Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/2/326131323a613330303a3a2f32392d3438203d3e2034373835.roa
File: 326131323a613330303a3a2f32392d3438203d3e2034373835.roa (raw, json)
Hash identifier: dI/MDZbdhbXnl5S3SuXEOZ+NcPihVTzID83ePpEQrNs=
Subject key identifier: 05:F5:9D:EB:2B:B9:D1:90:A0:A1:42:75:A8:49:3E:8E:0C:28:7C:83
Certificate issuer: /CN=b8dbabfd927400709bf42ca6bd5b61cfe63d1bc0
Certificate serial: 14BC34D70645A5F92E4C1A20EE634480F7D522F6
Authority key identifier: B8:DB:AB:FD:92:74:00:70:9B:F4:2C:A6:BD:5B:61:CF:E6:3D:1B:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNur_ZJ0AHCb9CymvVthz-Y9G8A.cer
Subject info access: rsync://0.sb/repo/sb/2/326131323a613330303a3a2f32392d3438203d3e2034373835.roa
Signing time: Tue 02 May 2023 17:30:45 +0000
ROA not before: Tue 02 May 2023 17:25:45 +0000
ROA not after: Tue 30 Apr 2024 17:30:45 +0000
asID: 4785
IP address blocks: 2a12:a300::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:bc:34:d7:06:45:a5:f9:2e:4c:1a:20:ee:63:44:80:f7:d5:22:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8dbabfd927400709bf42ca6bd5b61cfe63d1bc0
Validity
Not Before: May 2 17:25:45 2023 GMT
Not After : Apr 30 17:30:45 2024 GMT
Subject: CN=05F59DEB2BB9D190A0A14275A8493E8E0C287C83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ee:cc:1a:85:f0:8a:d6:01:49:16:53:4b:f7:
0e:b5:a3:df:d9:47:9a:0c:f2:16:b8:60:31:9f:7b:
4f:b3:6b:d8:e7:83:d0:e7:c8:44:1d:a9:80:0f:c4:
bd:3f:e1:07:ea:0f:b9:46:6b:c6:53:48:7f:5a:d6:
41:9c:60:31:f6:72:a7:65:9a:91:1d:26:20:15:10:
6b:32:50:27:e1:52:2e:92:1e:75:ce:b2:9e:9a:f7:
f9:ad:2a:67:df:0f:26:ba:f9:33:03:c8:12:cf:f5:
47:cd:c8:05:71:79:3f:d6:22:32:c3:00:cd:5a:6d:
bc:73:9a:f3:73:4f:0e:27:7c:b8:97:96:ec:a9:5a:
55:85:68:a3:83:35:c2:58:e9:0b:f6:b7:19:8e:4e:
74:f7:c4:d0:2c:3f:d8:57:b5:6c:27:96:85:9e:1e:
9b:5b:ae:04:b4:b6:a5:b3:56:59:20:27:99:41:a5:
00:79:30:5c:a7:1b:8d:f6:29:4e:72:5d:86:8f:2c:
3c:c5:c8:c5:9d:e0:5a:35:54:5b:4b:3e:45:d9:55:
f3:27:90:04:2b:ac:b2:65:db:a8:d9:a0:6b:cb:26:
62:85:1d:8b:8e:99:61:f1:93:02:e4:95:9f:1e:76:
9b:6f:7a:83:ec:97:0d:83:1d:73:df:30:f9:a1:4f:
17:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F5:9D:EB:2B:B9:D1:90:A0:A1:42:75:A8:49:3E:8E:0C:28:7C:83
X509v3 Authority Key Identifier:
keyid:B8:DB:AB:FD:92:74:00:70:9B:F4:2C:A6:BD:5B:61:CF:E6:3D:1B:C0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/2/B8DBABFD927400709BF42CA6BD5B61CFE63D1BC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNur_ZJ0AHCb9CymvVthz-Y9G8A.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/2/326131323a613330303a3a2f32392d3438203d3e2034373835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:a300::/29
Signature Algorithm: sha256WithRSAEncryption
1e:57:04:97:73:e3:08:a6:bb:dd:60:08:ff:65:57:fd:50:98:
1d:4b:06:a8:ab:f0:26:c2:87:3c:03:af:aa:72:66:59:56:a2:
29:84:e0:09:33:7b:0b:b8:8e:72:10:18:c5:07:f4:e7:ea:c3:
d9:68:45:28:84:0d:56:cc:b4:bb:83:49:c1:c2:89:c8:63:a0:
7a:6e:cf:57:f9:6e:47:fd:0a:b8:e9:91:49:d6:25:a7:9e:b2:
30:30:00:d1:f4:a6:53:53:37:92:ba:85:1c:a6:cb:03:8f:74:
4d:0e:3b:58:55:53:ff:bc:d9:1b:cf:db:c4:05:42:2d:cc:19:
8e:78:cb:0e:75:4d:4e:7e:fa:7b:41:e6:02:11:91:75:b8:11:
76:49:a5:12:66:51:ea:e2:65:b5:26:9f:79:c1:ff:94:6c:e0:
2e:31:e3:68:b0:44:a4:81:f4:fb:5a:c2:ee:d8:6f:9f:d7:14:
05:fa:d0:fb:ab:7a:1b:9a:94:bc:ef:15:cc:93:cf:29:72:50:
7b:1c:52:10:e8:df:92:75:8a:52:5a:d6:ca:c2:16:36:79:9b:
1c:d9:56:b0:0b:f1:06:7d:b1:47:cf:eb:50:81:c6:c0:80:4b:
26:0b:c2:e8:04:30:06:28:86:7b:b2:08:04:13:ff:00:bf:65:
a4:12:7a:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org