Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/1/326131313a3a2f34382d313238203d3e203234303133.roa
File: 326131313a3a2f34382d313238203d3e203234303133.roa (raw, json)
Hash identifier: 9emyDyKvQ+p3D4i64P4jO7VZoB1ouKmqxlWkmWmWJKM=
Subject key identifier: CD:A1:60:0F:CC:DF:59:CD:A5:EA:58:02:93:B4:A7:D4:54:86:A7:D0
Certificate issuer: /CN=917b088922d0f33feca164e08554ec992daa39c5
Certificate serial: 4D336BF254E728068766A4DEA76C8ABB3071AE2D
Authority key identifier: 91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject info access: rsync://0.sb/repo/sb/1/326131313a3a2f34382d313238203d3e203234303133.roa
Signing time: Wed 18 Jun 2025 08:52:33 +0000
ROA not before: Wed 18 Jun 2025 08:47:33 +0000
ROA not after: Wed 17 Jun 2026 08:52:33 +0000
asID: 24013
IP address blocks: 2a11::/48 maxlen: 128
Validation: OK
Signature path: rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:33:6b:f2:54:e7:28:06:87:66:a4:de:a7:6c:8a:bb:30:71:ae:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917b088922d0f33feca164e08554ec992daa39c5
Validity
Not Before: Jun 18 08:47:33 2025 GMT
Not After : Jun 17 08:52:33 2026 GMT
Subject: CN=CDA1600FCCDF59CDA5EA580293B4A7D45486A7D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f4:66:0b:eb:c1:59:4e:d8:86:ab:6c:02:09:
15:86:e4:59:8c:cd:d7:c5:1e:30:55:06:01:32:65:
3b:ea:39:48:0f:e6:61:81:27:d6:75:a4:b4:37:80:
56:8f:78:2b:44:83:57:40:ad:76:6b:6b:f0:40:bd:
5c:14:b5:fa:a8:88:b7:83:61:f5:06:a1:ae:c1:97:
df:b9:d0:45:a5:87:d9:22:aa:44:5e:37:5d:dd:97:
bc:43:0b:76:ac:9f:9e:30:e5:70:a6:d8:0c:6e:90:
e2:b7:14:f4:14:b5:fd:07:88:69:a5:7c:9a:7a:f8:
68:74:77:57:b4:14:a9:ae:06:65:95:40:9d:78:5d:
fe:24:83:13:37:b2:24:66:67:b9:ca:03:eb:41:bf:
57:1b:59:25:e6:32:6f:2c:41:9c:b4:d5:9e:67:21:
47:30:0e:82:09:1d:3e:45:d8:2f:65:15:c4:23:d8:
30:c0:db:db:45:b4:04:39:69:ef:07:27:86:24:53:
e8:57:2f:c5:83:6d:d5:0c:5b:a6:64:66:1f:5f:f4:
33:94:ce:c8:c2:cc:7e:95:0e:15:19:2a:92:ce:f6:
67:52:a0:4c:6a:74:7e:8b:55:95:79:78:b6:3f:6f:
00:33:f0:ad:cb:b1:f9:11:b4:35:06:90:a7:0a:bc:
c3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:A1:60:0F:CC:DF:59:CD:A5:EA:58:02:93:B4:A7:D4:54:86:A7:D0
X509v3 Authority Key Identifier:
keyid:91:7B:08:89:22:D0:F3:3F:EC:A1:64:E0:85:54:EC:99:2D:AA:39:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/1/917B088922D0F33FECA164E08554EC992DAA39C5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXsIiSLQ8z_soWTghVTsmS2qOcU.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/1/326131313a3a2f34382d313238203d3e203234303133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11::/48
Signature Algorithm: sha256WithRSAEncryption
b0:d9:4e:e4:80:bd:21:d4:90:1b:6e:4b:cc:84:ff:ac:33:98:
b1:ad:01:81:c4:8a:e4:73:10:ce:21:c7:e0:ae:c7:a8:17:66:
4a:68:70:a6:ea:e3:d4:5a:e1:1c:0e:27:c2:c2:de:7d:24:2b:
45:aa:aa:6a:49:37:e5:05:50:61:61:d6:64:b2:c3:2b:6a:5a:
19:4b:60:57:ff:d3:89:b3:06:49:55:d0:cf:54:1e:89:b5:db:
03:b8:b8:89:3e:1b:6e:8e:4d:ed:7b:eb:04:0f:30:e9:5b:6b:
59:9d:ab:05:01:e2:b1:14:5f:b9:9b:4c:d4:f9:bf:57:d4:42:
d2:99:ad:8f:42:e3:87:f2:c7:87:54:17:75:5b:2f:20:e5:c6:
16:36:13:a1:8a:10:85:29:51:f5:39:84:9d:c9:2f:d7:b1:36:
46:03:96:4f:6d:68:76:4f:a7:f7:5d:30:75:37:6f:97:e7:f9:
38:82:a5:0f:9b:af:6b:4d:bd:32:f2:1c:30:4b:37:68:45:91:
f3:88:dc:4d:91:9b:bd:1e:19:e5:ae:d4:fd:f0:44:e3:fa:a5:
45:64:1a:55:a8:92:27:c9:57:ef:d1:74:ae:79:2e:ba:88:0d:
ea:ec:6b:03:37:67:3d:b6:b2:49:ad:3a:da:0b:96:74:80:22:
69:88:6b:30
-----BEGIN CERTIFICATE-----
MIIEqTCCA5GgAwIBAgIUTTNr8lTnKAaHZqTep2yKuzBxri0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTE3YjA4ODkyMmQwZjMzZmVjYTE2NGUwODU1NGVjOTky
ZGFhMzljNTAeFw0yNTA2MTgwODQ3MzNaFw0yNjA2MTcwODUyMzNaMDMxMTAvBgNV
BAMTKENEQTE2MDBGQ0NERjU5Q0RBNUVBNTgwMjkzQjRBN0Q0NTQ4NkE3RDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ9GYL68FZTtiGq2wCCRWG5FmM
zdfFHjBVBgEyZTvqOUgP5mGBJ9Z1pLQ3gFaPeCtEg1dArXZra/BAvVwUtfqoiLeD
YfUGoa7Bl9+50EWlh9kiqkReN13dl7xDC3asn54w5XCm2AxukOK3FPQUtf0HiGml
fJp6+Gh0d1e0FKmuBmWVQJ14Xf4kgxM3siRmZ7nKA+tBv1cbWSXmMm8sQZy01Z5n
IUcwDoIJHT5F2C9lFcQj2DDA29tFtAQ5ae8HJ4YkU+hXL8WDbdUMW6ZkZh9f9DOU
zsjCzH6VDhUZKpLO9mdSoExqdH6LVZV5eLY/bwAz8K3LsfkRtDUGkKcKvMPvAgMB
AAGjggGzMIIBrzAdBgNVHQ4EFgQUzaFgD8zfWc2l6lgCk7Sn1FSGp9AwHwYDVR0j
BBgwFoAUkXsIiSLQ8z/soWTghVTsmS2qOcUwDgYDVR0PAQH/BAQDAgeAMFQGA1Ud
HwRNMEswSaBHoEWGQ3JzeW5jOi8vMC5zYi9yZXBvL3NiLzEvOTE3QjA4ODkyMkQw
RjMzRkVDQTE2NEUwODU1NEVDOTkyREFBMzlDNS5jcmwwZAYIKwYBBQUHAQEEWDBW
MFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxUL2tYc0lpU0xROHpfc29XVGdoVlRzbVMycU9jVS5jZXIwYwYIKwYBBQUH
AQsEVzBVMFMGCCsGAQUFBzALhkdyc3luYzovLzAuc2IvcmVwby9zYi8xLzMyNjEz
MTMxM2EzYTJmMzQzODJkMzEzMjM4MjAzZDNlMjAzMjM0MzAzMTMzLnJvYTAYBgNV
HSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ
AwcAKhEAAAAAMA0GCSqGSIb3DQEBCwUAA4IBAQCw2U7kgL0h1JAbbkvMhP+sM5ix
rQGBxIrkcxDOIcfgrseoF2ZKaHCm6uPUWuEcDifCwt59JCtFqqpqSTflBVBhYdZk
ssMraloZS2BX/9OJswZJVdDPVB6JtdsDuLiJPhtujk3te+sEDzDpW2tZnasFAeKx
FF+5m0zU+b9X1ELSma2PQuOH8seHVBd1Wy8g5cYWNhOhihCFKVH1OYSdyS/XsTZG
A5ZPbWh2T6f3XTB1N2+X5/k4gqUPm69rTb0y8hwwSzdoRZHziNxNkZu9HhnlrtT9
8ETj+qVFZBpVqJInyVfv0XSueS66iA3q7GsDN2c9trJJrTraC5Z0gCJpiGsw
-----END CERTIFICATE-----
Generated at Sun Jun 29 02:58:40 2025 by rpki-client