Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/34/326130643a613034303a3a2f32392d3438203d3e20323130343239.roa
File: 326130643a613034303a3a2f32392d3438203d3e20323130343239.roa (raw, json)
Hash identifier: WlTs9b+CS5M7AkJqlGwRD8Qb4fnuntNIZhvGbTR6Roo=
Subject key identifier: E2:DD:3E:1B:5D:6E:CF:9A:B8:CD:50:E0:5A:28:BD:1B:4C:51:AA:EB
Certificate issuer: /CN=8228f35f3a87298db3d06995a9c6c045721122b2
Certificate serial: 3FB7B452DC0AE49584B9E2D98A447F240380B158
Authority key identifier: 82:28:F3:5F:3A:87:29:8D:B3:D0:69:95:A9:C6:C0:45:72:11:22:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gijzXzqHKY2z0GmVqcbARXIRIrI.cer
Subject info access: rsync://0.sb/repo/sb/34/326130643a613034303a3a2f32392d3438203d3e20323130343239.roa
Signing time: Fri 22 Sep 2023 10:19:36 +0000
ROA not before: Fri 22 Sep 2023 10:14:36 +0000
ROA not after: Fri 20 Sep 2024 10:19:36 +0000
asID: 210429
IP address blocks: 2a0d:a040::/29 maxlen: 48
Validation: OK
Signature path: rsync://0.sb/repo/sb/34/8228F35F3A87298DB3D06995A9C6C045721122B2.crl
rsync://0.sb/repo/sb/34/8228F35F3A87298DB3D06995A9C6C045721122B2.mft
rsync://rpki.ripe.net/repository/DEFAULT/gijzXzqHKY2z0GmVqcbARXIRIrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:b7:b4:52:dc:0a:e4:95:84:b9:e2:d9:8a:44:7f:24:03:80:b1:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8228f35f3a87298db3d06995a9c6c045721122b2
Validity
Not Before: Sep 22 10:14:36 2023 GMT
Not After : Sep 20 10:19:36 2024 GMT
Subject: CN=E2DD3E1B5D6ECF9AB8CD50E05A28BD1B4C51AAEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:32:f6:93:59:27:85:e8:b1:fb:85:20:08:58:
7e:3d:e9:d7:42:7f:b1:22:92:0e:4f:41:13:d6:61:
55:cb:e1:f7:a3:ed:5b:16:e7:fd:df:f5:84:46:dc:
88:b1:86:5f:da:8a:c6:86:19:69:15:c6:74:b2:86:
b6:a8:8f:bd:a7:1b:0c:a5:29:a4:ca:4a:f1:5a:0a:
b8:3c:7e:56:50:68:75:6a:3c:04:df:d9:e4:69:dc:
36:2c:ee:46:92:6b:23:11:0e:5c:99:7e:70:d5:7b:
2e:1f:92:8a:e3:21:45:60:0f:f2:42:70:25:ba:de:
1d:46:97:03:dc:28:cd:e4:69:90:d1:1f:67:3d:19:
ac:39:f4:7c:f6:19:30:13:b4:b4:a9:b0:3f:0e:a1:
6c:5d:37:a1:b6:ac:a7:6c:8a:fe:a2:3e:57:98:fc:
0e:50:24:71:02:2a:1f:86:f5:e0:e5:f7:94:0b:36:
1d:57:2e:97:2d:11:5d:ff:95:30:84:fb:a1:6d:d3:
d8:ec:92:fa:89:d7:7c:3f:be:a3:1b:8f:15:a6:79:
34:b6:21:0e:a9:81:cf:75:f9:74:54:a5:20:77:c4:
30:73:5f:64:af:24:fa:b8:37:28:c2:f1:e6:8a:8c:
7b:c6:f6:68:8a:64:3a:7d:9e:22:7b:61:56:c0:c5:
26:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:DD:3E:1B:5D:6E:CF:9A:B8:CD:50:E0:5A:28:BD:1B:4C:51:AA:EB
X509v3 Authority Key Identifier:
keyid:82:28:F3:5F:3A:87:29:8D:B3:D0:69:95:A9:C6:C0:45:72:11:22:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/34/8228F35F3A87298DB3D06995A9C6C045721122B2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gijzXzqHKY2z0GmVqcbARXIRIrI.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/34/326130643a613034303a3a2f32392d3438203d3e20323130343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:a040::/29
Signature Algorithm: sha256WithRSAEncryption
32:2a:6c:2f:d0:87:c3:70:59:59:34:4d:f3:a7:6b:43:9c:82:
92:ce:e8:c3:f8:47:fc:f4:1f:7e:85:dd:45:9b:a8:fc:94:10:
e4:43:2b:b6:89:1e:6b:be:d7:0f:19:12:f7:0e:44:d0:d9:1b:
b3:27:49:35:2c:da:c9:d0:5c:cd:4e:b7:8e:5b:e3:18:b2:96:
02:a2:fa:03:ed:ab:d7:a6:74:d5:a7:97:9f:c2:f9:0e:74:3f:
89:b3:61:39:bc:fe:c7:92:96:5b:b3:b7:e1:d8:60:d7:e6:75:
e3:dc:86:2a:da:08:86:5e:3e:51:d9:06:bc:d5:b3:b2:23:2d:
45:94:67:73:71:6b:d7:68:58:c6:6e:73:7b:5f:6d:e0:84:a6:
30:84:7e:9b:ab:89:42:e8:2d:9c:0d:7c:16:98:7f:ad:19:f7:
96:01:1d:01:08:b4:2f:f8:be:cd:94:24:88:6c:a0:e0:3e:f3:
ad:28:85:70:0d:79:a0:be:1b:c7:c2:a1:d8:1c:44:98:1b:a3:
6a:e2:7c:6e:0d:a3:49:3f:b2:37:2f:16:9d:30:7b:ad:71:a6:
d1:d4:6b:48:91:13:87:0b:87:88:8c:a9:af:96:92:e8:8f:42:
5c:ef:13:57:8f:49:a3:57:b8:ec:3f:d7:0d:56:84:51:df:7d:
40:e6:bd:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 00:11:38 2024 by rpki-client on console-ams.rpki-client.org