Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/1/326131313a383038303a3a2f32392d3438203d3e20323130383037.roa
File: 326131313a383038303a3a2f32392d3438203d3e20323130383037.roa (raw, json)
Hash identifier: pVGUMpFaJRHsNf53FHiig+XLiVLrq4s9uchlrjAhiSY=
Subject key identifier: 34:65:03:8C:21:73:8D:93:39:CB:97:50:D6:E0:7F:F7:60:9A:22:5F
Certificate issuer: /CN=917b088922d0f33feca164e08554ec992daa39c5
Certificate serial: 13069FA41F847B8355D77CF115613AFFA8A8C326
Authority key identifier: 91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject info access: rsync://0.sb/repo/sb/1/326131313a383038303a3a2f32392d3438203d3e20323130383037.roa
Signing time: Tue 24 Dec 2024 06:52:00 +0000
ROA not before: Tue 24 Dec 2024 06:47:00 +0000
ROA not after: Tue 23 Dec 2025 06:52:00 +0000
asID: 210807
IP address blocks: 2a11:8080::/29 maxlen: 48
Validation: OK
Signature path: rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:06:9f:a4:1f:84:7b:83:55:d7:7c:f1:15:61:3a:ff:a8:a8:c3:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917b088922d0f33feca164e08554ec992daa39c5
Validity
Not Before: Dec 24 06:47:00 2024 GMT
Not After : Dec 23 06:52:00 2025 GMT
Subject: CN=3465038C21738D9339CB9750D6E07FF7609A225F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3a:4d:0a:bd:75:19:b7:8c:6c:00:80:24:fd:
46:20:ea:71:05:c2:67:7b:3d:40:fd:a6:20:10:68:
4d:3b:e4:2f:5b:3a:e6:d3:6a:3f:2e:00:bc:69:1d:
87:e0:ea:82:b2:14:a7:c7:bb:dc:b4:68:6f:7e:a8:
d1:b3:e1:13:c8:e2:79:f1:0a:ed:dd:d1:7b:2e:c1:
6b:87:cc:b5:91:34:15:b6:b6:e4:c7:e1:81:29:95:
83:47:43:64:87:3b:6d:f3:4f:77:d2:30:d7:fd:8a:
88:25:93:bf:d6:61:5d:37:81:e7:d4:72:57:9f:d5:
88:40:72:c5:09:c8:d6:61:dd:20:38:0c:af:65:ab:
7a:03:4a:75:41:93:a5:21:64:a9:0d:be:17:71:9d:
cc:aa:56:e3:d6:df:c9:da:a7:b5:98:db:a4:71:8d:
f1:fb:30:bf:88:56:95:b0:62:f9:41:64:71:a4:34:
df:42:36:ec:c6:60:39:c7:05:40:3f:1e:4f:74:c7:
e9:14:1e:4f:5b:22:dc:7b:11:48:f4:2c:ab:38:ec:
c0:c9:77:47:38:e0:49:68:19:35:65:0a:92:aa:e1:
54:b3:e6:9c:a2:06:ea:31:a0:d1:0d:40:d2:6b:df:
7d:46:be:a1:c9:e2:a2:3d:c4:26:42:ef:63:d1:93:
5b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:65:03:8C:21:73:8D:93:39:CB:97:50:D6:E0:7F:F7:60:9A:22:5F
X509v3 Authority Key Identifier:
keyid:91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/1/326131313a383038303a3a2f32392d3438203d3e20323130383037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8080::/29
Signature Algorithm: sha256WithRSAEncryption
ad:4b:06:88:39:79:fe:cc:6e:cf:e7:da:6c:74:d8:9a:ef:7e:
15:da:41:dd:2f:29:87:38:6b:18:ac:e9:2b:ef:3d:3d:99:83:
a7:64:c6:fa:76:63:fe:e4:df:a8:85:b7:6b:77:3c:0d:2d:fa:
84:3e:c9:1b:72:66:25:be:83:c6:29:ce:4a:33:b2:9d:13:45:
bd:4f:b9:34:06:93:50:30:74:ce:ce:e2:27:60:a5:3a:2b:4f:
48:3d:b0:ed:53:9f:82:9f:05:dc:37:55:1e:55:b5:24:d7:fa:
1a:42:bc:cb:7d:ec:4d:5e:6b:6a:b6:14:30:85:a9:33:9a:d1:
55:4c:1c:9f:92:bf:bf:9b:5a:61:da:55:1c:1c:43:d4:fc:c3:
da:bf:ea:c9:58:4f:99:e8:14:00:2e:cd:3a:33:55:23:6f:62:
dd:0e:d9:d5:b2:64:f4:15:f7:f9:54:66:eb:02:c3:4a:c6:f6:
0b:15:99:d6:b4:6e:05:4a:ab:9f:8f:26:86:22:77:bb:e0:31:
de:b5:27:34:2c:d0:1a:36:3c:78:c3:0b:23:25:e2:ec:96:39:
b5:e2:7e:59:a6:40:86:71:74:99:f4:f0:f7:ab:32:15:38:fa:
a3:f8:68:55:de:6a:90:5c:81:40:69:80:d4:85:f5:57:55:9a:
1a:8a:b8:35
-----BEGIN CERTIFICATE-----
MIIEsTCCA5mgAwIBAgIUEwafpB+Ee4NV13zxFWE6/6iowyYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTE3YjA4ODkyMmQwZjMzZmVjYTE2NGUwODU1NGVjOTky
ZGFhMzljNTAeFw0yNDEyMjQwNjQ3MDBaFw0yNTEyMjMwNjUyMDBaMDMxMTAvBgNV
BAMTKDM0NjUwMzhDMjE3MzhEOTMzOUNCOTc1MEQ2RTA3RkY3NjA5QTIyNUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrOk0KvXUZt4xsAIAk/UYg6nEF
wmd7PUD9piAQaE075C9bOubTaj8uALxpHYfg6oKyFKfHu9y0aG9+qNGz4RPI4nnx
Cu3d0XsuwWuHzLWRNBW2tuTH4YEplYNHQ2SHO23zT3fSMNf9ioglk7/WYV03gefU
clef1YhAcsUJyNZh3SA4DK9lq3oDSnVBk6UhZKkNvhdxncyqVuPW38nap7WY26Rx
jfH7ML+IVpWwYvlBZHGkNN9CNuzGYDnHBUA/Hk90x+kUHk9bItx7EUj0LKs47MDJ
d0c44EloGTVlCpKq4VSz5pyiBuoxoNENQNJr331GvqHJ4qI9xCZC72PRk1vhAgMB
AAGjggG7MIIBtzAdBgNVHQ4EFgQUNGUDjCFzjZM5y5dQ1uB/92CaIl8wHwYDVR0j
BBgwFoAUkXsIiSLQ8z/soWTghVTsmS2qOcUwDgYDVR0PAQH/BAQDAgeAMFQGA1Ud
HwRNMEswSaBHoEWGQ3JzeW5jOi8vMC5zYi9yZXBvL3NiLzEvOTE3QjA4ODkyMkQw
RjMzRkVDQTE2NEUwODU1NEVDOTkyREFBMzlDNS5jcmwwZAYIKwYBBQUHAQEEWDBW
MFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxUL2tYc0lpU0xROHpfc29XVGdoVlRzbVMycU9jVS5jZXIwbQYIKwYBBQUH
AQsEYTBfMF0GCCsGAQUFBzALhlFyc3luYzovLzAuc2IvcmVwby9zYi8xLzMyNjEz
MTMxM2EzODMwMzgzMDNhM2EyZjMyMzkyZDM0MzgyMDNkM2UyMDMyMzEzMDM4MzAz
Ny5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQR
MA8wDQQCAAIwBwMFAyoRgIAwDQYJKoZIhvcNAQELBQADggEBAK1LBog5ef7Mbs/n
2mx02JrvfhXaQd0vKYc4axis6SvvPT2Zg6dkxvp2Y/7k36iFt2t3PA0t+oQ+yRty
ZiW+g8Ypzkozsp0TRb1PuTQGk1AwdM7O4idgpTorT0g9sO1Tn4KfBdw3VR5VtSTX
+hpCvMt97E1ea2q2FDCFqTOa0VVMHJ+Sv7+bWmHaVRwcQ9T8w9q/6slYT5noFAAu
zTozVSNvYt0O2dWyZPQV9/lUZusCw0rG9gsVmda0bgVKq5+PJoYid7vgMd61JzQs
0Bo2PHjDCyMl4uyWObXiflmmQIZxdJn08PerMhU4+qP4aFXeapBcgUBpgNSF9VdV
mhqKuDU=
-----END CERTIFICATE-----
Generated at Sat Apr 5 13:19:58 2025 by rpki-client