Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UPs4nn0eBay_fIEXwzFrziOGHlg.roa
File: UPs4nn0eBay_fIEXwzFrziOGHlg.roa (raw, json)
Hash identifier: n1rQX2er8ehY5mv/Oe6cZ3YcfGOcUxMxZAxeUBrIysk=
Subject key identifier: 50:FB:38:9E:7D:1E:05:AC:BF:7C:81:17:C3:31:6B:CE:23:86:1E:58
Certificate issuer: /CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Certificate serial: 01942067C5C03708AE72646216D6728EBC78
Authority key identifier: 50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UPs4nn0eBay_fIEXwzFrziOGHlg.roa
Signing time: Wed 01 Jan 2025 05:47:39 +0000
ROA not before: Wed 01 Jan 2025 05:47:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25512
IP address blocks: 81.19.32.0/20 maxlen: 20
82.117.128.0/19 maxlen: 19
82.202.64.0/18 maxlen: 18
85.13.64.0/18 maxlen: 18
85.184.16.0/20 maxlen: 20
89.203.128.0/17 maxlen: 17
131.117.192.0/21 maxlen: 21
185.134.0.0/22 maxlen: 22
195.146.96.0/19 maxlen: 19
212.11.96.0/19 maxlen: 19
213.235.128.0/18 maxlen: 18
2001:1a48::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:c5:c0:37:08:ae:72:64:62:16:d6:72:8e:bc:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Validity
Not Before: Jan 1 05:47:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=50fb389e7d1e05acbf7c8117c3316bce23861e58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fc:07:e6:29:42:39:63:d8:1d:23:28:eb:af:
85:0d:d0:07:90:84:7d:30:da:dc:ea:9d:d7:a3:b3:
c9:df:08:7b:6f:f4:44:ef:0b:67:fe:20:5c:78:1d:
e5:0b:b2:fd:5d:7f:55:32:62:4c:7b:45:5c:00:fa:
21:28:d0:8f:0c:1d:e7:e6:31:e0:2d:a6:e2:ac:39:
be:c8:41:d3:1e:73:64:e5:94:70:05:02:cc:5b:69:
89:19:f4:85:5d:d2:6a:a0:55:12:3e:08:31:d0:99:
b6:7e:ee:08:90:dd:c8:b7:ab:f8:c0:16:62:5e:ec:
d9:ee:f5:58:7a:52:8e:30:d4:89:76:2e:f7:04:a3:
58:0c:96:91:0a:13:29:53:c7:81:3c:ac:2c:64:71:
b9:fd:93:ea:c8:c8:16:60:03:60:7a:8b:c3:a9:cd:
c4:5c:71:b4:8a:18:a9:bc:f5:06:d9:c4:b8:68:c7:
52:b0:f3:19:db:fb:6f:b9:7a:a2:6c:93:12:d7:53:
3e:de:f3:ec:ca:29:9b:ed:20:4f:aa:3e:9c:b0:f5:
db:9c:a5:99:51:e9:6e:89:16:d8:80:e4:41:8d:39:
5f:73:f8:d8:f8:79:63:5f:4b:c0:fc:82:d6:21:2e:
cf:7c:97:f6:3a:04:b8:af:7b:72:5d:b2:e7:32:c5:
61:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:FB:38:9E:7D:1E:05:AC:BF:7C:81:17:C3:31:6B:CE:23:86:1E:58
X509v3 Authority Key Identifier:
keyid:50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UPs4nn0eBay_fIEXwzFrziOGHlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.32.0/20
82.117.128.0/19
82.202.64.0/18
85.13.64.0/18
85.184.16.0/20
89.203.128.0/17
131.117.192.0/21
185.134.0.0/22
195.146.96.0/19
212.11.96.0/19
213.235.128.0/18
IPv6:
2001:1a48::/32
Signature Algorithm: sha256WithRSAEncryption
53:f9:8a:23:98:b5:e4:a4:93:a6:77:67:b0:d6:7c:73:0c:6b:
d8:92:53:81:a6:35:42:3f:59:48:f5:fd:02:7f:55:7d:66:fb:
c6:4f:70:f8:3e:1d:59:1e:50:cb:ab:6c:9a:68:27:4f:cb:26:
06:24:c8:77:8e:6b:a7:58:00:38:0e:b8:b6:af:c6:44:7e:fd:
03:f2:72:de:f5:07:68:0f:32:e0:47:7f:e0:87:36:2a:83:dd:
43:ec:3b:9e:4f:80:19:6e:02:9f:ac:1f:a4:3e:5b:44:86:2e:
69:33:38:eb:45:fb:39:3e:b1:2e:70:0b:b1:fa:28:28:a0:fb:
93:9d:9c:c9:43:ca:c0:ef:a8:3a:f4:d6:a5:8e:0f:51:12:8b:
69:bc:cd:39:da:c1:ff:3d:35:07:d5:de:9c:15:97:63:22:36:
df:51:2e:e3:ea:53:2e:6c:a7:53:2c:bd:76:41:9f:9a:2a:ca:
65:7a:9d:ae:49:c4:fe:50:76:3b:c1:4e:f8:e0:c3:01:de:89:
6e:22:03:6e:d0:ac:ec:19:fd:f6:b6:3f:97:33:51:dd:20:d9:
6c:55:d2:3d:30:12:b7:d8:0f:76:5a:26:de:00:db:ce:2e:11:
93:3f:2d:85:0d:ce:a1:0c:80:3b:00:58:c0:60:39:85:83:a4:
72:08:2f:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:50:46 2025 by rpki-client