Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/32/326131323a653163303a3a2f32392d3438203d3e20323130343239.roa
File: 326131323a653163303a3a2f32392d3438203d3e20323130343239.roa (raw, json)
Hash identifier: KNyaa8mDudI2kYlMfbKvT19xmFpRWHn44NSy6dfAbHc=
Subject key identifier: 09:A8:DC:8A:7F:8F:11:B8:26:CE:8E:7B:EA:CD:E7:B0:5C:62:C2:E5
Certificate issuer: /CN=137cb8d5c661a1c15ff2ad210196b6b62a75b623
Certificate serial: 609F92BCEE6FADBB3077E43FB863EF4955463D9A
Authority key identifier: 13:7C:B8:D5:C6:61:A1:C1:5F:F2:AD:21:01:96:B6:B6:2A:75:B6:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E3y41cZhocFf8q0hAZa2tip1tiM.cer
Subject info access: rsync://0.sb/repo/sb/32/326131323a653163303a3a2f32392d3438203d3e20323130343239.roa
Signing time: Fri 23 Aug 2024 10:47:03 +0000
ROA not before: Fri 23 Aug 2024 10:42:03 +0000
ROA not after: Fri 22 Aug 2025 10:47:03 +0000
asID: 210429
IP address blocks: 2a12:e1c0::/29 maxlen: 48
Validation: OK
Signature path: rsync://0.sb/repo/sb/32/137CB8D5C661A1C15FF2AD210196B6B62A75B623.crl
rsync://0.sb/repo/sb/32/137CB8D5C661A1C15FF2AD210196B6B62A75B623.mft
rsync://rpki.ripe.net/repository/DEFAULT/E3y41cZhocFf8q0hAZa2tip1tiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:9f:92:bc:ee:6f:ad:bb:30:77:e4:3f:b8:63:ef:49:55:46:3d:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=137cb8d5c661a1c15ff2ad210196b6b62a75b623
Validity
Not Before: Aug 23 10:42:03 2024 GMT
Not After : Aug 22 10:47:03 2025 GMT
Subject: CN=09A8DC8A7F8F11B826CE8E7BEACDE7B05C62C2E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5f:8f:74:57:c5:3c:33:dd:f8:fe:76:28:57:
ca:46:51:23:9d:1c:10:4b:3d:d2:97:56:44:2e:c1:
bd:94:9b:66:e0:9c:99:16:41:59:5a:ce:7b:62:2d:
35:c9:bb:7e:db:ce:38:80:f3:db:1a:df:94:05:bc:
01:ab:f5:10:88:7a:b5:3a:ef:0a:3f:fe:56:7a:62:
34:f5:0b:d9:47:3d:c7:2c:c4:e8:b6:69:a1:51:b0:
7f:5b:5b:5d:82:66:0a:c1:ce:24:76:fe:69:74:a1:
ee:4a:33:fb:09:af:52:65:97:05:35:78:f1:0d:9a:
df:85:88:a7:9e:f5:6b:fc:00:67:f8:2b:53:08:fd:
c2:fb:87:11:4e:69:68:c9:fd:33:f1:eb:61:06:e5:
6f:61:3c:4b:36:bb:99:f7:74:f8:54:10:6e:ed:d5:
5c:7d:dd:75:3b:ab:b1:ea:95:cc:f6:bf:7e:a5:89:
7a:24:64:93:cc:46:a1:43:8f:5f:92:c4:a9:88:85:
0a:78:0f:09:f7:30:03:e8:e9:64:34:93:75:10:d1:
4a:cb:3f:49:7f:f5:94:3d:37:f1:07:23:56:2c:ea:
cf:90:ff:44:bd:46:80:53:3f:1c:2c:96:63:e9:d7:
f4:a2:d2:80:16:e8:96:39:3f:15:b5:1c:e3:d8:2d:
0b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A8:DC:8A:7F:8F:11:B8:26:CE:8E:7B:EA:CD:E7:B0:5C:62:C2:E5
X509v3 Authority Key Identifier:
keyid:13:7C:B8:D5:C6:61:A1:C1:5F:F2:AD:21:01:96:B6:B6:2A:75:B6:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/32/137CB8D5C661A1C15FF2AD210196B6B62A75B623.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E3y41cZhocFf8q0hAZa2tip1tiM.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/32/326131323a653163303a3a2f32392d3438203d3e20323130343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:e1c0::/29
Signature Algorithm: sha256WithRSAEncryption
b3:91:54:55:07:5f:1d:d8:82:da:27:50:88:31:4c:f5:ee:00:
49:db:74:92:9d:76:f9:b0:27:a1:cf:1f:c9:d1:86:86:7b:1a:
3a:98:13:e2:6e:5a:42:3d:e8:e8:12:aa:be:12:ae:4d:95:91:
3c:9a:87:c9:90:66:e5:25:32:30:46:6b:fe:f9:c2:b8:a4:22:
69:23:99:0b:4e:95:fb:16:83:de:62:41:c5:b9:c0:1f:89:d1:
66:5f:57:2a:e5:46:54:0d:26:f4:7c:b5:de:81:de:1e:e1:e4:
1c:b9:88:3d:5f:45:80:ff:50:c9:da:69:f8:9a:0b:8e:3e:1e:
49:55:dd:87:46:52:c8:43:3f:9c:59:e9:31:97:9d:58:e5:1c:
b9:e1:da:fa:15:90:af:a6:35:5f:bf:fa:ae:c9:9d:dc:f1:76:
63:e3:e3:3f:e7:34:02:1a:2a:6d:d4:b9:3f:2f:fc:33:12:a4:
ee:50:ed:6e:56:18:80:fb:3d:44:91:5d:57:c9:c0:1f:69:a9:
77:70:66:cf:f1:7f:71:45:52:e6:08:7f:53:c1:d1:55:10:3e:
1a:79:55:75:9c:4e:fe:31:45:9c:27:dd:c3:fd:56:89:e9:0b:
f8:82:9e:59:ed:8a:7e:f1:a3:d2:ef:28:de:1a:c9:97:0b:17:
ae:9b:7a:5e
-----BEGIN CERTIFICATE-----
MIIEszCCA5ugAwIBAgIUYJ+SvO5vrbswd+Q/uGPvSVVGPZowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTM3Y2I4ZDVjNjYxYTFjMTVmZjJhZDIxMDE5NmI2YjYy
YTc1YjYyMzAeFw0yNDA4MjMxMDQyMDNaFw0yNTA4MjIxMDQ3MDNaMDMxMTAvBgNV
BAMTKDA5QThEQzhBN0Y4RjExQjgyNkNFOEU3QkVBQ0RFN0IwNUM2MkMyRTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGX490V8U8M934/nYoV8pGUSOd
HBBLPdKXVkQuwb2Um2bgnJkWQVlazntiLTXJu37bzjiA89sa35QFvAGr9RCIerU6
7wo//lZ6YjT1C9lHPccsxOi2aaFRsH9bW12CZgrBziR2/ml0oe5KM/sJr1JllwU1
ePENmt+FiKee9Wv8AGf4K1MI/cL7hxFOaWjJ/TPx62EG5W9hPEs2u5n3dPhUEG7t
1Vx93XU7q7Hqlcz2v36liXokZJPMRqFDj1+SxKmIhQp4Dwn3MAPo6WQ0k3UQ0UrL
P0l/9ZQ9N/EHI1Ys6s+Q/0S9RoBTPxwslmPp1/Si0oAW6JY5PxW1HOPYLQsPAgMB
AAGjggG9MIIBuTAdBgNVHQ4EFgQUCajcin+PEbgmzo576s3nsFxiwuUwHwYDVR0j
BBgwFoAUE3y41cZhocFf8q0hAZa2tip1tiMwDgYDVR0PAQH/BAQDAgeAMFUGA1Ud
HwROMEwwSqBIoEaGRHJzeW5jOi8vMC5zYi9yZXBvL3NiLzMyLzEzN0NCOEQ1QzY2
MUExQzE1RkYyQUQyMTAxOTZCNkI2MkE3NUI2MjMuY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9FM3k0MWNaaG9jRmY4cTBoQVphMnRpcDF0aU0uY2VyMG4GCCsGAQUF
BwELBGIwYDBeBggrBgEFBQcwC4ZScnN5bmM6Ly8wLnNiL3JlcG8vc2IvMzIvMzI2
MTMxMzIzYTY1MzE2MzMwM2EzYTJmMzIzOTJkMzQzODIwM2QzZTIwMzIzMTMwMzQz
MjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/
BBEwDzANBAIAAjAHAwUDKhLhwDANBgkqhkiG9w0BAQsFAAOCAQEAs5FUVQdfHdiC
2idQiDFM9e4ASdt0kp12+bAnoc8fydGGhnsaOpgT4m5aQj3o6BKqvhKuTZWRPJqH
yZBm5SUyMEZr/vnCuKQiaSOZC06V+xaD3mJBxbnAH4nRZl9XKuVGVA0m9Hy13oHe
HuHkHLmIPV9FgP9Qydpp+JoLjj4eSVXdh0ZSyEM/nFnpMZedWOUcueHa+hWQr6Y1
X7/6rsmd3PF2Y+PjP+c0AhoqbdS5Py/8MxKk7lDtblYYgPs9RJFdV8nAH2mpd3Bm
z/F/cUVS5gh/U8HRVRA+GnlVdZxO/jFFnCfdw/1WiekL+IKeWe2KfvGj0u8o3hrJ
lwsXrpt6Xg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 15:22:17 2024 by rpki-client on console-fra.rpki-client.org