Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/1/326131313a383038303a3a2f32392d313238203d3e203233383538.roa
File: 326131313a383038303a3a2f32392d313238203d3e203233383538.roa (raw, json)
Hash identifier: QeutHCDhf5jeMRXeUc4zxIpNYUK/H2UL/XzDgr6tTxw=
Subject key identifier: 94:42:66:03:F5:C4:69:19:E4:39:EA:79:44:01:ED:BE:2A:24:36:CF
Certificate issuer: /CN=917b088922d0f33feca164e08554ec992daa39c5
Certificate serial: 565E10F00CC6A88A62C6F51A328481C625ADC0C1
Authority key identifier: 91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject info access: rsync://0.sb/repo/sb/1/326131313a383038303a3a2f32392d313238203d3e203233383538.roa
Signing time: Thu 08 Feb 2024 14:13:17 +0000
ROA not before: Thu 08 Feb 2024 14:08:17 +0000
ROA not after: Thu 06 Feb 2025 14:13:17 +0000
asID: 23858
IP address blocks: 2a11:8080::/29 maxlen: 128
Validation: OK
Signature path: rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:5e:10:f0:0c:c6:a8:8a:62:c6:f5:1a:32:84:81:c6:25:ad:c0:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917b088922d0f33feca164e08554ec992daa39c5
Validity
Not Before: Feb 8 14:08:17 2024 GMT
Not After : Feb 6 14:13:17 2025 GMT
Subject: CN=94426603F5C46919E439EA794401EDBE2A2436CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7b:18:c0:a4:0a:c7:73:35:d1:62:b6:84:bc:
be:29:ed:87:36:97:3a:36:48:60:05:67:44:60:52:
5b:61:72:47:bc:fa:70:5e:c7:31:33:41:a9:26:f7:
c2:dc:bb:8d:52:79:96:fa:f5:c1:56:f9:b2:aa:7d:
66:f3:fb:ce:e4:eb:78:72:41:81:e7:2b:99:7b:e9:
9a:58:7f:a6:d3:d7:6c:77:c3:ac:e0:f0:ad:c6:12:
aa:30:27:81:a7:e9:a4:58:85:75:e5:a5:43:62:04:
b6:f6:89:b1:7b:d7:9c:99:d5:cc:a7:de:eb:61:b3:
34:91:04:d8:f1:90:dd:62:70:01:2f:79:31:b2:09:
89:65:2d:3f:4d:12:fc:f9:29:70:b2:c5:d6:bf:45:
25:37:73:f0:25:f3:19:a8:80:74:9b:ef:68:91:69:
0c:1e:bf:59:97:f3:f3:d0:2b:b4:ca:b5:28:92:ce:
ae:c8:4e:09:13:8c:1c:c2:42:8d:72:7e:28:3b:a2:
d3:7b:45:3f:07:78:cf:d6:39:04:49:58:a6:6f:59:
1d:35:56:61:d2:5d:70:c3:fc:b4:45:ef:cb:c2:b1:
03:f4:4d:26:35:6d:6d:a5:ae:ad:77:14:b0:5a:55:
a0:ad:f7:5c:d9:4f:78:3c:d3:c6:49:a1:e3:11:f0:
56:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:42:66:03:F5:C4:69:19:E4:39:EA:79:44:01:ED:BE:2A:24:36:CF
X509v3 Authority Key Identifier:
keyid:91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/1/326131313a383038303a3a2f32392d313238203d3e203233383538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8080::/29
Signature Algorithm: sha256WithRSAEncryption
aa:2b:fe:52:ee:7b:f2:5c:35:95:8e:74:e1:46:11:ec:10:90:
2c:08:f0:02:3a:3e:f3:a0:60:32:13:b8:10:88:61:e7:f1:11:
37:86:5d:0a:df:05:39:d8:07:af:9d:bb:12:a8:1a:9a:4a:d0:
5f:6f:cc:00:97:a8:62:ad:69:cb:12:da:34:1c:1f:e1:03:d7:
ba:90:7e:a8:42:e2:4a:b6:cf:85:c4:3e:cd:ce:f1:f3:e8:2c:
41:d7:c1:09:26:23:4e:76:48:3d:f1:83:ea:29:0c:d1:54:da:
0e:46:f5:ab:e2:5c:1f:75:aa:a1:3d:64:88:ea:81:f8:61:ed:
0b:69:d2:51:be:d9:b0:53:28:b5:24:0b:04:04:82:b1:49:b2:
ff:7a:1c:37:ca:1f:0f:8b:55:af:0f:1d:c6:cf:1e:37:73:9d:
78:7a:a8:15:8a:a8:30:37:68:4a:fe:40:4d:82:d6:b0:7c:05:
16:e5:e8:0e:b0:7c:a7:a8:30:45:f0:49:7d:1a:d3:73:ef:c5:
5f:20:86:25:a0:66:c7:a7:1c:d2:59:48:47:07:d0:c4:b2:ba:
24:f5:18:79:aa:71:c9:3e:ea:e1:00:38:55:31:3f:9a:ac:c3:
07:df:4f:00:a8:6e:a7:0f:f6:bf:d8:34:27:4b:78:73:36:77:
28:7c:19:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:37:39 2024 by rpki-client on console-ams.rpki-client.org