$ rpki-client -vvf 0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e2034373835.roa File: 323430333a373163303a3a2f33322d3438203d3e2034373835.roa (raw, json) Hash identifier: +JRVjjSDXJVl0UXKsoTuOrFeVJ81+M8Vd2Ev+ptLls4= Subject key identifier: 65:F2:40:70:62:25:60:E2:DA:2C:2C:08:42:0C:B0:EC:85:89:AF:D6 Certificate issuer: /CN=A91FD4CC0000/serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Certificate serial: 4F109D63876402AA2B92A0FFC61971164AD3E73D Authority key identifier: D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject info access: rsync://0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e2034373835.roa Signing time: Thu 12 Sep 2024 13:50:16 +0000 ROA not before: Thu 12 Sep 2024 13:45:16 +0000 ROA not after: Thu 11 Sep 2025 13:50:16 +0000 asID: 4785 IP address blocks: 2403:71c0::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 04:39:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:10:9d:63:87:64:02:aa:2b:92:a0:ff:c6:19:71:16:4a:d3:e7:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000/serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Validity Not Before: Sep 12 13:45:16 2024 GMT Not After : Sep 11 13:50:16 2025 GMT Subject: CN=65F24070622560E2DA2C2C08420CB0EC8589AFD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:76:b7:51:ad:d2:59:b6:1c:03:6a:47:32:a5: c0:7a:2b:0a:f8:d8:ef:46:82:0f:29:ee:08:7b:b3: 80:07:26:9b:7f:e2:ba:e4:cd:98:23:60:52:42:a9: f3:57:79:48:e1:9d:fb:3d:14:71:62:c2:7a:42:bf: 8c:21:57:83:c6:05:64:67:b0:13:de:89:ea:8c:65: e3:9a:bf:e8:20:b9:cc:65:1c:68:93:9b:1f:dc:0e: 5f:a2:12:a1:a6:7f:7e:ff:a1:3a:39:6b:02:b1:53: 27:10:37:f9:6a:3d:4b:e0:a0:36:81:ea:9b:c5:f7: 57:8a:5d:52:42:0e:9d:1d:4a:56:be:bb:d9:09:0e: 3c:4d:a7:f1:fc:96:6e:1b:cc:b6:31:46:67:eb:5e: 39:11:e0:69:95:77:92:ef:0e:22:0a:c4:db:f4:c5: fb:41:e6:72:ed:95:87:ae:93:f2:cd:d4:f0:04:8b: 6c:39:3d:f0:ed:f7:e2:8f:cf:04:67:6d:bc:db:74: 4c:df:2f:fa:1b:d2:94:e3:d9:f7:cd:e2:a8:3c:ea: cb:e2:7b:f4:43:51:e0:4e:c3:35:f0:d8:26:62:70: 6a:85:e1:97:ca:07:b2:ae:50:e2:82:5c:e6:10:4c: f9:ce:46:86:30:a5:20:f6:d1:1e:51:d8:1d:42:b0: 55:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F2:40:70:62:25:60:E2:DA:2C:2C:08:42:0C:B0:EC:85:89:AF:D6 X509v3 Authority Key Identifier: keyid:D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:71c0::/32 Signature Algorithm: sha256WithRSAEncryption 65:ae:3b:90:20:42:1f:61:3e:54:94:ac:de:53:41:d6:36:95: 86:21:65:f6:8a:0a:17:25:a0:24:b9:93:ec:1d:0f:e4:65:94: e3:6d:e6:4b:e2:ce:56:69:17:88:f0:74:a7:8a:75:c3:96:de: 43:64:a6:41:9f:93:6f:34:45:79:69:ba:f8:90:d9:e4:b1:56: 81:de:ae:93:f5:45:e9:4b:47:60:d0:0b:6a:7d:78:36:ee:9a: f4:59:9b:f6:55:7d:6d:33:1e:7c:d5:b9:e4:fc:0f:8f:3b:87: 43:d0:a9:04:e6:c6:c5:95:d3:3b:b4:d5:c9:c0:ea:fb:09:1b: e4:fc:88:9c:3a:15:17:f3:2c:5c:03:46:72:03:e0:f3:8e:8a: d2:13:14:7e:7b:16:bd:8d:49:79:0c:f2:e7:f0:19:d6:e1:bb: bb:11:14:c5:c9:f4:c9:46:ee:67:60:1c:8b:69:3d:64:0c:21: 3b:45:d1:38:be:ab:04:24:a9:34:aa:28:8f:3c:49:fa:a7:46: 5e:6a:f9:17:63:72:b5:be:5e:48:66:e0:33:d8:6f:ce:f4:b6: 84:fe:03:7a:04:a4:89:16:89:d1:e5:0f:e7:ea:b2:e1:59:9d: 83:46:37:50:78:07:96:a9:df:e6:10:19:df:9c:37:77:c0:33: a2:76:c5:a9 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUTxCdY4dkAqorkqD/xhlxFkrT5z0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhENjdDNTMwQzhF MTZCNjFGRjUyQzA4NUIyNzg2QzY3RUNDRDZBOTA5MB4XDTI0MDkxMjEzNDUxNloX DTI1MDkxMTEzNTAxNlowMzExMC8GA1UEAxMoNjVGMjQwNzA2MjI1NjBFMkRBMkMy QzA4NDIwQ0IwRUM4NTg5QUZENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKl2t1Gt0lm2HANqRzKlwHorCvjY70aCDynuCHuzgAcmm3/iuuTNmCNgUkKp 81d5SOGd+z0UcWLCekK/jCFXg8YFZGewE96J6oxl45q/6CC5zGUcaJObH9wOX6IS oaZ/fv+hOjlrArFTJxA3+Wo9S+CgNoHqm8X3V4pdUkIOnR1KVr672QkOPE2n8fyW bhvMtjFGZ+teORHgaZV3ku8OIgrE2/TF+0Hmcu2Vh66T8s3U8ASLbDk98O334o/P BGdtvNt0TN8v+hvSlOPZ983iqDzqy+J79ENR4E7DNfDYJmJwaoXhl8oHsq5Q4oJc 5hBM+c5GhjClIPbRHlHYHUKwVTUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRl8kBw YiVg4tosLAhCDLDshYmv1jAfBgNVHSMEGDAWgBTWfFMMjha2H/UsCFsnhsZ+zNap CTAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzgvRDY3QzUzMEM4RTE2QjYxRkY1MkMwODVCMjc4NkM2N0VDQ0Q2 QTkwOS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvMW54VERJNFd0aF8xTEFoYko0Ykdmc3pXcVFrLmNlcjBqBggrBgEF BQcBCwReMFwwWgYIKwYBBQUHMAuGTnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM4LzMy MzQzMDMzM2EzNzMxNjMzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDM0MzczODM1 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEw DzANBAIAAjAHAwUAJANxwDANBgkqhkiG9w0BAQsFAAOCAQEAZa47kCBCH2E+VJSs 3lNB1jaVhiFl9ooKFyWgJLmT7B0P5GWU423mS+LOVmkXiPB0p4p1w5beQ2SmQZ+T bzRFeWm6+JDZ5LFWgd6uk/VF6UtHYNALan14Nu6a9Fmb9lV9bTMefNW55PwPjzuH Q9CpBObGxZXTO7TVycDq+wkb5PyInDoVF/MsXANGcgPg846K0hMUfnsWvY1JeQzy 5/AZ1uG7uxEUxcn0yUbuZ2Aci2k9ZAwhO0XROL6rBCSpNKoojzxJ+qdGXmr5F2Ny tb5eSGbgM9hvzvS2hP4DegSkiRaJ0eUP5+qy4Vmdg0Y3UHgHlqnf5hAZ35w3d8Az onbFqQ== -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:40 2024 by rpki-client on console-fra.rpki-client.org