$ rpki-client -vvf 0.sb/repo/sb/20/323430373a396534303a3a2f33322d3438203d3e20323130383037.roa File: 323430373a396534303a3a2f33322d3438203d3e20323130383037.roa (raw, json) Hash identifier: 3Z9w0G0UdXj0bj6CxxFc81chJ0qXYEsqEs9mdSbykHo= Subject key identifier: 50:BB:7A:91:1F:70:E8:65:EE:CE:E8:2D:7E:D6:6C:07:FF:EB:69:94 Certificate issuer: /CN=A91C44A00000/serialNumber=E3098182BCB9AA102ECB2221A767B98E6ECCC310 Certificate serial: 7C341DFE0DE8970D5594BF97B255939CD8A413CC Authority key identifier: E3:09:81:82:BC:B9:AA:10:2E:CB:22:21:A7:67:B9:8E:6E:CC:C3:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer Subject info access: rsync://0.sb/repo/sb/20/323430373a396534303a3a2f33322d3438203d3e20323130383037.roa Signing time: Fri 22 Sep 2023 10:19:40 +0000 ROA not before: Fri 22 Sep 2023 10:14:40 +0000 ROA not after: Fri 20 Sep 2024 10:19:40 +0000 asID: 210807 IP address blocks: 2407:9e40::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.crl rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 15:27:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:34:1d:fe:0d:e8:97:0d:55:94:bf:97:b2:55:93:9c:d8:a4:13:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C44A00000/serialNumber=E3098182BCB9AA102ECB2221A767B98E6ECCC310 Validity Not Before: Sep 22 10:14:40 2023 GMT Not After : Sep 20 10:19:40 2024 GMT Subject: CN=50BB7A911F70E865EECEE82D7ED66C07FFEB6994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:57:6a:d7:27:8e:7a:90:80:37:2c:49:3e:05: a1:3e:05:34:36:f2:15:0b:90:0e:bb:1e:7e:6d:3f: 20:0a:b2:da:89:56:67:04:93:82:d6:13:d5:1a:8f: 42:20:b6:17:15:a9:09:b5:4e:5e:fb:96:cc:a5:21: 97:3c:74:94:6f:17:32:c8:6c:08:7e:09:14:fc:3f: 71:b6:fc:61:58:05:0b:a2:3a:c0:97:57:52:5e:ec: 64:6e:82:32:69:25:62:73:35:d6:33:4a:2a:b8:73: da:73:a5:56:8f:cb:cd:96:a0:67:80:a4:06:b5:dc: 34:a5:3a:f7:13:71:f0:2e:66:cb:95:86:9e:f2:ba: 7a:98:9a:a9:e1:0d:f0:ee:c8:23:c3:26:18:24:9c: b0:e9:df:69:6f:0a:aa:57:74:25:bc:16:7d:80:20: c5:87:53:bc:a8:ae:26:fa:3c:4e:70:d8:16:b6:cc: 85:2e:77:f5:b7:ae:0a:4a:cb:af:f9:ac:25:08:22: 0e:95:c8:48:49:99:54:f7:ef:71:c4:12:58:2c:98: 4d:77:37:14:1f:d2:34:7b:62:37:09:cd:50:6a:e0: c0:fa:02:62:1e:0c:b6:8f:6d:b9:bd:59:37:12:9a: ca:4d:68:39:c5:01:4f:e6:cc:5b:25:9b:65:dc:20: a9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:BB:7A:91:1F:70:E8:65:EE:CE:E8:2D:7E:D6:6C:07:FF:EB:69:94 X509v3 Authority Key Identifier: keyid:E3:09:81:82:BC:B9:AA:10:2E:CB:22:21:A7:67:B9:8E:6E:CC:C3:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/20/323430373a396534303a3a2f33322d3438203d3e20323130383037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:9e40::/32 Signature Algorithm: sha256WithRSAEncryption b5:0c:bf:d7:68:ca:e3:f5:7f:68:f3:96:f4:63:b8:2c:f7:1f: 63:f0:6e:36:45:af:fe:a0:34:cc:97:b7:21:52:b0:2a:1c:3a: 2d:89:5d:0e:9f:6f:27:ef:d5:fd:ca:8b:e9:07:f9:16:30:3e: c9:51:00:6c:ed:94:3d:a5:1b:51:cd:68:21:1f:6e:1e:e5:30: 89:36:98:83:a5:16:03:4e:66:ce:98:c5:a1:45:f2:b9:ad:99: 03:34:77:de:76:2c:e7:8d:6d:7c:fc:f7:b0:d4:6d:47:a8:89: fb:44:4c:8c:d9:a7:e2:1c:97:a7:21:ad:1b:2e:df:b5:e5:c2: 0c:72:2c:12:25:47:69:73:08:c0:fc:a5:41:8b:dd:8d:2d:67: 2d:de:76:50:9e:a5:2e:a5:d1:86:5b:4b:89:ec:65:12:47:c6: 19:fe:df:47:80:3d:23:ff:ff:6b:4f:72:fa:f1:fc:a1:75:40: 24:fb:7c:95:23:1f:34:c0:7a:ac:26:90:5f:b1:3c:e3:5b:4e: d6:48:0d:1e:f8:95:6e:a3:41:eb:e4:ca:cb:e1:40:86:1b:2b: 9b:39:61:6c:21:a2:9d:1c:6c:17:52:ba:52:2c:75:2c:19:94: 15:b8:2f:21:ae:de:aa:87:fa:18:18:a6:8b:71:f1:59:b9:44: 8b:aa:17:ea -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUfDQd/g3olw1VlL+XslWTnNikE8wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQzQ0QTAwMDAwMTEwLwYDVQQFEyhFMzA5ODE4MkJD QjlBQTEwMkVDQjIyMjFBNzY3Qjk4RTZFQ0NDMzEwMB4XDTIzMDkyMjEwMTQ0MFoX DTI0MDkyMDEwMTk0MFowMzExMC8GA1UEAxMoNTBCQjdBOTExRjcwRTg2NUVFQ0VF ODJEN0VENjZDMDdGRkVCNjk5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9XatcnjnqQgDcsST4FoT4FNDbyFQuQDrsefm0/IAqy2olWZwSTgtYT1RqP QiC2FxWpCbVOXvuWzKUhlzx0lG8XMshsCH4JFPw/cbb8YVgFC6I6wJdXUl7sZG6C MmklYnM11jNKKrhz2nOlVo/LzZagZ4CkBrXcNKU69xNx8C5my5WGnvK6epiaqeEN 8O7II8MmGCScsOnfaW8Kqld0JbwWfYAgxYdTvKiuJvo8TnDYFrbMhS539beuCkrL r/msJQgiDpXISEmZVPfvccQSWCyYTXc3FB/SNHtiNwnNUGrgwPoCYh4Mto9tub1Z NxKayk1oOcUBT+bMWyWbZdwgqXcCAwEAAaOCAdcwggHTMB0GA1UdDgQWBBRQu3qR H3DoZe7O6C1+1mwH/+tplDAfBgNVHSMEGDAWgBTjCYGCvLmqEC7LIiGnZ7mObszD EDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMjAvRTMwOTgxODJCQ0I5QUExMDJFQ0IyMjIxQTc2N0I5OEU2RUND QzMxMC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvNHdtQmdyeTVxaEF1eXlJaHAyZTVqbTdNd3hBLmNlcjBuBggrBgEF BQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJzeW5jOi8vMC5zYi9yZXBvL3NiLzIwLzMy MzQzMDM3M2EzOTY1MzQzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzEzMDM4 MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB /wQRMA8wDQQCAAIwBwMFACQHnkAwDQYJKoZIhvcNAQELBQADggEBALUMv9doyuP1 f2jzlvRjuCz3H2PwbjZFr/6gNMyXtyFSsCocOi2JXQ6fbyfv1f3Ki+kH+RYwPslR AGztlD2lG1HNaCEfbh7lMIk2mIOlFgNOZs6YxaFF8rmtmQM0d952LOeNbXz897DU bUeoiftETIzZp+Icl6chrRsu37XlwgxyLBIlR2lzCMD8pUGL3Y0tZy3edlCepS6l 0YZbS4nsZRJHxhn+30eAPSP//2tPcvrx/KF1QCT7fJUjHzTAeqwmkF+xPONbTtZI DR74lW6jQevkysvhQIYbK5s5YWwhop0cbBdSulIsdSwZlBW4LyGu3qqH+hgYpotx 8Vm5RIuqF+o= -----END CERTIFICATE-----Generated at Thu May 9 12:29:35 2024 by rpki-client on console-ams.rpki-client.org