Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/22/33312e32342e38362e302f32342d3234203d3e20313336383937.roa
File: 33312e32342e38362e302f32342d3234203d3e20313336383937.roa (raw, json)
Hash identifier: BVs6D16irmtKlYm2Zj9Vkd6M4upMCNutsfdlWc4XN+s=
Subject key identifier: 90:B5:60:00:1F:DE:75:CA:2E:2B:18:23:51:1D:8D:53:52:B0:6E:69
Certificate issuer: /CN=322056fd080c9cdacb18a9c427eb01033b2d0854
Certificate serial: 40626702F7D8D0C88BB9C08A410AAE232361F722
Authority key identifier: 32:20:56:FD:08:0C:9C:DA:CB:18:A9:C4:27:EB:01:03:3B:2D:08:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MiBW_QgMnNrLGKnEJ-sBAzstCFQ.cer
Subject info access: rsync://0.sb/repo/sb/22/33312e32342e38362e302f32342d3234203d3e20313336383937.roa
Signing time: Fri 23 Aug 2024 10:47:04 +0000
ROA not before: Fri 23 Aug 2024 10:42:04 +0000
ROA not after: Fri 22 Aug 2025 10:47:04 +0000
asID: 136897
IP address blocks: 31.24.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://0.sb/repo/sb/22/322056FD080C9CDACB18A9C427EB01033B2D0854.crl
rsync://0.sb/repo/sb/22/322056FD080C9CDACB18A9C427EB01033B2D0854.mft
rsync://rpki.ripe.net/repository/DEFAULT/MiBW_QgMnNrLGKnEJ-sBAzstCFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:62:67:02:f7:d8:d0:c8:8b:b9:c0:8a:41:0a:ae:23:23:61:f7:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=322056fd080c9cdacb18a9c427eb01033b2d0854
Validity
Not Before: Aug 23 10:42:04 2024 GMT
Not After : Aug 22 10:47:04 2025 GMT
Subject: CN=90B560001FDE75CA2E2B1823511D8D5352B06E69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:66:6e:d8:f8:92:80:56:cd:16:12:8a:49:8d:
35:e9:2d:93:2e:77:61:f7:ea:39:5b:ff:46:38:e8:
77:33:45:81:67:79:ec:d0:e7:1b:93:18:38:f5:d3:
c6:8e:65:0b:b7:2c:3f:6c:20:04:65:cb:4f:84:60:
bb:79:7b:81:b9:e8:5d:e0:3f:f6:92:64:2c:a0:f9:
ec:3d:55:cb:a3:d2:80:11:ef:cf:0a:54:2b:b1:20:
99:99:cc:76:4b:06:35:0f:b2:e0:eb:fe:1d:f2:4c:
e6:95:5c:c7:be:84:e7:17:68:4d:9a:5c:e5:55:37:
0e:77:da:7a:bf:06:a9:5a:05:b5:db:08:b6:21:ed:
38:2a:98:88:54:e8:19:dd:aa:4e:2b:67:87:b2:f4:
be:d5:ca:da:c8:c1:0d:e4:3e:14:c3:5a:f8:8d:b9:
c8:c6:04:29:2a:ff:e4:6c:7b:c0:43:1d:22:f0:b5:
fc:7b:55:b6:4a:1f:4e:d1:fe:f2:22:71:5e:43:ab:
43:c4:48:1e:70:e7:6c:ac:d2:52:c5:1f:1f:1d:59:
b8:31:89:fc:a2:38:aa:e7:7a:cb:fe:4b:55:ed:c9:
0b:cd:88:7e:c3:99:cf:79:8d:a9:d0:27:69:ba:c5:
73:fb:98:7a:57:2b:b5:cd:38:a5:ef:42:92:e2:ba:
b7:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:B5:60:00:1F:DE:75:CA:2E:2B:18:23:51:1D:8D:53:52:B0:6E:69
X509v3 Authority Key Identifier:
keyid:32:20:56:FD:08:0C:9C:DA:CB:18:A9:C4:27:EB:01:03:3B:2D:08:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/22/322056FD080C9CDACB18A9C427EB01033B2D0854.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MiBW_QgMnNrLGKnEJ-sBAzstCFQ.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/22/33312e32342e38362e302f32342d3234203d3e20313336383937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.86.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:01:e5:72:e5:17:34:74:7d:62:79:66:b8:39:d6:e5:90:f7:
70:f4:b2:f9:26:7d:3f:33:08:6b:84:3d:ad:e2:4e:af:4e:00:
03:69:90:85:c4:cc:fb:31:a5:c5:35:4f:ce:a3:d3:74:b9:ca:
6a:69:1d:13:ae:49:5b:cb:9b:c4:2b:65:e5:66:21:76:4d:09:
e4:4b:e8:ce:3d:84:f6:0e:f2:ac:c7:b2:53:0d:c0:7c:ca:f5:
d5:84:74:11:12:11:7d:1e:16:d3:70:1c:2b:49:c7:0b:68:53:
34:82:34:2b:e4:b1:07:b3:60:a6:a1:5e:06:b4:4c:6b:6b:a9:
40:50:82:9b:d0:69:40:e3:5d:c1:c9:34:ec:f2:e0:a3:32:a6:
0e:25:70:57:60:a8:fd:00:75:92:bd:11:24:42:ed:a0:26:48:
6b:d8:7b:3f:a1:5d:8c:2f:02:f9:88:3e:56:21:90:14:4f:9a:
9d:ed:65:4a:1c:f6:14:88:5b:7d:71:2d:6d:2e:59:f0:3a:74:
03:64:11:9d:bd:c1:e8:be:fc:f9:f4:33:24:ae:a2:c5:c7:15:
ec:e6:21:94:c9:0c:5a:32:af:80:33:1c:72:97:f0:63:d7:ee:
49:a6:f6:c5:b0:ff:09:43:b1:45:51:fa:dd:9a:9d:d3:ef:4a:
ff:30:84:ef
-----BEGIN CERTIFICATE-----
MIIEsDCCA5igAwIBAgIUQGJnAvfY0MiLucCKQQquIyNh9yIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzIyMDU2ZmQwODBjOWNkYWNiMThhOWM0MjdlYjAxMDMz
YjJkMDg1NDAeFw0yNDA4MjMxMDQyMDRaFw0yNTA4MjIxMDQ3MDRaMDMxMTAvBgNV
BAMTKDkwQjU2MDAwMUZERTc1Q0EyRTJCMTgyMzUxMUQ4RDUzNTJCMDZFNjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfZm7Y+JKAVs0WEopJjTXpLZMu
d2H36jlb/0Y46HczRYFneezQ5xuTGDj108aOZQu3LD9sIARly0+EYLt5e4G56F3g
P/aSZCyg+ew9Vcuj0oAR788KVCuxIJmZzHZLBjUPsuDr/h3yTOaVXMe+hOcXaE2a
XOVVNw532nq/BqlaBbXbCLYh7TgqmIhU6Bndqk4rZ4ey9L7VytrIwQ3kPhTDWviN
ucjGBCkq/+Rse8BDHSLwtfx7VbZKH07R/vIicV5Dq0PESB5w52ys0lLFHx8dWbgx
ifyiOKrnesv+S1XtyQvNiH7Dmc95janQJ2m6xXP7mHpXK7XNOKXvQpLiurf3AgMB
AAGjggG6MIIBtjAdBgNVHQ4EFgQUkLVgAB/edcouKxgjUR2NU1KwbmkwHwYDVR0j
BBgwFoAUMiBW/QgMnNrLGKnEJ+sBAzstCFQwDgYDVR0PAQH/BAQDAgeAMFUGA1Ud
HwROMEwwSqBIoEaGRHJzeW5jOi8vMC5zYi9yZXBvL3NiLzIyLzMyMjA1NkZEMDgw
QzlDREFDQjE4QTlDNDI3RUIwMTAzM0IyRDA4NTQuY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9NaUJXX1FnTW5OckxHS25FSi1zQkF6c3RDRlEuY2VyMGwGCCsGAQUF
BwELBGAwXjBcBggrBgEFBQcwC4ZQcnN5bmM6Ly8wLnNiL3JlcG8vc2IvMjIvMzMz
MTJlMzIzNDJlMzgzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM4Mzkz
Ny5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAB8YVjANBgkqhkiG9w0BAQsFAAOCAQEAigHlcuUXNHR9Ynlm
uDnW5ZD3cPSy+SZ9PzMIa4Q9reJOr04AA2mQhcTM+zGlxTVPzqPTdLnKamkdE65J
W8ubxCtl5WYhdk0J5Evozj2E9g7yrMeyUw3AfMr11YR0ERIRfR4W03AcK0nHC2hT
NII0K+SxB7NgpqFeBrRMa2upQFCCm9BpQONdwck07PLgozKmDiVwV2Co/QB1kr0R
JELtoCZIa9h7P6FdjC8C+Yg+ViGQFE+ane1lShz2FIhbfXEtbS5Z8Dp0A2QRnb3B
6L78+fQzJK6ixccV7OYhlMkMWjKvgDMccpfwY9fuSab2xbD/CUOxRVH63Zqd0+9K
/zCE7w==
-----END CERTIFICATE-----
Generated at Sat Nov 23 00:05:00 2024 by rpki-client on console-ams.rpki-client.org