Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/33/326131323a653934303a3a2f32392d3438203d3e20323130343334.roa
File: 326131323a653934303a3a2f32392d3438203d3e20323130343334.roa (raw, json)
Hash identifier: da/aWiBYlY2AoAL4NhG5g4M6oT5GR8pfBIm5pCnjgrA=
Subject key identifier: 17:8A:00:89:EC:92:6D:39:F8:5E:53:63:FA:21:64:41:28:BD:2A:68
Certificate issuer: /CN=861a9d357d53d5459484a1f5921704e762641a62
Certificate serial: 115BB4F3CA40C55526F3CED79D2C583BBDDFB58C
Authority key identifier: 86:1A:9D:35:7D:53:D5:45:94:84:A1:F5:92:17:04:E7:62:64:1A:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hhqdNX1T1UWUhKH1khcE52JkGmI.cer
Subject info access: rsync://0.sb/repo/sb/33/326131323a653934303a3a2f32392d3438203d3e20323130343334.roa
Signing time: Fri 23 Aug 2024 10:47:03 +0000
ROA not before: Fri 23 Aug 2024 10:42:03 +0000
ROA not after: Fri 22 Aug 2025 10:47:03 +0000
asID: 210434
IP address blocks: 2a12:e940::/29 maxlen: 48
Validation: OK
Signature path: rsync://0.sb/repo/sb/33/861A9D357D53D5459484A1F5921704E762641A62.crl
rsync://0.sb/repo/sb/33/861A9D357D53D5459484A1F5921704E762641A62.mft
rsync://rpki.ripe.net/repository/DEFAULT/hhqdNX1T1UWUhKH1khcE52JkGmI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:5b:b4:f3:ca:40:c5:55:26:f3:ce:d7:9d:2c:58:3b:bd:df:b5:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=861a9d357d53d5459484a1f5921704e762641a62
Validity
Not Before: Aug 23 10:42:03 2024 GMT
Not After : Aug 22 10:47:03 2025 GMT
Subject: CN=178A0089EC926D39F85E5363FA21644128BD2A68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1e:e2:da:7c:c5:3a:b8:eb:fd:2f:ff:d1:04:
53:63:6b:18:14:64:ac:b0:96:55:24:40:1a:89:bd:
63:d3:dc:88:49:d8:71:1c:cf:62:2c:f1:71:e0:bc:
9d:30:8d:c0:cd:82:7a:aa:8d:01:f3:c2:3e:03:9b:
0e:8b:07:1e:62:7a:de:d9:a2:4c:6b:db:80:9a:47:
84:91:83:03:55:2e:b8:a4:15:e2:43:3b:53:37:31:
99:c5:f7:cd:39:19:f1:c7:21:eb:85:dc:67:20:79:
91:ef:b5:49:ee:e7:0c:4d:8b:19:86:90:5f:55:bb:
d3:26:03:60:6a:e5:2f:e2:e7:39:97:75:b4:c0:64:
4d:db:0a:48:c3:e7:5d:a2:44:24:83:67:1a:71:e6:
41:b0:b8:dd:30:43:c2:ed:fb:1e:96:04:99:63:8c:
b0:6f:42:51:f5:c6:17:66:e9:9c:c7:19:3d:31:1b:
3f:7b:b2:8c:ca:13:02:c3:f0:84:2a:9f:07:cd:1f:
59:1d:bd:78:a7:18:21:de:9d:6a:37:14:46:ef:39:
77:8b:f8:8d:68:4f:a7:75:e2:de:79:85:be:2d:69:
c7:25:2e:e1:5b:c5:37:04:0a:ec:fc:47:52:18:22:
e1:26:fe:f7:ca:d6:ac:c3:d6:7c:ef:6e:19:41:61:
5a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:8A:00:89:EC:92:6D:39:F8:5E:53:63:FA:21:64:41:28:BD:2A:68
X509v3 Authority Key Identifier:
keyid:86:1A:9D:35:7D:53:D5:45:94:84:A1:F5:92:17:04:E7:62:64:1A:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/33/861A9D357D53D5459484A1F5921704E762641A62.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hhqdNX1T1UWUhKH1khcE52JkGmI.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/33/326131323a653934303a3a2f32392d3438203d3e20323130343334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:e940::/29
Signature Algorithm: sha256WithRSAEncryption
a8:3c:32:7b:90:22:e0:58:ee:b8:90:42:bd:5a:3b:71:7c:16:
d9:b8:81:ee:b6:1a:16:67:df:67:2b:2c:ff:45:2e:1a:71:e8:
fc:cf:3a:21:73:30:16:53:ee:c6:7b:24:a3:4e:aa:3a:9f:69:
d3:73:6b:14:98:06:88:90:81:fc:f8:60:fd:a5:f7:a0:59:8d:
ae:df:9d:aa:13:14:55:42:86:43:30:5c:d8:bd:c8:7f:e8:fb:
22:f0:0b:53:5c:70:ec:0e:39:79:69:ba:43:76:2d:56:1d:3a:
8f:a4:b6:5a:93:a9:da:57:5c:45:0f:91:aa:04:2a:e6:1b:6f:
16:dc:1f:17:fd:99:07:1a:fc:29:bb:2e:de:9b:cb:24:d6:4a:
33:65:80:e7:2e:47:bc:f5:cd:5a:3b:ee:4c:6f:03:34:07:87:
d5:7e:be:ae:3f:05:53:9d:bb:1b:e0:f8:12:3e:aa:88:4a:e1:
b6:0a:72:fb:b7:fe:06:33:4c:5f:75:12:35:23:e6:5e:25:ad:
ef:7f:b5:f3:57:9e:77:1d:87:e4:d4:d1:86:1f:d4:47:c8:58:
d1:71:9e:79:59:f5:75:b7:21:6b:d2:d1:ed:69:69:27:94:e4:
a5:b9:0f:f3:6e:e6:69:c4:48:29:b8:6b:c1:4d:99:c5:0f:9b:
9b:6d:6e:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 05:48:01 2024 by rpki-client on console-fra.rpki-client.org