Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/4/326131313a316434303a3a2f32392d3438203d3e20323130393337.roa
File: 326131313a316434303a3a2f32392d3438203d3e20323130393337.roa (raw, json)
Hash identifier: ahI0f8JFKj6vwSFaKDeUo/Bix4YNDq7/6pWaIGa5T78=
Subject key identifier: 18:DD:43:9C:97:CA:73:4E:F9:9F:F9:CB:9F:C4:70:CA:EE:D2:3A:FD
Certificate issuer: /CN=63df6923415fc62d1c49a5cb7d3d2505d61f065c
Certificate serial: 1E07CC7D9C2221C772BD589E998910BC121C7C59
Authority key identifier: 63:DF:69:23:41:5F:C6:2D:1C:49:A5:CB:7D:3D:25:05:D6:1F:06:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y99pI0Ffxi0cSaXLfT0lBdYfBlw.cer
Subject info access: rsync://0.sb/repo/sb/4/326131313a316434303a3a2f32392d3438203d3e20323130393337.roa
Signing time: Fri 22 Sep 2023 10:19:37 +0000
ROA not before: Fri 22 Sep 2023 10:14:37 +0000
ROA not after: Fri 20 Sep 2024 10:19:37 +0000
asID: 210937
IP address blocks: 2a11:1d40::/29 maxlen: 48
Validation: OK
Signature path: rsync://0.sb/repo/sb/4/63DF6923415FC62D1C49A5CB7D3D2505D61F065C.crl
rsync://0.sb/repo/sb/4/63DF6923415FC62D1C49A5CB7D3D2505D61F065C.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y99pI0Ffxi0cSaXLfT0lBdYfBlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:07:cc:7d:9c:22:21:c7:72:bd:58:9e:99:89:10:bc:12:1c:7c:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63df6923415fc62d1c49a5cb7d3d2505d61f065c
Validity
Not Before: Sep 22 10:14:37 2023 GMT
Not After : Sep 20 10:19:37 2024 GMT
Subject: CN=18DD439C97CA734EF99FF9CB9FC470CAEED23AFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:90:67:17:2e:5a:d0:40:93:0a:37:11:72:c8:
45:c2:fb:b0:9e:ef:da:57:af:62:b1:d9:f2:c4:d1:
cc:66:43:43:b9:10:8b:66:03:6f:a8:2e:26:d7:83:
ab:23:24:1a:f2:62:2b:3e:ed:26:96:d0:10:b0:48:
9b:0b:6f:5d:01:71:a2:e7:c4:31:60:27:ba:2c:3d:
b6:46:8a:aa:cc:68:2c:44:32:cf:a3:13:04:5e:db:
e1:0e:40:94:82:73:38:4f:b0:ee:e0:d3:a5:f9:7e:
f9:e0:9c:54:e7:26:38:ae:ef:12:1b:03:80:e0:50:
50:2a:11:51:1d:5f:2e:02:48:47:84:cb:ee:89:c6:
f9:f7:9f:1a:77:60:5c:29:34:65:93:9c:c8:b1:5b:
7d:18:29:19:0f:e7:24:1c:97:47:6f:14:0d:ee:a1:
ec:31:c4:44:de:51:d3:4c:c7:97:9c:24:a1:02:a7:
61:3b:3f:99:59:4f:64:49:af:1a:3b:62:0f:a7:27:
7d:27:d9:94:f5:e7:01:c8:3a:f1:fc:99:90:ea:0b:
4a:4e:2e:af:b6:75:5a:7b:16:d7:89:b1:c9:72:e1:
8f:ae:39:1a:35:c0:b1:43:85:d6:9b:9f:8c:8c:50:
04:58:ac:a1:39:72:77:ac:b5:7a:7c:8a:18:e7:e8:
f3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:DD:43:9C:97:CA:73:4E:F9:9F:F9:CB:9F:C4:70:CA:EE:D2:3A:FD
X509v3 Authority Key Identifier:
keyid:63:DF:69:23:41:5F:C6:2D:1C:49:A5:CB:7D:3D:25:05:D6:1F:06:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/4/63DF6923415FC62D1C49A5CB7D3D2505D61F065C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y99pI0Ffxi0cSaXLfT0lBdYfBlw.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/4/326131313a316434303a3a2f32392d3438203d3e20323130393337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:1d40::/29
Signature Algorithm: sha256WithRSAEncryption
75:60:94:1a:61:fc:12:f4:1f:dc:72:82:2f:4e:13:ab:3a:d8:
17:5d:7e:84:3b:f6:4a:77:d7:5c:5f:02:2a:78:2c:e4:5d:14:
b8:9f:b9:6c:a8:51:3c:b2:75:bd:06:a7:14:a7:2a:ac:d2:ce:
36:3a:7f:19:89:f8:ab:eb:86:c4:54:10:2f:79:28:39:4a:07:
d9:aa:f7:25:ad:c0:e9:94:75:d7:6d:39:7e:cc:6d:81:18:86:
ea:20:87:5c:37:31:e7:5f:aa:b0:56:31:69:79:bb:a2:c4:e8:
db:8b:4e:ad:82:e9:d9:e9:fc:44:5a:2e:73:30:7b:57:17:67:
0b:34:30:85:c4:47:f5:e9:ee:72:bb:06:d8:9c:bb:e3:0d:24:
e4:0e:72:6b:18:3d:17:d1:0d:46:eb:01:f5:91:4d:85:0e:0c:
54:88:4a:df:67:77:24:2e:ef:9c:26:7d:a3:21:ea:f0:de:fc:
98:1e:ca:7f:0d:99:6e:08:1d:99:83:5b:61:7c:47:66:5c:9b:
eb:7c:1e:64:1c:b5:a2:8e:37:c9:74:94:bc:b4:6c:b9:9a:6e:
84:b0:15:cd:eb:ac:b4:33:2c:40:59:d0:fc:c0:58:6a:46:2b:
c5:bf:8e:e5:49:e8:2a:26:4d:75:97:18:d6:5b:d5:68:af:75:
e4:d1:bf:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 04:06:48 2024 by rpki-client on console-ams.rpki-client.org