$ rpki-client -vvf 0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e203233393539.roa File: 3130332e3230312e3132382e302f32322d3234203d3e203233393539.roa (raw, json) Hash identifier: Ba0Cvu9WbZFhfLh1lczmTUUQySQrVlrHRfRaUrK9GUM= Subject key identifier: 17:67:5B:29:54:9B:CB:1E:33:02:DD:1F:A6:B4:CC:C5:C3:53:AD:62 Certificate issuer: /CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Certificate serial: 351AB216093739100679D231BD376CADD29C156C Authority key identifier: 52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject info access: rsync://0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e203233393539.roa Signing time: Thu 12 Oct 2023 13:27:57 +0000 ROA not before: Thu 12 Oct 2023 13:22:57 +0000 ROA not after: Thu 10 Oct 2024 13:27:57 +0000 asID: 23959 IP address blocks: 103.201.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 20:29:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:1a:b2:16:09:37:39:10:06:79:d2:31:bd:37:6c:ad:d2:9c:15:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Validity Not Before: Oct 12 13:22:57 2023 GMT Not After : Oct 10 13:27:57 2024 GMT Subject: CN=17675B29549BCB1E3302DD1FA6B4CCC5C353AD62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3c:8d:72:34:e3:3c:7b:91:18:1e:c1:44:62: 80:fd:45:c0:c6:b4:e0:c2:c7:23:91:36:72:fe:dc: a9:8c:d1:76:35:88:0e:b5:a2:33:de:18:ad:39:c5: b6:53:fe:4f:e3:f6:a2:58:e3:10:38:e0:c7:51:f7: 86:7b:a6:cf:b3:e7:25:f0:71:e8:de:7e:8b:e0:4b: 52:24:bb:9a:cd:3b:11:96:da:3d:f4:f8:5a:56:5f: f2:98:49:0e:43:fe:78:00:f8:75:3a:58:b1:98:4b: d0:f3:c2:67:91:c3:8a:da:83:0f:e7:c4:34:73:3c: c9:0b:31:f5:9b:18:2a:bc:c5:dc:34:3e:3f:41:0c: 78:65:d1:88:c2:cf:33:a9:bf:b8:f2:87:62:32:82: 46:69:3c:1b:61:4d:77:6a:ba:5b:5a:35:87:b3:ba: 80:ef:50:a7:a5:7c:8b:52:cc:8c:e1:fc:37:df:1d: 7f:a0:31:e5:38:a8:46:3a:58:e2:2b:87:26:9e:0c: 2e:8c:29:f8:c0:6a:e6:4a:bc:ff:2e:97:e0:bc:43: 3b:2e:11:60:c4:92:14:e0:58:5b:a7:b3:64:e1:54: 11:fc:1d:1c:82:18:f4:5f:3f:72:e0:35:99:c1:98: bb:5e:9d:0b:99:bd:8f:80:fb:a1:76:41:00:1d:de: eb:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:67:5B:29:54:9B:CB:1E:33:02:DD:1F:A6:B4:CC:C5:C3:53:AD:62 X509v3 Authority Key Identifier: keyid:52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e203233393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.201.128.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:7e:04:97:49:a5:b2:a3:fb:84:26:09:cc:66:ac:ef:ef:d2: b9:bd:d1:78:17:17:dd:b0:cf:a3:1d:e2:41:48:ae:d0:90:6b: a5:ef:47:c8:a2:51:a7:19:71:51:10:81:05:54:1c:31:d9:61: 16:e0:45:e6:5b:14:56:3d:27:dc:ef:75:83:c5:71:2d:11:23: 11:6a:a3:f5:2e:d9:bb:72:ab:74:73:b5:03:0d:94:87:2c:13: 00:c1:52:4c:7e:79:21:da:aa:73:3e:22:31:0c:59:e4:17:e1: df:7a:0f:99:fe:62:09:76:7b:68:ef:5f:f9:63:a4:af:96:0e: 3e:c5:92:85:19:f4:c2:83:c7:d3:d9:e1:00:f8:32:53:55:8f: 74:5c:7b:82:cc:dd:e4:44:d1:7c:39:2d:3a:76:13:31:c3:92: 5d:32:12:d4:83:56:c8:d6:f6:8b:2b:09:bf:a0:c5:b1:10:41: 8e:39:3c:ad:84:c0:21:a3:8a:de:0a:1a:9f:58:ef:ad:0a:46: 1f:51:ba:42:68:15:4e:26:ba:db:77:93:0b:5f:8e:27:3b:fc: 12:ae:49:a7:b7:1a:1f:74:d2:d4:c3:02:fd:42:0f:18:2d:45: 60:e2:52:2b:17:f6:4c:6f:2d:a5:68:2f:c3:ef:f3:24:d5:72: 7a:b3:d5:39 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUNRqyFgk3ORAGedIxvTdsrdKcFWwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1Mjg0MDQyMkQw QjcyQkE5OTI3REUwRkY3MzUzNUZERjE2MzUyMUE0MB4XDTIzMTAxMjEzMjI1N1oX DTI0MTAxMDEzMjc1N1owMzExMC8GA1UEAxMoMTc2NzVCMjk1NDlCQ0IxRTMzMDJE RDFGQTZCNENDQzVDMzUzQUQ2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANk8jXI04zx7kRgewURigP1FwMa04MLHI5E2cv7cqYzRdjWIDrWiM94YrTnF tlP+T+P2oljjEDjgx1H3hnumz7PnJfBx6N5+i+BLUiS7ms07EZbaPfT4WlZf8phJ DkP+eAD4dTpYsZhL0PPCZ5HDitqDD+fENHM8yQsx9ZsYKrzF3DQ+P0EMeGXRiMLP M6m/uPKHYjKCRmk8G2FNd2q6W1o1h7O6gO9Qp6V8i1LMjOH8N98df6Ax5TioRjpY 4iuHJp4MLowp+MBq5kq8/y6X4LxDOy4RYMSSFOBYW6ezZOFUEfwdHIIY9F8/cuA1 mcGYu16dC5m9j4D7oXZBAB3e6/cCAwEAAaOCAdgwggHUMB0GA1UdDgQWBBQXZ1sp VJvLHjMC3R+mtMzFw1OtYjAfBgNVHSMEGDAWgBRShAQi0LcrqZJ94P9zU1/fFjUh pDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzkvNTI4NDA0MjJEMEI3MkJBOTkyN0RFMEZGNzM1MzVGREYxNjM1 MjFBNC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvVW9RRUl0QzNLNm1TZmVEX2MxTmYzeFkxSWFRLmNlcjBwBggrBgEF BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vMC5zYi9yZXBvL3NiLzM5LzMx MzAzMzJlMzIzMDMxMmUzMTMyMzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjMz MzkzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCZ8mAMA0GCSqGSIb3DQEBCwUAA4IBAQBMfgSXSaWy o/uEJgnMZqzv79K5vdF4FxfdsM+jHeJBSK7QkGul70fIolGnGXFREIEFVBwx2WEW 4EXmWxRWPSfc73WDxXEtESMRaqP1Ltm7cqt0c7UDDZSHLBMAwVJMfnkh2qpzPiIx DFnkF+Hfeg+Z/mIJdnto71/5Y6Svlg4+xZKFGfTCg8fT2eEA+DJTVY90XHuCzN3k RNF8OS06dhMxw5JdMhLUg1bI1vaLKwm/oMWxEEGOOTythMAho4reChqfWO+tCkYf UbpCaBVOJrrbd5MLX44nO/wSrkmntxofdNLUwwL9Qg8YLUVg4lIrF/ZMby2laC/D 7/Mk1XJ6s9U5 -----END CERTIFICATE-----Generated at Sat Jun 1 18:06:20 2024 by rpki-client on console-ams.rpki-client.org