$ rpki-client -vvf 0.sb/repo/sb/39/3230322e352e3232302e302f32322d3234203d3e2034373835.roa File: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (raw, json) Hash identifier: uqSnngrGzTZiBUYlKaqToTPF7fFslTgxeJJgiCqsN6M= Subject key identifier: 36:6E:F3:E4:25:EC:CA:1E:47:9E:95:DF:1A:AF:A1:59:D0:BC:49:F9 Certificate issuer: /CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Certificate serial: 195AB5C23D31F6D09065619D4DA0BDFB8B9C9DF8 Authority key identifier: 52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject info access: rsync://0.sb/repo/sb/39/3230322e352e3232302e302f32322d3234203d3e2034373835.roa Signing time: Thu 12 Sep 2024 13:50:17 +0000 ROA not before: Thu 12 Sep 2024 13:45:17 +0000 ROA not after: Thu 11 Sep 2025 13:50:17 +0000 asID: 4785 IP address blocks: 202.5.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 08:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:5a:b5:c2:3d:31:f6:d0:90:65:61:9d:4d:a0:bd:fb:8b:9c:9d:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Validity Not Before: Sep 12 13:45:17 2024 GMT Not After : Sep 11 13:50:17 2025 GMT Subject: CN=366EF3E425ECCA1E479E95DF1AAFA159D0BC49F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a1:2a:32:1a:57:2b:d6:39:10:44:77:80:62: d3:18:ff:f6:2e:1f:55:cf:b3:90:03:30:1b:dd:86: 7f:ab:95:dc:20:60:bc:18:38:71:57:72:d8:1d:d9: cd:9e:9b:db:14:b7:34:b2:59:8d:38:e1:2c:97:3e: 96:df:0d:58:9f:61:cf:57:e0:94:35:81:0c:6f:19: c9:dc:43:62:2c:3a:df:52:f6:87:64:29:0a:36:67: 2f:66:38:96:2a:b9:34:6f:36:c5:17:7c:00:05:da: 21:6b:e7:6c:92:31:be:d7:d9:a6:35:c9:ae:db:00: 72:ab:e1:79:2b:69:5a:48:b3:d2:0a:81:95:65:e8: 45:6e:3c:d6:e8:13:64:6b:f7:ca:51:5c:13:70:b4: 51:1e:3e:09:ef:6f:d9:81:1e:4c:07:a8:59:9b:b9: d4:56:12:ad:ef:fa:d5:a8:74:be:d5:2c:88:06:98: c5:15:21:2c:cd:ac:f4:a2:7b:28:16:59:d8:32:17: 82:03:de:67:e5:7d:8e:8c:1d:c7:64:68:c1:45:b4: 82:6f:47:c7:99:b5:bc:88:b0:f6:ac:14:33:a5:26: c5:40:9b:aa:1c:0a:12:e5:fc:46:2a:5a:27:75:53: c4:cc:5b:45:b5:85:44:03:19:d9:2d:14:c5:23:f9: 62:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:6E:F3:E4:25:EC:CA:1E:47:9E:95:DF:1A:AF:A1:59:D0:BC:49:F9 X509v3 Authority Key Identifier: keyid:52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/39/3230322e352e3232302e302f32322d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.220.0/22 Signature Algorithm: sha256WithRSAEncryption 47:a7:f2:d0:3d:6d:e6:35:32:fd:3f:30:e9:98:1c:50:bb:04: 61:b3:89:48:99:80:2e:27:c6:3d:d3:0c:73:76:5b:41:00:30: 25:4e:a9:a2:2d:54:0a:7e:16:e5:75:03:7c:51:85:49:88:10: 76:2b:45:f2:99:7b:f8:49:da:99:1d:2b:b3:e7:13:c7:bc:e4: 20:bf:56:7d:da:2a:ff:d3:46:41:49:8b:5b:1b:b0:42:59:13: d1:52:94:d4:52:e1:15:0a:a2:12:1e:5d:c1:36:79:dc:d9:50: 13:c4:4a:40:7c:b1:e1:b5:e0:5a:d9:aa:9f:c5:8d:45:2b:47: cd:c9:bb:f0:ed:86:69:24:cc:38:cf:f6:5b:d2:aa:3e:13:b7: 9c:23:06:4b:7e:a0:55:c6:f7:22:b3:0a:5c:31:c7:6c:8d:d8: 4e:e2:4c:d2:d7:af:81:83:51:93:ca:ed:ef:83:49:81:7c:9c: fe:79:38:65:45:2c:93:5c:5d:8f:ea:4d:32:dd:c1:3a:1a:4b: 98:99:3f:67:42:2c:65:93:fc:47:8d:2e:ba:bc:57:ca:6a:16: e2:6b:fb:f8:df:91:b7:b1:00:b3:67:63:da:a0:4c:a9:42:91: c5:cb:de:30:aa:9e:cf:0a:ac:d7:f6:17:9a:b3:6d:8d:2b:c3: f3:29:06:e7 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUGVq1wj0x9tCQZWGdTaC9+4ucnfgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1Mjg0MDQyMkQw QjcyQkE5OTI3REUwRkY3MzUzNUZERjE2MzUyMUE0MB4XDTI0MDkxMjEzNDUxN1oX DTI1MDkxMTEzNTAxN1owMzExMC8GA1UEAxMoMzY2RUYzRTQyNUVDQ0ExRTQ3OUU5 NURGMUFBRkExNTlEMEJDNDlGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANKhKjIaVyvWORBEd4Bi0xj/9i4fVc+zkAMwG92Gf6uV3CBgvBg4cVdy2B3Z zZ6b2xS3NLJZjTjhLJc+lt8NWJ9hz1fglDWBDG8ZydxDYiw631L2h2QpCjZnL2Y4 liq5NG82xRd8AAXaIWvnbJIxvtfZpjXJrtsAcqvheStpWkiz0gqBlWXoRW481ugT ZGv3ylFcE3C0UR4+Ce9v2YEeTAeoWZu51FYSre/61ah0vtUsiAaYxRUhLM2s9KJ7 KBZZ2DIXggPeZ+V9jowdx2RowUW0gm9Hx5m1vIiw9qwUM6UmxUCbqhwKEuX8Ripa J3VTxMxbRbWFRAMZ2S0UxSP5Yi8CAwEAAaOCAdIwggHOMB0GA1UdDgQWBBQ2bvPk JezKHkeeld8ar6FZ0LxJ+TAfBgNVHSMEGDAWgBRShAQi0LcrqZJ94P9zU1/fFjUh pDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzkvNTI4NDA0MjJEMEI3MkJBOTkyN0RFMEZGNzM1MzVGREYxNjM1 MjFBNC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvVW9RRUl0QzNLNm1TZmVEX2MxTmYzeFkxSWFRLmNlcjBqBggrBgEF BQcBCwReMFwwWgYIKwYBBQUHMAuGTnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM5LzMy MzAzMjJlMzUyZTMyMzIzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM0MzczODM1 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQCygXcMA0GCSqGSIb3DQEBCwUAA4IBAQBHp/LQPW3mNTL9PzDp mBxQuwRhs4lImYAuJ8Y90wxzdltBADAlTqmiLVQKfhbldQN8UYVJiBB2K0XymXv4 SdqZHSuz5xPHvOQgv1Z92ir/00ZBSYtbG7BCWRPRUpTUUuEVCqISHl3BNnnc2VAT xEpAfLHhteBa2aqfxY1FK0fNybvw7YZpJMw4z/Zb0qo+E7ecIwZLfqBVxvciswpc McdsjdhO4kzS16+Bg1GTyu3vg0mBfJz+eThlRSyTXF2P6k0y3cE6GkuYmT9nQixl k/xHjS66vFfKahbia/v435G3sQCzZ2PaoEypQpHFy94wqp7PCqzX9heas22NK8Pz KQbn -----END CERTIFICATE-----Generated at Fri Nov 22 09:29:41 2024 by rpki-client on console-fra.rpki-client.org