Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/36/326130303a383334303a3a2f32392d3438203d3e20323130343239.roa
File: 326130303a383334303a3a2f32392d3438203d3e20323130343239.roa (raw, json)
Hash identifier: NsOVeyyX9QbvBkrCiAsSM4KfLV/I6Cm6Ec3RvP3b8XY=
Subject key identifier: DA:6D:E7:3D:52:4B:A1:62:A0:05:96:A9:BE:1F:AB:53:37:A2:42:1B
Certificate issuer: /CN=ac5bba86b1774a4e57f47fc2fe0b378d465d2344
Certificate serial: 3B0A61EE6A45DE877FBDF2F2CD6E82C5E87D6371
Authority key identifier: AC:5B:BA:86:B1:77:4A:4E:57:F4:7F:C2:FE:0B:37:8D:46:5D:23:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFu6hrF3Sk5X9H_C_gs3jUZdI0Q.cer
Subject info access: rsync://0.sb/repo/sb/36/326130303a383334303a3a2f32392d3438203d3e20323130343239.roa
Signing time: Fri 23 Aug 2024 10:47:02 +0000
ROA not before: Fri 23 Aug 2024 10:42:02 +0000
ROA not after: Fri 22 Aug 2025 10:47:02 +0000
asID: 210429
IP address blocks: 2a00:8340::/29 maxlen: 48
Validation: OK
Signature path: rsync://0.sb/repo/sb/36/AC5BBA86B1774A4E57F47FC2FE0B378D465D2344.crl
rsync://0.sb/repo/sb/36/AC5BBA86B1774A4E57F47FC2FE0B378D465D2344.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFu6hrF3Sk5X9H_C_gs3jUZdI0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:0a:61:ee:6a:45:de:87:7f:bd:f2:f2:cd:6e:82:c5:e8:7d:63:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5bba86b1774a4e57f47fc2fe0b378d465d2344
Validity
Not Before: Aug 23 10:42:02 2024 GMT
Not After : Aug 22 10:47:02 2025 GMT
Subject: CN=DA6DE73D524BA162A00596A9BE1FAB5337A2421B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:61:0a:19:51:80:7d:9a:f4:ca:cc:49:ac:b1:
ff:25:e9:ff:58:77:0b:49:ce:b6:7c:2d:cb:11:86:
7f:0f:24:39:80:06:3d:02:bc:9b:c2:97:4e:6e:97:
7f:1c:d3:21:73:b8:05:b5:d8:81:65:fb:72:34:57:
ce:a3:b9:12:e6:9f:55:bc:2f:2a:f3:2f:98:fc:f2:
1e:9e:5b:66:5d:43:ba:01:72:ad:8b:6d:b6:ee:b5:
f5:ac:44:b3:46:71:97:9b:80:fb:17:16:43:85:eb:
d4:73:51:b9:d0:47:cd:a5:38:f3:10:37:f7:22:03:
7f:d7:7c:37:9f:41:96:f5:10:7f:85:0e:e8:76:06:
8c:ca:70:3c:d1:e6:9e:4f:04:47:47:19:40:6f:57:
32:64:05:e7:ac:4c:2c:44:a4:ed:ca:92:bb:d0:f1:
a5:ef:72:86:48:e1:6b:5d:73:dd:9f:52:50:74:da:
26:c5:82:a1:d6:45:bf:c2:28:4e:83:7d:35:8a:2d:
30:ac:36:00:12:f8:cb:96:fc:ae:33:8f:33:8e:10:
50:7a:d6:f0:8e:57:1a:7a:e3:dc:37:c9:6d:78:e8:
76:8e:9f:e5:4a:b1:2b:27:36:6e:e3:5f:b7:54:2b:
0a:3f:d9:77:3d:ea:96:5e:a1:6d:1a:d4:91:25:e8:
7f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:6D:E7:3D:52:4B:A1:62:A0:05:96:A9:BE:1F:AB:53:37:A2:42:1B
X509v3 Authority Key Identifier:
keyid:AC:5B:BA:86:B1:77:4A:4E:57:F4:7F:C2:FE:0B:37:8D:46:5D:23:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/36/AC5BBA86B1774A4E57F47FC2FE0B378D465D2344.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFu6hrF3Sk5X9H_C_gs3jUZdI0Q.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/36/326130303a383334303a3a2f32392d3438203d3e20323130343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:8340::/29
Signature Algorithm: sha256WithRSAEncryption
56:0a:5d:8f:a2:26:ba:7a:67:8c:1b:69:fd:27:b3:7b:ef:82:
4f:20:45:3f:16:6a:4f:e7:92:49:53:c9:6f:78:60:c1:52:cf:
61:0e:51:32:93:89:8e:ea:4f:0e:33:a8:d4:4f:bb:a3:58:6e:
4a:92:61:f6:97:9a:c2:5b:ac:86:28:71:49:3b:8a:10:1c:3c:
ef:95:25:d5:ca:41:7f:31:d4:fc:10:f7:b0:51:89:e7:6c:31:
19:f6:d9:5c:f0:61:e0:29:3c:fd:c4:1f:b8:9c:75:f4:18:9b:
d9:b6:8c:db:71:cc:d8:19:84:26:86:1e:c6:ef:77:9e:19:a2:
4b:21:b9:7e:c2:b7:2a:fd:b5:ae:70:07:f5:f3:60:3d:d6:59:
7b:2d:e7:dd:6c:f2:b8:4f:f1:67:91:c1:fa:6d:9e:1f:68:26:
0b:b2:10:a3:1d:9d:10:0f:24:ce:55:74:67:2b:38:b0:6b:eb:
ed:7f:77:ed:af:65:2f:28:b9:53:0f:1f:09:a7:43:a4:ca:84:
d1:23:eb:6b:db:e9:30:0b:68:48:d6:77:f1:76:16:5b:d0:8c:
78:01:57:15:00:f6:cf:6e:9e:27:cd:47:12:8e:42:a3:57:f8:
36:fd:5d:b6:75:34:09:2d:ee:29:5a:88:4e:f0:96:49:4f:19:
15:5f:eb:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 21:02:26 2024 by rpki-client on console-fra.rpki-client.org