$ rpki-client -vvf 0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa File: 3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa (raw, json) Hash identifier: Naf6dU4B4UWzfYJV3ZiucPaFIDFKm1L1z8XHfC3TXRk= Subject key identifier: 17:3E:98:49:72:6E:61:28:F4:06:94:C0:6B:B8:5E:C8:0F:D8:D9:2D Certificate issuer: /CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Certificate serial: 11A57A4BD26AB521DAC5A8A563553BA8B7939FDF Authority key identifier: 81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject info access: rsync://0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa Signing time: Fri 22 Sep 2023 10:19:40 +0000 ROA not before: Fri 22 Sep 2023 10:14:40 +0000 ROA not after: Fri 20 Sep 2024 10:19:40 +0000 asID: 24242 IP address blocks: 103.136.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 01:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:a5:7a:4b:d2:6a:b5:21:da:c5:a8:a5:63:55:3b:a8:b7:93:9f:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Validity Not Before: Sep 22 10:14:40 2023 GMT Not After : Sep 20 10:19:40 2024 GMT Subject: CN=173E9849726E6128F40694C06BB85EC80FD8D92D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0f:ee:86:0a:37:23:00:de:71:51:f9:45:54: a9:3a:47:ff:d5:b0:b4:64:b3:6d:69:a6:39:30:9d: aa:da:5b:1f:c4:dd:de:bc:c6:ef:71:1f:a4:09:37: e0:62:ac:42:4e:bd:4a:86:87:78:67:15:fc:9e:e2: 48:7c:21:63:a8:0f:5d:95:e6:6e:2d:2f:68:3e:bb: 93:89:ee:c9:4f:b2:1a:ae:69:54:e3:e9:52:8a:47: 0b:96:50:a1:27:6b:73:c8:6e:28:af:82:86:a7:c6: 74:34:80:ad:04:34:aa:7a:48:50:b4:e2:49:5d:5f: be:b6:44:30:aa:7c:4c:4a:40:00:5f:f8:3f:f3:e6: 0d:54:5e:a5:4a:d4:18:ab:ae:f1:ef:2d:2b:97:dc: 9c:1d:46:d1:07:e0:fc:3a:69:af:d6:4f:77:94:6f: fd:d7:52:d3:1e:c8:b2:72:a0:6c:09:e4:5a:30:4a: 5a:fa:39:41:f3:eb:fd:4c:e0:0b:5c:d1:bd:bc:12: 5a:59:70:e3:19:c0:8c:fe:8f:d4:82:a1:a9:aa:06: 8f:00:8f:74:51:50:bd:8d:58:49:a2:c0:99:88:dd: 18:2f:c5:c0:39:43:fc:42:0a:b9:e8:ff:a7:1f:b1: 68:25:36:0f:73:77:d7:34:38:35:96:5f:71:77:23: 7e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3E:98:49:72:6E:61:28:F4:06:94:C0:6B:B8:5E:C8:0F:D8:D9:2D X509v3 Authority Key Identifier: keyid:81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.144.0/22 Signature Algorithm: sha256WithRSAEncryption bd:ee:a6:75:e2:de:2a:c6:98:16:ce:28:e6:83:e6:96:51:90: 6b:d1:eb:3e:0f:b9:ac:be:94:35:b6:42:89:93:67:5d:af:ff: d3:40:41:75:e3:de:aa:3f:a3:e0:2e:8e:da:6a:99:ad:ca:ae: 0b:65:0c:7c:ce:2f:90:bc:a7:20:f9:51:69:5f:ae:43:a1:48: 22:3a:e7:b0:04:77:8f:cc:35:59:33:c5:3b:9f:81:fb:1c:73: 38:f0:47:d5:63:27:69:88:6c:15:2b:ab:7d:8f:98:d0:67:82: 88:79:f4:0f:6f:d2:cf:77:0b:43:c8:7e:e6:2b:7c:2b:8e:7d: dc:fa:32:d2:bf:30:12:ab:98:cd:76:62:2a:a4:5e:12:76:bd: 74:c2:e4:38:59:8f:32:f8:a8:22:09:c8:6d:81:d0:cc:6b:71: 08:d6:d3:71:3e:3a:6d:d8:3c:3d:6c:e2:5a:62:65:0a:99:98: 49:39:4b:8d:dd:d4:48:93:79:25:69:5b:ab:c6:c0:57:47:ae: 07:9c:54:f3:7f:c3:cb:b4:f8:78:58:39:a6:c5:11:d6:ad:b0: 88:75:28:79:65:a4:b3:88:0c:3b:fc:5e:3f:56:bd:be:fb:54: d9:fd:24:41:5c:97:e3:5c:4b:8a:7b:45:0c:d8:1e:b1:72:b9: 31:f8:4d:b0 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUEaV6S9JqtSHaxailY1U7qLeTn98wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjRCNUUwMDAwMTEwLwYDVQQFEyg4MUMyOTRENEIz NjVEQzQxNzJCNUEyMUI2N0YwNUIyMEQ2Qjg3QTYyMB4XDTIzMDkyMjEwMTQ0MFoX DTI0MDkyMDEwMTk0MFowMzExMC8GA1UEAxMoMTczRTk4NDk3MjZFNjEyOEY0MDY5 NEMwNkJCODVFQzgwRkQ4RDkyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALUP7oYKNyMA3nFR+UVUqTpH/9WwtGSzbWmmOTCdqtpbH8Td3rzG73EfpAk3 4GKsQk69SoaHeGcV/J7iSHwhY6gPXZXmbi0vaD67k4nuyU+yGq5pVOPpUopHC5ZQ oSdrc8huKK+ChqfGdDSArQQ0qnpIULTiSV1fvrZEMKp8TEpAAF/4P/PmDVRepUrU GKuu8e8tK5fcnB1G0Qfg/Dppr9ZPd5Rv/ddS0x7IsnKgbAnkWjBKWvo5QfPr/Uzg C1zRvbwSWllw4xnAjP6P1IKhqaoGjwCPdFFQvY1YSaLAmYjdGC/FwDlD/EIKuej/ px+xaCU2D3N31zQ4NZZfcXcjfrECAwEAAaOCAdgwggHUMB0GA1UdDgQWBBQXPphJ cm5hKPQGlMBruF7ID9jZLTAfBgNVHSMEGDAWgBSBwpTUs2XcQXK1ohtn8Fsg1rh6 YjAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzEvODFDMjk0RDRCMzY1REM0MTcyQjVBMjFCNjdGMDVCMjBENkI4 N0E2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvZ2NLVTFMTmwzRUZ5dGFJYlpfQmJJTmE0ZW1JLmNlcjBwBggrBgEF BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vMC5zYi9yZXBvL3NiLzMxLzMx MzAzMzJlMzEzMzM2MmUzMTM0MzQyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM0 MzIzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCZ4iQMA0GCSqGSIb3DQEBCwUAA4IBAQC97qZ14t4q xpgWzijmg+aWUZBr0es+D7msvpQ1tkKJk2ddr//TQEF1496qP6PgLo7aapmtyq4L ZQx8zi+QvKcg+VFpX65DoUgiOuewBHePzDVZM8U7n4H7HHM48EfVYydpiGwVK6t9 j5jQZ4KIefQPb9LPdwtDyH7mK3wrjn3c+jLSvzASq5jNdmIqpF4Sdr10wuQ4WY8y +KgiCchtgdDMa3EI1tNxPjpt2Dw9bOJaYmUKmZhJOUuN3dRIk3klaVurxsBXR64H nFTzf8PLtPh4WDmmxRHWrbCIdSh5ZaSziAw7/F4/Vr2++1TZ/SRBXJfjXEuKe0UM 2B6xcrkx+E2w -----END CERTIFICATE-----Generated at Thu May 23 02:36:12 2024 by rpki-client on console-ams.rpki-client.org