Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/34/326130643a613034303a3a2f32392d3438203d3e20323130343239.roa
File: 326130643a613034303a3a2f32392d3438203d3e20323130343239.roa (raw, json)
Hash identifier: +7g+7j6SHpppuglAu2aLIHljmRGfZOIJtko5ZqEcRos=
Subject key identifier: B1:C3:3B:AB:6B:53:B2:E9:60:93:DB:EB:3D:BA:60:CD:7C:EE:DB:EF
Certificate issuer: /CN=8228f35f3a87298db3d06995a9c6c045721122b2
Certificate serial: 7888FE2B4634C9E945DA718E231FFCC16357271F
Authority key identifier: 82:28:F3:5F:3A:87:29:8D:B3:D0:69:95:A9:C6:C0:45:72:11:22:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gijzXzqHKY2z0GmVqcbARXIRIrI.cer
Subject info access: rsync://0.sb/repo/sb/34/326130643a613034303a3a2f32392d3438203d3e20323130343239.roa
Signing time: Fri 23 Aug 2024 10:47:02 +0000
ROA not before: Fri 23 Aug 2024 10:42:02 +0000
ROA not after: Fri 22 Aug 2025 10:47:02 +0000
asID: 210429
IP address blocks: 2a0d:a040::/29 maxlen: 48
Validation: OK
Signature path: rsync://0.sb/repo/sb/34/8228F35F3A87298DB3D06995A9C6C045721122B2.crl
rsync://0.sb/repo/sb/34/8228F35F3A87298DB3D06995A9C6C045721122B2.mft
rsync://rpki.ripe.net/repository/DEFAULT/gijzXzqHKY2z0GmVqcbARXIRIrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:88:fe:2b:46:34:c9:e9:45:da:71:8e:23:1f:fc:c1:63:57:27:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8228f35f3a87298db3d06995a9c6c045721122b2
Validity
Not Before: Aug 23 10:42:02 2024 GMT
Not After : Aug 22 10:47:02 2025 GMT
Subject: CN=B1C33BAB6B53B2E96093DBEB3DBA60CD7CEEDBEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e9:8e:ae:90:8b:ae:92:ad:a3:10:0b:e3:58:
09:b2:4e:e5:f3:63:bb:84:c2:d3:59:48:6a:b0:cc:
df:5b:69:88:4c:6c:e4:46:ef:04:ee:4b:eb:b2:b0:
69:77:cd:3d:33:3d:9b:82:39:c5:c9:97:35:23:3b:
b7:8d:99:5d:b5:3d:a1:bf:07:50:e5:79:91:ae:e9:
69:f7:9f:3d:23:b2:a9:40:44:0e:4d:d4:75:73:f5:
e1:24:01:5f:03:3b:7b:a9:ac:58:29:2e:36:23:bf:
78:95:e6:53:3a:57:c8:50:de:72:24:7d:cb:e3:e2:
6c:e7:c8:f0:be:62:fd:43:f9:ed:35:a8:1a:7c:3d:
d9:f3:9d:f7:ae:5d:60:9d:bf:c1:7c:4a:72:fa:42:
8f:9f:80:ef:02:90:9e:82:fc:1f:0a:04:fe:3c:7b:
f3:14:38:06:58:00:1a:a5:e7:e1:52:5a:e7:6b:8f:
28:a3:0e:e2:6c:7e:d5:b8:39:5d:9d:90:d3:68:44:
72:e3:ea:66:04:2a:f4:71:1e:26:c7:a2:19:b9:d5:
33:f9:8f:c8:b0:af:fe:8e:98:2c:79:41:ea:40:18:
68:d3:5c:dd:d6:6e:0b:54:27:aa:f0:6d:03:96:08:
ae:63:84:8a:4a:b0:d7:44:2b:6e:20:65:0e:6b:16:
d8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C3:3B:AB:6B:53:B2:E9:60:93:DB:EB:3D:BA:60:CD:7C:EE:DB:EF
X509v3 Authority Key Identifier:
keyid:82:28:F3:5F:3A:87:29:8D:B3:D0:69:95:A9:C6:C0:45:72:11:22:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/34/8228F35F3A87298DB3D06995A9C6C045721122B2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gijzXzqHKY2z0GmVqcbARXIRIrI.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/34/326130643a613034303a3a2f32392d3438203d3e20323130343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:a040::/29
Signature Algorithm: sha256WithRSAEncryption
05:5a:7c:b8:41:bb:8c:68:2d:08:ae:c6:66:9c:98:8d:8c:48:
c1:f5:c7:17:12:7d:ee:8f:ed:18:58:25:82:61:c2:57:46:2f:
d8:8a:7e:d0:c0:81:36:af:bb:9b:74:fe:1b:93:06:b9:56:53:
87:90:0b:ca:68:c9:d2:dd:41:37:f8:92:45:81:df:02:40:dc:
35:81:87:cf:41:b4:73:63:b3:d5:66:2d:87:3c:a5:64:e1:ae:
0b:85:f0:e6:72:fe:d0:f5:3f:a3:5d:7e:fe:f0:a9:8f:4e:2a:
bd:69:e7:b2:15:79:35:1b:85:0a:16:89:a6:10:21:74:e7:ba:
c2:d4:ea:78:04:29:43:9e:ea:c6:49:d2:a0:7f:7b:62:b8:5f:
e8:ed:1a:fd:89:f1:18:d2:43:f7:62:33:ef:67:0d:d5:20:ad:
5e:4c:ac:e3:2f:b6:63:d2:b5:0c:5a:ae:65:7f:46:8c:47:8f:
6b:4c:16:a7:f5:8c:cf:61:7d:af:21:67:02:8f:ef:de:51:69:
b2:3b:eb:42:86:0f:05:3f:06:83:62:e1:96:a0:10:fd:77:0d:
66:31:58:5c:2e:9d:29:66:4a:62:63:7c:d7:7a:27:24:7f:02:
35:e8:1c:9a:ea:e4:a8:bd:7a:f2:48:05:31:d3:ee:5c:e6:8c:
b4:d9:e5:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:43:31 2024 by rpki-client on console-ams.rpki-client.org