Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/21/34352e3134382e36302e302f32322d3234203d3e20323130343239.roa
File: 34352e3134382e36302e302f32322d3234203d3e20323130343239.roa (raw, json)
Hash identifier: b0s5kFugog6LNF4mYCzjC74ZN82zJpmB4tJG1Q9onn8=
Subject key identifier: AB:B4:58:92:DB:75:9B:39:C8:2E:91:5F:7E:3F:3E:4B:62:5A:34:CF
Certificate issuer: /CN=761c616364b89659ed9f18cb0af77420437cc7da
Certificate serial: 1F0B5559C76234BBAF00EED10D9A9290E8A80D71
Authority key identifier: 76:1C:61:63:64:B8:96:59:ED:9F:18:CB:0A:F7:74:20:43:7C:C7:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dhxhY2S4llntnxjLCvd0IEN8x9o.cer
Subject info access: rsync://0.sb/repo/sb/21/34352e3134382e36302e302f32322d3234203d3e20323130343239.roa
Signing time: Mon 31 Mar 2025 10:52:15 +0000
ROA not before: Mon 31 Mar 2025 10:47:15 +0000
ROA not after: Mon 30 Mar 2026 10:52:15 +0000
asID: 210429
IP address blocks: 45.148.60.0/22 maxlen: 24
Validation: OK
Signature path: rsync://0.sb/repo/sb/21/761C616364B89659ED9F18CB0AF77420437CC7DA.crl
rsync://0.sb/repo/sb/21/761C616364B89659ED9F18CB0AF77420437CC7DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dhxhY2S4llntnxjLCvd0IEN8x9o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:0b:55:59:c7:62:34:bb:af:00:ee:d1:0d:9a:92:90:e8:a8:0d:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=761c616364b89659ed9f18cb0af77420437cc7da
Validity
Not Before: Mar 31 10:47:15 2025 GMT
Not After : Mar 30 10:52:15 2026 GMT
Subject: CN=ABB45892DB759B39C82E915F7E3F3E4B625A34CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:36:45:55:2d:2f:74:69:ac:b4:48:62:ab:d6:
df:55:e3:e3:5d:18:6b:cd:a2:92:f8:ba:5d:74:39:
d7:ee:ee:9b:09:9a:2f:b8:32:53:c5:b1:30:a0:3e:
a1:ed:b2:4c:59:b9:1b:9a:62:aa:61:50:52:09:21:
4d:8a:1b:18:f1:77:d8:66:e6:1b:48:c8:56:93:12:
58:80:42:2c:9a:bd:df:b5:0b:92:88:ef:39:b2:71:
c5:c3:7e:3a:2d:ff:dc:3c:3b:77:2d:9f:20:74:11:
24:68:b5:58:6e:a8:2b:79:3b:cc:0a:32:16:13:da:
43:b7:49:fb:3c:cf:cb:fa:d1:9f:a3:2a:f0:c7:c7:
6e:fe:00:fa:e3:4f:cd:13:67:92:5f:d8:33:9c:83:
38:f3:9a:1e:bb:d3:72:06:38:47:4f:60:64:98:7f:
d2:97:5f:80:95:4d:c5:24:f1:5c:e2:0b:4f:1f:bd:
32:39:e2:26:25:81:4c:80:02:9c:86:a7:8e:09:6b:
65:4d:9d:07:ae:6b:54:37:42:e9:22:c3:0d:58:6c:
90:72:6b:cc:ca:01:5b:02:04:cc:89:7e:b8:16:58:
30:5b:f7:4a:80:0d:9c:a1:9b:66:f5:38:f0:cd:f9:
12:1b:33:28:ec:fa:1b:fe:60:34:f2:23:1c:c4:62:
d6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:B4:58:92:DB:75:9B:39:C8:2E:91:5F:7E:3F:3E:4B:62:5A:34:CF
X509v3 Authority Key Identifier:
keyid:76:1C:61:63:64:B8:96:59:ED:9F:18:CB:0A:F7:74:20:43:7C:C7:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/21/761C616364B89659ED9F18CB0AF77420437CC7DA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dhxhY2S4llntnxjLCvd0IEN8x9o.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/21/34352e3134382e36302e302f32322d3234203d3e20323130343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.60.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:b3:73:ee:c7:02:48:a6:cc:8b:ce:23:e7:0f:62:69:19:ab:
0f:59:4c:16:6e:cc:16:cd:3d:94:11:a8:a8:df:0b:8c:00:dd:
c1:08:6d:62:c2:33:8c:1c:fe:14:3e:54:d6:1c:66:55:28:59:
c7:80:77:6a:ae:bf:d8:e0:8e:6a:a0:7a:31:26:2d:65:7a:80:
ad:3b:70:c1:80:6e:43:a1:f6:a3:01:53:94:3c:80:6a:53:12:
b2:ca:09:a4:62:74:59:12:0d:97:41:5d:ee:d8:52:f1:f9:e1:
c6:ce:e1:69:43:09:52:0d:7a:a8:05:18:05:c3:3f:8e:92:1c:
ea:ce:77:e5:07:8b:b7:e9:10:09:b7:6d:91:50:4c:0c:a6:7a:
be:56:6b:cf:36:af:ba:01:03:9d:66:73:19:e9:fe:e0:d7:07:
a4:77:74:cd:3b:a6:0d:55:85:2e:51:43:88:65:15:c0:e6:4e:
f6:21:aa:f9:73:f6:c6:ec:d6:c6:7f:a0:2f:82:73:83:64:ba:
76:9b:e9:ad:49:99:70:6e:21:9d:c2:00:8c:11:96:1b:58:bc:
95:63:a0:26:97:c4:96:59:31:6d:7e:69:ac:b3:75:4f:be:b3:
6f:28:20:cf:46:a8:59:01:26:21:5a:2b:13:86:8f:b2:54:31:
27:40:bc:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:06:12 2025 by rpki-client