Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/21/3139322e3130392e3233332e302f32342d3234203d3e203233393539.roa
File: 3139322e3130392e3233332e302f32342d3234203d3e203233393539.roa (raw, json)
Hash identifier: J5aOLoRcUxaAJ7k/nfwhvsUMU6hEc5tlHoMGmkz/TJE=
Subject key identifier: 13:DA:31:6E:B6:C4:62:35:40:26:C8:E1:B4:8B:62:D4:F8:45:35:26
Certificate issuer: /CN=761c616364b89659ed9f18cb0af77420437cc7da
Certificate serial: 587A67FC310E58397979EB7E6F0A59900356C730
Authority key identifier: 76:1C:61:63:64:B8:96:59:ED:9F:18:CB:0A:F7:74:20:43:7C:C7:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dhxhY2S4llntnxjLCvd0IEN8x9o.cer
Subject info access: rsync://0.sb/repo/sb/21/3139322e3130392e3233332e302f32342d3234203d3e203233393539.roa
Signing time: Fri 23 Aug 2024 10:47:06 +0000
ROA not before: Fri 23 Aug 2024 10:42:06 +0000
ROA not after: Fri 22 Aug 2025 10:47:06 +0000
asID: 23959
IP address blocks: 192.109.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:7a:67:fc:31:0e:58:39:79:79:eb:7e:6f:0a:59:90:03:56:c7:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=761c616364b89659ed9f18cb0af77420437cc7da
Validity
Not Before: Aug 23 10:42:06 2024 GMT
Not After : Aug 22 10:47:06 2025 GMT
Subject: CN=13DA316EB6C462354026C8E1B48B62D4F8453526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:af:5b:c8:ed:56:07:bc:c6:2e:97:07:44:7c:
60:8c:69:3d:e7:6a:5c:65:74:4a:41:2d:fd:c1:c6:
35:a5:99:fc:a3:73:8b:5d:fc:2d:ae:48:c4:ab:59:
cf:f5:81:f6:f6:b4:ad:d5:dd:9c:39:b4:03:7e:5d:
55:dd:2d:55:11:fd:4a:01:c0:dd:c2:65:ee:ec:9b:
fe:8c:30:8a:e6:df:43:f2:99:bb:40:7d:37:f0:9d:
12:4d:28:38:ab:b1:5b:de:9c:53:c5:87:be:56:6c:
90:47:c1:7f:8b:f1:b1:0b:3c:15:12:61:ff:c3:00:
f7:75:ab:92:e3:f3:42:bb:72:3b:b7:cd:13:1b:10:
a6:7e:90:76:ea:b4:00:17:b3:e3:4c:b1:da:ef:9a:
cf:5a:2f:47:b0:a2:46:a3:a8:be:6f:73:f3:9f:40:
bd:c0:e4:68:82:6c:06:2d:15:ec:ac:4b:fd:af:ae:
45:0b:10:bc:73:9e:8e:5e:90:5f:67:da:e3:98:df:
0d:91:61:11:7c:df:49:c7:c3:f4:6f:39:85:c8:f1:
66:de:e6:3a:3a:a9:99:09:a3:6f:23:96:08:b0:9d:
61:ba:36:09:47:38:de:3c:30:e8:ad:6c:99:38:6b:
01:68:5d:f3:08:4d:45:ec:8f:09:a5:c4:70:4a:a0:
44:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:DA:31:6E:B6:C4:62:35:40:26:C8:E1:B4:8B:62:D4:F8:45:35:26
X509v3 Authority Key Identifier:
keyid:76:1C:61:63:64:B8:96:59:ED:9F:18:CB:0A:F7:74:20:43:7C:C7:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/21/761C616364B89659ED9F18CB0AF77420437CC7DA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dhxhY2S4llntnxjLCvd0IEN8x9o.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/21/3139322e3130392e3233332e302f32342d3234203d3e203233393539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.233.0/24
Signature Algorithm: sha256WithRSAEncryption
77:13:af:ea:45:df:29:47:99:8c:aa:09:0e:a2:da:b5:94:f2:
6e:48:bd:89:5f:cc:01:f7:1f:de:85:2d:cc:58:0b:8f:12:39:
cd:29:fb:01:07:cd:e9:c8:4a:75:31:e6:12:30:c7:dc:0d:c3:
4c:fd:74:be:d5:17:d7:ad:49:b2:92:53:ac:d4:0f:4e:23:0c:
e7:df:1b:c6:a1:10:07:e0:13:e6:cf:71:ac:d3:ca:99:76:f1:
6a:c3:6f:6d:fb:6e:10:9e:d6:f2:df:ba:66:1c:9b:a0:ae:ba:
c6:a4:bd:b5:5c:10:1b:ce:b7:b0:e3:a2:35:64:ab:71:3f:e0:
4a:7b:dc:20:c6:28:4b:cb:8d:f7:a0:29:c9:4c:a0:9a:3d:5a:
3f:22:6b:98:57:ca:ff:62:ca:5f:8c:a7:be:1e:5a:ce:5e:8d:
cb:52:89:d4:4d:f6:54:f0:d3:24:51:47:1c:92:61:65:d3:b3:
87:b2:10:75:e8:bf:40:2d:af:96:87:98:dc:3f:ad:b5:02:37:
30:7d:a0:d6:f5:ed:16:47:d6:54:be:fc:97:52:39:a5:cc:0e:
b1:35:3e:bf:19:b1:7d:ac:7b:95:0e:b4:6b:90:99:31:28:5a:
95:60:8f:80:9f:95:73:e3:62:c2:31:8c:37:7c:70:f9:44:23:
fa:be:79:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:37:40 2025 by rpki-client