Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/34/3138352e34362e36382e302f32342d3234203d3e20323130343239.roa
File: 3138352e34362e36382e302f32342d3234203d3e20323130343239.roa (raw, json)
Hash identifier: OjkW6Vtbf03KJaExgiFfGZPDF4LTmyon3xqKxZIcU4I=
Subject key identifier: 07:30:DE:A2:44:05:8D:A8:9D:FD:69:10:0B:35:87:3F:3D:13:84:35
Certificate issuer: /CN=8228f35f3a87298db3d06995a9c6c045721122b2
Certificate serial: 7F140CEA47C57FD00F18E5408F35FD836A22CCAB
Authority key identifier: 82:28:F3:5F:3A:87:29:8D:B3:D0:69:95:A9:C6:C0:45:72:11:22:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gijzXzqHKY2z0GmVqcbARXIRIrI.cer
Subject info access: rsync://0.sb/repo/sb/34/3138352e34362e36382e302f32342d3234203d3e20323130343239.roa
Signing time: Mon 29 Apr 2024 10:46:55 +0000
ROA not before: Mon 29 Apr 2024 10:41:55 +0000
ROA not after: Mon 28 Apr 2025 10:46:55 +0000
asID: 210429
IP address blocks: 185.46.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://0.sb/repo/sb/34/8228F35F3A87298DB3D06995A9C6C045721122B2.crl
rsync://0.sb/repo/sb/34/8228F35F3A87298DB3D06995A9C6C045721122B2.mft
rsync://rpki.ripe.net/repository/DEFAULT/gijzXzqHKY2z0GmVqcbARXIRIrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:14:0c:ea:47:c5:7f:d0:0f:18:e5:40:8f:35:fd:83:6a:22:cc:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8228f35f3a87298db3d06995a9c6c045721122b2
Validity
Not Before: Apr 29 10:41:55 2024 GMT
Not After : Apr 28 10:46:55 2025 GMT
Subject: CN=0730DEA244058DA89DFD69100B35873F3D138435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:cb:e6:82:ea:8a:d5:7f:dc:a6:85:67:b6:b3:
97:80:8d:c6:72:dd:7b:f3:f0:54:3e:35:97:6e:31:
cf:d8:98:48:c0:e4:55:7a:31:86:85:a9:2b:2f:fe:
5c:ca:df:db:92:e7:21:f9:27:58:1e:3f:7c:81:2f:
dc:1b:86:16:f2:68:81:f4:ad:49:21:18:3d:7c:28:
22:9e:7b:53:f2:af:22:de:eb:14:e7:c3:c1:dd:51:
59:0b:14:53:3c:fd:a4:a3:48:d5:2a:26:09:3a:b4:
a0:42:4e:34:b3:66:59:2e:8b:81:be:96:30:87:df:
34:03:ce:68:fe:02:50:8d:f9:73:18:37:8a:a3:d7:
a2:40:0f:3c:31:bb:28:35:5c:54:33:84:56:78:25:
22:75:da:c3:aa:79:de:bc:9d:a8:b3:fa:26:91:ca:
4b:ca:7d:27:b7:1c:ca:1a:2f:6f:20:24:49:d3:f1:
a4:ff:48:1d:59:38:1b:61:75:cb:4e:61:5a:40:90:
f1:60:d8:e7:37:99:67:41:37:b6:ee:95:2b:af:8f:
7f:f7:e2:bf:ea:15:86:f0:d0:33:e7:b5:d6:a8:9d:
14:c8:68:f4:bf:99:f0:b5:c1:1a:1b:a7:24:62:65:
38:11:54:f7:a4:b4:ba:c3:61:24:d7:0e:7c:a8:e3:
b9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:30:DE:A2:44:05:8D:A8:9D:FD:69:10:0B:35:87:3F:3D:13:84:35
X509v3 Authority Key Identifier:
keyid:82:28:F3:5F:3A:87:29:8D:B3:D0:69:95:A9:C6:C0:45:72:11:22:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/34/8228F35F3A87298DB3D06995A9C6C045721122B2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gijzXzqHKY2z0GmVqcbARXIRIrI.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/34/3138352e34362e36382e302f32342d3234203d3e20323130343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.68.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:fa:02:25:28:75:11:f3:5f:6e:4b:9a:f6:84:0b:bf:08:6c:
75:5e:09:3e:e2:39:f6:27:93:b5:f2:d3:66:8d:72:c5:8a:ba:
98:5d:ef:9a:3d:49:a0:5c:72:fc:8c:46:5d:21:d1:54:dc:3b:
2e:8f:23:75:5d:eb:a6:a5:de:64:d1:f9:7f:62:84:db:6f:49:
84:45:74:33:e9:89:16:7e:26:51:6b:fe:fb:7e:12:81:a3:be:
67:91:b2:c8:4f:dd:3f:93:78:f6:ea:f0:e5:d6:1b:e0:91:98:
81:13:15:d0:2d:e9:dd:f9:ef:1a:e2:0e:43:a3:9a:46:d9:a6:
da:fe:4b:a0:c1:19:f8:09:4a:29:2c:9c:e3:c2:8d:ca:0b:57:
d3:6e:c3:bc:d0:13:ee:be:b7:2a:b1:82:47:1a:c1:a4:bb:5d:
b0:3d:bc:4d:ce:16:c3:7a:53:87:66:d9:4f:74:3b:dd:b3:45:
cd:85:ae:ff:3d:49:24:8b:0a:33:22:ba:78:8b:22:58:96:e2:
61:6e:02:eb:2d:92:98:70:a0:62:52:32:69:6b:af:58:ae:7b:
48:db:cc:52:7f:d1:4d:dd:2e:b2:5c:65:d3:49:ce:2d:63:39:
88:2a:6d:bc:ad:6f:11:b6:cc:2f:15:5a:4f:10:f8:ed:e3:78:
fb:80:23:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:41:53 2024 by rpki-client on console-fra.rpki-client.org