Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/35/39312e3232302e32352e302f32342d3234203d3e20313937373330.roa
File: 39312e3232302e32352e302f32342d3234203d3e20313937373330.roa (raw, json)
Hash identifier: vpPHHVg0v2uv1zEyhv1Fru2qUBxiTxlLwwjN8afmLB8=
Subject key identifier: 3F:F2:C9:82:1D:79:6A:47:B9:8F:F4:3C:6C:47:32:EC:64:B3:64:A6
Certificate issuer: /CN=3507d47ee4e97f6bfd3ac4ce07bf99c0554c9a4b
Certificate serial: 3D693E33EB8E72C589D3BDE4477BC042138C9D9D
Authority key identifier: 35:07:D4:7E:E4:E9:7F:6B:FD:3A:C4:CE:07:BF:99:C0:55:4C:9A:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQfUfuTpf2v9OsTOB7-ZwFVMmks.cer
Subject info access: rsync://0.sb/repo/sb/35/39312e3232302e32352e302f32342d3234203d3e20313937373330.roa
Signing time: Tue 05 Dec 2023 05:44:36 +0000
ROA not before: Tue 05 Dec 2023 05:39:36 +0000
ROA not after: Tue 03 Dec 2024 05:44:36 +0000
asID: 197730
IP address blocks: 91.220.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://0.sb/repo/sb/35/3507D47EE4E97F6BFD3AC4CE07BF99C0554C9A4B.crl
rsync://0.sb/repo/sb/35/3507D47EE4E97F6BFD3AC4CE07BF99C0554C9A4B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NQfUfuTpf2v9OsTOB7-ZwFVMmks.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:69:3e:33:eb:8e:72:c5:89:d3:bd:e4:47:7b:c0:42:13:8c:9d:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3507d47ee4e97f6bfd3ac4ce07bf99c0554c9a4b
Validity
Not Before: Dec 5 05:39:36 2023 GMT
Not After : Dec 3 05:44:36 2024 GMT
Subject: CN=3FF2C9821D796A47B98FF43C6C4732EC64B364A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9a:11:94:6a:be:1a:5f:29:50:d5:a4:bf:02:
b2:cf:f3:31:ff:c7:0a:c8:ca:6c:00:35:72:17:ea:
85:4c:d2:d8:8f:de:f6:f3:4b:6d:2c:58:8e:10:ed:
05:f8:e2:3b:de:14:3f:b1:6f:80:b4:0e:6e:04:1d:
c9:18:d3:7c:b0:e8:64:ad:2c:86:8b:f9:54:c7:e7:
86:36:fd:e3:01:d1:3f:e4:b4:61:b8:9e:58:04:67:
af:bf:6e:4b:c7:f6:95:cd:a7:61:e7:02:01:40:8a:
87:23:5d:cd:d0:20:5e:7d:a4:f7:8d:34:ef:79:21:
7e:3f:7d:36:74:77:25:e9:6b:b3:d3:96:c0:6d:1a:
76:c4:08:51:37:50:26:ff:00:44:8b:2f:1c:fc:9d:
81:d8:95:8f:dc:40:ee:f4:33:a4:04:bc:e0:b3:9d:
76:41:48:25:9c:77:d9:16:5f:b0:f8:d6:5d:b5:22:
cb:2f:8a:fa:db:76:80:b4:ec:aa:5a:34:bd:07:7e:
21:7a:0d:f8:05:80:c8:f3:f5:15:a8:71:12:63:db:
95:cf:8e:93:06:cf:0a:c8:d3:bf:ab:83:a1:aa:b0:
df:ee:34:39:5d:57:60:fd:74:03:69:5b:15:9b:67:
06:c6:d6:df:cc:7f:01:95:3a:a2:9e:42:6a:d7:74:
28:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F2:C9:82:1D:79:6A:47:B9:8F:F4:3C:6C:47:32:EC:64:B3:64:A6
X509v3 Authority Key Identifier:
keyid:35:07:D4:7E:E4:E9:7F:6B:FD:3A:C4:CE:07:BF:99:C0:55:4C:9A:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/35/3507D47EE4E97F6BFD3AC4CE07BF99C0554C9A4B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQfUfuTpf2v9OsTOB7-ZwFVMmks.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/35/39312e3232302e32352e302f32342d3234203d3e20313937373330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.25.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:7d:c3:91:95:c0:10:b0:88:c2:16:dd:3b:fb:55:57:36:cb:
ef:59:26:b8:ab:20:ac:b4:65:31:0e:cd:bd:de:a4:5d:32:db:
f7:68:0b:1b:85:44:42:64:60:e5:b4:aa:f7:20:44:e0:15:b7:
8d:79:34:5d:de:c7:12:39:23:ad:95:9d:37:45:ca:4d:7a:5e:
5f:5c:c7:f1:ac:b3:9c:d7:7c:f2:7d:0b:3c:71:18:e1:25:8d:
5b:de:01:90:0a:e5:69:ef:34:d9:ad:ce:ab:45:9d:65:6e:3d:
c8:08:b8:c2:f4:28:8e:a9:66:95:a2:45:be:8e:32:7a:aa:f0:
c9:6f:43:a9:64:79:af:ae:7d:df:89:15:c7:0c:1c:19:1f:04:
87:8b:29:c0:25:33:47:ab:de:75:14:70:59:3f:a1:72:2a:8f:
98:1a:3b:bd:34:c7:57:97:38:ff:3d:5d:c6:0b:fc:f7:aa:d8:
68:c6:00:83:83:d8:b4:dd:fe:65:ef:0f:d5:3d:be:0b:06:58:
fa:92:5d:68:9c:6c:2d:fd:41:ad:36:e6:57:3c:bf:fc:83:19:
61:e2:13:18:2e:ec:ab:40:d8:16:e5:d9:6c:6b:29:80:68:dd:
35:23:ab:99:2c:e9:43:c3:64:df:b2:f3:da:18:b7:a8:8f:67:
58:bd:b0:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 23:52:40 2024 by rpki-client on console-fra.rpki-client.org