Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/1/3134362e31392e302e302f32342d3234203d3e2038383838.roa
File: 3134362e31392e302e302f32342d3234203d3e2038383838.roa (raw, json)
Hash identifier: 2uIAnSnrLBcdTbY18RSUASHhfsWX4Y/Rk+aTHoBVkFs=
Subject key identifier: 51:6C:7C:33:26:FA:DB:5E:5A:83:6E:F5:EC:61:CF:D7:4B:AA:37:35
Certificate issuer: /CN=917b088922d0f33feca164e08554ec992daa39c5
Certificate serial: 64B596C46382BE15A92A14ACA8CEB20237A178CF
Authority key identifier: 91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject info access: rsync://0.sb/repo/sb/1/3134362e31392e302e302f32342d3234203d3e2038383838.roa
Signing time: Fri 22 Sep 2023 10:19:43 +0000
ROA not before: Fri 22 Sep 2023 10:14:43 +0000
ROA not after: Fri 20 Sep 2024 10:19:43 +0000
asID: 8888
IP address blocks: 146.19.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:b5:96:c4:63:82:be:15:a9:2a:14:ac:a8:ce:b2:02:37:a1:78:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917b088922d0f33feca164e08554ec992daa39c5
Validity
Not Before: Sep 22 10:14:43 2023 GMT
Not After : Sep 20 10:19:43 2024 GMT
Subject: CN=516C7C3326FADB5E5A836EF5EC61CFD74BAA3735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:46:e9:4b:7d:ff:26:b3:7c:d6:33:14:33:c0:
55:dd:52:09:45:a5:8e:9d:d4:61:58:c4:1f:67:22:
ea:75:3e:11:11:4b:47:14:ea:5f:27:8b:3c:03:4a:
c9:a2:0f:77:6f:84:c1:40:1e:5d:b7:19:d8:4e:d7:
6e:c4:c5:79:f9:da:13:ea:5b:ab:40:e8:c8:84:cd:
bb:3f:de:42:81:f0:69:53:7a:ba:a3:f1:0f:25:4e:
ff:fa:3f:71:dc:b5:bb:c7:96:b5:22:4f:63:2b:4f:
92:16:a3:9b:a5:23:06:24:13:a8:43:ed:94:f8:13:
7c:76:39:5b:f1:97:a9:52:68:39:6d:10:3b:87:90:
43:ea:09:e6:d4:f1:4f:05:0d:29:c2:b3:f7:dd:2b:
66:63:e7:2e:f7:1c:c6:98:5d:d4:97:e8:6d:b9:22:
b4:ae:4b:bc:73:7f:46:8d:17:f7:f2:28:b9:fe:5e:
15:ed:3b:82:86:af:91:25:7f:da:64:e2:1d:de:f5:
08:5e:0c:1e:ee:09:b4:91:2f:5b:c8:89:e3:6b:19:
d4:b6:a5:5e:fb:f7:a8:9b:e1:ae:1d:51:ff:be:4e:
00:f0:b6:ed:57:e5:df:84:c1:3d:f8:98:e3:5d:95:
63:af:d8:a5:bd:1e:e5:39:09:68:d6:35:23:76:44:
56:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:6C:7C:33:26:FA:DB:5E:5A:83:6E:F5:EC:61:CF:D7:4B:AA:37:35
X509v3 Authority Key Identifier:
keyid:91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/1/3134362e31392e302e302f32342d3234203d3e2038383838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.0.0/24
Signature Algorithm: sha256WithRSAEncryption
10:8c:0f:3f:95:2e:4f:70:21:99:06:5f:8e:56:01:2b:12:33:
41:7f:5e:f1:c3:55:0a:7b:6c:89:78:67:5d:a6:e3:33:8f:7e:
c8:e6:63:51:14:0c:20:37:28:c3:1e:37:40:cd:65:07:b0:d7:
ab:f0:b6:bb:fd:13:4e:19:79:17:e5:7a:a3:f7:27:f9:7e:89:
6f:b9:45:37:2d:a3:0a:82:20:da:64:21:61:e6:aa:0c:cd:70:
21:95:1c:52:57:6e:52:01:b8:1f:d9:f5:76:5f:1b:bd:98:70:
e1:0c:eb:7c:71:14:05:ad:8e:c3:50:54:1b:c7:59:2e:2e:46:
01:43:40:a4:8a:18:6c:ed:05:79:85:0c:aa:ad:7a:31:21:52:
67:97:ae:01:c8:bf:26:e4:51:9c:8b:89:d0:41:cf:59:63:2b:
80:fe:b0:95:0c:e5:15:90:57:df:e2:49:db:c7:6b:c7:d7:df:
3b:aa:cc:fa:70:5b:09:57:c5:c5:0e:cb:ae:86:a9:e0:64:88:
47:a9:a2:99:bd:a5:de:52:9a:ca:c6:81:08:cc:99:11:24:6e:
06:1a:5c:24:7e:f5:8f:5a:8b:f0:64:e5:dc:81:cb:7c:6c:90:
8f:05:d8:37:a2:fc:89:e2:17:5b:7d:87:0f:5c:ce:e2:e2:5c:
42:2c:0b:50
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jun 1 07:07:08 2024 by rpki-client on console-ams.rpki-client.org