$ rpki-client -vvf 0.sb/repo/sb/20/3130332e3136392e39322e302f32332d3234203d3e20323130383037.roa File: 3130332e3136392e39322e302f32332d3234203d3e20323130383037.roa (raw, json) Hash identifier: COxZ9KbWzxiKuDKJecah0y/efCbAtMRvys3zBex3+DU= Subject key identifier: 2C:78:C2:74:8A:AA:4D:56:48:74:11:05:16:91:B1:A1:0C:E9:2F:5A Certificate issuer: /CN=A91C44A00000/serialNumber=E3098182BCB9AA102ECB2221A767B98E6ECCC310 Certificate serial: 385E136323B4A755936C453B27B75F9CAAED18B8 Authority key identifier: E3:09:81:82:BC:B9:AA:10:2E:CB:22:21:A7:67:B9:8E:6E:CC:C3:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer Subject info access: rsync://0.sb/repo/sb/20/3130332e3136392e39322e302f32332d3234203d3e20323130383037.roa Signing time: Fri 23 Aug 2024 10:47:01 +0000 ROA not before: Fri 23 Aug 2024 10:42:01 +0000 ROA not after: Fri 22 Aug 2025 10:47:01 +0000 asID: 210807 IP address blocks: 103.169.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.crl rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 10:04:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:5e:13:63:23:b4:a7:55:93:6c:45:3b:27:b7:5f:9c:aa:ed:18:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C44A00000/serialNumber=E3098182BCB9AA102ECB2221A767B98E6ECCC310 Validity Not Before: Aug 23 10:42:01 2024 GMT Not After : Aug 22 10:47:01 2025 GMT Subject: CN=2C78C2748AAA4D56487411051691B1A10CE92F5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:92:66:b3:a9:86:c5:a3:23:1d:da:42:63:b4: c0:f0:17:15:fa:cc:12:b2:1b:c1:ad:d5:38:88:d3: 2c:d6:3c:10:f1:0a:98:3d:6d:f9:ff:aa:bc:fd:58: e3:bc:54:a0:d4:c7:46:18:93:98:31:94:d6:35:42: f2:3d:82:b1:fd:ee:0d:c0:59:27:de:ce:04:e3:dc: 64:f3:de:98:62:c1:a1:e2:bc:e8:10:69:ef:cf:e7: 4b:39:87:ec:44:e0:b8:da:8c:d6:48:0d:74:db:e0: b2:67:aa:09:50:0c:a2:eb:de:34:81:cb:dd:22:4a: 43:b8:4c:be:b1:30:aa:53:96:71:e6:84:23:44:a7: ed:a0:e9:c0:57:84:6f:ec:15:b8:f7:ed:2e:51:98: f4:11:34:0c:93:af:b3:51:35:f1:03:96:46:56:3d: f2:b5:3d:70:8c:4a:fa:40:d4:dc:bd:b5:41:61:2c: 0c:42:48:68:c0:b8:c5:4c:bf:57:42:f2:70:31:bf: a3:b4:0b:d0:75:fa:f7:5a:43:c3:59:57:5e:21:20: f9:a2:83:5f:db:eb:b7:e8:c0:ad:64:9d:5c:25:1f: 4d:41:03:9d:9d:58:45:61:5a:f9:ff:4b:b0:f9:29: f5:2a:c8:15:19:f1:39:98:dc:0a:4e:cb:9a:5e:b9: 0f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:78:C2:74:8A:AA:4D:56:48:74:11:05:16:91:B1:A1:0C:E9:2F:5A X509v3 Authority Key Identifier: keyid:E3:09:81:82:BC:B9:AA:10:2E:CB:22:21:A7:67:B9:8E:6E:CC:C3:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/20/3130332e3136392e39322e302f32332d3234203d3e20323130383037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.92.0/23 Signature Algorithm: sha256WithRSAEncryption 53:1d:26:a9:c5:05:55:af:99:fd:c3:36:83:c7:6d:e3:72:9b: cb:04:d8:13:9c:ce:ec:f6:72:4d:ba:6b:d2:7f:6b:78:49:de: 64:ae:e6:47:08:af:26:50:f7:18:50:c5:39:c6:ce:e8:06:2b: a8:7e:91:b5:0b:30:cb:c2:80:54:de:b6:0e:5f:f3:72:0a:d4: 3c:ea:e4:cb:8d:d7:1a:93:08:75:bb:f3:f5:fc:d1:16:51:dd: da:21:12:2b:da:e7:29:a0:31:eb:5d:fb:ef:3b:fb:a6:da:ad: 0b:d2:3f:c0:27:ef:20:46:b1:77:9d:05:a6:6b:12:27:bd:8c: 4c:ff:f0:a1:6d:a0:ec:3c:5d:d2:49:72:80:03:4c:7d:34:77: 5d:7b:8a:8d:41:c0:70:53:20:51:36:a9:26:e1:16:c3:04:10: 4b:3a:24:68:f9:e2:64:67:45:61:e0:67:e3:b4:e6:a1:75:d5: 36:24:a3:22:f8:41:39:c7:38:95:9c:6c:60:70:28:ad:12:e3: 56:e4:73:9b:00:1a:43:45:25:46:5a:a2:5b:79:1d:e6:18:80: 89:7b:c2:26:17:18:06:56:b4:b1:06:40:73:85:4e:af:15:ca: 53:8d:e1:6e:01:48:35:b4:5d:98:29:34:9c:b4:7e:f2:99:de: c7:e4:36:a3 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUOF4TYyO0p1WTbEU7J7dfnKrtGLgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQzQ0QTAwMDAwMTEwLwYDVQQFEyhFMzA5ODE4MkJD QjlBQTEwMkVDQjIyMjFBNzY3Qjk4RTZFQ0NDMzEwMB4XDTI0MDgyMzEwNDIwMVoX DTI1MDgyMjEwNDcwMVowMzExMC8GA1UEAxMoMkM3OEMyNzQ4QUFBNEQ1NjQ4NzQx MTA1MTY5MUIxQTEwQ0U5MkY1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOiSZrOphsWjIx3aQmO0wPAXFfrMErIbwa3VOIjTLNY8EPEKmD1t+f+qvP1Y 47xUoNTHRhiTmDGU1jVC8j2Csf3uDcBZJ97OBOPcZPPemGLBoeK86BBp78/nSzmH 7ETguNqM1kgNdNvgsmeqCVAMouveNIHL3SJKQ7hMvrEwqlOWceaEI0Sn7aDpwFeE b+wVuPftLlGY9BE0DJOvs1E18QOWRlY98rU9cIxK+kDU3L21QWEsDEJIaMC4xUy/ V0LycDG/o7QL0HX691pDw1lXXiEg+aKDX9vrt+jArWSdXCUfTUEDnZ1YRWFa+f9L sPkp9SrIFRnxOZjcCk7Lml65D7UCAwEAAaOCAdgwggHUMB0GA1UdDgQWBBQseMJ0 iqpNVkh0EQUWkbGhDOkvWjAfBgNVHSMEGDAWgBTjCYGCvLmqEC7LIiGnZ7mObszD EDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMjAvRTMwOTgxODJCQ0I5QUExMDJFQ0IyMjIxQTc2N0I5OEU2RUND QzMxMC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvNHdtQmdyeTVxaEF1eXlJaHAyZTVqbTdNd3hBLmNlcjBwBggrBgEF BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vMC5zYi9yZXBvL3NiLzIwLzMx MzAzMzJlMzEzNjM5MmUzOTMyMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzMTMw MzgzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQBZ6lcMA0GCSqGSIb3DQEBCwUAA4IBAQBTHSapxQVV r5n9wzaDx23jcpvLBNgTnM7s9nJNumvSf2t4Sd5kruZHCK8mUPcYUMU5xs7oBiuo fpG1CzDLwoBU3rYOX/NyCtQ86uTLjdcakwh1u/P1/NEWUd3aIRIr2ucpoDHrXfvv O/um2q0L0j/AJ+8gRrF3nQWmaxInvYxM//ChbaDsPF3SSXKAA0x9NHdde4qNQcBw UyBRNqkm4RbDBBBLOiRo+eJkZ0Vh4GfjtOahddU2JKMi+EE5xziVnGxgcCitEuNW 5HObABpDRSVGWqJbeR3mGICJe8ImFxgGVrSxBkBzhU6vFcpTjeFuAUg1tF2YKTSc tH7ymd7H5Daj -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:24 2024 by rpki-client on console-fra.rpki-client.org