Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/4/34362e3137352e3133332e302f32342d3234203d3e20323130393337.roa
File: 34362e3137352e3133332e302f32342d3234203d3e20323130393337.roa (raw, json)
Hash identifier: CPTyHmS74rD9cGrNxKyI8DcrerPgEoA9HknDQxvmwX8=
Subject key identifier: 76:5E:C3:35:52:F9:F2:F7:44:7E:8E:85:F7:78:64:54:F4:62:9D:57
Certificate issuer: /CN=63df6923415fc62d1c49a5cb7d3d2505d61f065c
Certificate serial: 1AD8220FDC849E9B3933596D95629000E265B554
Authority key identifier: 63:DF:69:23:41:5F:C6:2D:1C:49:A5:CB:7D:3D:25:05:D6:1F:06:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y99pI0Ffxi0cSaXLfT0lBdYfBlw.cer
Subject info access: rsync://0.sb/repo/sb/4/34362e3137352e3133332e302f32342d3234203d3e20323130393337.roa
Signing time: Fri 23 Aug 2024 10:47:06 +0000
ROA not before: Fri 23 Aug 2024 10:42:06 +0000
ROA not after: Fri 22 Aug 2025 10:47:06 +0000
asID: 210937
IP address blocks: 46.175.133.0/24 maxlen: 24
Validation: OK
Signature path: rsync://0.sb/repo/sb/4/63DF6923415FC62D1C49A5CB7D3D2505D61F065C.crl
rsync://0.sb/repo/sb/4/63DF6923415FC62D1C49A5CB7D3D2505D61F065C.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y99pI0Ffxi0cSaXLfT0lBdYfBlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 08:48:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:d8:22:0f:dc:84:9e:9b:39:33:59:6d:95:62:90:00:e2:65:b5:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63df6923415fc62d1c49a5cb7d3d2505d61f065c
Validity
Not Before: Aug 23 10:42:06 2024 GMT
Not After : Aug 22 10:47:06 2025 GMT
Subject: CN=765EC33552F9F2F7447E8E85F7786454F4629D57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:45:1d:b4:14:e3:f2:75:aa:60:e4:71:a1:e9:
20:03:2d:21:f4:3a:84:8f:ff:4c:87:d3:b8:d4:36:
53:35:43:a4:03:91:e5:0f:eb:5f:9b:3d:58:2f:23:
48:35:45:65:a5:ee:45:9b:f2:25:94:f2:62:ec:5b:
b4:94:b1:18:f8:61:30:cc:c1:84:ac:de:6c:92:2b:
2c:03:fc:31:a2:db:4b:fe:41:d3:62:ee:22:35:81:
fb:f0:33:69:0b:6b:5a:2d:e6:29:37:97:40:dd:dd:
1c:56:dc:a9:85:38:96:d1:21:3e:71:00:3a:3d:9a:
e4:60:71:c0:8d:64:ca:af:be:1f:d4:62:da:86:87:
21:41:7f:a2:77:b0:60:61:b7:c7:ce:91:50:ff:36:
17:aa:23:cc:98:ad:64:ca:38:75:71:2c:c9:c3:c0:
94:f8:4b:18:5f:fa:37:58:c5:64:fc:41:98:e1:3b:
04:cd:1b:b8:f6:87:48:60:c1:21:ff:dc:84:22:9e:
53:f6:93:96:04:23:a4:04:ef:75:fb:1b:48:b2:71:
96:93:a4:3f:ba:fd:fe:aa:a9:e6:c4:d3:b5:34:19:
1a:dc:8b:af:ce:df:56:f2:bf:2e:23:e8:23:40:38:
f1:74:25:d6:11:67:74:96:13:f4:83:c9:38:1b:a6:
5f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:5E:C3:35:52:F9:F2:F7:44:7E:8E:85:F7:78:64:54:F4:62:9D:57
X509v3 Authority Key Identifier:
keyid:63:DF:69:23:41:5F:C6:2D:1C:49:A5:CB:7D:3D:25:05:D6:1F:06:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/4/63DF6923415FC62D1C49A5CB7D3D2505D61F065C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y99pI0Ffxi0cSaXLfT0lBdYfBlw.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/4/34362e3137352e3133332e302f32342d3234203d3e20323130393337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.175.133.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:77:1c:fb:53:74:ec:e8:97:e0:53:c8:c0:9b:00:76:15:14:
fd:cf:be:34:cd:6e:e7:18:76:0e:0e:4c:bc:05:39:31:7c:24:
90:77:d4:3f:f5:9f:78:7a:ae:08:93:0f:2a:b9:14:0f:00:29:
a5:cc:70:82:42:b4:4d:ba:08:18:31:e1:e0:57:a6:fa:0c:c6:
39:4f:ec:73:e8:6e:0c:9a:65:6e:ba:62:82:b1:b6:aa:e6:8d:
95:2f:f9:79:33:b2:88:8b:24:bf:32:d7:85:b5:e5:76:c2:23:
80:60:f9:a3:59:82:a8:df:0a:cb:56:a5:11:80:85:82:e0:5b:
18:94:31:c6:52:5d:64:46:a9:b8:7e:4b:f7:9f:46:96:1d:4d:
f4:27:09:92:8a:cf:02:2d:b5:1d:fa:56:3d:e6:e9:98:4a:ab:
90:9f:cd:d3:66:5e:50:68:e5:1f:70:69:a8:93:21:25:a9:b6:
1d:4e:44:41:d1:0c:32:80:c6:77:d7:8a:7f:37:45:1a:6a:e2:
2d:b7:21:9b:cf:06:8e:38:31:de:70:82:98:e5:e3:5a:a2:3c:
aa:f6:10:8f:8a:93:98:b3:48:c3:ca:31:44:07:c6:de:53:6c:
ba:11:66:b8:a4:c9:aa:83:8e:12:43:72:41:b6:e2:be:57:37:
f1:9b:40:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:47:09 2025 by rpki-client