Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/1/326131313a333a3a2f33322d3438203d3e2038383838.roa
File: 326131313a333a3a2f33322d3438203d3e2038383838.roa (raw, json)
Hash identifier: ab+orse2k3vLknSM5IryV4UsYwWDG7bQUz36yV+1F4Q=
Subject key identifier: CF:99:52:16:4F:A6:3B:0B:41:44:6F:ED:0C:53:A7:52:28:51:A2:DB
Certificate issuer: /CN=917b088922d0f33feca164e08554ec992daa39c5
Certificate serial: 36D413420E7F48EC9FFECB5D15B6E3DD3425735F
Authority key identifier: 91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject info access: rsync://0.sb/repo/sb/1/326131313a333a3a2f33322d3438203d3e2038383838.roa
Signing time: Fri 25 Jul 2025 10:52:39 +0000
ROA not before: Fri 25 Jul 2025 10:47:39 +0000
ROA not after: Fri 24 Jul 2026 10:52:39 +0000
asID: 8888
IP address blocks: 2a11:3::/32 maxlen: 48
Validation: OK
Signature path: rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 05:47:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:d4:13:42:0e:7f:48:ec:9f:fe:cb:5d:15:b6:e3:dd:34:25:73:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917b088922d0f33feca164e08554ec992daa39c5
Validity
Not Before: Jul 25 10:47:39 2025 GMT
Not After : Jul 24 10:52:39 2026 GMT
Subject: CN=CF9952164FA63B0B41446FED0C53A7522851A2DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b7:12:55:e8:c1:ed:86:0c:da:29:fb:cd:b7:
f2:07:4f:c1:1f:66:3c:30:80:2c:82:1a:94:87:a6:
2b:6d:c3:ae:0e:4e:25:d1:fa:1b:a5:91:c8:4b:36:
99:69:45:7b:16:c3:27:20:1f:02:df:a5:d3:92:74:
da:f7:a2:c5:ef:a5:a4:5d:62:9a:53:d5:bf:27:b1:
e7:7c:51:dd:6b:2c:52:fe:09:89:84:2b:53:1c:52:
8d:7a:e6:14:e1:c9:ec:51:70:cc:9a:dc:92:3f:bf:
af:13:98:e3:ab:38:7f:7d:7a:6f:99:f2:3c:db:b7:
66:50:cb:1d:2d:36:a2:23:99:55:fd:2b:99:5a:75:
ec:a1:a5:2d:09:3d:bb:df:e3:44:87:28:03:25:e8:
cb:3e:c8:3e:2d:fb:49:87:04:ae:1b:02:00:40:ff:
e5:03:4a:56:ea:98:0c:28:31:6d:68:b1:d9:d8:57:
20:66:22:a0:96:0c:e2:aa:76:77:2e:cc:78:ca:cb:
01:b8:c5:a3:66:68:d4:ff:07:b5:01:8b:06:78:cb:
8a:a2:75:e4:97:eb:c6:a9:38:7e:e4:d8:7c:ac:26:
0f:54:ff:ba:32:8c:f0:63:4a:45:8f:53:e0:ac:0f:
27:c9:d3:14:15:96:8a:55:dd:f9:1b:2e:db:cc:e6:
01:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:99:52:16:4F:A6:3B:0B:41:44:6F:ED:0C:53:A7:52:28:51:A2:DB
X509v3 Authority Key Identifier:
keyid:91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/1/326131313a333a3a2f33322d3438203d3e2038383838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:3::/32
Signature Algorithm: sha256WithRSAEncryption
97:d3:94:61:80:20:a3:eb:f8:3b:30:86:d3:bb:62:9d:21:df:
fc:ad:60:b0:41:cc:df:8f:0a:b5:31:69:30:2b:46:5b:d4:57:
61:9b:68:70:8c:bf:a0:78:b7:b6:7f:61:75:b6:6b:30:cb:08:
88:4e:19:02:7d:b7:ef:cf:9e:08:16:88:a5:9b:b5:a4:65:dc:
95:38:61:e5:f2:e7:51:46:1a:de:1c:59:fc:9e:02:4d:3e:94:
67:50:17:e7:66:df:68:88:31:83:06:e8:55:c1:ab:c6:90:ef:
95:55:47:84:ab:81:0e:4c:86:d6:1c:04:00:2a:24:13:10:d1:
78:ab:85:90:2b:c0:71:cb:64:94:68:97:27:09:8b:73:e1:1a:
ff:f1:65:2c:74:7d:ce:86:b8:33:f1:7f:19:f1:44:e3:55:87:
73:cb:da:35:79:c3:aa:e3:b8:63:b7:e1:5c:d9:d5:52:82:0e:
24:a8:01:82:7b:33:f0:33:03:e8:b1:69:2b:0f:a6:c5:21:15:
d0:d5:2a:22:f9:ed:7f:63:37:46:08:37:32:2f:e5:dd:96:58:
b1:d8:13:6c:3f:1b:95:11:a1:d1:ea:34:c1:aa:d4:bb:8c:9e:
36:ae:fb:59:0f:fa:4b:72:fa:d4:c8:a0:b6:d2:60:6b:0a:0c:
15:88:2f:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 21:33:24 2025 by rpki-client