$ rpki-client -vvf 0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e2038383838.roa File: 3130332e3133362e3134342e302f32322d3234203d3e2038383838.roa (raw, json) Hash identifier: OH54hsN7ix3smnWfB5dcsljFMr9q0Rb4SlCx5jbhNB0= Subject key identifier: 45:F5:B2:8A:CC:B3:14:6E:4E:39:13:47:98:D4:F8:B1:EA:67:4B:A0 Certificate issuer: /CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Certificate serial: 447F5E3FD3B1478044DA75B461385D3365D31797 Authority key identifier: 81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject info access: rsync://0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e2038383838.roa Signing time: Fri 23 Aug 2024 10:47:02 +0000 ROA not before: Fri 23 Aug 2024 10:42:02 +0000 ROA not after: Fri 22 Aug 2025 10:47:02 +0000 asID: 8888 IP address blocks: 103.136.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:7f:5e:3f:d3:b1:47:80:44:da:75:b4:61:38:5d:33:65:d3:17:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Validity Not Before: Aug 23 10:42:02 2024 GMT Not After : Aug 22 10:47:02 2025 GMT Subject: CN=45F5B28ACCB3146E4E39134798D4F8B1EA674BA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ab:8d:6f:1c:c4:ab:4c:8e:cd:e5:29:8d:70: 1d:d0:0a:71:57:d7:e6:55:7c:9d:75:76:f9:83:5c: aa:e5:b4:9a:87:82:95:ab:af:4d:bc:e6:f2:f9:c2: b1:40:a0:13:ed:6e:14:2b:13:60:99:3b:a7:20:cc: 83:41:23:a6:48:d1:fb:b8:60:7e:cf:2c:f4:c5:18: 33:41:52:f9:5a:d2:1a:73:57:19:ca:73:d4:5e:f6: 6e:63:db:1c:3b:e2:9d:f6:e6:69:5b:d5:93:c1:11: 31:ba:5b:dc:d3:cd:86:51:b5:75:bd:e4:be:e3:24: db:b6:fe:dc:aa:c1:df:bf:10:d1:71:61:57:2d:b3: b4:40:66:d1:8c:fc:7a:77:b6:33:28:7b:43:60:dd: 4b:bc:0b:ea:e2:c1:d5:4f:3d:10:af:68:11:17:32: 6b:f3:91:95:a4:d4:87:8c:24:95:80:77:84:16:f0: 35:a6:a5:dc:41:77:c6:a4:0d:ca:e2:d4:f4:29:59: 2f:0e:ea:67:4f:b4:8c:94:b3:f8:d8:70:e9:9f:50: d2:5a:af:04:8f:72:c1:1d:31:e3:f3:d7:00:b6:0f: 02:e9:41:a1:8d:89:47:a1:9e:7b:1b:5e:e3:74:e3: 12:20:c2:a0:9a:b7:4f:ec:14:11:6a:de:49:c1:77: 89:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:F5:B2:8A:CC:B3:14:6E:4E:39:13:47:98:D4:F8:B1:EA:67:4B:A0 X509v3 Authority Key Identifier: keyid:81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.144.0/22 Signature Algorithm: sha256WithRSAEncryption 11:db:9c:92:72:04:6a:0a:34:3c:b1:f4:96:82:6e:f4:11:17: bd:66:81:65:d3:c8:bb:56:3f:a7:21:ed:9e:b2:59:c3:61:ff: 18:82:45:94:2b:00:3d:53:d9:29:32:11:b5:9b:2e:6e:62:68: 0d:73:bd:d3:a2:a2:d2:b9:31:a7:7c:8b:34:0b:86:c5:5e:a3: ef:9e:a1:3e:8e:b9:91:29:cb:9e:6e:c9:7d:b1:53:fb:27:bf: 9f:b0:a9:35:de:bb:d0:ab:a9:ab:2c:60:78:0f:77:c1:0d:52: 5b:a3:4d:c0:43:4b:35:f6:a6:ca:23:8a:5c:7e:18:7a:9e:ad: 33:5e:3e:ac:9e:26:bc:b4:1c:57:74:ad:38:cd:20:e1:a3:1e: 11:98:cd:34:a6:62:82:9d:22:2b:ab:cb:d6:8f:6c:a2:8b:e5: 8a:a8:2e:5d:18:d9:05:3c:8e:f3:26:ae:44:2d:80:d7:76:d8: 6e:f0:35:53:06:fd:b9:51:d8:0c:f6:d2:1c:cd:37:33:98:90: 5a:81:11:20:9b:46:bf:ec:e2:e0:69:2c:1e:c5:75:dd:c0:4f: cd:ed:82:db:32:33:6d:57:a2:d6:5a:94:ef:e4:77:6a:74:75: 3c:2d:ef:15:49:ae:40:98:e9:c7:01:57:f3:c1:13:6a:f5:de: dc:91:95:72 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIURH9eP9OxR4BE2nW0YThdM2XTF5cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjRCNUUwMDAwMTEwLwYDVQQFEyg4MUMyOTRENEIz NjVEQzQxNzJCNUEyMUI2N0YwNUIyMEQ2Qjg3QTYyMB4XDTI0MDgyMzEwNDIwMloX DTI1MDgyMjEwNDcwMlowMzExMC8GA1UEAxMoNDVGNUIyOEFDQ0IzMTQ2RTRFMzkx MzQ3OThENEY4QjFFQTY3NEJBMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPCrjW8cxKtMjs3lKY1wHdAKcVfX5lV8nXV2+YNcquW0moeClauvTbzm8vnC sUCgE+1uFCsTYJk7pyDMg0EjpkjR+7hgfs8s9MUYM0FS+VrSGnNXGcpz1F72bmPb HDvinfbmaVvVk8ERMbpb3NPNhlG1db3kvuMk27b+3KrB378Q0XFhVy2ztEBm0Yz8 ene2Myh7Q2DdS7wL6uLB1U89EK9oERcya/ORlaTUh4wklYB3hBbwNaal3EF3xqQN yuLU9ClZLw7qZ0+0jJSz+Nhw6Z9Q0lqvBI9ywR0x4/PXALYPAulBoY2JR6Geexte 43TjEiDCoJq3T+wUEWreScF3iUECAwEAAaOCAdYwggHSMB0GA1UdDgQWBBRF9bKK zLMUbk45E0eY1Pix6mdLoDAfBgNVHSMEGDAWgBSBwpTUs2XcQXK1ohtn8Fsg1rh6 YjAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzEvODFDMjk0RDRCMzY1REM0MTcyQjVBMjFCNjdGMDVCMjBENkI4 N0E2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvZ2NLVTFMTmwzRUZ5dGFJYlpfQmJJTmE0ZW1JLmNlcjBuBggrBgEF BQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJzeW5jOi8vMC5zYi9yZXBvL3NiLzMxLzMx MzAzMzJlMzEzMzM2MmUzMTM0MzQyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzODM4 MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAmeIkDANBgkqhkiG9w0BAQsFAAOCAQEAEducknIEago0 PLH0loJu9BEXvWaBZdPIu1Y/pyHtnrJZw2H/GIJFlCsAPVPZKTIRtZsubmJoDXO9 06Ki0rkxp3yLNAuGxV6j756hPo65kSnLnm7JfbFT+ye/n7CpNd670KupqyxgeA93 wQ1SW6NNwENLNfamyiOKXH4Yep6tM14+rJ4mvLQcV3StOM0g4aMeEZjNNKZigp0i K6vL1o9soovliqguXRjZBTyO8yauRC2A13bYbvA1Uwb9uVHYDPbSHM03M5iQWoER IJtGv+zi4GksHsV13cBPze2C2zIzbVei1lqU7+R3anR1PC3vFUmuQJjpxwFX88ET avXe3JGVcg== -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:44 2024 by rpki-client on console-fra.rpki-client.org