$ rpki-client -vvf 0.sb/repo/sb/39/323430333a616338303a3a2f33322d3438203d3e2034373835.roa File: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (raw, json) Hash identifier: BUjmBR/7/W8FFys4b4r81Mr71NR1+iN9V0dYwFmv7Kc= Subject key identifier: E3:75:85:54:46:A4:27:FF:5F:BF:E5:AB:9A:A2:A0:70:DC:69:E8:AD Certificate issuer: /CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Certificate serial: 7D988749E4E3B181ED78DF402108B27088526959 Authority key identifier: 52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject info access: rsync://0.sb/repo/sb/39/323430333a616338303a3a2f33322d3438203d3e2034373835.roa Signing time: Thu 12 Oct 2023 13:27:56 +0000 ROA not before: Thu 12 Oct 2023 13:22:56 +0000 ROA not after: Thu 10 Oct 2024 13:27:56 +0000 asID: 4785 IP address blocks: 2403:ac80::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 20:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:98:87:49:e4:e3:b1:81:ed:78:df:40:21:08:b2:70:88:52:69:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Validity Not Before: Oct 12 13:22:56 2023 GMT Not After : Oct 10 13:27:56 2024 GMT Subject: CN=E375855446A427FF5FBFE5AB9AA2A070DC69E8AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b9:8c:ac:26:fa:ff:1b:c3:1f:31:44:f5:a1: e2:21:b2:53:fa:5c:3c:68:4d:82:8d:cd:04:cb:5e: 42:04:6e:4a:0c:ec:58:ae:56:38:d6:42:e3:49:20: 3f:e2:f7:06:6c:84:ad:74:6f:19:aa:2d:b5:3c:35: 73:2a:2a:6d:10:83:00:b3:fc:59:41:0b:21:d5:32: 0e:a1:8f:3b:02:2f:20:28:f9:2b:02:65:54:b1:54: 86:d3:5c:81:3b:9b:dc:23:67:29:f8:44:41:7e:29: 07:87:2c:ab:52:3d:f2:a5:ee:5b:51:e4:8f:28:19: f7:e1:57:d0:12:1c:b8:1f:af:53:4f:cc:41:97:f2: 7b:ff:c7:1b:f7:4f:e7:f0:a7:78:33:87:8a:f9:12: 6e:83:94:1a:47:f3:51:ba:07:83:21:27:44:da:3a: 4a:20:d5:77:35:64:fe:b2:92:00:fc:8f:c8:54:1a: 08:78:19:d6:44:d3:03:5e:bf:d4:05:72:0f:08:83: 49:df:e8:d3:33:74:9f:bd:b6:89:f0:3f:e9:53:ac: 1e:df:57:ba:84:ad:5b:cc:f9:5c:23:58:70:d8:dc: ca:37:1d:d0:97:67:0f:c0:23:80:00:9a:b5:83:3d: 37:b4:71:0c:73:88:d9:49:7a:ff:62:a1:14:8e:18: 37:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:75:85:54:46:A4:27:FF:5F:BF:E5:AB:9A:A2:A0:70:DC:69:E8:AD X509v3 Authority Key Identifier: keyid:52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/39/323430333a616338303a3a2f33322d3438203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:ac80::/32 Signature Algorithm: sha256WithRSAEncryption 96:5c:09:97:dc:2e:2a:dc:ab:dd:88:c6:18:ae:94:a7:89:e7: de:a3:08:d4:4c:30:5c:85:43:bf:97:21:cf:82:e1:c3:ee:8f: 88:d8:2c:2f:c6:4b:7d:60:b5:56:4c:a4:d4:f8:90:86:66:36: 30:28:0a:5e:93:2f:2a:23:90:d8:e7:1d:7a:11:a4:5a:4a:50: a2:ab:4e:08:1a:7c:b4:20:64:79:c0:10:b5:41:60:7a:ea:cd: 5a:88:0f:f3:66:03:53:32:e2:9f:e2:b1:ca:83:5c:55:85:30: 5a:63:07:08:cc:94:a8:3c:bb:60:36:1b:12:5b:25:c4:68:2e: 88:8a:9c:1f:a1:41:8d:7a:15:57:3b:a2:b9:88:7e:ae:c4:9f: 60:26:52:4d:42:ed:e1:93:43:8c:82:a1:f0:6b:fb:ce:5a:6e: de:a4:0a:ae:5d:45:25:f5:00:b2:d8:22:d0:f2:0e:49:00:d0: 9c:fb:6c:bd:26:36:5d:09:ac:aa:91:09:a9:2d:cb:cb:e5:ce: 85:a3:ba:09:88:d9:a3:b8:89:55:ce:38:55:fd:00:ef:29:47: 6d:a5:10:65:27:b5:48:f5:70:e5:85:e5:97:f2:9a:3d:2e:81: be:7b:60:cd:cb:16:dd:ee:ef:97:74:94:a5:3c:6b:27:32:b4: e9:01:25:8e -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUfZiHSeTjsYHteN9AIQiycIhSaVkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1Mjg0MDQyMkQw QjcyQkE5OTI3REUwRkY3MzUzNUZERjE2MzUyMUE0MB4XDTIzMTAxMjEzMjI1NloX DTI0MTAxMDEzMjc1NlowMzExMC8GA1UEAxMoRTM3NTg1NTQ0NkE0MjdGRjVGQkZF NUFCOUFBMkEwNzBEQzY5RThBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALW5jKwm+v8bwx8xRPWh4iGyU/pcPGhNgo3NBMteQgRuSgzsWK5WONZC40kg P+L3BmyErXRvGaottTw1cyoqbRCDALP8WUELIdUyDqGPOwIvICj5KwJlVLFUhtNc gTub3CNnKfhEQX4pB4csq1I98qXuW1HkjygZ9+FX0BIcuB+vU0/MQZfye//HG/dP 5/CneDOHivkSboOUGkfzUboHgyEnRNo6SiDVdzVk/rKSAPyPyFQaCHgZ1kTTA16/ 1AVyDwiDSd/o0zN0n722ifA/6VOsHt9XuoStW8z5XCNYcNjcyjcd0JdnD8AjgACa tYM9N7RxDHOI2Ul6/2KhFI4YN9sCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTjdYVU RqQn/1+/5auaoqBw3GnorTAfBgNVHSMEGDAWgBRShAQi0LcrqZJ94P9zU1/fFjUh pDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzkvNTI4NDA0MjJEMEI3MkJBOTkyN0RFMEZGNzM1MzVGREYxNjM1 MjFBNC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvVW9RRUl0QzNLNm1TZmVEX2MxTmYzeFkxSWFRLmNlcjBqBggrBgEF BQcBCwReMFwwWgYIKwYBBQUHMAuGTnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM5LzMy MzQzMDMzM2E2MTYzMzgzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDM0MzczODM1 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEw DzANBAIAAjAHAwUAJAOsgDANBgkqhkiG9w0BAQsFAAOCAQEAllwJl9wuKtyr3YjG GK6Up4nn3qMI1EwwXIVDv5chz4Lhw+6PiNgsL8ZLfWC1Vkyk1PiQhmY2MCgKXpMv KiOQ2OcdehGkWkpQoqtOCBp8tCBkecAQtUFgeurNWogP82YDUzLin+KxyoNcVYUw WmMHCMyUqDy7YDYbElslxGguiIqcH6FBjXoVVzuiuYh+rsSfYCZSTULt4ZNDjIKh 8Gv7zlpu3qQKrl1FJfUAstgi0PIOSQDQnPtsvSY2XQmsqpEJqS3Ly+XOhaO6CYjZ o7iJVc44Vf0A7ylHbaUQZSe1SPVw5YXll/KaPS6BvntgzcsW3e7vl3SUpTxrJzK0 6QEljg== -----END CERTIFICATE-----Generated at Sun May 5 18:01:01 2024 by rpki-client on console-ams.rpki-client.org