$ rpki-client -vvf 0.sb/repo/sb/31/323430343a393534303a3a2f33322d3438203d3e2038383838.roa File: 323430343a393534303a3a2f33322d3438203d3e2038383838.roa (raw, json) Hash identifier: BxFsrzumuEizXW1OZ+2dBEtvQc7tLJgim5qcabbGLAI= Subject key identifier: D2:6E:F9:BE:71:D7:66:6B:AC:A3:01:46:EB:AF:E5:79:69:D5:78:C8 Certificate issuer: /CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Certificate serial: 4837EFAB595E8FB6C02787CBCEA9D5BA9AA43C73 Authority key identifier: 81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject info access: rsync://0.sb/repo/sb/31/323430343a393534303a3a2f33322d3438203d3e2038383838.roa Signing time: Fri 23 Aug 2024 10:47:02 +0000 ROA not before: Fri 23 Aug 2024 10:42:02 +0000 ROA not after: Fri 22 Aug 2025 10:47:02 +0000 asID: 8888 IP address blocks: 2404:9540::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:37:ef:ab:59:5e:8f:b6:c0:27:87:cb:ce:a9:d5:ba:9a:a4:3c:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Validity Not Before: Aug 23 10:42:02 2024 GMT Not After : Aug 22 10:47:02 2025 GMT Subject: CN=D26EF9BE71D7666BACA30146EBAFE57969D578C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:dc:0e:fe:52:8d:92:64:2f:97:ad:ba:7e:76: 33:41:6f:05:5e:4d:76:51:9f:df:5a:6e:1f:40:fe: 5b:1f:af:7f:69:8e:38:24:89:3e:8a:10:fc:02:2c: 9a:41:99:d2:a7:e9:d1:b0:e9:58:11:5c:74:f2:1d: c3:5e:aa:d4:59:9f:ea:86:de:a3:5f:e9:4f:f9:be: b1:3a:06:c1:26:4d:22:a7:23:a6:f3:3e:f8:be:22: 37:60:25:57:ca:31:55:2c:7e:2c:0e:7c:eb:2b:f0: 0d:7b:fc:90:7f:19:e7:06:8b:e6:88:e6:12:f1:49: 31:41:80:5d:00:42:a3:f4:72:3d:ee:b7:ac:ad:27: 57:b2:aa:8f:92:27:1a:ed:ab:eb:58:26:93:a5:0b: 81:11:65:c4:1a:34:1c:76:ba:ae:57:34:a9:d6:a0: ed:7e:94:ca:97:36:d2:0b:22:b0:08:f4:7b:a5:bd: fc:c1:9e:79:ea:79:3d:77:20:1f:cd:00:7c:4b:3d: f8:4a:5c:14:df:d7:9b:86:8c:52:0d:9b:e2:0e:97: 6b:5b:72:2c:14:28:bd:e4:3d:6f:ed:58:83:21:91: ba:7e:67:d8:1b:65:4e:cf:78:13:91:f4:e1:63:6e: 29:31:40:5f:a5:04:c2:f8:b7:b3:b1:65:eb:fa:da: 14:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:6E:F9:BE:71:D7:66:6B:AC:A3:01:46:EB:AF:E5:79:69:D5:78:C8 X509v3 Authority Key Identifier: keyid:81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/31/323430343a393534303a3a2f33322d3438203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:9540::/32 Signature Algorithm: sha256WithRSAEncryption 0c:2f:bd:24:1b:f4:38:de:ed:4a:cf:00:ce:b9:ea:f6:f5:5d: 38:ee:c5:2c:6d:5e:a3:69:7f:4d:1c:c3:dc:18:06:09:cb:40: 7c:60:48:23:62:d0:72:f8:dd:b3:ca:d7:fe:1d:b6:8a:e9:47: a3:08:83:19:e4:0e:ec:b2:cb:01:4e:53:cb:2e:15:a9:19:b0: 76:11:0a:c6:d6:0d:31:84:4a:2e:32:e5:de:21:76:c8:b1:19: 27:bc:9a:7a:9e:9a:97:a5:f2:55:cf:0f:2c:68:74:12:73:93: 2f:60:ad:b6:f4:6c:74:68:76:7e:ef:da:97:7d:26:fb:6d:f6: 31:84:94:3c:6e:30:a5:81:7b:d3:52:3d:10:70:77:52:5d:02: 3f:0f:c6:fb:da:41:0f:8c:60:b3:53:c9:24:c6:b8:92:a3:83: 65:ca:e5:f9:fe:17:d0:8e:60:a1:31:28:1a:5f:23:56:61:d1: 56:72:26:77:b1:ce:89:9c:b3:8a:9d:33:e3:3c:0e:9e:31:18: b5:d3:15:d8:f8:97:02:23:39:ae:57:a6:67:d6:f2:34:f1:84: ba:ad:22:56:66:94:57:bf:ac:ef:12:fd:09:d8:f8:a8:51:7a: f6:61:4e:68:09:ed:32:71:fb:08:8f:3d:de:81:de:c7:31:b7: a4:58:c3:ec -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUSDfvq1lej7bAJ4fLzqnVupqkPHMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjRCNUUwMDAwMTEwLwYDVQQFEyg4MUMyOTRENEIz NjVEQzQxNzJCNUEyMUI2N0YwNUIyMEQ2Qjg3QTYyMB4XDTI0MDgyMzEwNDIwMloX DTI1MDgyMjEwNDcwMlowMzExMC8GA1UEAxMoRDI2RUY5QkU3MUQ3NjY2QkFDQTMw MTQ2RUJBRkU1Nzk2OUQ1NzhDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMbcDv5SjZJkL5etun52M0FvBV5NdlGf31puH0D+Wx+vf2mOOCSJPooQ/AIs mkGZ0qfp0bDpWBFcdPIdw16q1Fmf6obeo1/pT/m+sToGwSZNIqcjpvM++L4iN2Al V8oxVSx+LA586yvwDXv8kH8Z5waL5ojmEvFJMUGAXQBCo/RyPe63rK0nV7Kqj5In Gu2r61gmk6ULgRFlxBo0HHa6rlc0qdag7X6Uypc20gsisAj0e6W9/MGeeep5PXcg H80AfEs9+EpcFN/Xm4aMUg2b4g6Xa1tyLBQoveQ9b+1YgyGRun5n2BtlTs94E5H0 4WNuKTFAX6UEwvi3s7Fl6/raFEUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTSbvm+ cddma6yjAUbrr+V5adV4yDAfBgNVHSMEGDAWgBSBwpTUs2XcQXK1ohtn8Fsg1rh6 YjAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzEvODFDMjk0RDRCMzY1REM0MTcyQjVBMjFCNjdGMDVCMjBENkI4 N0E2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvZ2NLVTFMTmwzRUZ5dGFJYlpfQmJJTmE0ZW1JLmNlcjBqBggrBgEF BQcBCwReMFwwWgYIKwYBBQUHMAuGTnJzeW5jOi8vMC5zYi9yZXBvL3NiLzMxLzMy MzQzMDM0M2EzOTM1MzQzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDM4MzgzODM4 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEw DzANBAIAAjAHAwUAJASVQDANBgkqhkiG9w0BAQsFAAOCAQEADC+9JBv0ON7tSs8A zrnq9vVdOO7FLG1eo2l/TRzD3BgGCctAfGBII2LQcvjds8rX/h22iulHowiDGeQO 7LLLAU5Tyy4VqRmwdhEKxtYNMYRKLjLl3iF2yLEZJ7yaep6al6XyVc8PLGh0EnOT L2CttvRsdGh2fu/al30m+232MYSUPG4wpYF701I9EHB3Ul0CPw/G+9pBD4xgs1PJ JMa4kqODZcrl+f4X0I5goTEoGl8jVmHRVnImd7HOiZyzip0z4zwOnjEYtdMV2PiX AiM5rlemZ9byNPGEuq0iVmaUV7+s7xL9Cdj4qFF69mFOaAntMnH7CI893oHexzG3 pFjD7A== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org