$ rpki-client -vvf 0.sb/repo/sb/39/3230322e352e3232302e302f32322d3234203d3e2034373835.roa File: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (raw, json) Hash identifier: YD4xtTrr4+u4JmWLsAgfashGmE3L/IkuxepjHpDW78c= Subject key identifier: BB:E8:46:29:90:5F:E1:39:8A:9E:24:1B:B1:D3:30:07:3B:52:1C:D0 Certificate issuer: /CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Certificate serial: 0A58B8D6538FC64F568D50E463D0CB89C23F60B1 Authority key identifier: 52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject info access: rsync://0.sb/repo/sb/39/3230322e352e3232302e302f32322d3234203d3e2034373835.roa Signing time: Thu 12 Oct 2023 13:27:56 +0000 ROA not before: Thu 12 Oct 2023 13:22:56 +0000 ROA not after: Thu 10 Oct 2024 13:27:56 +0000 asID: 4785 IP address blocks: 202.5.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 20:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:58:b8:d6:53:8f:c6:4f:56:8d:50:e4:63:d0:cb:89:c2:3f:60:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Validity Not Before: Oct 12 13:22:56 2023 GMT Not After : Oct 10 13:27:56 2024 GMT Subject: CN=BBE84629905FE1398A9E241BB1D330073B521CD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:12:3b:c1:c4:ab:25:3f:56:59:af:71:b2:2d: 91:82:8a:a4:52:2b:99:f9:13:61:81:c4:63:bc:2a: 4f:ee:fa:18:22:5f:16:e0:f4:ee:09:37:3b:1e:45: ca:e3:3f:a8:5f:9d:b2:5a:fc:44:90:ad:c8:8f:11: c8:b9:cc:b5:67:f8:ec:ca:f4:d9:a7:6f:53:0d:d0: 54:f7:dd:b2:ab:b6:59:07:39:e0:75:b1:d2:90:ec: f2:e5:a6:7b:74:01:9b:23:7a:54:7a:7c:f1:c6:ac: 29:78:d4:c4:be:7d:e3:db:d5:c1:81:52:c1:4c:5c: 56:09:0d:65:f1:89:c9:56:ec:59:6e:c4:d0:d7:2c: 8b:3f:50:6f:60:f8:0d:f9:9d:cd:45:f5:8a:35:b8: 60:41:8d:3c:0d:65:8f:33:2c:1f:b3:cc:52:99:8d: bb:c0:73:1a:75:da:a9:18:d8:c2:94:d7:b7:d3:98: ad:2f:03:fe:64:a4:9d:41:ae:03:f6:a1:79:fc:ca: 32:27:2c:82:7b:c3:b2:25:97:ae:68:fb:8e:36:50: 7e:63:34:bf:27:fb:92:2e:55:28:2c:3a:95:32:b1: 8b:02:e2:15:94:be:a4:1e:96:7a:a1:c6:e7:8a:e2: 4e:b6:83:36:c5:3a:c9:60:c6:56:a0:62:5e:29:65: 74:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:E8:46:29:90:5F:E1:39:8A:9E:24:1B:B1:D3:30:07:3B:52:1C:D0 X509v3 Authority Key Identifier: keyid:52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/39/3230322e352e3232302e302f32322d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.220.0/22 Signature Algorithm: sha256WithRSAEncryption 01:c8:bc:0c:13:a3:78:43:27:34:66:2a:0d:b1:9c:e3:d6:c1: 0d:d9:d2:f2:f8:b0:95:ed:00:88:cb:1c:0d:37:34:2d:c5:ac: 47:db:e0:c2:e3:7b:c0:0e:f5:c0:b7:8d:39:2b:14:47:8f:ca: ea:7f:86:99:80:64:39:47:5a:da:c3:93:71:39:1d:a1:19:ed: 98:19:87:08:ee:00:90:f2:70:d4:8a:a9:2e:75:0c:6f:db:a1: 17:2e:17:d0:39:b0:da:3f:24:98:a6:a2:c3:fc:62:68:e7:b1: 15:dc:45:d4:b6:1f:61:bb:cb:61:9f:73:77:df:30:1d:0a:b2: 62:e9:03:39:a0:d0:7f:3f:a8:7c:49:8a:b6:1d:4d:4d:7d:2d: d7:bf:2c:d6:04:de:42:b0:7b:20:be:35:e0:e0:9f:ae:1a:5a: 01:16:8a:e1:2d:5c:f2:c1:89:27:ff:b5:a4:79:9e:cf:f9:e9: a9:f3:ca:2c:2c:f3:b1:1b:b3:01:55:80:0c:ce:f2:10:e5:0e: e9:35:b3:02:dc:67:0c:9b:b6:b2:35:c4:28:90:ff:5a:96:65: 6d:e5:77:a5:28:aa:b9:03:27:48:97:24:a3:b1:a2:10:50:66: 79:5a:e8:d8:6b:74:18:f6:3d:90:00:95:64:b6:96:1d:ea:ed: 89:e6:36:40 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUCli41lOPxk9WjVDkY9DLicI/YLEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1Mjg0MDQyMkQw QjcyQkE5OTI3REUwRkY3MzUzNUZERjE2MzUyMUE0MB4XDTIzMTAxMjEzMjI1NloX DTI0MTAxMDEzMjc1NlowMzExMC8GA1UEAxMoQkJFODQ2Mjk5MDVGRTEzOThBOUUy NDFCQjFEMzMwMDczQjUyMUNEMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN0SO8HEqyU/VlmvcbItkYKKpFIrmfkTYYHEY7wqT+76GCJfFuD07gk3Ox5F yuM/qF+dslr8RJCtyI8RyLnMtWf47Mr02advUw3QVPfdsqu2WQc54HWx0pDs8uWm e3QBmyN6VHp88casKXjUxL5949vVwYFSwUxcVgkNZfGJyVbsWW7E0Ncsiz9Qb2D4 DfmdzUX1ijW4YEGNPA1ljzMsH7PMUpmNu8BzGnXaqRjYwpTXt9OYrS8D/mSknUGu A/ahefzKMicsgnvDsiWXrmj7jjZQfmM0vyf7ki5VKCw6lTKxiwLiFZS+pB6WeqHG 54riTraDNsU6yWDGVqBiXilldF0CAwEAAaOCAdIwggHOMB0GA1UdDgQWBBS76EYp kF/hOYqeJBux0zAHO1Ic0DAfBgNVHSMEGDAWgBRShAQi0LcrqZJ94P9zU1/fFjUh pDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzkvNTI4NDA0MjJEMEI3MkJBOTkyN0RFMEZGNzM1MzVGREYxNjM1 MjFBNC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvVW9RRUl0QzNLNm1TZmVEX2MxTmYzeFkxSWFRLmNlcjBqBggrBgEF BQcBCwReMFwwWgYIKwYBBQUHMAuGTnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM5LzMy MzAzMjJlMzUyZTMyMzIzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM0MzczODM1 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQCygXcMA0GCSqGSIb3DQEBCwUAA4IBAQAByLwME6N4Qyc0ZioN sZzj1sEN2dLy+LCV7QCIyxwNNzQtxaxH2+DC43vADvXAt405KxRHj8rqf4aZgGQ5 R1raw5NxOR2hGe2YGYcI7gCQ8nDUiqkudQxv26EXLhfQObDaPySYpqLD/GJo57EV 3EXUth9hu8thn3N33zAdCrJi6QM5oNB/P6h8SYq2HU1NfS3XvyzWBN5CsHsgvjXg 4J+uGloBForhLVzywYkn/7WkeZ7P+emp88osLPOxG7MBVYAMzvIQ5Q7pNbMC3GcM m7ayNcQokP9almVt5XelKKq5AydIlySjsaIQUGZ5WujYa3QY9j2QAJVktpYd6u2J 5jZA -----END CERTIFICATE-----Generated at Sun May 5 18:33:23 2024 by rpki-client on console-fra.rpki-client.org