$ rpki-client -vvf 0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa File: 3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa (raw, json) Hash identifier: VK+1PkzwyeXN4xqImo+Tr2IjEWBWDU/5IXHMPJC3qlA= Subject key identifier: DF:F6:7B:EE:B4:C2:39:47:C2:85:F7:24:55:AE:77:C4:29:30:88:4C Certificate issuer: /CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Certificate serial: 19F8F363D887188C8C7CBB83CC8C8849AAF305A3 Authority key identifier: 81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject info access: rsync://0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa Signing time: Fri 25 Jul 2025 10:52:39 +0000 ROA not before: Fri 25 Jul 2025 10:47:39 +0000 ROA not after: Fri 24 Jul 2026 10:52:39 +0000 asID: 24242 IP address blocks: 103.136.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 18:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f8:f3:63:d8:87:18:8c:8c:7c:bb:83:cc:8c:88:49:aa:f3:05:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B5E0000, serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Validity Not Before: Jul 25 10:47:39 2025 GMT Not After : Jul 24 10:52:39 2026 GMT Subject: CN=DFF67BEEB4C23947C285F72455AE77C42930884C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:99:a9:18:d0:26:0a:9c:f9:11:44:29:8e:0e: 11:dc:a5:f0:b0:31:55:b0:ab:1e:bb:ce:fe:83:ea: 96:ba:85:02:d4:c6:fd:9d:c9:00:e1:e8:c2:db:de: 69:f3:70:b3:5a:51:5e:01:67:14:64:54:65:d9:86: f6:48:e5:3a:d0:77:21:34:0c:fc:3d:a3:94:8e:53: a9:b8:e8:e8:d4:97:cc:7d:3d:96:1b:2f:d0:73:82: ac:28:21:98:22:0e:4f:4d:5e:f4:09:99:db:1b:eb: a6:93:77:c5:c8:a4:2e:f7:e8:48:cf:e8:4f:73:ec: 31:74:1d:3a:23:87:0f:af:3c:a1:d5:1d:35:fd:fe: 0b:55:cf:cd:02:8b:11:13:0a:7e:16:b2:83:e7:83: 93:b5:5e:fd:a1:a5:70:21:50:84:63:08:0c:81:7a: 2e:b2:27:9d:ae:56:52:a3:ca:8b:71:f5:44:25:72: 36:ad:e8:30:d8:fc:79:37:d4:00:6b:5c:c2:1b:bc: 46:dc:8c:38:7a:8d:35:87:7f:5e:4c:fd:29:e2:cb: 0a:dc:2f:8b:9f:4f:74:cb:a7:fe:03:f9:9b:85:3a: 84:99:c2:65:9a:65:55:c3:fe:75:b6:e1:e4:2e:e0: c4:40:65:26:f0:db:bc:5e:89:68:a5:95:9c:45:3d: 6d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:F6:7B:EE:B4:C2:39:47:C2:85:F7:24:55:AE:77:C4:29:30:88:4C X509v3 Authority Key Identifier: keyid:81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.144.0/22 Signature Algorithm: sha256WithRSAEncryption 97:60:db:35:45:c2:d5:fa:14:e4:8c:6c:5d:ef:6d:13:67:a4: a0:cd:3a:47:32:ce:91:3a:9e:aa:87:13:5c:c1:8d:a1:06:3a: 22:7a:31:82:39:d3:3f:39:4f:3d:80:4c:8f:33:6e:03:ca:c8: 05:dc:f4:ff:41:0a:66:86:bc:49:3b:c3:c6:99:d3:44:c1:84: 9b:6e:f4:46:11:50:0a:21:55:c1:3b:98:41:80:01:6b:fd:41: 65:27:22:91:ce:38:c4:b0:ac:5f:a9:66:58:5a:8e:82:3d:9e: 5a:15:9e:58:91:4e:14:a6:02:d6:47:33:75:05:14:06:a8:60: 04:06:db:17:6c:8c:d3:c3:9c:76:bc:1e:00:7d:01:47:4b:7f: da:06:a3:b0:cb:23:4e:ec:5f:0b:1f:2a:b1:4a:97:fc:23:30: b5:74:ac:90:53:dc:dc:eb:fa:fd:52:0a:88:30:31:7f:db:41: f0:5f:fb:c0:75:b6:ea:02:09:a3:9e:f5:fc:20:10:86:27:6f: 3b:ae:bf:79:09:06:ef:d3:2b:de:30:c3:f8:0f:8a:20:dd:94: 24:be:9d:5a:67:4e:c4:b0:ac:aa:dc:52:8e:33:57:ac:22:a6: f0:a6:f4:8c:ad:a2:c3:64:59:16:61:a0:df:c7:b7:cf:9f:23: 42:6d:7c:c6 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUGfjzY9iHGIyMfLuDzIyISarzBaMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjRCNUUwMDAwMTEwLwYDVQQFEyg4MUMyOTRENEIz NjVEQzQxNzJCNUEyMUI2N0YwNUIyMEQ2Qjg3QTYyMB4XDTI1MDcyNTEwNDczOVoX DTI2MDcyNDEwNTIzOVowMzExMC8GA1UEAxMoREZGNjdCRUVCNEMyMzk0N0MyODVG NzI0NTVBRTc3QzQyOTMwODg0QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKyZqRjQJgqc+RFEKY4OEdyl8LAxVbCrHrvO/oPqlrqFAtTG/Z3JAOHowtve afNws1pRXgFnFGRUZdmG9kjlOtB3ITQM/D2jlI5Tqbjo6NSXzH09lhsv0HOCrCgh mCIOT01e9AmZ2xvrppN3xcikLvfoSM/oT3PsMXQdOiOHD688odUdNf3+C1XPzQKL ERMKfhayg+eDk7Ve/aGlcCFQhGMIDIF6LrInna5WUqPKi3H1RCVyNq3oMNj8eTfU AGtcwhu8RtyMOHqNNYd/Xkz9KeLLCtwvi59PdMun/gP5m4U6hJnCZZplVcP+dbbh 5C7gxEBlJvDbvF6JaKWVnEU9bWMCAwEAAaOCAdgwggHUMB0GA1UdDgQWBBTf9nvu tMI5R8KF9yRVrnfEKTCITDAfBgNVHSMEGDAWgBSBwpTUs2XcQXK1ohtn8Fsg1rh6 YjAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzEvODFDMjk0RDRCMzY1REM0MTcyQjVBMjFCNjdGMDVCMjBENkI4 N0E2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvZ2NLVTFMTmwzRUZ5dGFJYlpfQmJJTmE0ZW1JLmNlcjBwBggrBgEF BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vMC5zYi9yZXBvL3NiLzMxLzMx MzAzMzJlMzEzMzM2MmUzMTM0MzQyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM0 MzIzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCZ4iQMA0GCSqGSIb3DQEBCwUAA4IBAQCXYNs1RcLV +hTkjGxd720TZ6SgzTpHMs6ROp6qhxNcwY2hBjoiejGCOdM/OU89gEyPM24DysgF 3PT/QQpmhrxJO8PGmdNEwYSbbvRGEVAKIVXBO5hBgAFr/UFlJyKRzjjEsKxfqWZY Wo6CPZ5aFZ5YkU4UpgLWRzN1BRQGqGAEBtsXbIzTw5x2vB4AfQFHS3/aBqOwyyNO 7F8LHyqxSpf8IzC1dKyQU9zc6/r9UgqIMDF/20HwX/vAdbbqAgmjnvX8IBCGJ287 rr95CQbv0yveMMP4D4og3ZQkvp1aZ07EsKyq3FKOM1esIqbwpvSMraLDZFkWYaDf x7fPnyNCbXzG -----END CERTIFICATE-----Generated at Wed Nov 5 12:13:26 2025 by rpki-client