Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/35/39312e3232302e32352e302f32342d3234203d3e203134363138.roa
File: 39312e3232302e32352e302f32342d3234203d3e203134363138.roa (raw, json)
Hash identifier: /bIZZ9ewDGFMJqud+NFUI13kqixNTeVW5IIJBueAQqE=
Subject key identifier: 1B:D1:1D:1E:84:EA:F2:6F:9C:54:85:FC:60:42:13:52:3C:E6:7D:58
Certificate issuer: /CN=3507d47ee4e97f6bfd3ac4ce07bf99c0554c9a4b
Certificate serial: 6F5BDB497A1A878A27294E670E2AB163F585BCB3
Authority key identifier: 35:07:D4:7E:E4:E9:7F:6B:FD:3A:C4:CE:07:BF:99:C0:55:4C:9A:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQfUfuTpf2v9OsTOB7-ZwFVMmks.cer
Subject info access: rsync://0.sb/repo/sb/35/39312e3232302e32352e302f32342d3234203d3e203134363138.roa
Signing time: Tue 05 Nov 2024 06:51:47 +0000
ROA not before: Tue 05 Nov 2024 06:46:47 +0000
ROA not after: Tue 04 Nov 2025 06:51:47 +0000
asID: 14618
IP address blocks: 91.220.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:5b:db:49:7a:1a:87:8a:27:29:4e:67:0e:2a:b1:63:f5:85:bc:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3507d47ee4e97f6bfd3ac4ce07bf99c0554c9a4b
Validity
Not Before: Nov 5 06:46:47 2024 GMT
Not After : Nov 4 06:51:47 2025 GMT
Subject: CN=1BD11D1E84EAF26F9C5485FC604213523CE67D58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e6:a5:4b:46:bc:fd:87:e6:7a:8e:b1:03:ad:
ed:44:de:a5:5d:4f:c2:2c:73:52:06:95:56:58:5f:
7c:0d:cb:29:38:c7:3b:64:38:32:99:e9:17:81:d7:
a0:72:3e:b3:6a:63:24:ea:88:ce:06:f1:5b:b2:30:
bd:59:09:44:76:c3:d0:ba:ef:10:00:68:25:19:23:
94:8c:17:31:52:da:35:67:f2:94:01:5e:49:66:8a:
7a:af:3e:d2:c6:8a:40:2d:c1:31:c8:e5:65:28:af:
2d:da:5e:4e:48:83:c2:0d:d7:6c:16:d2:1f:62:f6:
e9:17:45:6a:5d:36:69:60:5d:c9:fd:4b:31:3c:0e:
3d:07:55:c0:03:fb:44:82:08:25:80:3b:c4:fd:b6:
d4:99:f6:e5:de:d9:72:f7:f7:9d:09:9c:e3:d7:69:
45:79:80:73:24:cb:94:70:cf:8d:84:66:f6:54:09:
31:08:82:b2:28:da:1f:9f:76:cc:30:a7:7d:03:66:
6d:28:c1:9b:ba:cd:e2:d7:00:e6:4f:0d:74:65:f7:
e9:75:f7:fd:71:3e:43:60:08:5a:06:13:4d:b1:fc:
27:c5:f9:a1:23:7c:42:07:94:73:5d:9b:2a:bf:6e:
38:62:96:56:a4:21:88:09:96:1f:c8:ef:74:fd:bc:
15:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D1:1D:1E:84:EA:F2:6F:9C:54:85:FC:60:42:13:52:3C:E6:7D:58
X509v3 Authority Key Identifier:
keyid:35:07:D4:7E:E4:E9:7F:6B:FD:3A:C4:CE:07:BF:99:C0:55:4C:9A:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/35/3507D47EE4E97F6BFD3AC4CE07BF99C0554C9A4B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQfUfuTpf2v9OsTOB7-ZwFVMmks.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/35/39312e3232302e32352e302f32342d3234203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.25.0/24
Signature Algorithm: sha256WithRSAEncryption
19:84:fa:7f:b5:60:6a:9d:23:c1:47:c0:d3:4c:b0:b2:42:db:
9b:35:03:dd:b5:40:75:26:5e:aa:f9:00:07:28:b7:7d:f0:20:
71:4c:6c:24:76:e0:6c:18:43:f3:0f:d7:bc:23:bd:33:8e:2e:
25:f0:f3:ba:af:e8:69:97:51:43:cd:fc:1f:ae:5a:1d:d2:31:
16:c7:73:2d:40:a7:9a:60:67:5a:29:a2:0f:2b:02:d0:af:d0:
78:06:6b:b6:58:50:ed:a8:1d:9b:4a:95:d1:6f:5b:81:ea:16:
e0:43:d6:4c:0d:46:50:65:2b:01:81:c3:d3:0a:38:88:e2:25:
19:7c:f9:43:9e:44:ff:3f:aa:3d:9d:28:7c:9a:b9:bf:39:e3:
b2:40:33:de:5d:aa:d4:47:7b:fa:de:f2:ef:35:64:e7:08:67:
2e:c0:f4:59:32:60:80:5c:a2:57:59:88:77:e8:a7:57:84:9b:
35:68:da:0b:3c:3e:2d:f3:4a:ba:3b:8f:2b:da:31:94:8e:e7:
c2:40:ba:72:3c:2d:12:bd:84:f5:55:26:e6:3e:c6:30:59:8f:
33:14:e3:b5:c4:ca:b1:b7:53:d6:cf:2e:b0:43:bc:a5:2e:37:
34:c7:cb:1c:25:95:af:a2:13:bd:d1:35:4c:2c:f3:de:43:11:
75:1b:18:99
-----BEGIN CERTIFICATE-----
MIIEsDCCA5igAwIBAgIUb1vbSXoah4onKU5nDiqxY/WFvLMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzUwN2Q0N2VlNGU5N2Y2YmZkM2FjNGNlMDdiZjk5YzA1
NTRjOWE0YjAeFw0yNDExMDUwNjQ2NDdaFw0yNTExMDQwNjUxNDdaMDMxMTAvBgNV
BAMTKDFCRDExRDFFODRFQUYyNkY5QzU0ODVGQzYwNDIxMzUyM0NFNjdENTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV5qVLRrz9h+Z6jrEDre1E3qVd
T8Isc1IGlVZYX3wNyyk4xztkODKZ6ReB16ByPrNqYyTqiM4G8VuyML1ZCUR2w9C6
7xAAaCUZI5SMFzFS2jVn8pQBXklminqvPtLGikAtwTHI5WUory3aXk5Ig8IN12wW
0h9i9ukXRWpdNmlgXcn9SzE8Dj0HVcAD+0SCCCWAO8T9ttSZ9uXe2XL3950JnOPX
aUV5gHMky5Rwz42EZvZUCTEIgrIo2h+fdswwp30DZm0owZu6zeLXAOZPDXRl9+l1
9/1xPkNgCFoGE02x/CfF+aEjfEIHlHNdmyq/bjhillakIYgJlh/I73T9vBUlAgMB
AAGjggG6MIIBtjAdBgNVHQ4EFgQUG9EdHoTq8m+cVIX8YEITUjzmfVgwHwYDVR0j
BBgwFoAUNQfUfuTpf2v9OsTOB7+ZwFVMmkswDgYDVR0PAQH/BAQDAgeAMFUGA1Ud
HwROMEwwSqBIoEaGRHJzeW5jOi8vMC5zYi9yZXBvL3NiLzM1LzM1MDdENDdFRTRF
OTdGNkJGRDNBQzRDRTA3QkY5OUMwNTU0QzlBNEIuY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9OUWZVZnVUcGYydjlPc1RPQjctWndGVk1ta3MuY2VyMGwGCCsGAQUF
BwELBGAwXjBcBggrBgEFBQcwC4ZQcnN5bmM6Ly8wLnNiL3JlcG8vc2IvMzUvMzkz
MTJlMzIzMjMwMmUzMjM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNDM2MzEz
OC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAFvcGTANBgkqhkiG9w0BAQsFAAOCAQEAGYT6f7Vgap0jwUfA
00ywskLbmzUD3bVAdSZeqvkAByi3ffAgcUxsJHbgbBhD8w/XvCO9M44uJfDzuq/o
aZdRQ838H65aHdIxFsdzLUCnmmBnWimiDysC0K/QeAZrtlhQ7agdm0qV0W9bgeoW
4EPWTA1GUGUrAYHD0wo4iOIlGXz5Q55E/z+qPZ0ofJq5vznjskAz3l2q1Ed7+t7y
7zVk5whnLsD0WTJggFyiV1mId+inV4SbNWjaCzw+LfNKujuPK9oxlI7nwkC6cjwt
Er2E9VUm5j7GMFmPMxTjtcTKsbdT1s8usEO8pS43NMfLHCWVr6ITvdE1TCzz3kMR
dRsYmQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:36:34 2025 by rpki-client