Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/21/3139322e3130392e3232382e302f32332d3234203d3e2038383838.roa
File: 3139322e3130392e3232382e302f32332d3234203d3e2038383838.roa (raw, json)
Hash identifier: cRLIVNGrIGArmGiVAaxksFG3PJmaPB4GNK22HqnB/vg=
Subject key identifier: 33:35:F4:F4:26:E3:10:76:94:73:25:30:21:7C:1D:54:8B:8E:AB:E3
Certificate issuer: /CN=761c616364b89659ed9f18cb0af77420437cc7da
Certificate serial: 5778B59D058B1C38409C3D05042E58297EFD723A
Authority key identifier: 76:1C:61:63:64:B8:96:59:ED:9F:18:CB:0A:F7:74:20:43:7C:C7:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dhxhY2S4llntnxjLCvd0IEN8x9o.cer
Subject info access: rsync://0.sb/repo/sb/21/3139322e3130392e3232382e302f32332d3234203d3e2038383838.roa
Signing time: Fri 22 Sep 2023 10:19:33 +0000
ROA not before: Fri 22 Sep 2023 10:14:33 +0000
ROA not after: Fri 20 Sep 2024 10:19:33 +0000
asID: 8888
IP address blocks: 192.109.228.0/23 maxlen: 24
Validation: OK
Signature path: rsync://0.sb/repo/sb/21/761C616364B89659ED9F18CB0AF77420437CC7DA.crl
rsync://0.sb/repo/sb/21/761C616364B89659ED9F18CB0AF77420437CC7DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dhxhY2S4llntnxjLCvd0IEN8x9o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:78:b5:9d:05:8b:1c:38:40:9c:3d:05:04:2e:58:29:7e:fd:72:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=761c616364b89659ed9f18cb0af77420437cc7da
Validity
Not Before: Sep 22 10:14:33 2023 GMT
Not After : Sep 20 10:19:33 2024 GMT
Subject: CN=3335F4F426E3107694732530217C1D548B8EABE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:dc:c0:46:e6:46:d8:45:d7:7b:aa:41:ee:68:
1f:c9:af:65:41:22:49:84:d5:a2:da:18:e1:fd:cd:
7e:bd:e2:59:b7:fb:a4:2d:d1:e6:5f:54:b2:1d:9d:
fd:44:38:52:db:e0:66:c1:4b:08:67:d9:58:c9:ad:
5e:d1:0a:bf:66:98:4a:68:4b:8d:fc:39:84:94:2c:
b1:84:7a:a5:be:06:4f:0c:e7:b9:94:f9:79:e6:fd:
13:4e:af:35:fb:9a:c8:72:37:dd:39:ae:e3:86:ba:
9c:34:0f:81:2a:49:61:cc:47:8d:7f:23:43:47:c1:
06:16:71:7b:c0:2b:05:25:5a:da:9e:62:24:4e:d3:
d5:8b:8c:fa:93:00:44:5d:a0:7d:dc:7d:5a:7a:7d:
e0:f6:81:87:f8:47:bd:29:bd:6a:2c:ae:e5:9c:da:
9e:26:43:46:d6:31:69:1b:c8:e5:83:32:55:d3:8f:
25:25:8e:d0:c9:e8:79:90:a9:c5:46:3e:aa:2c:c4:
d3:af:f9:2a:54:0b:9c:27:8e:a9:e4:cc:0f:f4:10:
da:26:2c:2e:74:0f:cc:a3:02:77:ad:2d:90:0c:2e:
d1:54:cc:f1:51:33:41:c1:cd:27:bc:6d:a6:41:2e:
f8:3a:a2:13:f1:af:36:6c:2d:ca:12:c3:55:b7:4d:
75:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:35:F4:F4:26:E3:10:76:94:73:25:30:21:7C:1D:54:8B:8E:AB:E3
X509v3 Authority Key Identifier:
keyid:76:1C:61:63:64:B8:96:59:ED:9F:18:CB:0A:F7:74:20:43:7C:C7:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/21/761C616364B89659ED9F18CB0AF77420437CC7DA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dhxhY2S4llntnxjLCvd0IEN8x9o.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/21/3139322e3130392e3232382e302f32332d3234203d3e2038383838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.228.0/23
Signature Algorithm: sha256WithRSAEncryption
39:5f:6f:2b:8a:9b:4b:e7:84:82:82:cc:50:ec:f4:d8:80:23:
8b:4c:a7:9c:1d:ad:ff:aa:14:ba:74:86:f4:c1:43:5f:eb:bf:
6f:d1:33:05:02:7b:37:75:b2:98:11:40:fc:67:77:c3:ca:3b:
5b:a2:8d:a9:31:f0:c3:45:68:b1:4b:eb:e3:bd:9d:2c:9c:6a:
99:6f:60:29:54:f9:f2:3a:2a:ca:0b:9a:17:ec:47:41:53:b3:
da:a4:68:94:1a:a6:66:06:91:01:c8:b0:fa:33:c5:e7:04:67:
7c:11:98:3d:52:e9:16:0f:b1:cc:98:21:e2:03:70:82:4d:69:
5f:f9:c8:73:0c:d7:d4:49:5e:52:63:1c:5a:04:61:6b:b3:c3:
ab:07:98:ec:64:14:38:e2:c3:3e:e3:37:df:81:fd:49:63:c7:
41:39:b8:b6:d0:cc:3d:12:43:2d:b6:b2:b9:ff:5f:18:f7:a6:
95:be:28:c7:d1:84:26:98:31:bb:c1:5a:8b:1d:91:f6:f6:cc:
2e:07:4c:17:6b:8d:62:ce:76:e5:e0:d7:81:fa:80:e1:f0:f0:
77:52:ed:c8:ac:41:1b:66:5a:6d:6e:c2:05:8b:5d:cd:d3:be:
65:13:66:72:a9:57:32:73:a3:0f:d2:b2:e1:63:f8:88:0d:70:
59:d7:29:7c
-----BEGIN CERTIFICATE-----
MIIEsjCCA5qgAwIBAgIUV3i1nQWLHDhAnD0FBC5YKX79cjowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzYxYzYxNjM2NGI4OTY1OWVkOWYxOGNiMGFmNzc0MjA0
MzdjYzdkYTAeFw0yMzA5MjIxMDE0MzNaFw0yNDA5MjAxMDE5MzNaMDMxMTAvBgNV
BAMTKDMzMzVGNEY0MjZFMzEwNzY5NDczMjUzMDIxN0MxRDU0OEI4RUFCRTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA3MBG5kbYRdd7qkHuaB/Jr2VB
IkmE1aLaGOH9zX694lm3+6Qt0eZfVLIdnf1EOFLb4GbBSwhn2VjJrV7RCr9mmEpo
S438OYSULLGEeqW+Bk8M57mU+Xnm/RNOrzX7mshyN905ruOGupw0D4EqSWHMR41/
I0NHwQYWcXvAKwUlWtqeYiRO09WLjPqTAERdoH3cfVp6feD2gYf4R70pvWosruWc
2p4mQ0bWMWkbyOWDMlXTjyUljtDJ6HmQqcVGPqosxNOv+SpUC5wnjqnkzA/0ENom
LC50D8yjAnetLZAMLtFUzPFRM0HBzSe8baZBLvg6ohPxrzZsLcoSw1W3TXUnAgMB
AAGjggG8MIIBuDAdBgNVHQ4EFgQUMzX09CbjEHaUcyUwIXwdVIuOq+MwHwYDVR0j
BBgwFoAUdhxhY2S4llntnxjLCvd0IEN8x9owDgYDVR0PAQH/BAQDAgeAMFUGA1Ud
HwROMEwwSqBIoEaGRHJzeW5jOi8vMC5zYi9yZXBvL3NiLzIxLzc2MUM2MTYzNjRC
ODk2NTlFRDlGMThDQjBBRjc3NDIwNDM3Q0M3REEuY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9kaHhoWTJTNGxsbnRueGpMQ3ZkMElFTjh4OW8uY2VyMG4GCCsGAQUF
BwELBGIwYDBeBggrBgEFBQcwC4ZScnN5bmM6Ly8wLnNiL3JlcG8vc2IvMjEvMzEz
OTMyMmUzMTMwMzkyZTMyMzIzODJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM4Mzgz
ODM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/
BBAwDjAMBAIAATAGAwQBwG3kMA0GCSqGSIb3DQEBCwUAA4IBAQA5X28riptL54SC
gsxQ7PTYgCOLTKecHa3/qhS6dIb0wUNf679v0TMFAns3dbKYEUD8Z3fDyjtboo2p
MfDDRWixS+vjvZ0snGqZb2ApVPnyOirKC5oX7EdBU7PapGiUGqZmBpEByLD6M8Xn
BGd8EZg9UukWD7HMmCHiA3CCTWlf+chzDNfUSV5SYxxaBGFrs8OrB5jsZBQ44sM+
4zffgf1JY8dBObi20Mw9EkMttrK5/18Y96aVvijH0YQmmDG7wVqLHZH29swuB0wX
a41iznbl4NeB+oDh8PB3Uu3IrEEbZlptbsIFi13N075lE2ZyqVcyc6MP0rLhY/iI
DXBZ1yl8
-----END CERTIFICATE-----
Generated at Tue Jun 25 09:59:42 2024 by rpki-client on console-fra.rpki-client.org