02b963afa000.roa
File:                     4b538b6b-469b-3b66-8614-02b963afa000.roa (raw, json)
Hash identifier:          ehGrWtwfqMqrkzxeQAgwUGIGelNGipJNSUGQ2g4c5u4=
Subject key identifier:   C3:1A:19:70:27:C1:8C:F6:3B:87:89:FD:B0:39:82:EB:7A:E1:CA:E4
Certificate issuer:       /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial:       010D0C9F4328583B0DC4FEE8C30A9513499CA590
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/4b538b6b-469b-3b66-8614-02b963afa000.roa
Signing time:             Wed 26 Aug 2020 04:00:00 +0000
ROA not before:           Wed 26 Aug 2020 04:00:00 +0000
ROA not after:            Wed 29 Nov 2023 05:00:00 +0000
asID:                     4181
IP address blocks:        45.38.211.0/24 maxlen: 24
                          23.27.235.0/24 maxlen: 24
                          23.230.45.0/24 maxlen: 24
                          23.230.47.0/24 maxlen: 24
                          45.39.61.0/24 maxlen: 24
                          45.39.80.0/24 maxlen: 24
                          45.39.238.0/24 maxlen: 24
                          104.164.196.0/24 maxlen: 24
                          104.165.121.0/24 maxlen: 24
                          104.165.141.0/24 maxlen: 24
                          104.165.197.0/24 maxlen: 24
                          104.252.17.0/24 maxlen: 24
                          104.252.100.0/24 maxlen: 24
                          104.253.19.0/24 maxlen: 24
                          107.164.5.0/24 maxlen: 24
                          107.165.227.0/24 maxlen: 24

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:3b:0d:c4:fe:e8:c3:0a:95:13:49:9c:a5:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
        Validity
            Not Before: Aug 26 04:00:00 2020 GMT
            Not After : Nov 29 05:00:00 2023 GMT
        Subject: CN=0184665f-aef9-47bc-ad9a-ae13270a8f22
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:81:f1:b4:68:b1:af:fa:1d:72:7e:be:d8:65:93:
                    dd:1c:64:c9:23:5e:c3:44:89:64:90:0a:39:89:15:
                    a5:bc:8f:78:f9:9c:05:c1:c5:2c:b2:25:77:fa:9e:
                    f5:7d:c6:65:e4:a7:55:d4:b6:1e:5d:47:06:f9:09:
                    14:55:bd:fd:58:5a:31:16:e6:8b:6e:d0:44:2c:3a:
                    49:d1:17:15:84:bd:d1:e6:1c:96:72:f5:d3:ff:ef:
                    de:18:4e:53:d8:66:31:04:3b:32:19:04:be:24:c7:
                    05:f7:c0:05:c2:08:b7:d1:24:23:f9:ad:38:73:f5:
                    f8:8d:b0:40:2f:f2:44:c7:d5:30:aa:24:30:b4:0c:
                    03:a8:0b:18:63:c6:20:bb:d6:f0:66:36:f2:58:20:
                    d8:49:b5:c9:9d:3e:35:0b:f9:f6:77:48:5f:a5:46:
                    fa:2e:03:a0:01:17:35:88:21:ec:76:cc:99:b8:15:
                    bc:e6:3f:73:56:f2:5a:9d:95:01:5a:94:c1:9b:8f:
                    4e:63:42:82:7c:3e:be:df:96:37:68:48:b2:1e:61:
                    fc:94:a7:f7:f1:d8:db:14:29:c7:04:8b:85:db:83:
                    54:7b:e7:36:f6:c7:a1:42:0f:c9:93:4d:30:08:74:
                    7c:a4:b8:f0:83:2a:53:00:40:5f:01:80:9b:4c:7f:
                    5e:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C3:1A:19:70:27:C1:8C:F6:3B:87:89:FD:B0:39:82:EB:7A:E1:CA:E4
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/4b538b6b-469b-3b66-8614-02b963afa000.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl

            X509v3 Authority Key Identifier:
                keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  23.27.235.0/24
                  23.230.45.0/24
                  23.230.47.0/24
                  45.38.211.0/24
                  45.39.61.0/24
                  45.39.80.0/24
                  45.39.238.0/24
                  104.164.196.0/24
                  104.165.121.0/24
                  104.165.141.0/24
                  104.165.197.0/24
                  104.252.17.0/24
                  104.252.100.0/24
                  104.253.19.0/24
                  107.164.5.0/24
                  107.165.227.0/24

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         01:fa:3d:52:e0:25:f8:ce:3e:e7:c2:4f:a5:68:14:72:98:ba:
         3c:21:ec:fb:c2:6a:78:e8:a4:f8:dc:7d:3c:b4:80:01:7d:8f:
         ee:f4:c8:fe:a6:ec:1b:69:32:c7:0f:ff:25:55:22:37:d2:30:
         19:41:09:be:5b:93:52:a9:dd:6f:3d:b8:b7:5d:5c:70:26:5d:
         1a:76:4c:c4:d0:2f:0c:f2:8b:5d:06:3f:e6:23:3a:14:12:14:
         f0:61:21:15:d2:29:07:b0:b8:4d:7a:a1:7e:b2:03:6e:be:53:
         93:37:10:a3:dc:2f:cd:3e:d7:87:d3:ff:aa:72:9d:86:f6:c8:
         3c:92:90:7d:51:aa:e0:67:88:2e:63:c9:22:96:9b:0b:25:04:
         85:36:5d:3e:e1:72:31:3b:e0:32:a5:89:8a:25:43:f9:2d:5f:
         76:bc:43:ce:26:ae:d9:43:0d:fa:b4:fa:44:7f:75:ea:ec:f6:
         63:c2:48:67:8e:dc:50:6e:7a:78:c9:fe:4f:5e:ee:10:cd:1a:
         8d:93:75:c9:a8:41:97:18:5f:d8:e0:63:92:4e:c1:28:c7:f5:
         f1:80:b8:48:42:60:37:e2:41:e6:2c:20:cf:25:6c:a7:e5:36:
         4a:e2:93:a2:fe:31:28:0b:38:90:ea:fd:30:d1:72:cc:e2:24:
         bb:6f:19:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:49 2023 by rpki-client on console-ams.rpki-client.org