Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/1/37382e33312e3231312e302f32342d3234203d3e2038383838.roa
File: 37382e33312e3231312e302f32342d3234203d3e2038383838.roa (raw, json)
Hash identifier: mVDQBiKeTGRej0uimZvtrlOeB2PvIMpvZ0UaIiGNKMU=
Subject key identifier: C7:ED:A4:78:5D:1D:7D:75:92:6A:77:F4:BF:47:BA:E4:63:20:77:07
Certificate issuer: /CN=917b088922d0f33feca164e08554ec992daa39c5
Certificate serial: 3DB5B83FBD2DD1B03FC499973AE421CA415310E0
Authority key identifier: 91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject info access: rsync://0.sb/repo/sb/1/37382e33312e3231312e302f32342d3234203d3e2038383838.roa
Signing time: Wed 27 Dec 2023 14:43:34 +0000
ROA not before: Wed 27 Dec 2023 14:38:34 +0000
ROA not after: Wed 25 Dec 2024 14:43:34 +0000
asID: 8888
IP address blocks: 78.31.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:b5:b8:3f:bd:2d:d1:b0:3f:c4:99:97:3a:e4:21:ca:41:53:10:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917b088922d0f33feca164e08554ec992daa39c5
Validity
Not Before: Dec 27 14:38:34 2023 GMT
Not After : Dec 25 14:43:34 2024 GMT
Subject: CN=C7EDA4785D1D7D75926A77F4BF47BAE463207707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:24:43:30:c7:5d:dc:a1:9d:61:82:95:4a:a8:
64:06:d1:13:6d:d5:7a:cd:4d:5a:56:75:1e:05:b2:
86:41:80:5b:94:f0:94:f2:3f:6b:88:31:fd:d7:ea:
8e:4b:14:67:be:02:3a:4b:c6:1d:50:fe:e7:9b:58:
41:b0:26:30:02:59:ab:73:f1:12:dc:2e:43:a2:2b:
f7:80:ae:b8:c3:6e:48:cb:02:dc:96:2c:b4:6e:17:
01:f4:55:fd:1b:ba:5b:b8:4f:96:bb:4c:05:44:6b:
0d:e6:07:a0:86:61:d6:85:03:3a:cd:1e:4e:10:b4:
2b:96:d5:13:30:b9:bd:e7:3e:2e:6a:c1:95:1f:e0:
c9:c7:a2:bd:be:5f:23:f7:0e:3b:f7:8e:84:73:1f:
ed:2d:20:44:80:46:5f:f4:d6:20:26:df:bf:46:1d:
49:51:b3:40:6b:52:da:40:0a:db:cd:0b:b4:16:13:
d4:fc:28:98:58:79:dc:41:a4:c4:87:98:29:56:e9:
c3:56:0c:1f:09:6a:40:bb:d6:bb:1a:8d:a2:f6:60:
78:31:72:11:2d:f6:cd:d6:9c:66:20:8f:e4:bd:27:
3e:5c:33:5e:0c:79:24:11:76:71:ff:10:b3:c2:32:
14:54:4c:64:61:a5:46:ae:0a:b3:67:50:bb:df:0f:
f4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:ED:A4:78:5D:1D:7D:75:92:6A:77:F4:BF:47:BA:E4:63:20:77:07
X509v3 Authority Key Identifier:
keyid:91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/1/37382e33312e3231312e302f32342d3234203d3e2038383838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.31.211.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:55:d1:27:74:b5:51:b8:d1:8e:b6:9e:74:a9:04:a2:84:0b:
16:cd:29:af:f9:b0:38:bc:06:54:de:ba:c9:ac:3f:6d:6b:5d:
c6:4f:17:b2:44:d7:5d:b9:52:b6:00:33:ce:8c:1f:d3:72:82:
16:11:2a:c2:71:f5:d8:f3:0c:a7:4f:26:87:14:6a:3d:54:24:
b3:de:ca:2d:a3:77:d9:72:d9:5a:44:a0:6b:a8:ef:40:e0:7c:
6c:f1:45:71:71:33:d2:2a:54:cf:9a:06:2a:a0:7b:27:3e:8e:
f1:ba:c9:c3:64:6b:68:2d:82:c1:5e:23:dc:b5:5a:aa:33:99:
b8:a8:53:58:df:d7:ad:1b:50:35:e1:53:dd:61:16:3d:f8:08:
f1:55:4d:25:cf:5e:2d:98:89:5b:50:a7:08:a7:c4:74:f4:71:
89:c9:ea:ca:e7:a3:02:4b:24:4e:24:9e:88:50:69:9d:fe:bb:
51:bc:f5:8d:8f:76:f6:05:04:92:d9:1b:0a:e6:78:1f:3b:4e:
46:49:29:d6:d3:9e:5b:45:ca:b0:86:6a:7e:fd:55:52:dd:88:
5f:1d:d3:3d:9a:e8:27:40:4f:38:37:5b:ec:4a:ce:73:e4:e1:
59:4e:96:33:ca:7c:b3:d9:11:1b:f5:c3:7d:a7:9c:ce:12:f4:
e4:0c:18:e3
-----BEGIN CERTIFICATE-----
MIIErDCCA5SgAwIBAgIUPbW4P70t0bA/xJmXOuQhykFTEOAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTE3YjA4ODkyMmQwZjMzZmVjYTE2NGUwODU1NGVjOTky
ZGFhMzljNTAeFw0yMzEyMjcxNDM4MzRaFw0yNDEyMjUxNDQzMzRaMDMxMTAvBgNV
BAMTKEM3RURBNDc4NUQxRDdENzU5MjZBNzdGNEJGNDdCQUU0NjMyMDc3MDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClJEMwx13coZ1hgpVKqGQG0RNt
1XrNTVpWdR4FsoZBgFuU8JTyP2uIMf3X6o5LFGe+AjpLxh1Q/uebWEGwJjACWatz
8RLcLkOiK/eArrjDbkjLAtyWLLRuFwH0Vf0bulu4T5a7TAVEaw3mB6CGYdaFAzrN
Hk4QtCuW1RMwub3nPi5qwZUf4MnHor2+XyP3Djv3joRzH+0tIESARl/01iAm379G
HUlRs0BrUtpACtvNC7QWE9T8KJhYedxBpMSHmClW6cNWDB8JakC71rsajaL2YHgx
chEt9s3WnGYgj+S9Jz5cM14MeSQRdnH/ELPCMhRUTGRhpUauCrNnULvfD/QtAgMB
AAGjggG2MIIBsjAdBgNVHQ4EFgQUx+2keF0dfXWSanf0v0e65GMgdwcwHwYDVR0j
BBgwFoAUkXsIiSLQ8z/soWTghVTsmS2qOcUwDgYDVR0PAQH/BAQDAgeAMFQGA1Ud
HwRNMEswSaBHoEWGQ3JzeW5jOi8vMC5zYi9yZXBvL3NiLzEvOTE3QjA4ODkyMkQw
RjMzRkVDQTE2NEUwODU1NEVDOTkyREFBMzlDNS5jcmwwZAYIKwYBBQUHAQEEWDBW
MFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxUL2tYc0lpU0xROHpfc29XVGdoVlRzbVMycU9jVS5jZXIwaQYIKwYBBQUH
AQsEXTBbMFkGCCsGAQUFBzALhk1yc3luYzovLzAuc2IvcmVwby9zYi8xLzM3Mzgy
ZTMzMzEyZTMyMzEzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzgzODM4LnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQATh/TMA0GCSqGSIb3DQEBCwUAA4IBAQBLVdEndLVRuNGOtp50qQSi
hAsWzSmv+bA4vAZU3rrJrD9ta13GTxeyRNdduVK2ADPOjB/TcoIWESrCcfXY8wyn
TyaHFGo9VCSz3soto3fZctlaRKBrqO9A4Hxs8UVxcTPSKlTPmgYqoHsnPo7xusnD
ZGtoLYLBXiPctVqqM5m4qFNY39etG1A14VPdYRY9+AjxVU0lz14tmIlbUKcIp8R0
9HGJyerK56MCSyROJJ6IUGmd/rtRvPWNj3b2BQSS2RsK5ngfO05GSSnW055bRcqw
hmp+/VVS3YhfHdM9mugnQE84N1vsSs5z5OFZTpYzynyz2REb9cN9p5zOEvTkDBjj
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:37:40 2024 by rpki-client on console-ams.rpki-client.org