Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/35/39312e3232302e32352e302f32342d3234203d3e203136353039.roa
File: 39312e3232302e32352e302f32342d3234203d3e203136353039.roa (raw, json)
Hash identifier: eBdF/g1OQLkKcsS4aXp1ndsxMJptvqS3NUZOIcCs1Mc=
Subject key identifier: 30:EB:61:AF:11:C4:DD:0A:11:4C:E5:88:2F:29:D2:57:DF:F4:DC:5C
Certificate issuer: /CN=3507d47ee4e97f6bfd3ac4ce07bf99c0554c9a4b
Certificate serial: 5AEAF30871064459AA202A4127DA271D7797AA05
Authority key identifier: 35:07:D4:7E:E4:E9:7F:6B:FD:3A:C4:CE:07:BF:99:C0:55:4C:9A:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQfUfuTpf2v9OsTOB7-ZwFVMmks.cer
Subject info access: rsync://0.sb/repo/sb/35/39312e3232302e32352e302f32342d3234203d3e203136353039.roa
Signing time: Tue 05 Dec 2023 05:54:38 +0000
ROA not before: Tue 05 Dec 2023 05:49:38 +0000
ROA not after: Tue 03 Dec 2024 05:54:38 +0000
asID: 16509
IP address blocks: 91.220.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://0.sb/repo/sb/35/3507D47EE4E97F6BFD3AC4CE07BF99C0554C9A4B.crl
rsync://0.sb/repo/sb/35/3507D47EE4E97F6BFD3AC4CE07BF99C0554C9A4B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NQfUfuTpf2v9OsTOB7-ZwFVMmks.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 19:30:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:ea:f3:08:71:06:44:59:aa:20:2a:41:27:da:27:1d:77:97:aa:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3507d47ee4e97f6bfd3ac4ce07bf99c0554c9a4b
Validity
Not Before: Dec 5 05:49:38 2023 GMT
Not After : Dec 3 05:54:38 2024 GMT
Subject: CN=30EB61AF11C4DD0A114CE5882F29D257DFF4DC5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d8:94:8d:84:9b:49:de:ba:7a:80:48:21:72:
e9:39:b6:77:24:aa:59:b3:76:3f:02:e6:ba:5b:17:
bb:58:2e:84:ee:86:64:43:82:51:80:58:de:c8:64:
1b:58:51:c7:20:e8:bb:75:b5:dc:4c:77:d1:2f:7e:
de:0e:29:95:61:c6:50:7c:bb:09:67:2e:36:14:2d:
86:8b:05:5c:c2:ac:52:e0:d7:6c:46:5d:d0:a3:39:
b1:82:1e:d6:f3:6e:d6:54:af:98:03:65:da:03:2c:
ee:a7:8d:22:6f:5e:41:1f:03:7e:bd:98:6f:21:d2:
94:fd:16:9d:3d:52:46:ec:1f:2e:bb:4e:c0:87:44:
47:03:dd:ce:1f:f1:9d:3e:e6:78:2f:0f:22:22:48:
5e:8a:b8:60:39:eb:24:9a:56:63:23:47:91:1e:eb:
11:8a:47:6a:18:59:14:6c:80:ac:2c:4d:06:50:a6:
fb:02:34:5b:a0:e1:9d:0b:60:17:b7:05:e1:79:24:
7b:40:2d:e0:58:3a:67:b1:f4:f7:e3:5b:37:f5:87:
70:8a:35:99:9c:3e:22:00:d5:d7:1f:e3:18:db:5d:
2f:cb:04:8c:01:37:6a:20:0d:95:ad:d4:73:95:e5:
4b:07:96:c5:84:79:ce:a4:7b:ef:d3:a4:15:ac:cc:
cb:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EB:61:AF:11:C4:DD:0A:11:4C:E5:88:2F:29:D2:57:DF:F4:DC:5C
X509v3 Authority Key Identifier:
keyid:35:07:D4:7E:E4:E9:7F:6B:FD:3A:C4:CE:07:BF:99:C0:55:4C:9A:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/35/3507D47EE4E97F6BFD3AC4CE07BF99C0554C9A4B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQfUfuTpf2v9OsTOB7-ZwFVMmks.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/35/39312e3232302e32352e302f32342d3234203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.25.0/24
Signature Algorithm: sha256WithRSAEncryption
23:2d:6b:3a:98:c4:de:80:1a:35:98:43:49:45:26:fb:a2:1a:
48:4b:21:ca:5e:1a:94:e6:b1:f1:05:54:b9:35:29:32:d6:e3:
4f:ab:89:16:e9:1c:db:29:b4:88:7f:0c:50:50:3c:4f:8d:79:
d3:9d:40:61:67:54:3b:68:07:52:11:93:48:0c:2e:6a:0c:32:
3e:5c:f2:b6:fb:a2:4e:96:6f:39:62:f7:7b:52:74:4f:ee:83:
35:3d:4f:5e:02:43:15:e7:1b:72:1e:c2:1e:2f:9d:00:7e:24:
33:9e:66:19:41:e5:4b:a7:71:e0:77:a7:c5:4d:2a:d9:83:5e:
41:44:03:4f:65:47:c6:fb:e8:14:41:95:1d:8e:da:83:32:c5:
35:7f:fa:ee:19:17:42:2b:24:a0:d0:57:d1:cc:d6:e7:af:cb:
02:c9:fb:1d:6e:4f:5b:f2:65:38:30:74:21:c8:3e:2f:48:6e:
b8:21:da:fb:13:d4:7e:d1:62:c8:b1:69:3e:0e:3d:1a:94:f7:
3e:96:29:41:1e:7b:bf:b0:53:4b:62:27:0f:c1:53:aa:56:3c:
fe:91:a9:4d:3c:9f:cf:db:aa:c0:a7:ac:03:2f:96:f6:52:35:
95:8c:d8:63:4f:d5:86:aa:73:72:14:62:1f:be:81:a1:db:ba:
c6:aa:da:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 00:09:48 2024 by rpki-client on console-ams.rpki-client.org