Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/40/3231332e3233322e3233382e302f32342d3234203d3e203136353039.roa
File: 3231332e3233322e3233382e302f32342d3234203d3e203136353039.roa (raw, json)
Hash identifier: 5BcwPB0fhRenhu1Nr0qQwpGldW4Y9NTd/XE9Je+qeC0=
Subject key identifier: 3D:88:37:68:67:B5:F7:69:71:B9:A7:F5:99:E9:6B:AF:D1:FF:72:7A
Certificate issuer: /CN=dcd78eab86a4645956b555a449f72cbabfd43b9e
Certificate serial: 3510880EC6C253179CCD4CACC6C0764B1F503BEE
Authority key identifier: DC:D7:8E:AB:86:A4:64:59:56:B5:55:A4:49:F7:2C:BA:BF:D4:3B:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3NeOq4akZFlWtVWkSfcsur_UO54.cer
Subject info access: rsync://0.sb/repo/sb/40/3231332e3233322e3233382e302f32342d3234203d3e203136353039.roa
Signing time: Fri 03 Nov 2023 17:35:05 +0000
ROA not before: Fri 03 Nov 2023 17:30:05 +0000
ROA not after: Fri 01 Nov 2024 17:35:05 +0000
asID: 16509
IP address blocks: 213.232.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:10:88:0e:c6:c2:53:17:9c:cd:4c:ac:c6:c0:76:4b:1f:50:3b:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcd78eab86a4645956b555a449f72cbabfd43b9e
Validity
Not Before: Nov 3 17:30:05 2023 GMT
Not After : Nov 1 17:35:05 2024 GMT
Subject: CN=3D88376867B5F76971B9A7F599E96BAFD1FF727A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fe:b0:0b:d4:88:ac:44:6f:0a:27:85:63:60:
a3:6f:28:c8:54:27:1e:24:54:44:f6:9a:90:ab:c0:
36:5e:f2:52:f9:88:a8:d8:1a:f7:6d:b4:03:96:04:
cc:ba:78:b5:57:c7:83:a8:00:2b:b0:df:2c:07:94:
67:0c:98:64:34:55:ac:4c:3d:02:f9:53:a9:4c:40:
9a:8a:4f:48:e7:02:44:36:d2:4d:62:d0:05:33:5a:
9a:82:e9:59:49:c3:47:a5:03:0d:35:dc:ce:ed:0a:
21:a1:27:ca:17:af:a1:f1:07:c1:fd:89:36:bc:a9:
28:1a:21:f8:15:83:5e:9e:1a:29:cd:70:96:59:1d:
0c:45:55:83:ea:22:aa:f8:b6:3f:04:ff:74:f2:5f:
70:9f:73:4e:1d:a8:6c:d6:2b:6c:bb:6a:17:1c:b8:
11:b3:71:5b:2e:6b:5a:bd:a1:c1:6c:fc:e2:b9:98:
04:5b:06:13:6d:ab:56:ab:70:30:f5:b6:57:9b:1e:
db:ca:84:3a:30:b7:92:10:2c:98:d2:ff:c0:98:0f:
9d:45:3b:0b:17:93:8a:2d:c0:49:4b:ce:2c:25:4c:
40:73:4f:b9:5e:b2:42:cf:3d:cd:1f:37:e1:3e:f8:
04:65:79:c8:23:7f:77:2d:35:80:7f:fa:93:61:4a:
0b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:88:37:68:67:B5:F7:69:71:B9:A7:F5:99:E9:6B:AF:D1:FF:72:7A
X509v3 Authority Key Identifier:
keyid:DC:D7:8E:AB:86:A4:64:59:56:B5:55:A4:49:F7:2C:BA:BF:D4:3B:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/40/DCD78EAB86A4645956B555A449F72CBABFD43B9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3NeOq4akZFlWtVWkSfcsur_UO54.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/40/3231332e3233322e3233382e302f32342d3234203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.238.0/24
Signature Algorithm: sha256WithRSAEncryption
96:ca:2b:2c:f0:dd:a4:43:93:0d:df:61:f4:d3:39:0b:7c:e7:
42:9d:0d:26:85:58:f3:cd:6c:34:44:6e:d8:b6:d6:93:db:0d:
7e:ef:01:bc:9d:6e:c7:66:d3:be:80:55:2d:96:d9:ed:6b:16:
9f:b3:de:b4:3e:bc:26:2a:8a:81:a3:3a:40:95:c7:3a:be:d0:
d2:5b:92:c1:82:95:7c:b0:20:58:ea:e4:79:fa:2f:0f:d3:46:
1b:43:c9:62:40:f4:a1:f9:85:6f:51:18:82:86:18:86:1d:c2:
86:10:d8:e5:a7:cd:e1:d8:66:ff:25:43:ed:7e:eb:72:8a:77:
af:c0:24:5d:a2:5d:43:a6:60:bb:4b:49:a2:1f:90:28:a8:97:
41:9e:3e:03:1a:34:d8:e2:c0:db:55:d1:e6:8e:b1:5f:79:13:
d1:be:a7:41:a8:3b:40:fb:cd:5c:2a:14:9b:b2:5d:3b:f2:ee:
10:ef:61:82:b2:db:df:cb:1e:37:60:b0:4b:03:58:20:7b:d0:
05:d9:76:57:1e:6a:96:0c:9d:50:f2:28:d7:11:88:e9:6c:a4:
da:f4:99:dc:c7:f3:1a:5a:83:2d:15:eb:91:db:4c:86:b3:da:
69:41:1c:cb:cb:b9:85:df:e0:c4:63:66:ec:6c:51:12:6e:fd:
c8:49:c1:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org