Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/ccdb6fe7-ea48-384e-bf03-0c78453e8a4f.roa
File:                     ccdb6fe7-ea48-384e-bf03-0c78453e8a4f.roa (raw, json)
Hash identifier:          Y3nXqqFxNwG3ScFF0XMNaMvDuFndPhE0hzlfZ/ihqTw=
Subject key identifier:   C6:FE:FD:81:AA:03:5E:B3:C7:6F:6A:FD:40:CF:FD:D6:3A:37:87:CD
Certificate issuer:       /CN=bc831f6b-71a6-46bb-9f64-2da80ccc244c
Certificate serial:       010D0C9F4328583EC57DE81401F27A4AF987A190
Authority key identifier: A9:50:46:A5:5A:7E:BB:0F:CE:06:22:BA:A4:AF:11:59:F2:3E:CD:24
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/ccdb6fe7-ea48-384e-bf03-0c78453e8a4f.roa
Signing time:             Fri 21 Jun 2019 10:51:11 +0000
ROA not before:           Fri 21 Jun 2019 10:51:11 +0000
ROA not after:            Thu 21 Jun 2029 04:00:00 +0000
asID:                     21859
IP address blocks:        104.251.228.0/24 maxlen: 24
                          104.143.41.0/24 maxlen: 24
                          104.143.35.0/24 maxlen: 24
                          104.251.224.0/24 maxlen: 24
                          104.251.227.0/24 maxlen: 24
                          104.251.230.0/24 maxlen: 24
                          104.251.232.0/24 maxlen: 24
                          104.251.233.0/24 maxlen: 24
                          104.251.234.0/24 maxlen: 24
                          104.251.235.0/24 maxlen: 24
                          104.251.236.0/24 maxlen: 24
                          104.251.237.0/24 maxlen: 24
                          104.251.238.0/24 maxlen: 24
                          198.176.48.0/24 maxlen: 24
                          198.176.49.0/24 maxlen: 24
                          198.176.50.0/24 maxlen: 24
                          198.176.51.0/24 maxlen: 24
                          198.176.52.0/24 maxlen: 24
                          198.176.53.0/24 maxlen: 24
                          198.176.54.0/24 maxlen: 24
                          198.176.55.0/24 maxlen: 24
                          198.176.56.0/24 maxlen: 24
                          198.176.57.0/24 maxlen: 24
                          198.176.58.0/24 maxlen: 24
                          198.176.59.0/24 maxlen: 24
                          198.176.60.0/24 maxlen: 24
                          198.176.61.0/24 maxlen: 24
                          198.176.62.0/24 maxlen: 24
                          198.176.63.0/24 maxlen: 24
                          205.210.166.0/24 maxlen: 24
                          205.210.167.0/24 maxlen: 24
                          172.81.110.0/24 maxlen: 24
                          172.81.107.0/24 maxlen: 24
                          172.81.108.0/24 maxlen: 24
                          172.81.105.0/24 maxlen: 24
                          172.81.106.0/24 maxlen: 24
                          172.81.101.0/24 maxlen: 24
                          172.81.98.0/24 maxlen: 24
                          172.81.96.0/24 maxlen: 24
                          172.81.97.0/24 maxlen: 24
                          172.81.100.0/24 maxlen: 24
                          172.81.103.0/24 maxlen: 24
                          104.143.47.0/24 maxlen: 24
                          104.143.45.0/24 maxlen: 24
                          104.143.46.0/24 maxlen: 24
                          104.143.42.0/24 maxlen: 24
                          104.143.44.0/24 maxlen: 24
                          104.143.39.0/24 maxlen: 24
                          104.143.32.0/24 maxlen: 24
                          104.143.33.0/24 maxlen: 24
                          104.143.34.0/24 maxlen: 24
                          104.143.36.0/24 maxlen: 24
                          104.143.37.0/24 maxlen: 24
                          104.143.38.0/24 maxlen: 24
                          104.143.40.0/24 maxlen: 24

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:3e:c5:7d:e8:14:01:f2:7a:4a:f9:87:a1:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bc831f6b-71a6-46bb-9f64-2da80ccc244c
        Validity
            Not Before: Jun 21 10:51:11 2019 GMT
            Not After : Jun 21 04:00:00 2029 GMT
        Subject: CN=66695c39-4a84-43a6-8006-21efdaaaf145
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:fe:d1:9e:13:ba:de:04:2e:db:60:8b:ff:a4:
                    51:e6:2a:34:f8:89:65:18:f5:61:b3:fa:18:c9:73:
                    d9:f9:b5:c7:98:81:84:d3:96:92:bc:e0:d8:56:3d:
                    ae:60:62:7c:e1:0f:79:51:dc:e7:1a:3b:16:db:b8:
                    8a:e8:21:0f:53:00:fe:59:90:ca:e4:a8:09:ce:b1:
                    fe:6a:27:22:9d:84:87:e1:c5:86:89:31:fc:6a:fc:
                    94:c3:14:ee:5f:1d:2c:4e:17:d3:37:2b:fd:67:52:
                    7c:b9:8a:04:25:ca:92:e9:29:17:7b:8a:0a:8c:de:
                    b8:42:e8:ee:38:c4:b0:88:f3:ae:61:f5:2d:ed:7a:
                    32:cd:88:ac:72:a7:75:92:a3:4a:12:79:60:4c:7f:
                    b0:08:eb:38:f5:85:b1:3e:ee:a6:8c:fc:86:8b:aa:
                    9f:f7:4f:97:b6:93:9e:2b:2e:99:12:3a:82:82:0b:
                    00:f2:96:41:2f:a2:68:69:1c:5d:c2:91:02:c0:71:
                    85:8c:b2:b6:54:53:f2:4c:ef:02:63:51:e3:c4:32:
                    d2:6a:6e:26:b3:cc:f7:ff:1b:95:8d:00:d4:8c:da:
                    86:5a:40:2b:4e:e3:db:ba:10:79:48:ec:f0:4a:4f:
                    89:50:27:89:31:69:cf:63:be:56:44:90:3d:50:cd:
                    c3:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:FE:FD:81:AA:03:5E:B3:C7:6F:6A:FD:40:CF:FD:D6:3A:37:87:CD
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/ccdb6fe7-ea48-384e-bf03-0c78453e8a4f.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/bc831f6b-71a6-46bb-9f64-2da80ccc244c.crl

            X509v3 Authority Key Identifier:
                keyid:A9:50:46:A5:5A:7E:BB:0F:CE:06:22:BA:A4:AF:11:59:F2:3E:CD:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  104.143.32.0-104.143.42.255
                  104.143.44.0/22
                  104.251.224.0/24
                  104.251.227.0-104.251.228.255
                  104.251.230.0/24
                  104.251.232.0-104.251.238.255
                  172.81.96.0-172.81.98.255
                  172.81.100.0/23
                  172.81.103.0/24
                  172.81.105.0-172.81.108.255
                  172.81.110.0/24
                  198.176.48.0/20
                  205.210.166.0/23

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         66:81:2d:cf:ab:77:6d:bb:23:aa:45:ca:c9:ee:00:03:84:38:
         2f:7e:86:84:ba:a0:4c:f8:3e:e3:cf:d9:b1:9f:37:44:72:b7:
         59:d6:c2:af:4b:2a:11:e1:60:6c:dd:b5:c6:75:45:31:b0:87:
         c1:4a:d0:18:79:f6:f3:eb:a8:37:e0:96:74:49:59:e1:9b:f4:
         50:ed:f9:36:72:b7:92:3d:89:f0:41:99:f0:ff:1d:35:f9:c2:
         33:b7:ce:a3:1f:4f:5d:89:a2:bb:a7:f3:2d:79:d0:69:74:a1:
         a9:b1:97:14:e9:a4:ab:bf:63:82:84:8b:94:40:f1:45:df:cd:
         00:a7:f7:ef:dd:54:b6:8c:9e:73:51:78:72:71:97:50:20:20:
         a2:5b:05:b4:d7:31:53:e5:0c:36:bb:90:86:28:89:b2:c7:df:
         bf:86:a2:f5:18:b0:4f:40:29:e8:8b:94:eb:5f:a3:e0:f3:46:
         cd:10:5a:24:87:eb:bb:ef:5c:9e:42:7e:ad:9d:50:e7:8a:e1:
         08:dd:13:14:44:76:b7:83:41:04:6a:bb:85:a9:da:86:da:a3:
         fc:97:f2:df:13:30:c7:28:8b:4b:56:13:b3:5c:55:d7:e7:41:
         cc:17:b7:0a:84:90:77:0c:bf:aa:69:42:cb:3d:ad:34:24:5a:
         ca:a6:8b:86
-----BEGIN CERTIFICATE-----
MIIGtTCCBZ2gAwIBAgIUAQ0Mn0MoWD7FfegUAfJ6SvmHoZAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkYmM4MzFmNmItNzFhNi00NmJiLTlmNjQtMmRhODBjY2My
NDRjMB4XDTE5MDYyMTEwNTExMVoXDTI5MDYyMTA0MDAwMFowLzEtMCsGA1UEAxMk
NjY2OTVjMzktNGE4NC00M2E2LTgwMDYtMjFlZmRhYWFmMTQ1MIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj/7RnhO63gQu22CL/6RR5io0+IllGPVhs/oY
yXPZ+bXHmIGE05aSvODYVj2uYGJ84Q95UdznGjsW27iK6CEPUwD+WZDK5KgJzrH+
aicinYSH4cWGiTH8avyUwxTuXx0sThfTNyv9Z1J8uYoEJcqS6SkXe4oKjN64Quju
OMSwiPOuYfUt7XoyzYiscqd1kqNKEnlgTH+wCOs49YWxPu6mjPyGi6qf90+XtpOe
Ky6ZEjqCggsA8pZBL6JoaRxdwpECwHGFjLK2VFPyTO8CY1HjxDLSam4ms8z3/xuV
jQDUjNqGWkArTuPbuhB5SOzwSk+JUCeJMWnPY75WRJA9UM3DKwIDAQABo4IDxzCC
A8MwHQYDVR0OBBYEFMb+/YGqA16zx29q/UDP/dY6N4fNMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iYzgz
MWY2Yi03MWE2LTQ2YmItOWY2NC0yZGE4MGNjYzI0NGMvY2NkYjZmZTctZWE0OC0z
ODRlLWJmMDMtMGM3ODQ1M2U4YTRmLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h
ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvYmM4MzFmNmItNzFhNi00NmJiLTlm
NjQtMmRhODBjY2MyNDRjL2JjODMxZjZiLTcxYTYtNDZiYi05ZjY0LTJkYTgwY2Nj
MjQ0Yy5jcmwwHwYDVR0jBBgwFoAUqVBGpVp+uw/OBiK6pK8RWfI+zSQwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz
OS1hMmYzLTYyOTlhM2IwMmUyOS9iYzgzMWY2Yi03MWE2LTQ2YmItOWY2NC0yZGE4
MGNjYzI0NGMuY2VyMIGQBggrBgEFBQcBBwEB/wSBgDB+MHwEAgABMHYwDAMEBWiP
IAMEAGiPKgMEAmiPLAMEAGj74DAMAwQAaPvjAwQAaPvkAwQAaPvmMAwDBANo++gD
BABo++4wDAMEBaxRYAMEAKxRYgMEAaxRZAMEAKxRZzAMAwQArFFpAwQArFFsAwQA
rFFuAwQExrAwAwQBzdKmMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4Bggr
BgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3Bz
Lmh0bWwwDQYJKoZIhvcNAQELBQADggEBAGaBLc+rd227I6pFysnuAAOEOC9+hoS6
oEz4PuPP2bGfN0Ryt1nWwq9LKhHhYGzdtcZ1RTGwh8FK0Bh59vPrqDfglnRJWeGb
9FDt+TZyt5I9ifBBmfD/HTX5wjO3zqMfT12Jorun8y150Gl0oamxlxTppKu/Y4KE
i5RA8UXfzQCn9+/dVLaMnnNReHJxl1AgIKJbBbTXMVPlDDa7kIYoibLH37+GovUY
sE9AKeiLlOtfo+DzRs0QWiSH67vvXJ5Cfq2dUOeK4QjdExREdreDQQRqu4Wp2oba
o/yX8t8TMMcoi0tWE7NcVdfnQcwXtwqEkHcMv6ppQss9rTQkWsqmi4Y=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:40:51 2023 by rpki-client on console-fra.rpki-client.org