Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/1/326131313a343a3a2f33322d3438203d3e2038383838.roa
File: 326131313a343a3a2f33322d3438203d3e2038383838.roa (raw, json)
Hash identifier: nthjGprB29bS7F0/pVzJClj3P0tqbP/gPezAeajZs6A=
Subject key identifier: B3:3D:56:75:B3:C2:D2:8C:32:65:E4:62:71:C4:19:DA:BA:5F:3C:EA
Certificate issuer: /CN=917b088922d0f33feca164e08554ec992daa39c5
Certificate serial: 68EC018671D2E29FFFCA7C0191BF6395B452A8A6
Authority key identifier: 91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject info access: rsync://0.sb/repo/sb/1/326131313a343a3a2f33322d3438203d3e2038383838.roa
Signing time: Fri 22 Sep 2023 10:19:45 +0000
ROA not before: Fri 22 Sep 2023 10:14:45 +0000
ROA not after: Fri 20 Sep 2024 10:19:45 +0000
asID: 8888
IP address blocks: 2a11:4::/32 maxlen: 48
Validation: OK
Signature path: rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:ec:01:86:71:d2:e2:9f:ff:ca:7c:01:91:bf:63:95:b4:52:a8:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917b088922d0f33feca164e08554ec992daa39c5
Validity
Not Before: Sep 22 10:14:45 2023 GMT
Not After : Sep 20 10:19:45 2024 GMT
Subject: CN=B33D5675B3C2D28C3265E46271C419DABA5F3CEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:00:8d:12:d9:4a:5f:d4:ed:66:0f:8a:75:75:
d4:16:a8:3c:55:94:57:68:2b:d0:ab:df:63:df:ad:
c7:8b:8d:81:58:70:f8:5c:19:0c:f1:66:40:be:23:
19:cd:66:93:e5:ec:d6:e2:ea:32:ba:54:3b:39:94:
6b:2c:59:40:e5:2d:3c:3b:b6:7e:9c:a8:7b:30:69:
16:60:bb:5a:ff:34:ba:93:4f:04:82:75:7e:da:bd:
31:51:f6:fa:83:57:87:96:52:47:53:21:b5:74:83:
18:d7:97:8c:d7:f3:0c:7b:34:4a:80:1c:c6:cd:e0:
c8:f8:ef:2b:95:9c:20:a0:63:46:4c:2e:99:e9:44:
e8:b2:4c:19:b6:52:19:ff:17:b7:76:2b:58:43:13:
65:ce:81:85:7c:6f:65:a6:f1:36:d6:5e:1f:69:58:
e2:64:16:bb:39:bd:fb:78:32:63:f4:10:86:73:cc:
dd:28:25:87:45:70:f7:7d:2b:45:56:e2:6d:0a:85:
22:d7:21:e8:2f:5d:27:d1:53:81:2f:06:39:d9:ae:
3c:ae:04:82:63:30:cb:15:25:e8:75:3f:35:3f:15:
33:de:a1:94:d4:de:10:3e:e3:6d:ee:41:96:70:a6:
ee:b2:cb:bb:b7:9f:06:4c:0c:fe:d6:3c:91:0c:df:
23:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:3D:56:75:B3:C2:D2:8C:32:65:E4:62:71:C4:19:DA:BA:5F:3C:EA
X509v3 Authority Key Identifier:
keyid:91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/1/326131313a343a3a2f33322d3438203d3e2038383838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:4::/32
Signature Algorithm: sha256WithRSAEncryption
7e:36:22:54:84:de:98:35:0f:62:76:8a:b1:0c:7a:a0:eb:94:
89:7d:4f:17:34:b3:f0:77:80:2a:ca:e1:17:c8:20:4b:e7:23:
0b:21:b9:7f:bd:12:6a:f1:07:e5:7a:39:32:f9:a4:f5:ce:3f:
e0:aa:da:d5:00:5b:8e:57:f8:da:b4:62:21:3d:46:43:eb:24:
5f:d8:aa:3b:e7:88:50:9e:16:1d:80:77:ee:5b:ed:09:69:1b:
4a:c0:1d:62:32:a2:ea:46:30:07:77:4e:9f:f5:1a:dc:f4:07:
bb:d6:cc:9c:4f:b9:58:c5:ac:76:98:fd:6e:8b:a7:50:12:f1:
1c:a2:f3:68:51:ab:1e:a6:47:6c:96:a7:e6:fd:4b:72:8c:69:
e7:7d:aa:bb:ae:91:21:c2:4f:f3:d2:9f:f7:65:12:16:c9:73:
6b:29:d1:aa:b0:1b:a8:4f:4c:b7:57:27:ab:db:84:46:58:a2:
56:24:35:83:d1:ff:e8:be:12:b3:a9:ae:3e:21:99:f3:56:9d:
dc:31:1c:71:5d:23:5c:cb:ba:a2:02:bd:49:9c:4f:de:da:03:
8b:26:90:fb:1f:7c:47:25:ff:1e:92:12:3c:0d:c3:90:4d:a0:
90:50:53:33:b6:ea:58:df:3d:e3:f2:35:c6:09:61:2a:c1:17:
7e:69:d1:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 07:07:08 2024 by rpki-client on console-ams.rpki-client.org