Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/35/326131323a663234303a3a2f32392d3239203d3e20323130343334.roa
File: 326131323a663234303a3a2f32392d3239203d3e20323130343334.roa (raw, json)
Hash identifier: sIRA9nwpVfrUrnLpMqEe1D8DTq0rGOwDGPgKdQZ8JYs=
Subject key identifier: 4D:6F:44:54:AF:D7:FA:AF:D5:55:13:B4:CC:7C:DA:E4:36:45:DE:EC
Certificate issuer: /CN=3507d47ee4e97f6bfd3ac4ce07bf99c0554c9a4b
Certificate serial: 6319F3C9E43993F5178F31DA92FFC080A8BA5A37
Authority key identifier: 35:07:D4:7E:E4:E9:7F:6B:FD:3A:C4:CE:07:BF:99:C0:55:4C:9A:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQfUfuTpf2v9OsTOB7-ZwFVMmks.cer
Subject info access: rsync://0.sb/repo/sb/35/326131323a663234303a3a2f32392d3239203d3e20323130343334.roa
Signing time: Fri 23 Aug 2024 10:47:04 +0000
ROA not before: Fri 23 Aug 2024 10:42:04 +0000
ROA not after: Fri 22 Aug 2025 10:47:04 +0000
asID: 210434
IP address blocks: 2a12:f240::/29 maxlen: 29
Validation: OK
Signature path: rsync://0.sb/repo/sb/35/3507D47EE4E97F6BFD3AC4CE07BF99C0554C9A4B.crl
rsync://0.sb/repo/sb/35/3507D47EE4E97F6BFD3AC4CE07BF99C0554C9A4B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NQfUfuTpf2v9OsTOB7-ZwFVMmks.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:19:f3:c9:e4:39:93:f5:17:8f:31:da:92:ff:c0:80:a8:ba:5a:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3507d47ee4e97f6bfd3ac4ce07bf99c0554c9a4b
Validity
Not Before: Aug 23 10:42:04 2024 GMT
Not After : Aug 22 10:47:04 2025 GMT
Subject: CN=4D6F4454AFD7FAAFD55513B4CC7CDAE43645DEEC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b7:da:aa:f8:4c:9f:e2:e8:48:bf:c7:aa:84:
17:a8:a7:de:75:41:7b:89:4c:9b:e7:fc:7e:65:13:
dd:0d:96:16:d9:ab:b7:e9:68:f8:68:1b:37:6b:33:
3f:26:96:92:6c:29:29:4e:e5:72:38:37:3e:45:0e:
09:6c:89:b1:b5:40:44:37:c5:dc:66:48:f2:d9:f3:
0a:5c:9c:4d:18:69:27:f7:27:4a:a5:9d:03:4c:7a:
bc:01:bc:cc:79:74:64:c5:7e:af:cf:45:9d:58:39:
ab:36:5d:47:47:b3:ae:83:a4:9f:5c:ac:be:4c:db:
4c:38:91:a8:1a:78:bf:07:e0:6b:65:44:21:4e:05:
9f:f2:dd:e3:e7:0c:ef:95:64:07:7f:cd:ac:88:28:
21:e2:70:c1:24:ed:66:12:f4:e4:f8:d7:90:88:bd:
e1:79:03:59:4a:31:23:d8:94:07:8e:bf:2b:7b:77:
d4:eb:65:fd:d5:51:d8:a5:80:77:9a:77:b9:5c:8f:
e4:f7:2d:c7:29:23:e5:d3:04:c1:aa:b6:c6:35:08:
4d:8a:d7:22:08:6a:5c:b8:f3:57:db:0d:78:ff:0b:
ad:ca:b8:c4:bc:7a:0c:be:0b:7c:f5:20:53:25:eb:
e8:0f:49:22:e9:59:94:6d:85:63:79:83:ba:c7:92:
50:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:6F:44:54:AF:D7:FA:AF:D5:55:13:B4:CC:7C:DA:E4:36:45:DE:EC
X509v3 Authority Key Identifier:
keyid:35:07:D4:7E:E4:E9:7F:6B:FD:3A:C4:CE:07:BF:99:C0:55:4C:9A:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/35/3507D47EE4E97F6BFD3AC4CE07BF99C0554C9A4B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQfUfuTpf2v9OsTOB7-ZwFVMmks.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/35/326131323a663234303a3a2f32392d3239203d3e20323130343334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f240::/29
Signature Algorithm: sha256WithRSAEncryption
4c:9b:81:30:f8:f3:3f:5d:b1:ab:71:0a:85:46:08:7b:8c:c6:
fc:03:29:69:e1:dd:9e:6e:e5:af:7c:da:64:77:ec:63:14:00:
57:9d:94:b3:c5:22:cf:37:c4:6b:e1:40:c5:f5:a9:b9:57:2e:
be:3a:5d:93:bc:df:88:80:c9:95:e6:2f:c1:48:86:9e:25:64:
88:af:a9:05:80:9f:9c:b1:6d:e0:23:84:ed:e6:ea:dd:8e:32:
87:c9:64:81:df:f7:2c:19:90:4c:ae:44:6e:71:b2:13:6c:e2:
bb:07:40:87:1c:19:e6:74:3e:0d:c7:7b:ff:d4:20:0b:bb:cb:
37:d8:85:a4:39:2b:5c:60:68:71:bc:21:90:38:31:16:53:4f:
ff:e2:d4:19:af:51:76:16:ea:46:b4:9e:15:13:a5:bb:5b:70:
ee:95:f8:cf:7e:e4:d9:72:63:92:b8:8c:60:ff:3a:4a:35:3d:
17:ae:83:30:39:9f:b2:09:14:2e:5f:54:27:40:7f:67:fb:9f:
5e:0c:34:d5:2d:22:24:ed:23:28:46:3a:cb:79:47:c2:c8:84:
82:66:f5:27:ea:56:d5:ba:93:0d:cc:cc:36:6e:65:52:2c:6f:
c0:69:f6:00:c9:92:80:36:72:fc:92:85:49:43:e8:78:9a:b9:
3e:dc:27:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:20:39 2024 by rpki-client on console-fra.rpki-client.org