$ rpki-client -vvf 0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e203233383538.roa File: 3130332e3133362e3134342e302f32322d3234203d3e203233383538.roa (raw, json) Hash identifier: DQII1h1Gi3iFOiUi36+PXQNA+JX1w97CCXesklVyF+0= Subject key identifier: BC:E8:ED:3A:73:7D:05:F7:52:A1:76:02:DA:4E:BE:33:A5:31:CD:39 Certificate issuer: /CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Certificate serial: 33DD6383AADC11B191297A9A635826CF0774F2C9 Authority key identifier: 81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject info access: rsync://0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e203233383538.roa Signing time: Fri 25 Jul 2025 10:52:39 +0000 ROA not before: Fri 25 Jul 2025 10:47:39 +0000 ROA not after: Fri 24 Jul 2026 10:52:39 +0000 asID: 23858 IP address blocks: 103.136.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 08:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:dd:63:83:aa:dc:11:b1:91:29:7a:9a:63:58:26:cf:07:74:f2:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B5E0000, serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Validity Not Before: Jul 25 10:47:39 2025 GMT Not After : Jul 24 10:52:39 2026 GMT Subject: CN=BCE8ED3A737D05F752A17602DA4EBE33A531CD39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c8:af:aa:c7:f1:fb:a7:8f:23:67:b2:2a:c6: 20:7f:08:7b:e6:1e:f5:88:d9:e3:cf:7a:bc:f0:c3: 5b:44:08:af:c4:c4:5d:39:11:7c:a4:bb:86:0b:14: 3f:90:f0:67:64:52:f7:80:b5:b9:86:6d:46:fa:f7: 69:74:47:11:f8:4b:cc:b3:ec:63:df:b6:0d:b6:59: e7:58:1b:d8:4d:92:12:dc:a4:ec:4f:29:9d:86:93: ec:71:37:1a:c8:a1:0b:e7:aa:e7:2b:2b:f6:d1:52: e5:ac:97:c0:72:e5:d2:79:c4:ec:9f:6b:86:e1:49: ac:1f:bd:9c:fd:30:93:5e:46:4c:9b:12:6a:64:2a: 6f:0e:6d:14:54:fc:4c:1d:6a:f9:63:98:45:c7:18: 2f:39:e3:ec:1d:1e:98:1f:e6:10:72:0d:be:87:ed: a8:89:cd:40:5d:2d:1b:f1:8d:6f:fd:68:03:9d:f1: f8:3f:1b:25:11:fc:25:78:1e:78:98:2b:25:ae:f5: 21:73:3b:de:e4:64:e2:26:29:80:f8:c2:c5:5b:2b: 66:1a:0a:96:c6:26:29:39:7c:c8:b8:d6:5e:af:7f: 2d:87:3c:e8:5f:19:5a:02:e1:7f:fd:eb:ae:3a:2a: b5:f3:db:7a:6b:ba:c1:0b:09:f8:41:27:93:21:75: a7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E8:ED:3A:73:7D:05:F7:52:A1:76:02:DA:4E:BE:33:A5:31:CD:39 X509v3 Authority Key Identifier: keyid:81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e203233383538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.144.0/22 Signature Algorithm: sha256WithRSAEncryption a5:28:44:6d:fe:d5:74:40:79:45:1c:f5:29:1d:6c:1f:24:fd: bd:de:4a:38:fe:0d:31:12:5e:ff:03:ca:39:7c:75:77:c9:25: f4:4c:6c:97:2e:b8:a4:bd:31:66:d3:16:e3:8d:eb:ee:b1:3e: 4b:9f:0e:86:d1:f8:ce:50:be:a8:b5:7f:5e:7e:05:1b:fe:fd: 82:f3:d3:e9:94:8b:d3:a0:7e:ce:23:e0:66:98:f1:e5:3b:6a: 99:be:62:c7:c9:ed:d6:88:b1:4d:7d:fd:61:d2:59:11:2e:1c: bd:f1:31:aa:4f:37:a5:df:0a:24:cc:c4:e9:63:dc:7e:94:ef: 47:87:01:1c:f4:2a:46:00:3a:d4:97:b5:fe:e1:45:87:db:4c: 6c:aa:bd:91:04:db:7a:5b:a7:ed:ac:99:56:4d:87:1f:92:a9: ea:ea:0b:55:d3:83:4f:5a:45:17:51:b5:62:84:d3:e9:8f:8e: 68:cf:2f:a2:3b:ed:18:70:03:db:fa:94:63:16:d3:4a:2f:37: c6:9b:22:e6:bd:b9:5b:c6:0d:ca:c3:d3:2a:0c:de:30:1b:ce: cc:9a:b3:cc:54:71:b1:5a:4c:ef:2d:13:48:5f:b8:fe:da:69: ba:cb:c1:08:4c:97:03:a1:c4:08:18:24:42:c8:e4:0d:7b:89: dc:51:09:e4 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUM91jg6rcEbGRKXqaY1gmzwd08skwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjRCNUUwMDAwMTEwLwYDVQQFEyg4MUMyOTRENEIz NjVEQzQxNzJCNUEyMUI2N0YwNUIyMEQ2Qjg3QTYyMB4XDTI1MDcyNTEwNDczOVoX DTI2MDcyNDEwNTIzOVowMzExMC8GA1UEAxMoQkNFOEVEM0E3MzdEMDVGNzUyQTE3 NjAyREE0RUJFMzNBNTMxQ0QzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKLIr6rH8funjyNnsirGIH8Ie+Ye9YjZ4896vPDDW0QIr8TEXTkRfKS7hgsU P5DwZ2RS94C1uYZtRvr3aXRHEfhLzLPsY9+2DbZZ51gb2E2SEtyk7E8pnYaT7HE3 GsihC+eq5ysr9tFS5ayXwHLl0nnE7J9rhuFJrB+9nP0wk15GTJsSamQqbw5tFFT8 TB1q+WOYRccYLznj7B0emB/mEHINvoftqInNQF0tG/GNb/1oA53x+D8bJRH8JXge eJgrJa71IXM73uRk4iYpgPjCxVsrZhoKlsYmKTl8yLjWXq9/LYc86F8ZWgLhf/3r rjoqtfPbemu6wQsJ+EEnkyF1p/0CAwEAAaOCAdgwggHUMB0GA1UdDgQWBBS86O06 c30F91KhdgLaTr4zpTHNOTAfBgNVHSMEGDAWgBSBwpTUs2XcQXK1ohtn8Fsg1rh6 YjAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzEvODFDMjk0RDRCMzY1REM0MTcyQjVBMjFCNjdGMDVCMjBENkI4 N0E2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvZ2NLVTFMTmwzRUZ5dGFJYlpfQmJJTmE0ZW1JLmNlcjBwBggrBgEF BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vMC5zYi9yZXBvL3NiLzMxLzMx MzAzMzJlMzEzMzM2MmUzMTM0MzQyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjMz MzgzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCZ4iQMA0GCSqGSIb3DQEBCwUAA4IBAQClKERt/tV0 QHlFHPUpHWwfJP293ko4/g0xEl7/A8o5fHV3ySX0TGyXLrikvTFm0xbjjevusT5L nw6G0fjOUL6otX9efgUb/v2C89PplIvToH7OI+BmmPHlO2qZvmLHye3WiLFNff1h 0lkRLhy98TGqTzel3wokzMTpY9x+lO9HhwEc9CpGADrUl7X+4UWH20xsqr2RBNt6 W6ftrJlWTYcfkqnq6gtV04NPWkUXUbVihNPpj45ozy+iO+0YcAPb+pRjFtNKLzfG myLmvblbxg3Kw9MqDN4wG87MmrPMVHGxWkzvLRNIX7j+2mm6y8EITJcDocQIGCRC yOQNe4ncUQnk -----END CERTIFICATE-----Generated at Thu Aug 7 11:09:55 2025 by rpki-client