$ rpki-client -vvf 0.sb/repo/sb/31/3130332e3133362e3134372e302f32342d3234203d3e203433333537.roa File: 3130332e3133362e3134372e302f32342d3234203d3e203433333537.roa (raw, json) Hash identifier: yW3+BW5fu10HQ3mHSS/MBoD5crkNLphi/c+y50Np4jk= Subject key identifier: BF:42:DC:2F:62:01:4F:C0:C2:CD:03:64:2B:DB:21:B9:85:6D:E2:FF Certificate issuer: /CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Certificate serial: 2A49A52223AC118EA6FD0256B083D05BB2A17BE1 Authority key identifier: 81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject info access: rsync://0.sb/repo/sb/31/3130332e3133362e3134372e302f32342d3234203d3e203433333537.roa Signing time: Thu 25 Jan 2024 11:10:05 +0000 ROA not before: Thu 25 Jan 2024 11:05:05 +0000 ROA not after: Thu 23 Jan 2025 11:10:05 +0000 asID: 43357 IP address blocks: 103.136.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:49:a5:22:23:ac:11:8e:a6:fd:02:56:b0:83:d0:5b:b2:a1:7b:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Validity Not Before: Jan 25 11:05:05 2024 GMT Not After : Jan 23 11:10:05 2025 GMT Subject: CN=BF42DC2F62014FC0C2CD03642BDB21B9856DE2FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:37:40:b2:02:8b:79:2d:08:8d:8b:96:ad:33: 71:1e:c2:5b:67:9f:6c:6d:09:3b:4e:47:98:a3:cb: ee:f7:ac:74:60:40:ca:a5:1a:09:4f:06:8d:ef:93: c5:df:10:e2:f6:dd:02:33:52:0f:99:00:d3:28:84: 9e:f6:d3:c7:3e:db:8a:4b:3b:02:0f:f9:3f:3e:e7: 9d:fe:ae:f9:a7:37:0d:19:d7:19:cb:89:42:aa:71: b0:2f:28:e3:2a:de:83:99:6c:a9:ae:a2:69:a0:32: 4d:7e:61:c6:9a:29:cd:d4:d0:79:bc:da:87:47:92: 6b:23:bc:a2:53:35:5c:c9:13:10:eb:5c:be:47:70: 2d:41:ef:0e:7e:6b:74:80:9b:c7:6c:7e:8e:74:24: 99:2b:06:8d:b9:07:c5:8a:b6:48:39:73:f6:c9:23: 69:3f:ac:99:5c:1a:62:cb:14:4e:fc:a0:ea:fd:57: 39:63:76:ad:e2:e5:e7:4d:d0:a3:73:e2:ff:6b:71: 0a:20:25:08:71:ee:64:91:78:27:a7:e8:14:a5:b4: 9a:a3:cc:31:72:f5:fa:f8:e8:fb:4d:fa:d9:f4:52: 9a:2a:e8:e7:98:f2:e6:26:36:15:35:aa:cf:cf:c9: 8c:df:d7:38:c5:61:27:b0:ba:79:fd:25:17:d8:ed: a7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:42:DC:2F:62:01:4F:C0:C2:CD:03:64:2B:DB:21:B9:85:6D:E2:FF X509v3 Authority Key Identifier: keyid:81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/31/3130332e3133362e3134372e302f32342d3234203d3e203433333537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.147.0/24 Signature Algorithm: sha256WithRSAEncryption 52:40:6a:75:6a:ed:65:fe:db:5f:55:f7:e6:05:ab:b5:60:48: 5d:ce:e2:c8:cc:28:48:8d:a1:17:59:ec:02:45:2d:76:e6:b2: cb:2b:2c:98:b6:2b:27:ec:a4:7a:cb:88:43:87:41:79:42:52: 78:f2:41:2f:81:40:38:67:97:60:2e:a6:9e:f5:dc:60:87:8c: 5f:83:01:92:2e:6c:bd:b1:68:17:c1:93:a1:fe:b1:4f:6f:c9: fd:2a:2e:8e:4d:f9:49:76:79:ee:95:76:91:c4:e7:a0:41:3c: ad:78:76:b5:92:6b:02:15:55:20:3b:2c:f8:50:f7:60:65:b2: 9e:9a:e2:6b:80:78:84:13:b1:fe:8e:8a:fd:11:33:18:52:51: a3:d2:bc:f7:c1:ba:ec:23:42:90:c9:db:24:8d:94:cd:0f:d3: a1:ff:dc:75:22:77:fe:18:c1:35:2e:91:45:0c:78:33:b1:51: 37:00:dc:4d:66:82:81:d6:ef:02:a3:a7:6a:9d:53:0d:ae:62: 39:77:6c:14:38:b1:18:43:ea:e6:85:63:e9:d3:d2:75:21:01: 89:2b:4b:ed:c9:ff:9f:7b:26:9e:8d:69:f5:3f:4f:d9:00:64: 70:35:9b:0a:f7:59:1c:18:1c:e8:a4:85:78:b3:5c:0b:72:b9: 76:69:44:8f -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUKkmlIiOsEY6m/QJWsIPQW7Khe+EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjRCNUUwMDAwMTEwLwYDVQQFEyg4MUMyOTRENEIz NjVEQzQxNzJCNUEyMUI2N0YwNUIyMEQ2Qjg3QTYyMB4XDTI0MDEyNTExMDUwNVoX DTI1MDEyMzExMTAwNVowMzExMC8GA1UEAxMoQkY0MkRDMkY2MjAxNEZDMEMyQ0Qw MzY0MkJEQjIxQjk4NTZERTJGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANY3QLICi3ktCI2Llq0zcR7CW2efbG0JO05HmKPL7vesdGBAyqUaCU8Gje+T xd8Q4vbdAjNSD5kA0yiEnvbTxz7biks7Ag/5Pz7nnf6u+ac3DRnXGcuJQqpxsC8o 4yreg5lsqa6iaaAyTX5hxpopzdTQebzah0eSayO8olM1XMkTEOtcvkdwLUHvDn5r dICbx2x+jnQkmSsGjbkHxYq2SDlz9skjaT+smVwaYssUTvyg6v1XOWN2reLl503Q o3Pi/2txCiAlCHHuZJF4J6foFKW0mqPMMXL1+vjo+0362fRSmiro55jy5iY2FTWq z8/JjN/XOMVhJ7C6ef0lF9jtp5sCAwEAAaOCAdgwggHUMB0GA1UdDgQWBBS/Qtwv YgFPwMLNA2Qr2yG5hW3i/zAfBgNVHSMEGDAWgBSBwpTUs2XcQXK1ohtn8Fsg1rh6 YjAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzEvODFDMjk0RDRCMzY1REM0MTcyQjVBMjFCNjdGMDVCMjBENkI4 N0E2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvZ2NLVTFMTmwzRUZ5dGFJYlpfQmJJTmE0ZW1JLmNlcjBwBggrBgEF BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vMC5zYi9yZXBvL3NiLzMxLzMx MzAzMzJlMzEzMzM2MmUzMTM0MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDMz MzMzNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQAZ4iTMA0GCSqGSIb3DQEBCwUAA4IBAQBSQGp1au1l /ttfVffmBau1YEhdzuLIzChIjaEXWewCRS125rLLKyyYtisn7KR6y4hDh0F5QlJ4 8kEvgUA4Z5dgLqae9dxgh4xfgwGSLmy9sWgXwZOh/rFPb8n9Ki6OTflJdnnulXaR xOegQTyteHa1kmsCFVUgOyz4UPdgZbKemuJrgHiEE7H+jor9ETMYUlGj0rz3wbrs I0KQydskjZTND9Oh/9x1Inf+GME1LpFFDHgzsVE3ANxNZoKB1u8Co6dqnVMNrmI5 d2wUOLEYQ+rmhWPp09J1IQGJK0vtyf+feyaejWn1P0/ZAGRwNZsK91kcGBzopIV4 s1wLcrl2aUSP -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:44 2024 by rpki-client on console-fra.rpki-client.org