$ rpki-client -vvf 0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa File: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (raw, json) Hash identifier: AzaohjYaSSIV1Q6fmRXncx9iaadRmaHUjWlMQBGdnBA= Subject key identifier: 5D:00:DE:E4:01:C0:56:3C:5F:4C:5E:34:7B:96:6E:01:26:3F:79:C7 Certificate issuer: /CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Certificate serial: 1B6F43BD211AD7C89640E6F2A6BE3529A2790A48 Authority key identifier: 52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject info access: rsync://0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa Signing time: Fri 10 May 2024 08:47:01 +0000 ROA not before: Fri 10 May 2024 08:42:01 +0000 ROA not after: Fri 09 May 2025 08:47:01 +0000 asID: 3258 IP address blocks: 103.201.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 08:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:6f:43:bd:21:1a:d7:c8:96:40:e6:f2:a6:be:35:29:a2:79:0a:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Validity Not Before: May 10 08:42:01 2024 GMT Not After : May 9 08:47:01 2025 GMT Subject: CN=5D00DEE401C0563C5F4C5E347B966E01263F79C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ac:32:e8:7c:ff:2c:84:3b:33:b3:a1:94:ad: 6c:bf:69:26:bb:b5:ef:4b:5d:49:ef:93:7f:16:9b: e4:c3:62:03:ed:0d:5d:40:e2:d4:99:5b:6c:ad:f6: 7f:56:3f:a0:84:67:d9:83:1f:6a:49:ef:d1:b3:08: c0:cf:23:9c:57:72:95:48:ae:38:c7:b3:5a:a6:00: 13:ec:89:80:92:bb:8b:30:b9:ed:e6:82:39:25:1e: eb:a4:0a:fa:3f:b0:de:2e:c5:b5:f3:f5:42:aa:7a: 7d:35:76:b9:ca:a8:01:0e:ea:85:bb:2a:f2:8d:cd: 2e:52:b6:2c:c4:b1:96:8c:e4:a0:8a:48:21:85:cd: 11:37:7b:cf:19:80:93:6b:30:56:6a:94:96:fa:72: 3b:02:70:e8:26:de:be:0d:16:47:d7:bf:24:1a:8c: 65:86:29:8d:ac:62:7c:ce:73:cc:e3:9e:e9:c5:3d: d1:1c:56:a5:f9:75:c2:0e:12:53:03:56:cb:a5:bb: a6:24:f0:62:93:e4:8e:72:b5:c9:6d:08:ee:cf:c5: 40:a5:ae:97:57:6b:5e:84:73:bc:09:fa:61:a1:9a: b5:5a:7c:19:3b:41:86:ff:c9:69:e8:e4:1c:13:e6: 61:cf:d0:51:6c:bc:20:08:4f:0c:ed:de:7a:b3:71: c7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:00:DE:E4:01:C0:56:3C:5F:4C:5E:34:7B:96:6E:01:26:3F:79:C7 X509v3 Authority Key Identifier: keyid:52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.201.128.0/22 Signature Algorithm: sha256WithRSAEncryption 29:63:bf:1c:ea:d8:67:78:96:0e:0d:55:2d:fb:5b:01:ac:42: 03:ea:2e:01:77:d5:17:3f:70:b8:fb:27:d4:81:d9:4a:26:58: a9:5f:23:38:c3:4e:1b:5d:ff:00:ba:a0:4a:8a:12:a7:29:88: e6:d2:17:bd:33:fd:67:60:f6:09:bc:7e:16:59:b1:d5:31:95: 53:0a:96:3c:8d:42:3d:f2:c7:76:68:de:4a:5e:68:a3:46:cf: d9:64:c4:07:05:2f:f2:70:90:79:2e:c6:aa:03:bf:45:da:21: 85:0a:21:de:c9:63:dc:bf:d7:d8:ec:77:b1:83:b5:c9:bb:68: 19:13:65:34:23:e5:70:a9:b4:aa:bd:3f:ea:13:50:f3:3b:77: 18:fb:84:84:55:01:c3:bc:57:0b:21:78:0c:b1:c7:e6:d8:8b: 9f:94:a4:1f:9d:f4:4f:93:8d:eb:00:4e:5a:a7:cb:f5:5c:e7: a7:fd:1f:00:3a:42:bf:b9:c7:88:45:7d:5b:33:07:32:c8:4a: 44:90:c3:20:2a:f2:ba:34:1b:e7:65:6f:aa:ce:46:77:c1:cf: 3e:6f:cc:70:10:84:da:e9:8b:b2:78:5d:ef:5c:07:96:34:fc: ad:b3:a0:b6:2a:e2:dc:d9:cd:ec:e2:d6:42:25:56:23:a4:53: fd:cb:9f:62 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUG29DvSEa18iWQObypr41KaJ5CkgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1Mjg0MDQyMkQw QjcyQkE5OTI3REUwRkY3MzUzNUZERjE2MzUyMUE0MB4XDTI0MDUxMDA4NDIwMVoX DTI1MDUwOTA4NDcwMVowMzExMC8GA1UEAxMoNUQwMERFRTQwMUMwNTYzQzVGNEM1 RTM0N0I5NjZFMDEyNjNGNzlDNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKCsMuh8/yyEOzOzoZStbL9pJru170tdSe+Tfxab5MNiA+0NXUDi1JlbbK32 f1Y/oIRn2YMfaknv0bMIwM8jnFdylUiuOMezWqYAE+yJgJK7izC57eaCOSUe66QK +j+w3i7FtfP1Qqp6fTV2ucqoAQ7qhbsq8o3NLlK2LMSxlozkoIpIIYXNETd7zxmA k2swVmqUlvpyOwJw6Cbevg0WR9e/JBqMZYYpjaxifM5zzOOe6cU90RxWpfl1wg4S UwNWy6W7piTwYpPkjnK1yW0I7s/FQKWul1drXoRzvAn6YaGatVp8GTtBhv/Jaejk HBPmYc/QUWy8IAhPDO3eerNxx6UCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBRdAN7k AcBWPF9MXjR7lm4BJj95xzAfBgNVHSMEGDAWgBRShAQi0LcrqZJ94P9zU1/fFjUh pDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzkvNTI4NDA0MjJEMEI3MkJBOTkyN0RFMEZGNzM1MzVGREYxNjM1 MjFBNC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvVW9RRUl0QzNLNm1TZmVEX2MxTmYzeFkxSWFRLmNlcjBuBggrBgEF BQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM5LzMx MzAzMzJlMzIzMDMxMmUzMTMyMzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMzMy MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAmfJgDANBgkqhkiG9w0BAQsFAAOCAQEAKWO/HOrYZ3iW Dg1VLftbAaxCA+ouAXfVFz9wuPsn1IHZSiZYqV8jOMNOG13/ALqgSooSpymI5tIX vTP9Z2D2Cbx+Flmx1TGVUwqWPI1CPfLHdmjeSl5oo0bP2WTEBwUv8nCQeS7GqgO/ RdohhQoh3slj3L/X2Ox3sYO1ybtoGRNlNCPlcKm0qr0/6hNQ8zt3GPuEhFUBw7xX CyF4DLHH5tiLn5SkH530T5ON6wBOWqfL9Vznp/0fADpCv7nHiEV9WzMHMshKRJDD ICryujQb52Vvqs5Gd8HPPm/McBCE2umLsnhd71wHljT8rbOgtiri3NnN7OLWQiVW I6RT/cufYg== -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:55 2024 by rpki-client on console-ams.rpki-client.org