$ rpki-client -vvf 0.sb/repo/sb/38/3130332e3132312e3230382e302f32322d3234203d3e2034373835.roa File: 3130332e3132312e3230382e302f32322d3234203d3e2034373835.roa (raw, json) Hash identifier: iuljOAsLSKVwvWGjODt0WgQ6KS5iH6O0NdpCsdOgkDg= Subject key identifier: 79:D6:22:E4:FF:D3:66:F7:41:87:2D:EA:F4:EF:DB:F7:30:13:A4:E6 Certificate issuer: /CN=A91FD4CC0000/serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Certificate serial: 79DB4B9CA98D6FE9CC590DC2C9B1F304DFD9EE8D Authority key identifier: D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject info access: rsync://0.sb/repo/sb/38/3130332e3132312e3230382e302f32322d3234203d3e2034373835.roa Signing time: Thu 12 Sep 2024 13:50:16 +0000 ROA not before: Thu 12 Sep 2024 13:45:16 +0000 ROA not after: Thu 11 Sep 2025 13:50:16 +0000 asID: 4785 IP address blocks: 103.121.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 04:39:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:db:4b:9c:a9:8d:6f:e9:cc:59:0d:c2:c9:b1:f3:04:df:d9:ee:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000/serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Validity Not Before: Sep 12 13:45:16 2024 GMT Not After : Sep 11 13:50:16 2025 GMT Subject: CN=79D622E4FFD366F741872DEAF4EFDBF73013A4E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:28:bf:0e:3b:75:de:09:0c:a3:b6:49:21:9a: c1:2d:26:03:be:8b:9b:dd:6f:05:d7:08:a4:43:4c: 4e:f7:99:2e:58:6c:67:b7:46:f5:a4:84:bb:c1:dc: 81:13:d0:c5:22:97:8d:d5:84:44:c0:16:a2:43:36: c0:7d:61:97:a7:46:77:91:a7:9d:b7:6e:1d:3e:e0: c6:2c:ae:24:22:a7:46:c4:85:f7:6d:08:de:fb:16: 9a:bb:e2:34:c9:ac:12:0a:5a:8b:b1:89:eb:b8:35: 9e:27:d2:c1:1d:1e:67:e9:ee:2f:c2:2e:fc:ba:c9: 3f:8e:14:12:7e:ec:1f:7e:01:a8:9a:01:90:40:66: df:c9:06:a5:a6:51:a2:72:db:fa:3f:4c:96:78:c8: dc:50:0d:2c:7f:a0:23:0c:85:a2:96:7f:2d:f2:2a: 2e:8c:62:a3:4d:f3:52:f6:cc:3c:8b:31:16:58:1b: 17:c0:a8:39:b9:ef:82:07:e2:73:ae:f3:20:dd:ef: 5c:d5:4c:9e:68:05:ad:3a:94:07:a3:0d:92:c0:ba: d2:55:cb:24:fc:79:c9:81:34:40:1f:e2:d7:92:14: 5d:5e:a9:07:3c:ce:2f:3f:35:7e:25:0d:26:3d:ef: c6:8c:31:3d:72:39:a0:9f:f2:1e:13:c6:af:d4:72: e8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:D6:22:E4:FF:D3:66:F7:41:87:2D:EA:F4:EF:DB:F7:30:13:A4:E6 X509v3 Authority Key Identifier: keyid:D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/38/3130332e3132312e3230382e302f32322d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.208.0/22 Signature Algorithm: sha256WithRSAEncryption a0:9f:48:8a:34:d2:6d:44:93:32:b2:e3:41:f7:a7:1d:e8:28: 87:00:c7:7e:78:07:ba:5d:29:42:64:4b:d2:6d:e1:14:9f:61: 3a:85:a0:79:1b:20:34:37:c2:2f:74:95:a7:d4:2d:57:6d:f6: cc:13:21:2e:50:14:77:ce:03:79:6d:28:ab:dc:f9:62:3c:ff: 57:cc:c6:79:ca:a8:68:ac:86:fe:79:96:be:da:11:3a:8a:df: 60:2b:fe:aa:d8:45:58:b1:21:2f:30:9e:16:e7:fe:bc:a9:d4: 27:46:32:38:5c:8f:60:f6:aa:42:c6:d7:29:bc:6d:4b:60:90: aa:e5:39:ad:02:e7:1c:e1:14:3e:62:f7:68:7e:5f:5b:40:dc: 18:d4:45:68:a3:32:1f:67:5c:1e:c0:af:16:0d:9e:b0:d8:0d: 06:9a:4c:7d:59:d6:a6:f4:c0:fa:c4:f1:55:e8:52:03:4c:d0: 52:84:10:9d:ad:2e:60:fe:86:be:7c:67:d7:3a:e9:40:25:ac: a1:72:5e:ba:a3:4c:1e:73:d8:84:c6:bc:f9:77:ea:e7:17:a3: 22:4a:66:35:d0:4c:af:ed:6d:3e:9c:2c:b0:8a:77:c2:f3:1a: 63:e3:13:96:02:a4:27:aa:0c:7d:10:60:6f:7d:ce:92:42:2b: 90:fe:c8:b7 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUedtLnKmNb+nMWQ3CybHzBN/Z7o0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhENjdDNTMwQzhF MTZCNjFGRjUyQzA4NUIyNzg2QzY3RUNDRDZBOTA5MB4XDTI0MDkxMjEzNDUxNloX DTI1MDkxMTEzNTAxNlowMzExMC8GA1UEAxMoNzlENjIyRTRGRkQzNjZGNzQxODcy REVBRjRFRkRCRjczMDEzQTRFNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMovw47dd4JDKO2SSGawS0mA76Lm91vBdcIpENMTveZLlhsZ7dG9aSEu8Hc gRPQxSKXjdWERMAWokM2wH1hl6dGd5GnnbduHT7gxiyuJCKnRsSF920I3vsWmrvi NMmsEgpai7GJ67g1nifSwR0eZ+nuL8Iu/LrJP44UEn7sH34BqJoBkEBm38kGpaZR onLb+j9MlnjI3FANLH+gIwyFopZ/LfIqLoxio03zUvbMPIsxFlgbF8CoObnvggfi c67zIN3vXNVMnmgFrTqUB6MNksC60lXLJPx5yYE0QB/i15IUXV6pBzzOLz81fiUN Jj3vxowxPXI5oJ/yHhPGr9Ry6C0CAwEAAaOCAdYwggHSMB0GA1UdDgQWBBR51iLk /9Nm90GHLer079v3MBOk5jAfBgNVHSMEGDAWgBTWfFMMjha2H/UsCFsnhsZ+zNap CTAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzgvRDY3QzUzMEM4RTE2QjYxRkY1MkMwODVCMjc4NkM2N0VDQ0Q2 QTkwOS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvMW54VERJNFd0aF8xTEFoYko0Ykdmc3pXcVFrLmNlcjBuBggrBgEF BQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM4LzMx MzAzMzJlMzEzMjMxMmUzMjMwMzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM3 MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAmd50DANBgkqhkiG9w0BAQsFAAOCAQEAoJ9IijTSbUST MrLjQfenHegohwDHfngHul0pQmRL0m3hFJ9hOoWgeRsgNDfCL3SVp9QtV232zBMh LlAUd84DeW0oq9z5Yjz/V8zGecqoaKyG/nmWvtoROorfYCv+qthFWLEhLzCeFuf+ vKnUJ0YyOFyPYPaqQsbXKbxtS2CQquU5rQLnHOEUPmL3aH5fW0DcGNRFaKMyH2dc HsCvFg2esNgNBppMfVnWpvTA+sTxVehSA0zQUoQQna0uYP6Gvnxn1zrpQCWsoXJe uqNMHnPYhMa8+Xfq5xejIkpmNdBMr+1tPpwssIp3wvMaY+MTlgKkJ6oMfRBgb33O kkIrkP7Itw== -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:40 2024 by rpki-client on console-fra.rpki-client.org