$ rpki-client -vvf 0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e2034373835.roa File: 323430333a373163303a3a2f33322d3438203d3e2034373835.roa (raw, json) Hash identifier: ndUt9XJuqBDDpStV9DofkPw51jjAMotXjG3jlnbpSAI= Subject key identifier: 0F:F8:78:DE:7E:6A:CE:DD:D8:2F:2E:E3:56:71:BC:0D:C6:6C:17:3F Certificate issuer: /CN=A91FD4CC0000/serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Certificate serial: 1C8C5DB7042872B43E34E16FAB7AFE351C6C699D Authority key identifier: D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject info access: rsync://0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e2034373835.roa Signing time: Thu 12 Oct 2023 13:27:57 +0000 ROA not before: Thu 12 Oct 2023 13:22:57 +0000 ROA not after: Thu 10 Oct 2024 13:27:57 +0000 asID: 4785 IP address blocks: 2403:71c0::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 16:25:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:8c:5d:b7:04:28:72:b4:3e:34:e1:6f:ab:7a:fe:35:1c:6c:69:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000/serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Validity Not Before: Oct 12 13:22:57 2023 GMT Not After : Oct 10 13:27:57 2024 GMT Subject: CN=0FF878DE7E6ACEDDD82F2EE35671BC0DC66C173F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:61:e1:cf:48:aa:7b:1c:74:57:d4:6f:00:e0: b4:57:af:1c:52:9b:ce:7d:a0:d7:cd:aa:df:58:6a: 66:ce:11:b8:ac:15:91:cf:e9:fc:27:bd:97:ad:5e: 8f:ec:0c:d0:99:a5:ad:d8:81:32:5b:8d:0f:17:7b: 51:6d:fb:17:de:75:08:9e:46:ec:a2:a8:20:af:2f: dc:69:4f:73:21:9c:2c:7c:82:30:19:da:a0:d9:5e: 5a:a9:23:f3:e2:b2:99:21:58:a2:fb:b0:00:89:4f: d4:f8:d0:be:53:46:ac:23:68:55:4a:47:c8:b1:59: 93:15:45:b5:55:a2:f7:e2:73:2b:33:2b:50:b7:90: 98:a2:08:37:c8:8f:10:01:2a:da:44:06:bf:70:9f: 00:b4:70:c7:0b:3d:48:ef:1d:ab:c1:cd:2c:16:bf: 4f:d7:3f:36:39:e4:be:cc:fe:65:bb:38:09:f1:d2: 53:f7:be:09:e1:d3:98:66:b0:c6:ce:e4:16:e3:8e: 62:8a:90:8b:e4:ab:98:05:de:48:98:c6:ca:72:75: 9c:12:23:38:72:da:cf:f7:ab:d1:01:98:8b:2b:16: 1e:a2:2f:81:ae:3d:b7:6d:9f:e4:96:02:04:e6:1c: 12:8c:df:da:62:7a:c0:18:e2:b4:ad:8f:6b:1e:72: 6a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:F8:78:DE:7E:6A:CE:DD:D8:2F:2E:E3:56:71:BC:0D:C6:6C:17:3F X509v3 Authority Key Identifier: keyid:D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:71c0::/32 Signature Algorithm: sha256WithRSAEncryption 6e:52:14:cd:6d:99:88:50:db:c5:1d:53:4b:00:2d:d5:7e:85: cd:e4:5d:49:4e:e5:57:95:1c:ee:50:07:6b:78:f8:51:8d:8b: 8f:c6:18:b3:f1:b7:57:86:7c:c2:c2:df:b7:84:ed:6a:05:e2: e7:c0:ee:3f:d4:06:40:1a:6a:9f:bb:1b:2c:ae:32:bf:74:f0: 14:82:01:17:b8:de:d1:e4:2e:7e:c7:cd:d6:41:9b:88:b7:2d: a0:36:b1:65:bb:e8:f2:a6:d9:00:7b:59:f7:74:45:52:fa:22: d3:77:32:b3:a1:08:00:8d:53:d9:8e:ef:bd:16:08:77:97:8b: 83:5d:4d:4a:30:af:26:82:a7:22:54:6c:2e:66:f4:d4:57:03: 3a:d7:5c:73:0c:61:c3:5e:d5:39:e7:fc:74:3d:d0:49:5f:c9: c2:19:47:67:de:66:f8:df:80:47:32:33:51:64:d8:4c:f5:68: 59:e6:81:13:6d:2d:2b:b7:c7:78:8f:6f:09:bc:15:6d:7e:1f: c3:14:ad:5f:cf:d9:6d:34:cb:a8:cf:66:cf:97:c9:a7:f2:a5: aa:5d:32:5c:17:09:43:cf:39:c1:0d:ae:c5:64:52:c9:2b:eb: 5e:61:b8:d8:8d:f3:8e:6a:79:4d:fd:7b:a0:8e:15:6e:7f:64: 1b:19:b3:c4 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUHIxdtwQocrQ+NOFvq3r+NRxsaZ0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhENjdDNTMwQzhF MTZCNjFGRjUyQzA4NUIyNzg2QzY3RUNDRDZBOTA5MB4XDTIzMTAxMjEzMjI1N1oX DTI0MTAxMDEzMjc1N1owMzExMC8GA1UEAxMoMEZGODc4REU3RTZBQ0VEREQ4MkYy RUUzNTY3MUJDMERDNjZDMTczRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK1h4c9IqnscdFfUbwDgtFevHFKbzn2g182q31hqZs4RuKwVkc/p/Ce9l61e j+wM0JmlrdiBMluNDxd7UW37F951CJ5G7KKoIK8v3GlPcyGcLHyCMBnaoNleWqkj 8+KymSFYovuwAIlP1PjQvlNGrCNoVUpHyLFZkxVFtVWi9+JzKzMrULeQmKIIN8iP EAEq2kQGv3CfALRwxws9SO8dq8HNLBa/T9c/Njnkvsz+Zbs4CfHSU/e+CeHTmGaw xs7kFuOOYoqQi+SrmAXeSJjGynJ1nBIjOHLaz/er0QGYiysWHqIvga49t22f5JYC BOYcEozf2mJ6wBjitK2Pax5yalsCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQP+Hje fmrO3dgvLuNWcbwNxmwXPzAfBgNVHSMEGDAWgBTWfFMMjha2H/UsCFsnhsZ+zNap CTAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzgvRDY3QzUzMEM4RTE2QjYxRkY1MkMwODVCMjc4NkM2N0VDQ0Q2 QTkwOS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvMW54VERJNFd0aF8xTEFoYko0Ykdmc3pXcVFrLmNlcjBqBggrBgEF BQcBCwReMFwwWgYIKwYBBQUHMAuGTnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM4LzMy MzQzMDMzM2EzNzMxNjMzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDM0MzczODM1 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEw DzANBAIAAjAHAwUAJANxwDANBgkqhkiG9w0BAQsFAAOCAQEAblIUzW2ZiFDbxR1T SwAt1X6FzeRdSU7lV5Uc7lAHa3j4UY2Lj8YYs/G3V4Z8wsLft4TtagXi58DuP9QG QBpqn7sbLK4yv3TwFIIBF7je0eQufsfN1kGbiLctoDaxZbvo8qbZAHtZ93RFUvoi 03cys6EIAI1T2Y7vvRYId5eLg11NSjCvJoKnIlRsLmb01FcDOtdccwxhw17VOef8 dD3QSV/JwhlHZ95m+N+ARzIzUWTYTPVoWeaBE20tK7fHeI9vCbwVbX4fwxStX8/Z bTTLqM9mz5fJp/Klql0yXBcJQ885wQ2uxWRSySvrXmG42I3zjmp5Tf17oI4Vbn9k GxmzxA== -----END CERTIFICATE-----Generated at Sun May 5 15:28:44 2024 by rpki-client on console-ams.rpki-client.org