Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/36/326130303a383334303a3a2f32392d3438203d3e20323130343239.roa
File: 326130303a383334303a3a2f32392d3438203d3e20323130343239.roa (raw, json)
Hash identifier: /yHQei+Ttwvmv6U1ApsUUwh/3MbRVdChKfw3kGsFniw=
Subject key identifier: 4B:0F:C1:2C:4D:3D:63:66:C0:8F:B9:CB:3A:4F:B8:24:67:01:20:70
Certificate issuer: /CN=ac5bba86b1774a4e57f47fc2fe0b378d465d2344
Certificate serial: 71FF79438DC3DB0E03F57839298CD0F67798F1B9
Authority key identifier: AC:5B:BA:86:B1:77:4A:4E:57:F4:7F:C2:FE:0B:37:8D:46:5D:23:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFu6hrF3Sk5X9H_C_gs3jUZdI0Q.cer
Subject info access: rsync://0.sb/repo/sb/36/326130303a383334303a3a2f32392d3438203d3e20323130343239.roa
Signing time: Fri 22 Sep 2023 10:19:41 +0000
ROA not before: Fri 22 Sep 2023 10:14:41 +0000
ROA not after: Fri 20 Sep 2024 10:19:41 +0000
asID: 210429
IP address blocks: 2a00:8340::/29 maxlen: 48
Validation: OK
Signature path: rsync://0.sb/repo/sb/36/AC5BBA86B1774A4E57F47FC2FE0B378D465D2344.crl
rsync://0.sb/repo/sb/36/AC5BBA86B1774A4E57F47FC2FE0B378D465D2344.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFu6hrF3Sk5X9H_C_gs3jUZdI0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 17:41:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:ff:79:43:8d:c3:db:0e:03:f5:78:39:29:8c:d0:f6:77:98:f1:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5bba86b1774a4e57f47fc2fe0b378d465d2344
Validity
Not Before: Sep 22 10:14:41 2023 GMT
Not After : Sep 20 10:19:41 2024 GMT
Subject: CN=4B0FC12C4D3D6366C08FB9CB3A4FB82467012070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2c:42:3e:d6:75:3e:8a:ca:10:d0:cb:a0:07:
7b:3f:dd:f1:df:92:1b:b5:ee:f5:7c:f9:16:cd:ff:
2d:86:e2:31:18:b3:70:8a:43:c0:65:22:0c:d6:1b:
db:d0:b0:d7:99:64:7a:6d:8c:8a:5c:d3:06:19:32:
99:60:5e:cb:1d:a5:bf:51:88:03:b3:df:57:84:c5:
f5:91:6c:2c:c6:07:5b:32:8f:ae:ff:bf:e1:33:94:
35:1b:57:0c:71:24:a9:0b:c0:45:fc:e0:e0:f2:47:
28:cf:ef:44:fd:0a:30:5a:83:f0:74:22:4d:f1:af:
1a:65:1f:41:a4:b6:a7:1b:8a:9c:6f:19:52:de:bf:
3d:ff:90:4a:82:86:da:1e:42:21:7b:12:a2:c9:23:
dc:f4:fa:b5:5e:b3:72:60:fd:c7:d3:17:1f:73:dc:
88:43:d1:4f:46:8c:3a:6c:75:28:49:ef:93:a8:17:
4a:6a:71:18:11:1a:01:86:e9:56:88:4a:10:ee:0c:
ca:10:74:92:0d:6a:b2:d0:9a:88:de:02:c4:16:67:
69:9e:76:e4:5a:c8:df:1d:f6:0e:fc:18:33:38:37:
28:2d:6c:22:e6:6f:bb:34:eb:2a:15:20:f6:db:b7:
c3:c5:f5:c2:0c:3f:21:d2:c3:c8:fa:27:11:81:66:
87:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:0F:C1:2C:4D:3D:63:66:C0:8F:B9:CB:3A:4F:B8:24:67:01:20:70
X509v3 Authority Key Identifier:
keyid:AC:5B:BA:86:B1:77:4A:4E:57:F4:7F:C2:FE:0B:37:8D:46:5D:23:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/36/AC5BBA86B1774A4E57F47FC2FE0B378D465D2344.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFu6hrF3Sk5X9H_C_gs3jUZdI0Q.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/36/326130303a383334303a3a2f32392d3438203d3e20323130343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:8340::/29
Signature Algorithm: sha256WithRSAEncryption
20:b9:a6:e5:21:c1:e4:0d:07:c0:2d:88:cc:43:80:2f:ba:8b:
32:d0:f7:c3:b8:87:a1:e7:38:9c:f7:98:92:77:c8:2b:0b:51:
63:f2:8f:63:65:21:fa:76:e0:b8:07:8a:42:1d:cf:f7:b3:b1:
d1:e5:27:4b:1a:74:1c:03:99:0b:0a:43:17:a9:fe:83:19:5f:
ae:0b:da:f1:ab:1f:de:20:39:13:6d:f6:a3:c8:2b:41:b5:0e:
4b:e1:0f:2e:a9:8c:e7:41:de:c1:85:d7:81:3d:15:eb:9f:d1:
a4:fc:48:7c:d5:1b:7f:d2:54:97:90:65:68:1f:5f:2c:6a:d8:
d4:39:9d:ed:21:e9:7d:86:6b:32:8e:4c:24:23:ab:90:76:d1:
76:20:14:d5:76:d7:f4:3e:01:56:61:b3:b6:23:13:f8:da:5a:
8a:02:e1:1c:81:3c:d3:ca:37:11:3e:64:3b:7f:36:59:b8:3f:
58:04:2d:fc:ce:bb:ca:47:4e:30:4c:7f:22:c1:e1:87:74:73:
4b:5a:c5:4c:80:9f:4a:6d:bc:e9:96:fd:81:91:db:cb:44:42:
0b:4c:4e:3b:4a:b7:ff:8d:01:d6:11:ef:d2:a3:9f:41:99:da:
29:58:13:81:6f:29:f9:9f:ea:33:2b:c0:da:5e:e2:f0:37:3d:
8c:34:3f:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 01:40:02 2024 by rpki-client on console-fra.rpki-client.org