Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/1/326131313a353a3a2f33322d3438203d3e2038383838.roa
File: 326131313a353a3a2f33322d3438203d3e2038383838.roa (raw, json)
Hash identifier: wNlUXoMKOAwvW3VtqZEsQnve6lP6uYAPHFcZCmvaQKo=
Subject key identifier: 97:39:75:77:62:B0:11:6E:19:8F:42:5E:61:BB:5F:1D:FC:11:8F:7E
Certificate issuer: /CN=917b088922d0f33feca164e08554ec992daa39c5
Certificate serial: 493377278460A8F0F5B53B4B9ED6AA57C447FA12
Authority key identifier: 91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject info access: rsync://0.sb/repo/sb/1/326131313a353a3a2f33322d3438203d3e2038383838.roa
Signing time: Fri 22 Sep 2023 10:19:44 +0000
ROA not before: Fri 22 Sep 2023 10:14:44 +0000
ROA not after: Fri 20 Sep 2024 10:19:44 +0000
asID: 8888
IP address blocks: 2a11:5::/32 maxlen: 48
Validation: OK
Signature path: rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:33:77:27:84:60:a8:f0:f5:b5:3b:4b:9e:d6:aa:57:c4:47:fa:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917b088922d0f33feca164e08554ec992daa39c5
Validity
Not Before: Sep 22 10:14:44 2023 GMT
Not After : Sep 20 10:19:44 2024 GMT
Subject: CN=9739757762B0116E198F425E61BB5F1DFC118F7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:14:97:43:7e:b8:da:5c:e6:a4:7e:5b:3f:97:
b8:a5:cb:31:a0:ff:d9:d2:6b:5e:6e:6b:10:0a:d8:
e6:8b:d3:3c:db:ba:0a:ed:86:68:2a:a1:1e:5b:0b:
7e:51:ce:4d:1e:72:b3:2b:03:df:4c:c9:8b:69:7e:
ab:5e:05:e3:9b:39:89:5e:ed:89:dd:cb:2a:16:da:
5e:1d:9d:e8:cb:1e:b1:d2:9b:65:45:00:5b:92:c9:
dd:d0:e4:53:74:e4:88:13:95:ac:33:5d:12:df:87:
9f:03:a7:14:5b:5e:69:19:11:76:b4:63:3b:e7:ee:
99:7b:38:1a:eb:b1:47:48:fc:2f:6d:b2:50:4f:f6:
df:ea:23:f9:87:6c:42:4a:c6:26:28:4c:de:62:13:
76:51:d6:57:0b:a3:29:65:cf:f5:4e:a7:18:ff:ae:
63:b4:cd:1a:38:1d:b1:5b:72:5c:c8:3b:9c:fb:67:
82:be:83:22:03:a4:1e:c3:84:60:00:14:39:6e:7d:
a1:09:68:0b:52:af:c5:87:04:a4:d2:f9:af:c9:43:
c3:a9:00:f7:50:52:31:a6:70:33:cb:e3:7e:5a:39:
16:9d:b6:ce:77:c6:1f:c6:b6:bf:59:40:6d:1f:ab:
a2:27:b9:7d:27:ff:fa:3d:a2:97:cc:89:50:46:ac:
8b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:39:75:77:62:B0:11:6E:19:8F:42:5E:61:BB:5F:1D:FC:11:8F:7E
X509v3 Authority Key Identifier:
keyid:91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/1/326131313a353a3a2f33322d3438203d3e2038383838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:5::/32
Signature Algorithm: sha256WithRSAEncryption
41:f2:4d:2e:b6:e4:76:95:f0:2c:73:9c:d3:9d:79:35:21:e6:
51:32:b0:8a:98:cf:62:95:57:fa:76:27:e5:35:17:c8:96:0e:
6b:3c:f5:e3:a9:77:ee:fa:35:4b:74:30:70:42:65:65:d3:71:
0c:a7:95:b7:fb:bb:1c:7c:18:f4:b8:6e:00:61:f7:8b:61:eb:
ca:a4:7c:fd:b4:60:8c:08:90:62:a6:1c:f0:8a:81:8c:98:5c:
ff:51:85:bb:94:dc:15:89:de:f8:b9:21:bb:33:59:c0:bc:15:
90:15:b2:f6:82:66:9d:62:e4:d9:d8:c8:db:77:94:64:65:a5:
88:83:eb:ac:86:d4:e9:55:fa:2a:bd:33:9e:ae:2a:72:f8:40:
78:9a:db:77:0f:7e:1d:81:c0:54:4f:e0:e1:44:6e:e0:e9:2e:
55:c4:a9:6b:dd:3f:6e:54:b0:8a:d3:e5:8b:d4:d5:44:c5:79:
22:2a:98:48:29:a9:9f:36:f4:0e:00:c9:8e:f6:23:c8:af:50:
06:f4:31:40:67:90:64:2f:bf:8a:13:07:62:72:4f:7c:44:73:
f8:74:33:02:ce:97:3f:36:76:c8:57:4f:4a:10:b4:ab:09:2a:
17:98:64:6d:54:85:b2:6b:83:a7:4f:29:f9:17:17:d6:79:74:
15:d1:7f:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 20:40:44 2024 by rpki-client on console-fra.rpki-client.org