Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e96f84-d7e2-483a-bf12-804922255ff9/1/PeDHip_aBJJ92oP3WKdZxMknTDM.roa
File: PeDHip_aBJJ92oP3WKdZxMknTDM.roa (raw, json)
Hash identifier: wPv2CQcUHWyNsC5/pgHcuAdZ2tQJnv9e+YcxEH5h9Ys=
Subject key identifier: 3D:E0:C7:8A:9F:DA:04:92:7D:DA:83:F7:58:A7:59:C4:C9:27:4C:33
Certificate issuer: /CN=f5bb189be4c73d21ab956f760baa33e09712d2f4
Certificate serial: 8E17CF
Authority key identifier: F5:BB:18:9B:E4:C7:3D:21:AB:95:6F:76:0B:AA:33:E0:97:12:D2:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9bsYm-THPSGrlW92C6oz4JcS0vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e96f84-d7e2-483a-bf12-804922255ff9/1/PeDHip_aBJJ92oP3WKdZxMknTDM.roa
Signing time: Sat 01 Jan 2022 02:58:02 +0000
ROA not before: Sat 01 Jan 2022 02:58:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 195.96.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9312207 (0x8e17cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5bb189be4c73d21ab956f760baa33e09712d2f4
Validity
Not Before: Jan 1 02:58:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3de0c78a9fda04927dda83f758a759c4c9274c33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3a:43:03:e0:84:1e:90:a3:14:8b:c4:28:66:
fa:c5:3b:e9:2f:f1:b9:23:2b:53:82:a5:9e:19:93:
e4:6c:04:05:23:c5:ca:5f:91:87:ac:bd:59:74:7f:
8e:27:e9:fe:aa:e7:c7:7c:bb:3c:af:23:12:f7:0a:
5b:c7:a8:16:e8:40:63:f8:85:ca:a1:b7:8c:80:28:
5d:28:7f:52:90:4b:4c:75:01:4e:3c:ba:59:d4:68:
4c:ee:d3:0f:d1:d1:c0:04:50:0c:44:76:dd:38:01:
60:34:1e:54:9b:39:1b:a0:e6:67:a9:60:a6:2b:df:
a8:24:17:07:f8:b2:11:6d:90:e3:6b:b6:38:0b:c1:
a6:29:55:7d:c5:35:00:12:a5:40:66:bc:a9:70:a7:
6d:6b:a3:07:7b:06:4f:4b:5d:80:12:5d:37:fa:91:
4e:ce:69:5e:06:6a:88:2b:2b:4c:00:1c:4f:eb:4c:
99:2a:db:95:62:97:3d:0e:5b:2f:59:e0:f6:d7:03:
12:73:1b:b5:08:01:c2:24:55:3e:bb:5a:38:e0:06:
29:f2:60:e3:e8:65:b3:e2:25:db:4e:51:95:2e:f3:
fd:67:48:26:11:2c:f2:24:56:8b:ee:fa:05:70:59:
47:fb:87:af:19:e5:64:f2:77:90:23:ca:22:83:85:
cb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E0:C7:8A:9F:DA:04:92:7D:DA:83:F7:58:A7:59:C4:C9:27:4C:33
X509v3 Authority Key Identifier:
keyid:F5:BB:18:9B:E4:C7:3D:21:AB:95:6F:76:0B:AA:33:E0:97:12:D2:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9bsYm-THPSGrlW92C6oz4JcS0vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e96f84-d7e2-483a-bf12-804922255ff9/1/PeDHip_aBJJ92oP3WKdZxMknTDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e96f84-d7e2-483a-bf12-804922255ff9/1/9bsYm-THPSGrlW92C6oz4JcS0vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.136.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:51:41:71:a0:34:2b:e6:1f:b5:5c:7e:7d:ca:e8:75:7c:62:
09:ac:dc:e5:75:ac:a4:c7:4d:0c:7d:62:cb:11:83:61:92:bf:
43:10:ae:e4:e7:43:71:d3:90:ea:f4:fc:71:56:52:84:f9:06:
33:88:23:0e:73:f8:77:82:de:95:f1:38:6f:be:6c:b7:10:fb:
4c:c4:1a:7b:d8:24:0d:56:21:56:90:7f:fa:29:9d:bf:5a:5e:
82:b0:61:93:61:ca:31:c2:4c:8b:d1:28:fa:2d:89:3f:27:e3:
c9:06:7f:0e:a3:89:45:88:19:9b:d0:cd:1a:4e:b7:a3:e2:4c:
00:b9:ad:94:4f:9b:f5:56:e7:4c:80:bd:de:54:0c:48:16:f0:
2c:ed:d2:dc:cf:28:a7:75:ab:1e:fe:2c:32:25:cb:2b:b3:22:
99:1e:2b:19:d7:f9:8d:e3:e9:3a:a5:87:b4:09:02:f5:1f:3b:
57:c0:6e:5e:26:01:83:0b:26:38:92:77:0a:a3:fd:a4:99:9f:
82:7c:d3:e7:f3:40:d4:bd:8f:5a:ba:31:65:6e:b4:84:2a:e2:
06:39:19:0a:ac:f6:da:0f:a2:c5:79:fc:f2:50:4d:00:de:72:
8b:b2:fc:aa:59:98:e2:15:cd:7f:44:dc:35:4c:72:94:00:67:
4c:0b:4c:f4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAI4XzzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NWJiMTg5YmU0YzczZDIxYWI5NTZmNzYwYmFhMzNlMDk3MTJkMmY0MB4XDTIyMDEw
MTAyNTgwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2RlMGM3OGE5ZmRh
MDQ5MjdkZGE4M2Y3NThhNzU5YzRjOTI3NGMzMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKs6QwPghB6QoxSLxChm+sU76S/xuSMrU4KlnhmT5GwEBSPF
yl+Rh6y9WXR/jifp/qrnx3y7PK8jEvcKW8eoFuhAY/iFyqG3jIAoXSh/UpBLTHUB
Tjy6WdRoTO7TD9HRwARQDER23TgBYDQeVJs5G6DmZ6lgpivfqCQXB/iyEW2Q42u2
OAvBpilVfcU1ABKlQGa8qXCnbWujB3sGT0tdgBJdN/qRTs5pXgZqiCsrTAAcT+tM
mSrblWKXPQ5bL1ng9tcDEnMbtQgBwiRVPrtaOOAGKfJg4+hls+Il205RlS7z/WdI
JhEs8iRWi+76BXBZR/uHrxnlZPJ3kCPKIoOFy9MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ94MeKn9oEkn3ag/dYp1nEySdMMzAfBgNVHSMEGDAWgBT1uxib5Mc9IauV
b3YLqjPglxLS9DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
Lzlic1ltLVRIUFNHcmxXOTJDNm96NEpjUzB2US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzUvZTk2Zjg0LWQ3ZTItNDgzYS1iZjEyLTgwNDkyMjI1NWZmOS8x
L1BlREhpcF9hQkpKOTJvUDNXS2RaeE1rblRETS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzUv
ZTk2Zjg0LWQ3ZTItNDgzYS1iZjEyLTgwNDkyMjI1NWZmOS8xLzlic1ltLVRIUFNH
cmxXOTJDNm96NEpjUzB2US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMNgiDANBgkqhkiG9w0BAQsFAAOC
AQEAClFBcaA0K+YftVx+fcrodXxiCazc5XWspMdNDH1iyxGDYZK/QxCu5OdDcdOQ
6vT8cVZShPkGM4gjDnP4d4LelfE4b75stxD7TMQae9gkDVYhVpB/+imdv1pegrBh
k2HKMcJMi9Eo+i2JPyfjyQZ/DqOJRYgZm9DNGk63o+JMALmtlE+b9VbnTIC93lQM
SBbwLO3S3M8op3WrHv4sMiXLK7MimR4rGdf5jePpOqWHtAkC9R87V8BuXiYBgwsm
OJJ3CqP9pJmfgnzT5/NA1L2PWroxZW60hCriBjkZCqz22g+ixXn88lBNAN5yi7L8
qlmY4hXNf0TcNUxylABnTAtM9A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:28 2023 by rpki-client on console-fra.rpki-client.org