$ rpki-client -vvf 0.sb/repo/sb/20/323430373a396534303a3a2f33322d3438203d3e20323130383037.roa File: 323430373a396534303a3a2f33322d3438203d3e20323130383037.roa (raw, json) Hash identifier: 3rK8d/6gLKcyPCicH0Ki5tc7N/mjrv/35qkDTvME1oE= Subject key identifier: E8:C3:48:EB:DF:4D:C7:AC:93:AA:A8:A6:6F:AA:DA:41:BF:16:7B:7C Certificate issuer: /CN=A91C44A00000/serialNumber=E3098182BCB9AA102ECB2221A767B98E6ECCC310 Certificate serial: 0BDE602F4B91D3742F6504CD640B73BCA98C3B9F Authority key identifier: E3:09:81:82:BC:B9:AA:10:2E:CB:22:21:A7:67:B9:8E:6E:CC:C3:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer Subject info access: rsync://0.sb/repo/sb/20/323430373a396534303a3a2f33322d3438203d3e20323130383037.roa Signing time: Fri 23 Aug 2024 10:47:01 +0000 ROA not before: Fri 23 Aug 2024 10:42:01 +0000 ROA not after: Fri 22 Aug 2025 10:47:01 +0000 asID: 210807 IP address blocks: 2407:9e40::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.crl rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 10:04:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:de:60:2f:4b:91:d3:74:2f:65:04:cd:64:0b:73:bc:a9:8c:3b:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C44A00000/serialNumber=E3098182BCB9AA102ECB2221A767B98E6ECCC310 Validity Not Before: Aug 23 10:42:01 2024 GMT Not After : Aug 22 10:47:01 2025 GMT Subject: CN=E8C348EBDF4DC7AC93AAA8A66FAADA41BF167B7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5e:8c:56:a2:21:a4:99:ff:3d:70:db:40:20: 48:bf:8b:bc:12:b6:98:b7:5a:57:cf:95:7a:cb:de: c5:e8:75:4e:7c:d0:58:b5:31:d9:1c:69:0d:a5:5e: 4c:dc:3f:7f:6a:1b:2b:72:a6:82:a2:5f:e2:0c:b2: 82:bd:df:39:a6:82:22:a8:9d:fd:1a:06:39:29:e2: 9e:cc:2b:fb:68:4d:3e:63:e5:99:48:28:35:31:ec: 76:84:ab:cc:3d:57:55:08:f7:f9:c6:00:8b:6d:1f: e8:13:8d:0b:4d:3f:ff:22:4e:5a:60:62:21:65:61: 23:b3:65:97:07:7f:7f:47:54:d7:39:92:9d:99:4a: a3:bf:7d:eb:05:e6:90:6c:86:ee:4d:b6:74:f7:04: 70:6e:b4:53:d5:9b:a3:5a:57:8c:c8:e3:76:2c:28: 1b:7d:42:ed:f9:53:57:d0:8c:8e:7e:70:c5:50:61: 52:6f:f6:7b:44:3b:7e:19:bf:b2:68:6a:22:c4:07: 93:df:a3:a7:71:84:d4:e3:a0:de:88:cf:45:e1:8c: 97:20:fb:b3:2c:44:0d:32:5f:b6:a9:32:29:ce:41: 5f:61:5d:fa:31:5c:2b:0a:14:0d:51:0b:8a:fd:b3: cb:35:c9:f5:ab:df:32:02:b3:3e:4f:01:4d:81:df: 9d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C3:48:EB:DF:4D:C7:AC:93:AA:A8:A6:6F:AA:DA:41:BF:16:7B:7C X509v3 Authority Key Identifier: keyid:E3:09:81:82:BC:B9:AA:10:2E:CB:22:21:A7:67:B9:8E:6E:CC:C3:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/20/323430373a396534303a3a2f33322d3438203d3e20323130383037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:9e40::/32 Signature Algorithm: sha256WithRSAEncryption 30:81:6c:24:2d:fc:23:c4:7a:56:85:42:ea:2c:a0:5d:58:f8: 6e:70:f8:9b:d7:11:0f:2c:b7:bb:84:81:75:9d:b5:43:98:9b: 01:a6:6f:ca:e0:37:ac:c1:db:6b:2f:6c:8a:67:88:81:de:1e: a9:fb:73:d6:f1:b5:24:b2:46:de:11:3f:49:20:84:3b:ef:4c: a5:48:e2:69:87:b4:df:f5:2b:b9:de:48:f7:a5:d9:cb:ff:4a: e0:0e:d2:42:b2:9d:ea:8d:e5:bf:92:11:77:ee:14:65:d1:23: 6c:49:db:89:c1:c2:81:cc:9f:59:3f:21:f3:85:81:f1:c9:12: d4:8c:06:0d:ac:b1:8b:ef:4e:02:61:f8:cb:ca:b0:02:86:d8: 1e:46:f9:6a:e2:a1:18:ac:29:56:a6:d3:48:4b:60:6d:63:08: b4:71:98:73:9f:7d:56:04:e8:03:af:22:46:7c:d3:68:c4:d9: 25:fa:65:4e:65:71:83:d9:7c:47:a8:08:68:82:78:18:e7:59: 2b:dc:1a:cb:42:ef:64:3b:f5:5b:a5:10:4c:02:43:ed:06:22: 54:29:1b:32:13:69:8a:71:93:20:e6:d5:8d:23:bd:8c:33:dc: f8:e6:9b:6c:5b:47:97:48:2e:95:19:c1:fa:2f:24:7b:3f:c2: 05:70:b0:6e -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUC95gL0uR03QvZQTNZAtzvKmMO58wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQzQ0QTAwMDAwMTEwLwYDVQQFEyhFMzA5ODE4MkJD QjlBQTEwMkVDQjIyMjFBNzY3Qjk4RTZFQ0NDMzEwMB4XDTI0MDgyMzEwNDIwMVoX DTI1MDgyMjEwNDcwMVowMzExMC8GA1UEAxMoRThDMzQ4RUJERjREQzdBQzkzQUFB OEE2NkZBQURBNDFCRjE2N0I3QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZejFaiIaSZ/z1w20AgSL+LvBK2mLdaV8+Vesvexeh1TnzQWLUx2RxpDaVe TNw/f2obK3KmgqJf4gyygr3fOaaCIqid/RoGOSninswr+2hNPmPlmUgoNTHsdoSr zD1XVQj3+cYAi20f6BONC00//yJOWmBiIWVhI7Nllwd/f0dU1zmSnZlKo7996wXm kGyG7k22dPcEcG60U9Wbo1pXjMjjdiwoG31C7flTV9CMjn5wxVBhUm/2e0Q7fhm/ smhqIsQHk9+jp3GE1OOg3ojPReGMlyD7syxEDTJftqkyKc5BX2Fd+jFcKwoUDVEL iv2zyzXJ9avfMgKzPk8BTYHfndUCAwEAAaOCAdcwggHTMB0GA1UdDgQWBBTow0jr 303HrJOqqKZvqtpBvxZ7fDAfBgNVHSMEGDAWgBTjCYGCvLmqEC7LIiGnZ7mObszD EDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMjAvRTMwOTgxODJCQ0I5QUExMDJFQ0IyMjIxQTc2N0I5OEU2RUND QzMxMC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvNHdtQmdyeTVxaEF1eXlJaHAyZTVqbTdNd3hBLmNlcjBuBggrBgEF BQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJzeW5jOi8vMC5zYi9yZXBvL3NiLzIwLzMy MzQzMDM3M2EzOTY1MzQzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzEzMDM4 MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB /wQRMA8wDQQCAAIwBwMFACQHnkAwDQYJKoZIhvcNAQELBQADggEBADCBbCQt/CPE elaFQuosoF1Y+G5w+JvXEQ8st7uEgXWdtUOYmwGmb8rgN6zB22svbIpniIHeHqn7 c9bxtSSyRt4RP0kghDvvTKVI4mmHtN/1K7neSPel2cv/SuAO0kKyneqN5b+SEXfu FGXRI2xJ24nBwoHMn1k/IfOFgfHJEtSMBg2ssYvvTgJh+MvKsAKG2B5G+WrioRis KVam00hLYG1jCLRxmHOffVYE6AOvIkZ802jE2SX6ZU5lcYPZfEeoCGiCeBjnWSvc GstC72Q79VulEEwCQ+0GIlQpGzITaYpxkyDm1Y0jvYwz3Pjmm2xbR5dILpUZwfov JHs/wgVwsG4= -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:06 2024 by rpki-client on console-ams.rpki-client.org