$ rpki-client -vvf 0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa File: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (raw, json) Hash identifier: VS6E8+3e/+gyWirRAMsqtE1nNwiUNQLiZaU8mzDNZcY= Subject key identifier: 3A:A5:33:26:6B:DE:49:22:F6:3E:5B:2C:E7:AA:D6:FC:B7:E6:6A:78 Certificate issuer: /CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Certificate serial: 5EB59070BAD79BF61C076E08C162503CA395D03F Authority key identifier: 52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject info access: rsync://0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa Signing time: Thu 12 Oct 2023 13:27:56 +0000 ROA not before: Thu 12 Oct 2023 13:22:56 +0000 ROA not after: Thu 10 Oct 2024 13:27:56 +0000 asID: 4785 IP address blocks: 103.201.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 20:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:b5:90:70:ba:d7:9b:f6:1c:07:6e:08:c1:62:50:3c:a3:95:d0:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Validity Not Before: Oct 12 13:22:56 2023 GMT Not After : Oct 10 13:27:56 2024 GMT Subject: CN=3AA533266BDE4922F63E5B2CE7AAD6FCB7E66A78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:99:32:b2:35:75:b6:1c:a8:5b:9a:71:ef:67: d8:4c:4d:b0:f3:f7:03:6a:52:a4:1e:20:71:39:a9: b7:b2:81:05:f5:a0:80:7c:f7:8d:54:c6:f6:ec:c8: 20:93:01:d6:33:bd:98:53:73:dc:79:b0:36:b6:58: 94:a4:74:c5:60:ee:a6:c0:04:5f:40:09:a8:b2:7d: d3:a4:69:89:2a:c3:b5:bc:d7:b6:f4:5a:84:72:d5: 66:bf:91:ca:bf:24:8f:46:7b:32:12:8e:23:13:56: c2:d0:c6:23:a6:55:6c:ff:7c:85:d0:9a:99:78:82: 4d:79:e3:fe:a7:a1:5a:38:61:2e:4a:34:a7:62:6b: a1:3f:38:fc:1d:59:20:c9:8f:5e:ae:01:36:c5:c2: 65:b8:ad:a3:df:b4:d1:03:67:1b:36:f5:42:fc:f3: 02:43:8d:7e:67:ea:3e:c0:ec:74:e1:80:42:58:17: 1f:74:87:d0:9a:8b:8f:67:b9:af:c8:67:c9:ca:ad: 40:29:6f:47:32:92:f5:28:38:4c:87:c9:83:52:2a: 18:84:e0:15:8d:a2:d8:3b:27:78:38:d1:6d:46:83: 22:17:5f:91:f4:38:b6:42:10:2e:aa:7a:67:46:32: ab:40:9d:85:e3:9e:7d:e6:56:4a:e2:30:50:bf:24: af:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A5:33:26:6B:DE:49:22:F6:3E:5B:2C:E7:AA:D6:FC:B7:E6:6A:78 X509v3 Authority Key Identifier: keyid:52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.201.128.0/22 Signature Algorithm: sha256WithRSAEncryption 19:65:18:98:1b:d7:69:5d:a4:90:af:c0:8f:9e:1a:ea:46:2f: c6:9c:c5:0c:64:16:b0:7e:77:59:f5:7d:85:11:d7:11:b8:d8: a1:9d:1c:4f:4e:ce:2d:33:d1:c7:f1:ec:59:81:ef:a9:a4:28: 26:d8:42:17:d1:5b:be:8b:2d:d1:0e:27:23:ad:3f:fb:3c:8e: de:dc:f6:ce:a8:c6:ac:89:35:d6:73:15:36:6c:9a:f8:41:13: c8:9f:d8:41:7b:d2:7a:ca:75:c7:f2:b2:30:54:e9:62:df:8a: 53:4c:74:c0:ab:83:e7:07:df:9b:b1:7a:cd:99:24:71:be:46: d0:9c:78:b6:c8:bf:92:ee:a7:62:21:60:f2:e7:53:23:1c:31: 2d:44:47:93:0d:23:8a:e6:87:28:65:0a:c0:26:63:4e:02:f6: 9f:d4:af:b2:05:9e:9f:df:0f:82:e7:a6:89:c0:8e:98:8c:41: 83:c1:08:65:13:0a:32:53:5e:c5:ad:96:7c:ea:e7:a1:62:d2: 29:09:a5:7f:5a:30:b1:4a:6c:1d:d5:cc:58:07:56:37:d8:f5: 78:5d:1c:31:28:60:44:e5:8c:da:6d:ce:de:af:f8:bf:8e:e2: 99:dc:36:99:4f:b5:c9:3d:b2:e5:fa:83:56:1a:50:6e:72:06: 43:3c:03:ba -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUXrWQcLrXm/YcB24IwWJQPKOV0D8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1Mjg0MDQyMkQw QjcyQkE5OTI3REUwRkY3MzUzNUZERjE2MzUyMUE0MB4XDTIzMTAxMjEzMjI1NloX DTI0MTAxMDEzMjc1NlowMzExMC8GA1UEAxMoM0FBNTMzMjY2QkRFNDkyMkY2M0U1 QjJDRTdBQUQ2RkNCN0U2NkE3ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPaZMrI1dbYcqFuace9n2ExNsPP3A2pSpB4gcTmpt7KBBfWggHz3jVTG9uzI IJMB1jO9mFNz3HmwNrZYlKR0xWDupsAEX0AJqLJ906RpiSrDtbzXtvRahHLVZr+R yr8kj0Z7MhKOIxNWwtDGI6ZVbP98hdCamXiCTXnj/qehWjhhLko0p2JroT84/B1Z IMmPXq4BNsXCZbito9+00QNnGzb1QvzzAkONfmfqPsDsdOGAQlgXH3SH0JqLj2e5 r8hnycqtQClvRzKS9Sg4TIfJg1IqGITgFY2i2DsneDjRbUaDIhdfkfQ4tkIQLqp6 Z0Yyq0CdheOefeZWSuIwUL8kr/0CAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQ6pTMm a95JIvY+Wyznqtb8t+ZqeDAfBgNVHSMEGDAWgBRShAQi0LcrqZJ94P9zU1/fFjUh pDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzkvNTI4NDA0MjJEMEI3MkJBOTkyN0RFMEZGNzM1MzVGREYxNjM1 MjFBNC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvVW9RRUl0QzNLNm1TZmVEX2MxTmYzeFkxSWFRLmNlcjBuBggrBgEF BQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM5LzMx MzAzMzJlMzIzMDMxMmUzMTMyMzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM3 MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAmfJgDANBgkqhkiG9w0BAQsFAAOCAQEAGWUYmBvXaV2k kK/Aj54a6kYvxpzFDGQWsH53WfV9hRHXEbjYoZ0cT07OLTPRx/HsWYHvqaQoJthC F9Fbvost0Q4nI60/+zyO3tz2zqjGrIk11nMVNmya+EETyJ/YQXvSesp1x/KyMFTp Yt+KU0x0wKuD5wffm7F6zZkkcb5G0Jx4tsi/ku6nYiFg8udTIxwxLURHkw0jiuaH KGUKwCZjTgL2n9SvsgWen98PguemicCOmIxBg8EIZRMKMlNexa2WfOrnoWLSKQml f1owsUpsHdXMWAdWN9j1eF0cMShgROWM2m3O3q/4v47imdw2mU+1yT2y5fqDVhpQ bnIGQzwDug== -----END CERTIFICATE-----Generated at Sun May 5 18:33:23 2024 by rpki-client on console-fra.rpki-client.org