Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/15/3130392e3130372e3133372e302f32342d3234203d3e2038383838.roa
File: 3130392e3130372e3133372e302f32342d3234203d3e2038383838.roa (raw, json)
Hash identifier: R5GhzhthmcFugeD3Let0+w0xbgD4iBtJXrCRKacApyg=
Subject key identifier: B6:5D:66:20:64:E9:CA:B2:02:2C:13:3B:CF:68:B1:39:D5:3D:37:EE
Certificate issuer: /CN=dfb459f0d5057f7f3e19adfcda1765ee0603acf7
Certificate serial: 76E03AF281582C0A7EE76049D4CA4D7C1DDF8D46
Authority key identifier: DF:B4:59:F0:D5:05:7F:7F:3E:19:AD:FC:DA:17:65:EE:06:03:AC:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37RZ8NUFf38-Ga382hdl7gYDrPc.cer
Subject info access: rsync://0.sb/repo/sb/15/3130392e3130372e3133372e302f32342d3234203d3e2038383838.roa
Signing time: Fri 22 Sep 2023 10:19:37 +0000
ROA not before: Fri 22 Sep 2023 10:14:37 +0000
ROA not after: Fri 20 Sep 2024 10:19:37 +0000
asID: 8888
IP address blocks: 109.107.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:e0:3a:f2:81:58:2c:0a:7e:e7:60:49:d4:ca:4d:7c:1d:df:8d:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb459f0d5057f7f3e19adfcda1765ee0603acf7
Validity
Not Before: Sep 22 10:14:37 2023 GMT
Not After : Sep 20 10:19:37 2024 GMT
Subject: CN=B65D662064E9CAB2022C133BCF68B139D53D37EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cf:96:00:cd:aa:4b:aa:0d:5f:f6:f4:df:89:
aa:51:15:30:d2:1c:19:2d:27:1c:31:61:7b:02:b0:
cf:23:ea:2c:63:15:68:42:65:6f:9f:fc:0d:ca:31:
b5:3d:8b:59:b3:49:ed:a1:87:a6:30:8c:a0:11:30:
41:97:91:7c:b1:7d:38:45:53:80:95:0f:ac:d0:6c:
1e:75:f8:49:f1:02:a3:a4:02:2d:ca:99:fc:12:24:
9b:01:27:00:ed:d4:54:fa:1d:95:0e:46:31:7d:3c:
88:6c:a2:af:aa:6e:e1:f7:5a:17:34:8e:e3:ac:aa:
b1:b0:8f:02:13:47:14:74:86:d5:04:c7:81:c1:32:
4e:09:e5:2c:27:98:54:87:51:6d:ff:9e:4a:d5:c0:
39:f9:e3:30:8c:8b:7d:8f:75:d8:30:7f:cb:b9:89:
f8:9a:15:5f:3a:0a:6f:3e:32:96:ef:0b:01:6e:22:
cf:ec:16:33:68:d5:9a:1c:29:fe:a7:b8:24:db:80:
fc:ed:a2:b4:7b:ba:d8:b0:6e:0f:6e:72:68:19:f9:
80:88:18:d0:14:e6:c7:93:91:79:3f:9f:e0:42:f2:
8a:db:c9:bb:e4:47:3c:22:31:cc:80:97:f5:60:5a:
95:c5:90:29:97:8a:18:35:4b:60:a1:fd:71:6b:6a:
2a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:5D:66:20:64:E9:CA:B2:02:2C:13:3B:CF:68:B1:39:D5:3D:37:EE
X509v3 Authority Key Identifier:
keyid:DF:B4:59:F0:D5:05:7F:7F:3E:19:AD:FC:DA:17:65:EE:06:03:AC:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/15/DFB459F0D5057F7F3E19ADFCDA1765EE0603ACF7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37RZ8NUFf38-Ga382hdl7gYDrPc.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/15/3130392e3130372e3133372e302f32342d3234203d3e2038383838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.137.0/24
Signature Algorithm: sha256WithRSAEncryption
54:d8:22:00:cd:67:90:a7:9c:9d:d5:d8:b4:be:84:9d:c9:59:
94:b7:5f:f8:f5:be:16:cb:50:26:de:bc:8a:f8:24:c2:67:a6:
3c:cf:b7:a4:72:7e:be:8d:a7:3c:eb:33:cd:84:90:7c:55:e0:
42:b1:2d:b4:7e:b7:df:7f:e8:1b:0a:54:3d:0e:66:07:4b:19:
95:ae:61:0b:cf:e7:b8:09:96:c8:7a:4a:6d:bc:df:f7:9e:41:
71:68:a6:87:a5:a7:22:17:02:eb:c5:b3:a5:02:3f:73:be:18:
58:c5:9c:b0:9b:66:f8:56:df:a2:c5:e6:a1:3d:b6:0b:da:96:
4c:c8:aa:4f:21:6f:9c:32:40:af:84:f4:ca:47:5d:7e:32:b7:
82:fa:e1:f6:75:92:c0:03:de:6c:c6:81:0b:ab:68:9c:42:db:
70:a9:14:fd:3c:5f:ac:a7:68:40:fc:ee:3d:5b:34:9e:67:37:
07:48:79:9e:4a:6e:19:84:16:ba:e8:32:a2:db:b3:24:31:b6:
1f:67:8c:15:1e:1e:3b:2b:90:3b:18:9e:fb:37:93:44:7f:e1:
fa:ed:e0:d2:1b:cf:21:7d:0b:1a:ae:f4:3c:46:b0:3d:d3:bb:
65:2f:c1:6f:46:15:07:8a:30:0a:73:54:40:8f:8d:6d:4d:e0:
f6:6b:8e:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org