$ rpki-client -vvf 0.sb/repo/sb/20/3130332e3136392e39322e302f32332d3234203d3e20323130383037.roa File: 3130332e3136392e39322e302f32332d3234203d3e20323130383037.roa (raw, json) Hash identifier: JBs9UnGsxnVWzzE1rQ9DYlgI4/cSmY48B/VhZgJi4uM= Subject key identifier: F1:6A:89:B1:E7:99:47:E0:D4:92:9A:F1:46:C8:D9:CB:7E:6F:34:A3 Certificate issuer: /CN=A91C44A00000/serialNumber=E3098182BCB9AA102ECB2221A767B98E6ECCC310 Certificate serial: 3D7F8306FF095B5636AA02AEBB8825F877E28519 Authority key identifier: E3:09:81:82:BC:B9:AA:10:2E:CB:22:21:A7:67:B9:8E:6E:CC:C3:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer Subject info access: rsync://0.sb/repo/sb/20/3130332e3136392e39322e302f32332d3234203d3e20323130383037.roa Signing time: Fri 22 Sep 2023 10:19:40 +0000 ROA not before: Fri 22 Sep 2023 10:14:40 +0000 ROA not after: Fri 20 Sep 2024 10:19:40 +0000 asID: 210807 IP address blocks: 103.169.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.crl rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 15:27:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:7f:83:06:ff:09:5b:56:36:aa:02:ae:bb:88:25:f8:77:e2:85:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C44A00000/serialNumber=E3098182BCB9AA102ECB2221A767B98E6ECCC310 Validity Not Before: Sep 22 10:14:40 2023 GMT Not After : Sep 20 10:19:40 2024 GMT Subject: CN=F16A89B1E79947E0D4929AF146C8D9CB7E6F34A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0f:59:7d:83:f9:38:32:21:48:53:c8:0c:77: 25:04:86:f8:3f:a6:07:62:c1:36:29:69:fe:13:5d: 08:bc:9c:cd:36:30:19:2b:8a:c1:f9:ec:20:16:a3: 7b:fc:3d:ce:d2:84:24:21:1f:86:10:ea:09:35:1a: 04:cd:9f:79:59:4b:32:bb:9f:d3:bd:8b:54:57:75: d6:09:da:20:92:a9:8e:ef:ad:ad:f8:cd:4c:37:ec: 49:25:45:98:ed:83:52:77:16:4d:61:f3:1a:26:b1: fc:57:84:ec:00:04:48:12:65:1c:96:df:48:31:43: 46:ef:89:9d:8d:8f:5f:42:86:8f:44:97:c7:1b:7c: fd:73:34:f5:b4:08:22:c6:42:1c:c3:ab:f0:5d:60: 6d:b6:1e:25:6e:40:fb:f6:08:d9:a0:a2:07:be:5c: c0:42:4e:3c:bd:90:8b:a6:68:02:7b:c5:d1:20:ca: b4:0f:61:05:bb:aa:2a:d4:a2:44:ec:e1:a0:e6:e9: 9f:54:69:5f:7d:9d:c1:ae:1a:7a:5d:b8:26:d9:cd: c2:5a:16:2f:5e:7b:f0:82:fe:01:7a:ea:c1:60:bd: 06:4d:8d:a5:02:c4:a9:1b:eb:f9:9a:e0:9c:11:db: da:a5:83:9b:be:29:4f:6e:21:d2:75:c3:e6:18:cf: 6b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6A:89:B1:E7:99:47:E0:D4:92:9A:F1:46:C8:D9:CB:7E:6F:34:A3 X509v3 Authority Key Identifier: keyid:E3:09:81:82:BC:B9:AA:10:2E:CB:22:21:A7:67:B9:8E:6E:CC:C3:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/20/3130332e3136392e39322e302f32332d3234203d3e20323130383037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.92.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:48:d9:8b:6b:6c:89:ac:ec:21:83:ae:72:d3:f6:8a:df:9d: b8:82:c5:dc:57:25:0e:17:eb:d7:e5:85:e5:65:f9:d3:53:57: 92:99:4d:87:88:f1:f4:c2:45:aa:20:11:82:0b:e1:b8:b3:d6: e6:49:c2:96:83:d3:dc:1e:02:6f:16:d7:e5:6a:c3:01:14:65: 4f:55:9f:a4:7e:6f:2c:79:d6:9b:47:d7:65:bb:88:ac:27:69: 49:d8:c2:7e:5c:86:3b:89:ba:c8:77:f9:04:63:78:a8:87:86: fe:fe:39:df:9a:6d:91:ec:db:63:6f:1b:69:30:ca:36:f7:7f: 08:9e:ce:35:d0:0d:cb:e5:5f:ed:38:35:84:12:6d:99:5d:ae: bb:42:44:ed:5f:25:0f:71:9b:67:e3:ff:f5:2b:da:7f:57:5b: ca:8f:34:98:0a:72:75:82:26:b1:e5:43:39:6c:06:19:92:b2: bf:85:1c:91:30:5b:c2:6d:c1:d4:86:6e:02:da:e0:bf:fe:65: 8e:01:57:63:7b:8e:c4:48:e6:25:91:db:dd:ae:24:b3:40:1d: 4c:13:72:e9:fd:a1:5c:4e:fb:7f:b6:1f:97:28:26:bd:f1:30: 29:04:85:51:f3:61:7c:0d:8e:b6:53:67:54:66:dc:a5:61:52: c3:cf:ce:65 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUPX+DBv8JW1Y2qgKuu4gl+HfihRkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQzQ0QTAwMDAwMTEwLwYDVQQFEyhFMzA5ODE4MkJD QjlBQTEwMkVDQjIyMjFBNzY3Qjk4RTZFQ0NDMzEwMB4XDTIzMDkyMjEwMTQ0MFoX DTI0MDkyMDEwMTk0MFowMzExMC8GA1UEAxMoRjE2QTg5QjFFNzk5NDdFMEQ0OTI5 QUYxNDZDOEQ5Q0I3RTZGMzRBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMUPWX2D+TgyIUhTyAx3JQSG+D+mB2LBNilp/hNdCLyczTYwGSuKwfnsIBaj e/w9ztKEJCEfhhDqCTUaBM2feVlLMruf072LVFd11gnaIJKpju+trfjNTDfsSSVF mO2DUncWTWHzGiax/FeE7AAESBJlHJbfSDFDRu+JnY2PX0KGj0SXxxt8/XM09bQI IsZCHMOr8F1gbbYeJW5A+/YI2aCiB75cwEJOPL2Qi6ZoAnvF0SDKtA9hBbuqKtSi ROzhoObpn1RpX32dwa4ael24JtnNwloWL1578IL+AXrqwWC9Bk2NpQLEqRvr+Zrg nBHb2qWDm74pT24h0nXD5hjPa8kCAwEAAaOCAdgwggHUMB0GA1UdDgQWBBTxaomx 55lH4NSSmvFGyNnLfm80ozAfBgNVHSMEGDAWgBTjCYGCvLmqEC7LIiGnZ7mObszD EDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMjAvRTMwOTgxODJCQ0I5QUExMDJFQ0IyMjIxQTc2N0I5OEU2RUND QzMxMC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvNHdtQmdyeTVxaEF1eXlJaHAyZTVqbTdNd3hBLmNlcjBwBggrBgEF BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vMC5zYi9yZXBvL3NiLzIwLzMx MzAzMzJlMzEzNjM5MmUzOTMyMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzMTMw MzgzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQBZ6lcMA0GCSqGSIb3DQEBCwUAA4IBAQAeSNmLa2yJ rOwhg65y0/aK3524gsXcVyUOF+vX5YXlZfnTU1eSmU2HiPH0wkWqIBGCC+G4s9bm ScKWg9PcHgJvFtflasMBFGVPVZ+kfm8sedabR9dlu4isJ2lJ2MJ+XIY7ibrId/kE Y3ioh4b+/jnfmm2R7NtjbxtpMMo2938Ins410A3L5V/tODWEEm2ZXa67QkTtXyUP cZtn4//1K9p/V1vKjzSYCnJ1giax5UM5bAYZkrK/hRyRMFvCbcHUhm4C2uC//mWO AVdje47ESOYlkdvdriSzQB1ME3Lp/aFcTvt/th+XKCa98TApBIVR82F8DY62U2dU ZtylYVLDz85l -----END CERTIFICATE-----Generated at Thu May 9 12:29:35 2024 by rpki-client on console-ams.rpki-client.org