$ rpki-client -vvf 0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e203233393539.roa File: 3130332e3230312e3132382e302f32322d3234203d3e203233393539.roa (raw, json) Hash identifier: BwA+UvEt8rQgMpY6yzoRxeikeIjObyDwDrnQIWxLovQ= Subject key identifier: B2:1A:D1:67:55:7E:0B:39:45:DD:58:74:00:D9:46:7D:1C:A0:EE:FD Certificate issuer: /CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Certificate serial: 502101BE0AEE8B8868A2A5C4AA82AADE0D04D303 Authority key identifier: 52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject info access: rsync://0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e203233393539.roa Signing time: Thu 12 Sep 2024 13:50:17 +0000 ROA not before: Thu 12 Sep 2024 13:45:17 +0000 ROA not after: Thu 11 Sep 2025 13:50:17 +0000 asID: 23959 IP address blocks: 103.201.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 04:21:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:21:01:be:0a:ee:8b:88:68:a2:a5:c4:aa:82:aa:de:0d:04:d3:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Validity Not Before: Sep 12 13:45:17 2024 GMT Not After : Sep 11 13:50:17 2025 GMT Subject: CN=B21AD167557E0B3945DD587400D9467D1CA0EEFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4b:4e:4f:2b:e6:d7:88:ef:8a:01:11:1c:9f: 3a:3e:1e:09:e2:e2:60:e5:80:78:32:db:d9:92:f6: 8b:16:c1:ef:26:d7:4b:6f:9f:fb:66:fb:7c:8d:80: ed:28:07:ee:2f:78:e3:08:1c:d8:94:ce:8e:08:20: 0a:05:ca:ea:07:da:d6:39:f9:b4:85:c7:31:1e:a2: 7f:92:a0:e3:63:61:26:10:ba:45:ab:18:7f:fd:f2: 4a:24:38:65:eb:39:f1:e6:0e:1a:f1:db:a0:96:9f: e6:22:e0:32:af:0f:1d:af:50:ca:c4:20:51:4c:7d: 89:8b:91:d9:00:a9:62:0f:b0:c0:40:c4:36:79:a4: 3a:91:36:12:56:7c:90:69:e6:17:b0:53:8b:97:e5: 9e:36:b4:7e:71:63:f1:e3:10:c5:bc:9c:56:5f:0c: 2a:e8:02:34:dc:62:a0:c0:64:47:07:d0:9f:09:73: 8f:3e:99:39:8c:81:33:b9:9c:e8:3e:2c:7b:25:33: d1:f0:18:06:5a:f3:3a:75:62:d3:76:9a:93:71:98: 94:10:9d:2a:54:8f:43:4f:a4:5c:3a:c8:03:ef:86: 23:1e:d3:9f:6f:61:93:4a:39:1a:9f:43:79:34:4f: fe:e2:f1:cc:7d:f0:14:63:66:97:fa:29:85:0f:31: 52:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:1A:D1:67:55:7E:0B:39:45:DD:58:74:00:D9:46:7D:1C:A0:EE:FD X509v3 Authority Key Identifier: keyid:52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e203233393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.201.128.0/22 Signature Algorithm: sha256WithRSAEncryption a9:c9:4f:53:cf:e1:94:30:34:2c:81:50:d1:47:76:ef:3e:a9: 6f:de:9e:65:c2:fe:ce:49:64:3d:e7:e3:a5:d2:1b:28:68:7d: ba:e5:cc:6e:aa:53:bf:16:1a:44:49:fa:3f:82:83:00:e2:eb: ea:0a:f7:51:32:b3:72:74:5f:f9:a8:14:37:1c:4a:72:78:c6: 6e:19:79:fc:91:47:1f:71:44:ce:32:92:3b:e2:77:a7:94:af: 98:1e:c2:12:e0:63:e2:f9:68:2d:24:2c:b0:8d:29:54:a7:7a: 02:44:a5:33:1f:8b:b0:a7:69:bb:53:f0:bb:33:3c:3d:f6:16: cb:08:e6:01:13:88:d0:83:83:ae:18:1b:93:cf:67:50:35:1b: bc:dc:89:92:d0:a0:e3:d5:91:29:fe:fc:82:0f:31:c5:c8:19: 73:a8:95:59:a0:a0:df:b9:b0:c5:88:5a:e9:6b:ee:70:b3:6e: bf:f4:87:fe:a2:bc:54:5e:24:37:b0:e7:5b:78:07:b5:23:08: ae:7b:b3:72:47:05:0a:4a:ac:9c:bd:1a:17:fc:7d:e9:e9:4a: 5d:7e:96:6e:23:4f:38:15:66:89:73:14:b0:81:f9:38:3c:9c: 80:55:45:40:18:87:18:96:8d:65:8b:45:00:cf:2d:ec:ca:b5: a5:38:9c:96 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUUCEBvgrui4hooqXEqoKq3g0E0wMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1Mjg0MDQyMkQw QjcyQkE5OTI3REUwRkY3MzUzNUZERjE2MzUyMUE0MB4XDTI0MDkxMjEzNDUxN1oX DTI1MDkxMTEzNTAxN1owMzExMC8GA1UEAxMoQjIxQUQxNjc1NTdFMEIzOTQ1REQ1 ODc0MDBEOTQ2N0QxQ0EwRUVGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdLTk8r5teI74oBERyfOj4eCeLiYOWAeDLb2ZL2ixbB7ybXS2+f+2b7fI2A 7SgH7i944wgc2JTOjgggCgXK6gfa1jn5tIXHMR6if5Kg42NhJhC6RasYf/3ySiQ4 Zes58eYOGvHboJaf5iLgMq8PHa9QysQgUUx9iYuR2QCpYg+wwEDENnmkOpE2ElZ8 kGnmF7BTi5flnja0fnFj8eMQxbycVl8MKugCNNxioMBkRwfQnwlzjz6ZOYyBM7mc 6D4seyUz0fAYBlrzOnVi03aak3GYlBCdKlSPQ0+kXDrIA++GIx7Tn29hk0o5Gp9D eTRP/uLxzH3wFGNml/ophQ8xUisCAwEAAaOCAdgwggHUMB0GA1UdDgQWBBSyGtFn VX4LOUXdWHQA2UZ9HKDu/TAfBgNVHSMEGDAWgBRShAQi0LcrqZJ94P9zU1/fFjUh pDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzkvNTI4NDA0MjJEMEI3MkJBOTkyN0RFMEZGNzM1MzVGREYxNjM1 MjFBNC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvVW9RRUl0QzNLNm1TZmVEX2MxTmYzeFkxSWFRLmNlcjBwBggrBgEF BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vMC5zYi9yZXBvL3NiLzM5LzMx MzAzMzJlMzIzMDMxMmUzMTMyMzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjMz MzkzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCZ8mAMA0GCSqGSIb3DQEBCwUAA4IBAQCpyU9Tz+GU MDQsgVDRR3bvPqlv3p5lwv7OSWQ95+Ol0hsoaH265cxuqlO/FhpESfo/goMA4uvq CvdRMrNydF/5qBQ3HEpyeMZuGXn8kUcfcUTOMpI74nenlK+YHsIS4GPi+WgtJCyw jSlUp3oCRKUzH4uwp2m7U/C7Mzw99hbLCOYBE4jQg4OuGBuTz2dQNRu83ImS0KDj 1ZEp/vyCDzHFyBlzqJVZoKDfubDFiFrpa+5ws26/9If+orxUXiQ3sOdbeAe1Iwiu e7NyRwUKSqycvRoX/H3p6UpdfpZuI084FWaJcxSwgfk4PJyAVUVAGIcYlo1li0UA zy3syrWlOJyW -----END CERTIFICATE-----Generated at Sat Nov 23 03:54:04 2024 by rpki-client on console-ams.rpki-client.org