$ rpki-client -vvf 0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e203233393539.roa File: 323430333a373163303a3a2f33322d3438203d3e203233393539.roa (raw, json) Hash identifier: z9KuwO7drol9+zCvvvgJ3UbxeuhHjgTs/AJZgP7dbTI= Subject key identifier: A4:6C:2B:BA:D9:D3:E1:D6:86:36:B5:9F:84:D5:C8:B1:FE:06:51:BD Certificate issuer: /CN=A91FD4CC0000/serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Certificate serial: 0514D1BDC6E955A6E90047679FC83789FA4EA26D Authority key identifier: D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject info access: rsync://0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e203233393539.roa Signing time: Thu 12 Sep 2024 13:50:17 +0000 ROA not before: Thu 12 Sep 2024 13:45:17 +0000 ROA not after: Thu 11 Sep 2025 13:50:17 +0000 asID: 23959 IP address blocks: 2403:71c0::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 22:15:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:14:d1:bd:c6:e9:55:a6:e9:00:47:67:9f:c8:37:89:fa:4e:a2:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000/serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Validity Not Before: Sep 12 13:45:17 2024 GMT Not After : Sep 11 13:50:17 2025 GMT Subject: CN=A46C2BBAD9D3E1D68636B59F84D5C8B1FE0651BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8a:f9:ce:05:72:2b:e1:f5:55:ce:5d:32:57: 2e:b8:85:a9:bf:84:b1:6a:bc:36:65:51:0c:ab:63: 50:b6:a3:43:a1:10:f2:6c:bf:f7:9f:e1:f9:a4:ad: 7c:34:9b:99:c3:a7:39:19:66:99:35:6a:48:6a:73: 31:4c:8b:d2:12:a6:2e:5f:e8:18:85:83:2f:f9:39: 1f:a0:5b:7d:7f:d6:ad:79:26:f3:10:9d:48:3b:5d: 0d:03:6f:2d:f5:a5:3e:a4:04:af:6c:9c:ea:a4:5b: 38:34:cf:53:22:92:4e:b7:1b:39:93:0e:17:c1:3d: a6:95:df:4b:0e:3b:1e:a2:ef:cb:01:8f:ce:dd:18: c5:cb:f5:5d:eb:81:ac:63:57:e8:4d:00:e7:fa:db: bc:21:c7:80:c1:77:88:50:d9:c2:7b:58:06:2e:26: 0b:f8:89:d1:fd:86:48:77:b1:5f:2a:7f:88:58:00: a5:47:f5:9c:77:0c:cc:ec:f9:93:83:09:4c:97:82: b9:85:63:96:c2:42:d7:4e:8f:55:05:a6:b8:3b:01: a3:0e:90:6a:98:f9:1c:23:b2:3e:b7:94:75:26:09: f1:59:b2:77:f7:c5:f7:fb:8d:6d:42:31:f4:9f:b7: 99:d5:71:77:e5:4b:9c:3b:d6:88:97:19:c1:53:e8: 31:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:6C:2B:BA:D9:D3:E1:D6:86:36:B5:9F:84:D5:C8:B1:FE:06:51:BD X509v3 Authority Key Identifier: keyid:D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e203233393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:71c0::/32 Signature Algorithm: sha256WithRSAEncryption 4d:1b:3a:42:69:02:35:cc:2b:30:50:dc:2a:03:6d:78:66:81: 0b:36:5c:8c:ab:c7:93:b7:81:f0:fa:8f:d5:67:24:c4:ac:91: 64:0a:50:9e:8e:45:20:d0:eb:08:28:1e:e3:17:4c:35:08:b4: ba:e0:08:1f:53:35:ed:42:27:65:6e:94:b0:2b:e5:3f:70:d7: 2a:3f:5c:10:27:5b:ab:fd:38:52:e6:57:0e:67:cf:00:2f:5b: 2d:26:47:2b:b5:67:bc:a3:a1:2d:7f:ef:07:0f:58:2f:67:3f: 89:7b:d9:9b:32:07:2e:0b:18:e7:df:66:6a:44:87:3c:61:29: e9:d9:d1:8a:fb:09:97:76:33:c2:da:42:ee:81:b9:e8:ba:98: 12:82:2f:af:66:03:2a:ad:e4:7f:6f:d3:f5:82:ed:79:6b:7e: c4:ef:3d:3d:f9:c5:39:b2:af:1f:53:84:0d:18:74:a1:33:04: 70:96:ae:3c:d3:6e:f4:b4:04:56:23:94:4e:00:30:27:40:41: d6:8c:6f:dc:30:57:05:5b:b4:70:fc:ee:f1:7e:b0:7d:f8:7c: 6b:f9:9b:71:f7:a3:2d:ba:eb:6a:e1:e9:48:41:14:57:ab:39: 87:6a:65:80:d9:be:0d:06:1b:ca:26:7b:1f:02:e9:46:f5:20: 6c:18:e1:ba -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUBRTRvcbpVabpAEdnn8g3ifpOom0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhENjdDNTMwQzhF MTZCNjFGRjUyQzA4NUIyNzg2QzY3RUNDRDZBOTA5MB4XDTI0MDkxMjEzNDUxN1oX DTI1MDkxMTEzNTAxN1owMzExMC8GA1UEAxMoQTQ2QzJCQkFEOUQzRTFENjg2MzZC NTlGODRENUM4QjFGRTA2NTFCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALOK+c4Fcivh9VXOXTJXLriFqb+EsWq8NmVRDKtjULajQ6EQ8my/95/h+aSt fDSbmcOnORlmmTVqSGpzMUyL0hKmLl/oGIWDL/k5H6BbfX/WrXkm8xCdSDtdDQNv LfWlPqQEr2yc6qRbODTPUyKSTrcbOZMOF8E9ppXfSw47HqLvywGPzt0Yxcv1XeuB rGNX6E0A5/rbvCHHgMF3iFDZwntYBi4mC/iJ0f2GSHexXyp/iFgApUf1nHcMzOz5 k4MJTJeCuYVjlsJC106PVQWmuDsBow6Qapj5HCOyPreUdSYJ8Vmyd/fF9/uNbUIx 9J+3mdVxd+VLnDvWiJcZwVPoMXUCAwEAAaOCAdUwggHRMB0GA1UdDgQWBBSkbCu6 2dPh1oY2tZ+E1cix/gZRvTAfBgNVHSMEGDAWgBTWfFMMjha2H/UsCFsnhsZ+zNap CTAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzgvRDY3QzUzMEM4RTE2QjYxRkY1MkMwODVCMjc4NkM2N0VDQ0Q2 QTkwOS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvMW54VERJNFd0aF8xTEFoYko0Ykdmc3pXcVFrLmNlcjBsBggrBgEF BQcBCwRgMF4wXAYIKwYBBQUHMAuGUHJzeW5jOi8vMC5zYi9yZXBvL3NiLzM4LzMy MzQzMDMzM2EzNzMxNjMzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzMzOTM1 Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkA3HAMA0GCSqGSIb3DQEBCwUAA4IBAQBNGzpCaQI1zCsw UNwqA214ZoELNlyMq8eTt4Hw+o/VZyTErJFkClCejkUg0OsIKB7jF0w1CLS64Agf UzXtQidlbpSwK+U/cNcqP1wQJ1ur/ThS5lcOZ88AL1stJkcrtWe8o6Etf+8HD1gv Zz+Je9mbMgcuCxjn32ZqRIc8YSnp2dGK+wmXdjPC2kLugbnoupgSgi+vZgMqreR/ b9P1gu15a37E7z09+cU5sq8fU4QNGHShMwRwlq480270tARWI5ROADAnQEHWjG/c MFcFW7Rw/O7xfrB9+Hxr+Ztx96Mtuutq4elIQRRXqzmHamWA2b4NBhvKJnsfAulG 9SBsGOG6 -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:39 2024 by rpki-client on console-fra.rpki-client.org