Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/21/3139322e3130392e3233332e302f32342d3234203d3e2033323538.roa
File: 3139322e3130392e3233332e302f32342d3234203d3e2033323538.roa (raw, json)
Hash identifier: 35HIvB1NJAg4EmZiQ1GMX+LkEpwgxieCCHlgAiJUbxA=
Subject key identifier: 89:24:41:79:5E:0E:19:BF:BB:54:B8:BA:7D:0E:4C:2F:29:70:94:0C
Certificate issuer: /CN=761c616364b89659ed9f18cb0af77420437cc7da
Certificate serial: 5DE7EF33A3DD5BD8B0F21D4CFBF4B7AB080B92C2
Authority key identifier: 76:1C:61:63:64:B8:96:59:ED:9F:18:CB:0A:F7:74:20:43:7C:C7:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dhxhY2S4llntnxjLCvd0IEN8x9o.cer
Subject info access: rsync://0.sb/repo/sb/21/3139322e3130392e3233332e302f32342d3234203d3e2033323538.roa
Signing time: Fri 10 May 2024 08:47:00 +0000
ROA not before: Fri 10 May 2024 08:42:00 +0000
ROA not after: Fri 09 May 2025 08:47:00 +0000
asID: 3258
IP address blocks: 192.109.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://0.sb/repo/sb/21/761C616364B89659ED9F18CB0AF77420437CC7DA.crl
rsync://0.sb/repo/sb/21/761C616364B89659ED9F18CB0AF77420437CC7DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dhxhY2S4llntnxjLCvd0IEN8x9o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Jun 2024 20:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:e7:ef:33:a3:dd:5b:d8:b0:f2:1d:4c:fb:f4:b7:ab:08:0b:92:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=761c616364b89659ed9f18cb0af77420437cc7da
Validity
Not Before: May 10 08:42:00 2024 GMT
Not After : May 9 08:47:00 2025 GMT
Subject: CN=892441795E0E19BFBB54B8BA7D0E4C2F2970940C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1e:4b:44:f0:9c:51:9d:39:4f:10:7e:15:5f:
2d:ef:85:27:92:f9:f6:60:f7:8a:65:57:b0:c5:bb:
3e:63:14:7e:76:fb:50:1a:43:de:85:5b:e7:79:39:
d4:c9:d5:03:99:ca:aa:14:4c:6c:45:e0:78:7e:c4:
6a:c8:c7:12:4e:c4:d7:b5:27:1e:b0:3a:b0:d3:ce:
ac:a8:80:7c:55:bf:89:78:18:9e:08:de:8e:fc:33:
d9:f4:79:fc:f6:f5:eb:75:e6:58:85:6a:e3:dd:7e:
93:8d:8a:39:ed:4a:d2:44:2b:2b:f1:cd:cb:d3:26:
26:53:2e:76:95:1a:96:bd:83:b0:e7:90:4b:8f:b9:
e3:cb:16:9e:49:59:76:93:d3:99:57:be:87:94:ae:
02:d3:7d:4c:aa:7c:ea:fb:10:ed:17:47:26:39:1b:
6a:ae:86:78:94:ef:e4:05:28:2c:a2:11:d4:60:00:
20:a6:f7:50:5c:dc:50:ba:56:c9:9b:dc:0b:3d:db:
ae:f6:a8:0f:a0:2e:22:f0:b3:19:69:5f:d3:6a:27:
e7:d6:7c:8e:50:d7:8b:6c:55:f8:59:f9:26:e9:18:
f4:b0:cf:55:60:bd:d4:22:cb:c4:bb:e1:dd:ee:08:
23:8e:2a:09:31:64:37:eb:33:50:fc:26:fd:42:cb:
f6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:24:41:79:5E:0E:19:BF:BB:54:B8:BA:7D:0E:4C:2F:29:70:94:0C
X509v3 Authority Key Identifier:
keyid:76:1C:61:63:64:B8:96:59:ED:9F:18:CB:0A:F7:74:20:43:7C:C7:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/21/761C616364B89659ED9F18CB0AF77420437CC7DA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dhxhY2S4llntnxjLCvd0IEN8x9o.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/21/3139322e3130392e3233332e302f32342d3234203d3e2033323538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.233.0/24
Signature Algorithm: sha256WithRSAEncryption
12:45:d8:4d:de:ff:e5:72:26:14:e2:bd:ae:2e:fc:2d:9d:b9:
18:e4:f8:7a:5c:2c:cd:24:74:bf:5a:43:a4:04:30:a2:e0:81:
2b:84:be:f0:ac:7c:0e:80:7e:44:54:5b:bc:17:f4:3c:3c:d9:
c6:49:d2:66:7f:74:99:1f:c8:a9:f7:34:24:dc:7c:16:80:ad:
b5:01:fc:af:f5:e7:4a:17:ba:07:46:5f:5c:12:63:9a:d0:1a:
b2:f4:77:d0:2f:dd:7a:31:72:27:ea:5c:13:1e:18:e0:a5:46:
74:25:6e:a7:fc:0f:65:93:c8:e9:a5:3a:27:60:27:6a:4f:15:
4b:a7:ea:c0:83:a7:67:29:72:94:93:ba:c4:32:af:ef:cb:65:
4d:2d:b3:1b:6c:29:e9:73:74:9a:00:16:2a:88:55:11:1a:4e:
b6:c2:29:a3:3b:a5:6d:2d:4f:c0:03:6e:75:5e:e1:ac:3c:84:
18:d1:fa:9b:f4:a9:45:34:46:11:21:3e:1a:54:0d:09:17:13:
43:f2:2f:a3:aa:3a:29:d8:ac:65:1b:d4:8a:f2:5a:d2:28:f6:
e5:d0:d6:c8:ac:d4:75:d7:1f:5b:4a:93:d5:31:41:66:4e:4e:
30:f4:1b:f1:f8:cc:ee:f6:2c:70:95:16:98:5a:d2:9e:96:51:
29:ba:9e:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 05:06:11 2024 by rpki-client on console-ams.rpki-client.org