$ rpki-client -vvf 0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa File: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (raw, json) Hash identifier: 9Ca/STubA5mtIYiuFQ8WX7AScvQ7uQdxOZpX1VuOAEU= Subject key identifier: B3:17:D2:C8:94:8C:E2:F7:7A:46:64:10:DB:FC:FD:EB:8C:97:5E:2D Certificate issuer: /CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Certificate serial: 12A85313A51EDE5C8F4C19EF47C094C93F82DB4B Authority key identifier: 52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject info access: rsync://0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa Signing time: Thu 12 Sep 2024 13:50:17 +0000 ROA not before: Thu 12 Sep 2024 13:45:17 +0000 ROA not after: Thu 11 Sep 2025 13:50:17 +0000 asID: 4785 IP address blocks: 103.201.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 08:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:a8:53:13:a5:1e:de:5c:8f:4c:19:ef:47:c0:94:c9:3f:82:db:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Validity Not Before: Sep 12 13:45:17 2024 GMT Not After : Sep 11 13:50:17 2025 GMT Subject: CN=B317D2C8948CE2F77A466410DBFCFDEB8C975E2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:92:f4:47:f5:52:47:88:d1:f1:af:54:9c:01: 24:f8:9e:b3:f2:b6:b4:aa:18:bc:58:ec:9e:ed:9d: e8:7e:92:57:b7:0b:b7:46:ab:29:5c:09:44:35:77: b7:a0:b9:fb:0a:9b:31:63:5c:da:ec:9a:9a:ce:a6: 8b:65:1b:67:e0:47:99:77:95:b3:32:4b:07:1a:3a: 6b:84:a8:2f:de:b0:c1:68:a8:f4:b2:bd:59:17:6c: 29:32:ab:7b:15:bd:91:56:ec:ba:ec:5b:09:d4:cc: 32:d7:a3:e4:ac:2a:2e:6c:2b:53:2f:24:6f:d9:fd: d4:8b:bd:8c:e0:74:e4:c2:1d:ec:b4:e2:17:22:a5: 08:9c:47:67:fc:2f:a9:f4:5f:3c:6a:9e:a9:b9:35: ac:2d:a9:35:e1:3d:a5:2b:2b:5e:41:bb:f6:ab:93: 33:31:b1:d2:21:bb:48:82:47:b3:a7:5b:d2:51:51: fa:21:e4:97:77:d0:a7:21:ca:1f:47:b9:5a:50:26: ca:ea:80:cd:b9:b2:9d:90:c4:29:97:53:c4:24:db: d8:4c:48:0b:74:b7:13:a4:05:1b:e2:93:98:3c:89: 83:85:05:62:f7:29:99:bf:21:50:eb:61:da:d8:17: 72:76:24:9c:ed:57:92:ac:13:05:f5:ef:42:7f:ea: 6a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:17:D2:C8:94:8C:E2:F7:7A:46:64:10:DB:FC:FD:EB:8C:97:5E:2D X509v3 Authority Key Identifier: keyid:52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.201.128.0/22 Signature Algorithm: sha256WithRSAEncryption a7:57:70:f1:89:5c:5f:6a:f9:e5:3c:a6:74:ea:d8:2d:ba:cc: 87:58:77:b9:28:be:60:2d:31:65:82:4e:28:db:5e:4c:3a:15: 75:d4:99:7c:8d:b0:c3:2f:46:99:85:3e:05:68:0a:88:92:c0: ae:90:c2:14:fe:bf:ec:33:ab:3b:e8:f1:35:01:16:ac:49:8f: a3:0a:4c:b1:1c:25:b1:9d:6a:55:28:cf:8d:34:61:c4:e5:d1: 40:da:e6:a8:ff:d5:98:76:92:52:32:76:78:ca:16:71:89:dd: cd:1e:ab:44:3f:83:aa:de:1e:a1:ff:1a:a0:07:40:30:24:b4: 83:2d:37:be:1e:9a:ce:f9:bb:ee:15:92:12:b7:d7:97:75:1b: b5:3e:53:12:93:db:ee:d4:ff:0e:e0:65:6a:fc:c2:17:76:db: c0:e3:0f:44:6a:90:e0:39:17:2f:fe:ab:89:d3:4b:e8:a6:94: ae:b1:1a:d5:60:54:1c:4a:b6:b6:f5:82:6a:98:b9:fc:e4:02: 59:06:f3:a1:c9:c2:20:90:9a:d6:f9:85:7f:50:57:ce:4e:1a: f0:89:bc:a3:2a:bb:ce:af:58:44:2f:03:19:b8:7a:4a:95:10: 3e:56:b8:36:7f:b5:65:e2:c1:85:84:f4:07:51:27:2f:85:f0: 06:85:35:d0 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUEqhTE6Ue3lyPTBnvR8CUyT+C20swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1Mjg0MDQyMkQw QjcyQkE5OTI3REUwRkY3MzUzNUZERjE2MzUyMUE0MB4XDTI0MDkxMjEzNDUxN1oX DTI1MDkxMTEzNTAxN1owMzExMC8GA1UEAxMoQjMxN0QyQzg5NDhDRTJGNzdBNDY2 NDEwREJGQ0ZERUI4Qzk3NUUyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGS9Ef1UkeI0fGvVJwBJPies/K2tKoYvFjsnu2d6H6SV7cLt0arKVwJRDV3 t6C5+wqbMWNc2uyams6mi2UbZ+BHmXeVszJLBxo6a4SoL96wwWio9LK9WRdsKTKr exW9kVbsuuxbCdTMMtej5KwqLmwrUy8kb9n91Iu9jOB05MId7LTiFyKlCJxHZ/wv qfRfPGqeqbk1rC2pNeE9pSsrXkG79quTMzGx0iG7SIJHs6db0lFR+iHkl3fQpyHK H0e5WlAmyuqAzbmynZDEKZdTxCTb2ExIC3S3E6QFG+KTmDyJg4UFYvcpmb8hUOth 2tgXcnYknO1XkqwTBfXvQn/qakUCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBSzF9LI lIzi93pGZBDb/P3rjJdeLTAfBgNVHSMEGDAWgBRShAQi0LcrqZJ94P9zU1/fFjUh pDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzkvNTI4NDA0MjJEMEI3MkJBOTkyN0RFMEZGNzM1MzVGREYxNjM1 MjFBNC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvVW9RRUl0QzNLNm1TZmVEX2MxTmYzeFkxSWFRLmNlcjBuBggrBgEF BQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM5LzMx MzAzMzJlMzIzMDMxMmUzMTMyMzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM3 MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAmfJgDANBgkqhkiG9w0BAQsFAAOCAQEAp1dw8YlcX2r5 5TymdOrYLbrMh1h3uSi+YC0xZYJOKNteTDoVddSZfI2wwy9GmYU+BWgKiJLArpDC FP6/7DOrO+jxNQEWrEmPowpMsRwlsZ1qVSjPjTRhxOXRQNrmqP/VmHaSUjJ2eMoW cYndzR6rRD+Dqt4eof8aoAdAMCS0gy03vh6azvm77hWSErfXl3UbtT5TEpPb7tT/ DuBlavzCF3bbwOMPRGqQ4DkXL/6ridNL6KaUrrEa1WBUHEq2tvWCapi5/OQCWQbz ocnCIJCa1vmFf1BXzk4a8Im8oyq7zq9YRC8DGbh6SpUQPla4Nn+1ZeLBhYT0B1En L4XwBoU10A== -----END CERTIFICATE-----Generated at Fri Nov 22 09:29:41 2024 by rpki-client on console-fra.rpki-client.org