$ rpki-client -vvf 0.sb/repo/sb/31/323430343a393534303a3a2f33322d3438203d3e2038383838.roa File: 323430343a393534303a3a2f33322d3438203d3e2038383838.roa (raw, json) Hash identifier: 4c9QDwewwagrOrIHieA+l5PA+pDN8ApgtNJ9hBCElWc= Subject key identifier: 2E:0C:BA:1F:0B:DE:65:16:57:C7:0A:B5:38:88:E3:96:30:8D:52:48 Certificate issuer: /CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Certificate serial: 7BCB0D4AF2851324F48D8878A59AEE39C5B4016F Authority key identifier: 81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject info access: rsync://0.sb/repo/sb/31/323430343a393534303a3a2f33322d3438203d3e2038383838.roa Signing time: Fri 22 Sep 2023 10:19:40 +0000 ROA not before: Fri 22 Sep 2023 10:14:40 +0000 ROA not after: Fri 20 Sep 2024 10:19:40 +0000 asID: 8888 IP address blocks: 2404:9540::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 08:39:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:cb:0d:4a:f2:85:13:24:f4:8d:88:78:a5:9a:ee:39:c5:b4:01:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Validity Not Before: Sep 22 10:14:40 2023 GMT Not After : Sep 20 10:19:40 2024 GMT Subject: CN=2E0CBA1F0BDE651657C70AB53888E396308D5248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8c:bb:c2:7b:be:4f:a1:d5:6b:1f:78:a0:da: 34:af:bd:35:52:e8:8f:f0:3d:dc:6c:40:c2:44:8b: 6b:8d:0a:a2:7b:15:bc:31:da:21:3e:c0:64:ad:0f: 7d:fd:ee:be:81:f3:fc:59:d6:bc:a6:c3:4e:de:06: 45:71:1f:99:58:21:ed:2c:b3:55:b9:54:e0:d9:83: 7d:8e:c2:89:df:9c:ea:06:df:ab:94:8e:d4:b1:95: d1:2d:1d:0f:7b:5e:e9:12:79:3e:aa:90:6f:23:1b: c4:65:ef:84:16:3d:a6:e3:74:af:70:cc:e7:fd:50: 50:89:22:1b:df:8f:6a:f6:69:a6:8b:f3:78:c6:f6: b3:62:a4:0f:6f:54:76:05:a8:e4:9a:fe:dd:de:30: d6:a2:ad:40:f0:ef:e7:08:7d:ec:37:6c:c8:d6:57: 0d:d3:e0:8f:d1:7f:72:9f:bd:31:36:8d:ff:14:0c: 1b:0b:82:32:05:a2:02:e4:15:a5:ff:1a:da:44:f6: 36:91:1c:cf:2c:68:88:7b:97:24:c0:c4:f3:33:1d: cd:75:e8:c3:db:ee:19:1e:ad:ee:8f:16:dd:d2:a0: 5b:99:b0:53:cd:e7:35:0a:b7:50:25:44:61:5e:0e: b3:10:eb:08:82:97:88:2d:d7:64:47:d4:a6:1a:e0: 5f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:0C:BA:1F:0B:DE:65:16:57:C7:0A:B5:38:88:E3:96:30:8D:52:48 X509v3 Authority Key Identifier: keyid:81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/31/323430343a393534303a3a2f33322d3438203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:9540::/32 Signature Algorithm: sha256WithRSAEncryption 57:52:c2:aa:65:f8:08:5f:79:62:4a:9e:33:0d:a8:a8:53:9e: 0f:2a:c2:80:90:cc:a0:bc:bb:4a:07:6b:62:31:39:b4:1d:07: d4:47:77:51:bb:db:43:48:c2:e7:d6:85:15:8e:2b:83:29:fd: 18:40:06:b4:96:12:3f:99:ad:a8:9e:a7:28:77:99:d2:d0:7f: 7b:18:5d:f4:e0:38:fe:4d:8e:93:84:e0:91:12:1e:77:93:bf: 8f:2e:c1:ab:b9:fa:3b:5f:3e:32:cb:46:39:4c:39:bf:b8:0e: 71:08:29:10:ee:df:37:f2:a2:21:e9:f1:d5:e3:87:f3:93:17: fb:a6:c5:a0:56:44:42:ac:d5:81:f6:b8:e3:5e:1f:e1:3e:3c: 5f:2a:eb:93:a7:e8:7c:d3:e9:56:45:86:39:08:18:b3:a7:47: 09:99:ee:3c:78:ff:69:12:c4:cd:e1:24:66:9a:bc:e9:5f:8d: 5a:da:6d:29:99:d2:db:ce:5a:8e:5b:a1:61:f8:be:cc:60:01: 4d:70:34:e3:08:9b:2a:89:61:ed:91:45:5a:39:26:e2:64:aa: be:2a:9a:3f:51:02:22:b3:20:78:d0:37:0f:f8:d3:cc:46:22: 91:dd:9a:20:31:64:3b:32:41:4e:24:12:6c:8d:59:6b:18:a5: e0:50:87:d8 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUe8sNSvKFEyT0jYh4pZruOcW0AW8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjRCNUUwMDAwMTEwLwYDVQQFEyg4MUMyOTRENEIz NjVEQzQxNzJCNUEyMUI2N0YwNUIyMEQ2Qjg3QTYyMB4XDTIzMDkyMjEwMTQ0MFoX DTI0MDkyMDEwMTk0MFowMzExMC8GA1UEAxMoMkUwQ0JBMUYwQkRFNjUxNjU3Qzcw QUI1Mzg4OEUzOTYzMDhENTI0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM6Mu8J7vk+h1WsfeKDaNK+9NVLoj/A93GxAwkSLa40KonsVvDHaIT7AZK0P ff3uvoHz/FnWvKbDTt4GRXEfmVgh7SyzVblU4NmDfY7Cid+c6gbfq5SO1LGV0S0d D3te6RJ5PqqQbyMbxGXvhBY9puN0r3DM5/1QUIkiG9+PavZppovzeMb2s2KkD29U dgWo5Jr+3d4w1qKtQPDv5wh97DdsyNZXDdPgj9F/cp+9MTaN/xQMGwuCMgWiAuQV pf8a2kT2NpEczyxoiHuXJMDE8zMdzXXow9vuGR6t7o8W3dKgW5mwU83nNQq3UCVE YV4OsxDrCIKXiC3XZEfUphrgX1kCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQuDLof C95lFlfHCrU4iOOWMI1SSDAfBgNVHSMEGDAWgBSBwpTUs2XcQXK1ohtn8Fsg1rh6 YjAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzEvODFDMjk0RDRCMzY1REM0MTcyQjVBMjFCNjdGMDVCMjBENkI4 N0E2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvZ2NLVTFMTmwzRUZ5dGFJYlpfQmJJTmE0ZW1JLmNlcjBqBggrBgEF BQcBCwReMFwwWgYIKwYBBQUHMAuGTnJzeW5jOi8vMC5zYi9yZXBvL3NiLzMxLzMy MzQzMDM0M2EzOTM1MzQzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDM4MzgzODM4 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEw DzANBAIAAjAHAwUAJASVQDANBgkqhkiG9w0BAQsFAAOCAQEAV1LCqmX4CF95Ykqe Mw2oqFOeDyrCgJDMoLy7SgdrYjE5tB0H1Ed3UbvbQ0jC59aFFY4rgyn9GEAGtJYS P5mtqJ6nKHeZ0tB/exhd9OA4/k2Ok4TgkRIed5O/jy7Bq7n6O18+MstGOUw5v7gO cQgpEO7fN/KiIenx1eOH85MX+6bFoFZEQqzVgfa4414f4T48Xyrrk6fofNPpVkWG OQgYs6dHCZnuPHj/aRLEzeEkZpq86V+NWtptKZnS285ajluhYfi+zGABTXA04wib Kolh7ZFFWjkm4mSqviqaP1ECIrMgeNA3D/jTzEYikd2aIDFkOzJBTiQSbI1Zaxil 4FCH2A== -----END CERTIFICATE-----Generated at Wed May 22 10:12:48 2024 by rpki-client on console-ams.rpki-client.org