$ rpki-client -vvf 0.sb/repo/sb/20/323430373a396534303a3a2f33322d3438203d3e2038383838.roa File: 323430373a396534303a3a2f33322d3438203d3e2038383838.roa (raw, json) Hash identifier: dpx9u/4nfhMz1MKaHXYk34wW2XugoKpdeECuor/LJaE= Subject key identifier: 7E:40:31:F1:44:04:E8:AC:13:33:AE:3F:9D:62:AB:BE:9E:7D:A3:B4 Certificate issuer: /CN=A91C44A00000/serialNumber=E3098182BCB9AA102ECB2221A767B98E6ECCC310 Certificate serial: 5574425EEB0CE48AEF0703BBD497EE6084079383 Authority key identifier: E3:09:81:82:BC:B9:AA:10:2E:CB:22:21:A7:67:B9:8E:6E:CC:C3:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer Subject info access: rsync://0.sb/repo/sb/20/323430373a396534303a3a2f33322d3438203d3e2038383838.roa Signing time: Fri 23 Aug 2024 10:47:01 +0000 ROA not before: Fri 23 Aug 2024 10:42:01 +0000 ROA not after: Fri 22 Aug 2025 10:47:01 +0000 asID: 8888 IP address blocks: 2407:9e40::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.crl rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 10:04:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:74:42:5e:eb:0c:e4:8a:ef:07:03:bb:d4:97:ee:60:84:07:93:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C44A00000/serialNumber=E3098182BCB9AA102ECB2221A767B98E6ECCC310 Validity Not Before: Aug 23 10:42:01 2024 GMT Not After : Aug 22 10:47:01 2025 GMT Subject: CN=7E4031F14404E8AC1333AE3F9D62ABBE9E7DA3B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bd:78:b0:88:e5:51:a0:88:77:bd:e7:d1:cf: d6:9d:a8:aa:e4:cd:83:c6:3e:b7:91:01:b0:2f:6d: 0f:6b:1f:18:f7:68:ca:3f:66:21:b9:bc:f5:ab:49: 1b:34:71:55:3e:a3:12:dc:26:69:fd:7a:76:dd:b0: 4d:e9:4a:d8:c2:b3:49:82:c8:88:27:d3:23:e0:bb: 45:78:53:45:39:88:e0:b5:da:94:0b:05:2c:96:1c: 9c:a0:e6:08:7b:9d:78:8b:79:4e:ae:09:23:7a:cc: 65:c3:ee:91:a1:e2:34:d5:b6:fc:71:cb:8c:a3:b8: dd:59:3e:49:fe:b6:ed:51:e5:6c:ad:28:89:64:78: c6:d9:b5:7c:9c:95:1b:70:c4:40:76:a1:41:ca:ab: 1b:67:46:ec:66:1d:16:24:9c:31:e2:38:e9:6e:83: dd:71:99:9c:f8:8e:de:da:d0:83:40:b2:60:3b:35: a2:2f:a9:aa:d9:d4:52:7c:b3:c8:63:c6:2c:18:bb: 61:81:ce:6f:fd:d2:87:9a:f9:9d:ff:19:b1:dd:43: 5e:0b:f4:c5:1f:d0:f3:e8:ea:64:d2:c4:ba:d5:07: 5c:5c:b0:dc:0a:48:91:5e:f1:7c:b9:0f:35:af:cc: 1b:8e:fe:24:a3:10:cb:8c:5a:86:4d:4b:1e:09:de: cc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:40:31:F1:44:04:E8:AC:13:33:AE:3F:9D:62:AB:BE:9E:7D:A3:B4 X509v3 Authority Key Identifier: keyid:E3:09:81:82:BC:B9:AA:10:2E:CB:22:21:A7:67:B9:8E:6E:CC:C3:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/20/E3098182BCB9AA102ECB2221A767B98E6ECCC310.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wmBgry5qhAuyyIhp2e5jm7MwxA.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/20/323430373a396534303a3a2f33322d3438203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:9e40::/32 Signature Algorithm: sha256WithRSAEncryption 7f:a8:ad:71:63:bc:60:e3:09:89:b8:4a:b2:a9:0f:f5:10:79: 3e:ff:30:92:89:22:fd:f0:29:b1:49:20:66:34:da:a5:0f:2a: c5:b6:e6:1b:39:5d:7e:e5:55:b7:61:5f:2b:33:cd:c8:b9:22: 34:24:43:b7:2d:71:43:40:e2:ba:3d:0d:02:4d:a2:2c:32:da: 7c:cf:d4:46:1b:56:0e:74:2a:c5:0d:e9:38:69:24:65:dd:1f: a6:a4:c8:0b:66:84:00:99:64:f0:9e:f4:66:57:16:97:64:af: 08:80:3a:90:e0:bd:7c:07:29:e0:88:2a:3b:7a:3a:1b:04:6c: 64:33:d2:07:1f:dd:b5:e6:3f:b1:d4:1d:f4:58:7d:58:91:23: ff:7e:24:d4:e6:87:48:9f:74:e3:97:40:90:9a:cd:9a:b0:61: 82:b7:f0:a0:e8:98:8e:47:1b:73:51:10:97:54:76:d5:0e:72: 81:24:cb:d5:3b:e9:6d:6c:47:a7:b1:e6:a0:8a:6e:ce:35:d0: 1a:74:89:98:68:ea:47:ad:19:6e:8f:49:4d:fb:a7:c3:92:95: 19:56:1d:24:2b:14:9b:0e:b3:29:bf:39:0a:30:e9:91:2c:10: 16:08:ad:62:02:a4:fc:44:1f:60:03:93:4d:a9:e4:39:33:b5: ad:d4:06:97 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUVXRCXusM5IrvBwO71JfuYIQHk4MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQzQ0QTAwMDAwMTEwLwYDVQQFEyhFMzA5ODE4MkJD QjlBQTEwMkVDQjIyMjFBNzY3Qjk4RTZFQ0NDMzEwMB4XDTI0MDgyMzEwNDIwMVoX DTI1MDgyMjEwNDcwMVowMzExMC8GA1UEAxMoN0U0MDMxRjE0NDA0RThBQzEzMzNB RTNGOUQ2MkFCQkU5RTdEQTNCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM69eLCI5VGgiHe959HP1p2oquTNg8Y+t5EBsC9tD2sfGPdoyj9mIbm89atJ GzRxVT6jEtwmaf16dt2wTelK2MKzSYLIiCfTI+C7RXhTRTmI4LXalAsFLJYcnKDm CHudeIt5Tq4JI3rMZcPukaHiNNW2/HHLjKO43Vk+Sf627VHlbK0oiWR4xtm1fJyV G3DEQHahQcqrG2dG7GYdFiScMeI46W6D3XGZnPiO3trQg0CyYDs1oi+pqtnUUnyz yGPGLBi7YYHOb/3Sh5r5nf8Zsd1DXgv0xR/Q8+jqZNLEutUHXFyw3ApIkV7xfLkP Na/MG47+JKMQy4xahk1LHgnezGkCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBR+QDHx RATorBMzrj+dYqu+nn2jtDAfBgNVHSMEGDAWgBTjCYGCvLmqEC7LIiGnZ7mObszD EDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMjAvRTMwOTgxODJCQ0I5QUExMDJFQ0IyMjIxQTc2N0I5OEU2RUND QzMxMC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvNHdtQmdyeTVxaEF1eXlJaHAyZTVqbTdNd3hBLmNlcjBqBggrBgEF BQcBCwReMFwwWgYIKwYBBQUHMAuGTnJzeW5jOi8vMC5zYi9yZXBvL3NiLzIwLzMy MzQzMDM3M2EzOTY1MzQzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDM4MzgzODM4 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEw DzANBAIAAjAHAwUAJAeeQDANBgkqhkiG9w0BAQsFAAOCAQEAf6itcWO8YOMJibhK sqkP9RB5Pv8wkoki/fApsUkgZjTapQ8qxbbmGzldfuVVt2FfKzPNyLkiNCRDty1x Q0Diuj0NAk2iLDLafM/URhtWDnQqxQ3pOGkkZd0fpqTIC2aEAJlk8J70ZlcWl2Sv CIA6kOC9fAcp4IgqO3o6GwRsZDPSBx/dteY/sdQd9Fh9WJEj/34k1OaHSJ9045dA kJrNmrBhgrfwoOiYjkcbc1EQl1R21Q5ygSTL1TvpbWxHp7HmoIpuzjXQGnSJmGjq R60Zbo9JTfunw5KVGVYdJCsUmw6zKb85CjDpkSwQFgitYgKk/EQfYAOTTankOTO1 rdQGlw== -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:06 2024 by rpki-client on console-ams.rpki-client.org