Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/JqxuixPV_n61gfuwDjRetrXrEsQ.roa
File: JqxuixPV_n61gfuwDjRetrXrEsQ.roa (raw, json)
Hash identifier: dQ974w2OQ6xtRpgxWmd6ClQtocX+LddrIkAoH9crpJI=
Subject key identifier: 26:AC:6E:8B:13:D5:FE:7E:B5:81:FB:B0:0E:34:5E:B6:B5:EB:12:C4
Certificate issuer: /CN=18d801de9fe8a6680758817823ae36ba065c610d
Certificate serial: 0A8BECD2
Authority key identifier: 18:D8:01:DE:9F:E8:A6:68:07:58:81:78:23:AE:36:BA:06:5C:61:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GNgB3p_opmgHWIF4I642ugZcYQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/JqxuixPV_n61gfuwDjRetrXrEsQ.roa
Signing time: Sat 01 Jan 2022 02:01:28 +0000
ROA not before: Sat 01 Jan 2022 02:01:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209917
IP address blocks: 77.72.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176942290 (0xa8becd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18d801de9fe8a6680758817823ae36ba065c610d
Validity
Not Before: Jan 1 02:01:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26ac6e8b13d5fe7eb581fbb00e345eb6b5eb12c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9d:5c:75:bc:67:dd:f7:28:8a:e3:86:3f:f7:
59:82:07:2f:87:06:fa:19:dd:28:78:32:ad:03:e0:
a0:f2:20:16:61:08:9f:b6:64:f0:f3:18:53:aa:36:
56:79:4b:75:b0:fd:98:5e:cc:af:44:72:b3:41:c4:
12:d6:a5:c8:87:12:c2:c9:a1:12:45:5e:44:95:46:
36:78:0f:b3:58:25:d9:28:e5:56:c1:1a:1d:d4:71:
da:8a:c9:6f:9c:35:2d:c6:76:8c:51:f3:8e:36:24:
64:b7:2a:f6:20:0c:96:be:51:82:c7:eb:02:0f:11:
f9:d6:76:1c:8a:1a:5e:a9:a7:30:a3:b4:26:67:89:
8b:2e:08:3c:76:cc:fe:be:22:a7:80:07:4a:1e:e6:
e4:8f:2b:4e:f2:90:ba:d6:73:1b:a1:bb:b9:39:d7:
0d:2a:7a:cf:e7:12:4b:ad:12:3a:0b:eb:42:90:a5:
d2:2b:6c:0b:66:57:a9:0c:00:40:ec:8f:4d:76:78:
03:e3:f1:d3:82:fd:9f:53:39:bc:24:1a:34:d2:5f:
e4:1c:93:93:35:73:dc:c0:df:c2:db:99:cb:8b:bd:
ba:d1:20:18:9a:25:83:52:91:10:7a:ca:b7:8a:41:
6d:29:9f:4f:73:9c:94:7b:0b:6f:35:5c:85:63:62:
bf:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:AC:6E:8B:13:D5:FE:7E:B5:81:FB:B0:0E:34:5E:B6:B5:EB:12:C4
X509v3 Authority Key Identifier:
keyid:18:D8:01:DE:9F:E8:A6:68:07:58:81:78:23:AE:36:BA:06:5C:61:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GNgB3p_opmgHWIF4I642ugZcYQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/JqxuixPV_n61gfuwDjRetrXrEsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/GNgB3p_opmgHWIF4I642ugZcYQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.220.0/24
Signature Algorithm: sha256WithRSAEncryption
21:f7:dc:f3:73:0a:c6:b1:96:a2:fd:fe:7d:4a:29:02:f1:66:
4b:12:2e:94:4b:df:dd:c7:59:3c:1c:38:f1:8c:c3:43:e0:51:
91:8f:62:d0:76:3c:b0:bc:f8:ea:e2:8b:6e:0a:f2:05:cb:6e:
ce:e9:6a:0a:f2:17:fb:e9:09:da:0d:55:7d:b9:78:c2:53:83:
26:67:aa:53:f1:bc:d0:a3:3f:57:21:96:00:2c:c8:95:65:56:
0e:87:97:cb:6c:55:a8:81:cb:36:14:8b:fb:65:04:4a:6f:d0:
40:17:c6:40:ff:c7:bf:a3:99:34:53:d0:db:51:79:4e:db:b6:
a0:1f:d7:d6:8f:b6:dd:61:8d:6c:c0:39:2e:4b:c0:f6:1c:06:
b8:39:96:1b:59:04:fb:98:77:0b:48:38:cb:8c:38:60:05:10:
5c:e5:30:f0:16:8d:7a:75:eb:08:bf:ce:9a:ef:57:d7:d2:8a:
a3:b2:5e:f1:8b:81:24:72:5a:be:25:6a:45:5e:ad:eb:be:e0:
6d:01:36:34:c6:9f:5d:ce:43:a0:1a:6b:be:db:60:be:95:4f:
45:86:85:b1:01:73:01:52:01:1d:c9:ed:8c:b1:e9:87:d8:50:
31:ec:25:bd:84:fa:a3:f0:f1:be:6b:31:63:d3:dd:cc:b9:13:
08:d1:e5:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 15:13:10 2025 by rpki-client