$ rpki-client -vvf 0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa File: 3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa (raw, json) Hash identifier: l6MIQdPT2yk37XypHIcImtlv6ZtgbKzrRMvLzOHMApw= Subject key identifier: 0F:8B:11:EC:BB:29:F3:0A:60:79:8C:04:B5:78:8A:40:BB:15:46:3C Certificate issuer: /CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Certificate serial: 7AAF2B2197199FC1E38005B8E8C1629890698316 Authority key identifier: 81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject info access: rsync://0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa Signing time: Fri 23 Aug 2024 10:47:02 +0000 ROA not before: Fri 23 Aug 2024 10:42:02 +0000 ROA not after: Fri 22 Aug 2025 10:47:02 +0000 asID: 24242 IP address blocks: 103.136.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 11:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:af:2b:21:97:19:9f:c1:e3:80:05:b8:e8:c1:62:98:90:69:83:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Validity Not Before: Aug 23 10:42:02 2024 GMT Not After : Aug 22 10:47:02 2025 GMT Subject: CN=0F8B11ECBB29F30A60798C04B5788A40BB15463C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:09:93:e4:84:e4:8c:94:f9:9b:28:85:4a:3d: 96:12:5f:53:fb:44:f1:db:3f:5d:16:3a:f9:6a:aa: 22:d4:6e:6c:c0:c6:72:dc:b0:fa:9a:80:47:27:06: 55:dd:52:ae:67:91:15:0d:9c:43:53:d7:7c:6c:37: ac:bb:c6:e5:e6:e8:ec:d2:13:60:44:17:fb:0c:dc: 3a:1e:5b:3a:08:94:32:df:f0:b4:e3:87:a0:95:51: 63:e2:0d:f4:7d:0e:1e:82:71:86:63:08:26:a1:ae: 47:33:36:42:52:e5:79:0e:a6:98:c0:f8:cc:e7:8f: 7e:07:75:81:cc:0e:a4:55:a5:c9:d4:eb:2d:96:56: 97:5f:f5:1c:5f:06:4e:ad:2c:7b:92:3b:2e:f7:3d: 5a:90:35:ad:9e:76:69:da:19:d1:8d:93:ad:68:1f: a5:f1:e6:9b:ad:38:85:e8:85:6c:f0:82:a9:f7:57: 8e:cb:33:eb:e6:b7:2c:35:9f:4f:a1:5b:87:54:4d: d3:b2:87:f6:ba:a2:17:08:b4:3b:d4:90:c0:dc:94: f5:11:e9:12:b4:c2:a5:37:9c:68:37:c9:f8:73:7a: b9:b2:ee:48:42:8e:41:19:92:bc:9b:f1:74:96:36: 9a:fd:65:85:50:c2:9a:f1:0b:8b:bf:2b:c0:fd:99: 55:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:8B:11:EC:BB:29:F3:0A:60:79:8C:04:B5:78:8A:40:BB:15:46:3C X509v3 Authority Key Identifier: keyid:81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.144.0/22 Signature Algorithm: sha256WithRSAEncryption b6:cb:d2:1a:4f:bb:77:ba:ce:1f:f2:ba:9c:54:cd:be:83:91: 15:aa:48:ca:e1:2b:f2:39:70:11:1e:3d:ea:3b:03:bf:fe:49: f0:1a:5a:d4:af:f5:f4:77:ee:aa:a2:fe:49:cc:10:9c:94:98: ca:31:b5:da:63:b1:18:04:c4:b7:fe:d9:6c:d1:25:7a:17:c2: 20:00:25:95:d6:f4:e4:2a:63:72:10:02:41:15:2f:7c:44:cd: 99:b8:68:09:e8:7e:31:c5:cf:91:55:57:a5:dc:82:a4:12:14: a4:65:e4:40:77:a4:e2:90:49:4d:3d:55:f2:26:a6:e8:08:d0: 5d:eb:77:76:c4:67:e2:75:19:26:4b:2e:73:02:df:7f:d8:aa: 99:35:26:25:48:10:3f:95:09:f0:ff:b1:69:f0:34:7b:24:ea: a7:28:a5:aa:af:ba:06:6b:ff:55:74:a7:bf:36:0c:9e:fa:54: de:66:75:2e:d8:e0:ea:1e:5b:65:8e:7e:b5:79:d0:f9:73:8f: db:b5:98:ef:e3:1b:2d:f6:bf:e9:3c:fb:e1:fb:c4:58:5b:3c: 79:48:1a:71:68:eb:09:47:28:75:78:93:b0:a1:68:f1:aa:2e: e7:9f:a7:0c:7a:10:1f:42:b5:d9:a3:e7:36:25:3a:cf:97:d3: 97:e1:ed:1e -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUeq8rIZcZn8HjgAW46MFimJBpgxYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjRCNUUwMDAwMTEwLwYDVQQFEyg4MUMyOTRENEIz NjVEQzQxNzJCNUEyMUI2N0YwNUIyMEQ2Qjg3QTYyMB4XDTI0MDgyMzEwNDIwMloX DTI1MDgyMjEwNDcwMlowMzExMC8GA1UEAxMoMEY4QjExRUNCQjI5RjMwQTYwNzk4 QzA0QjU3ODhBNDBCQjE1NDYzQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMJk+SE5IyU+ZsohUo9lhJfU/tE8ds/XRY6+WqqItRubMDGctyw+pqARycG Vd1SrmeRFQ2cQ1PXfGw3rLvG5ebo7NITYEQX+wzcOh5bOgiUMt/wtOOHoJVRY+IN 9H0OHoJxhmMIJqGuRzM2QlLleQ6mmMD4zOePfgd1gcwOpFWlydTrLZZWl1/1HF8G Tq0se5I7Lvc9WpA1rZ52adoZ0Y2TrWgfpfHmm604heiFbPCCqfdXjssz6+a3LDWf T6Fbh1RN07KH9rqiFwi0O9SQwNyU9RHpErTCpTecaDfJ+HN6ubLuSEKOQRmSvJvx dJY2mv1lhVDCmvELi78rwP2ZVVsCAwEAAaOCAdgwggHUMB0GA1UdDgQWBBQPixHs uynzCmB5jAS1eIpAuxVGPDAfBgNVHSMEGDAWgBSBwpTUs2XcQXK1ohtn8Fsg1rh6 YjAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzEvODFDMjk0RDRCMzY1REM0MTcyQjVBMjFCNjdGMDVCMjBENkI4 N0E2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvZ2NLVTFMTmwzRUZ5dGFJYlpfQmJJTmE0ZW1JLmNlcjBwBggrBgEF BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vMC5zYi9yZXBvL3NiLzMxLzMx MzAzMzJlMzEzMzM2MmUzMTM0MzQyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM0 MzIzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCZ4iQMA0GCSqGSIb3DQEBCwUAA4IBAQC2y9IaT7t3 us4f8rqcVM2+g5EVqkjK4SvyOXARHj3qOwO//knwGlrUr/X0d+6qov5JzBCclJjK MbXaY7EYBMS3/tls0SV6F8IgACWV1vTkKmNyEAJBFS98RM2ZuGgJ6H4xxc+RVVel 3IKkEhSkZeRAd6TikElNPVXyJqboCNBd63d2xGfidRkmSy5zAt9/2KqZNSYlSBA/ lQnw/7Fp8DR7JOqnKKWqr7oGa/9VdKe/Ngye+lTeZnUu2ODqHltljn61edD5c4/b tZjv4xst9r/pPPvh+8RYWzx5SBpxaOsJRyh1eJOwoWjxqi7nn6cMehAfQrXZo+c2 JTrPl9OX4e0e -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:35 2024 by rpki-client on console-ams.rpki-client.org