Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/1/3134362e31392e3134352e302f32342d3234203d3e2038383838.roa
File: 3134362e31392e3134352e302f32342d3234203d3e2038383838.roa (raw, json)
Hash identifier: UR2be2wKKxV/30zai705hlCSe6fGiL7hYLTIuMgZKKE=
Subject key identifier: 83:5E:0B:10:97:EE:CB:AD:91:F7:96:57:F7:65:2B:84:D6:47:3B:7A
Certificate issuer: /CN=917b088922d0f33feca164e08554ec992daa39c5
Certificate serial: 0B0612DCC0CB65F7C6F4685D935A3AEB85D3A2CE
Authority key identifier: 91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject info access: rsync://0.sb/repo/sb/1/3134362e31392e3134352e302f32342d3234203d3e2038383838.roa
Signing time: Sat 19 Oct 2024 16:51:42 +0000
ROA not before: Sat 19 Oct 2024 16:46:42 +0000
ROA not after: Sat 18 Oct 2025 16:51:42 +0000
asID: 8888
IP address blocks: 146.19.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:06:12:dc:c0:cb:65:f7:c6:f4:68:5d:93:5a:3a:eb:85:d3:a2:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917b088922d0f33feca164e08554ec992daa39c5
Validity
Not Before: Oct 19 16:46:42 2024 GMT
Not After : Oct 18 16:51:42 2025 GMT
Subject: CN=835E0B1097EECBAD91F79657F7652B84D6473B7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ac:76:4b:13:c1:32:82:de:eb:a3:58:1a:33:
fa:7a:12:1a:0c:e8:7d:ee:e6:77:cf:97:da:05:bf:
05:ce:94:1c:e2:78:53:1e:ce:36:f5:5c:ce:38:a9:
37:06:a1:c1:b3:00:db:5a:30:de:61:d3:cf:60:00:
6a:d7:36:2a:91:4c:77:0b:00:87:0d:7a:b4:62:5e:
80:a8:d2:67:3c:a2:35:4b:dc:07:93:ff:20:25:c8:
41:0a:dd:e4:3a:0c:75:c6:56:41:15:6f:08:5f:61:
d5:ae:83:27:f2:8f:2d:1a:b6:53:69:d5:eb:6f:e0:
03:03:63:60:f2:66:70:f2:16:43:26:10:93:b1:80:
3d:99:79:8b:bf:c2:8e:d0:f0:25:eb:d5:c3:17:c9:
c9:6e:8b:21:4a:ea:d9:85:87:92:b6:21:2a:b2:dd:
17:69:d7:50:41:04:fe:cc:bb:15:f5:0a:05:b7:cb:
d0:7c:7b:ec:50:52:7f:48:ee:6d:a6:aa:05:f3:c8:
bf:cb:97:0c:ab:00:c1:8f:4f:df:80:72:ff:68:47:
cc:eb:6d:27:e7:15:0e:3e:48:a8:f3:46:60:21:87:
fd:86:4c:a7:b3:8c:e4:f1:c2:59:10:f4:b5:3a:2f:
b3:e3:fd:79:ca:dd:a8:54:13:26:29:d8:51:fc:ed:
50:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5E:0B:10:97:EE:CB:AD:91:F7:96:57:F7:65:2B:84:D6:47:3B:7A
X509v3 Authority Key Identifier:
keyid:91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/1/3134362e31392e3134352e302f32342d3234203d3e2038383838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.145.0/24
Signature Algorithm: sha256WithRSAEncryption
84:1f:e4:df:c5:99:75:6b:19:98:55:48:26:14:ea:26:11:1f:
df:c5:e4:4d:a2:71:1e:a0:c8:13:13:fe:76:5c:c6:c4:77:57:
0e:c6:23:e8:84:df:04:9d:9c:6c:f4:a9:7c:59:b3:11:ce:c6:
a6:d5:e8:9d:ff:93:b2:5e:9e:f0:cd:bb:11:40:e2:c3:05:1e:
a9:4a:96:ee:bb:fd:76:6d:88:2b:96:f9:5d:9f:3d:8a:b1:34:
df:79:7e:d8:53:b3:09:66:f9:67:24:d3:8a:16:5e:3f:40:99:
c0:59:ed:76:67:c7:b1:a7:64:55:38:ca:28:85:b8:a3:85:f4:
9e:88:7c:76:9d:82:cc:e6:be:75:e0:3f:d8:ea:d8:61:b0:6c:
a8:11:3e:09:ff:2b:e0:e9:53:cd:e6:cc:46:37:04:a2:2b:68:
32:23:d3:a5:49:5e:8e:68:a2:95:9f:c5:c9:2f:5a:35:96:e6:
55:04:95:a3:95:43:03:c6:9b:ae:64:12:30:53:fd:cd:e6:ca:
b5:1b:07:66:0d:88:da:71:ee:12:05:b1:14:f6:3e:c4:e4:36:
3b:4d:a1:ae:9f:7f:36:c8:f3:c8:3e:5d:68:53:e4:78:4c:6d:
00:1f:f2:e3:48:92:45:d2:d9:fa:84:2b:69:09:62:35:1f:af:
1e:af:38:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:37:39 2024 by rpki-client on console-ams.rpki-client.org