$ rpki-client -vvf 0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e2038383838.roa File: 3130332e3133362e3134342e302f32322d3234203d3e2038383838.roa (raw, json) Hash identifier: 1OysQKWcgpIkL+6u2lmWiTlZnf05L65y2a94LjT+6Rc= Subject key identifier: 03:AB:FF:AF:D0:9F:B6:96:79:4F:90:E1:4D:DB:6E:DC:FC:2C:AD:B4 Certificate issuer: /CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Certificate serial: 7485ED60F02783D279FCC864E57A385C964C587F Authority key identifier: 81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject info access: rsync://0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e2038383838.roa Signing time: Fri 25 Jul 2025 10:52:39 +0000 ROA not before: Fri 25 Jul 2025 10:47:39 +0000 ROA not after: Fri 24 Jul 2026 10:52:39 +0000 asID: 8888 IP address blocks: 103.136.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 13:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:85:ed:60:f0:27:83:d2:79:fc:c8:64:e5:7a:38:5c:96:4c:58:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B5E0000, serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Validity Not Before: Jul 25 10:47:39 2025 GMT Not After : Jul 24 10:52:39 2026 GMT Subject: CN=03ABFFAFD09FB696794F90E14DDB6EDCFC2CADB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:84:9b:87:26:94:27:37:2f:24:6c:ad:d0:02: 4e:d4:f1:a1:91:db:66:16:12:b2:94:e3:1c:f8:50: 3f:2f:39:8e:58:e1:4f:bb:ba:88:a3:00:e8:ae:9e: 4d:4e:57:96:ed:db:a5:68:44:0a:99:29:e9:a9:7b: dd:ad:0b:77:f9:da:cb:89:26:e0:8f:ec:7a:41:ee: f9:6d:15:22:6e:c7:de:74:26:00:ec:72:d3:e2:bf: fd:f6:4b:8c:d0:27:61:68:3a:9e:3d:9d:c7:f3:51: 1c:6c:0a:f1:d2:8c:e4:a6:c0:53:04:3f:c3:e2:05: 0c:fc:9d:a3:c6:1b:c6:47:42:39:a9:f7:09:e5:b3: 6e:c7:3b:34:ef:48:3c:a2:f6:bd:50:47:94:72:f3: e1:14:3c:0e:17:8d:8a:31:36:a9:35:2f:50:9c:f4: 62:1f:74:5e:2c:4a:82:1f:73:6d:78:21:92:bb:90: 31:eb:10:96:3b:05:16:32:b8:d5:e2:0e:8b:8d:56: 98:2c:10:d6:c3:ce:e3:e2:1f:9f:d7:e0:98:4d:a3: ea:d0:f9:db:46:f6:b0:46:98:8a:6a:ab:fe:83:85: ad:af:b6:ed:24:3f:37:64:da:81:c8:16:d8:d7:3a: be:c5:e5:ff:95:01:b6:d4:00:9f:79:51:09:52:a1: 8c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:AB:FF:AF:D0:9F:B6:96:79:4F:90:E1:4D:DB:6E:DC:FC:2C:AD:B4 X509v3 Authority Key Identifier: keyid:81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/31/3130332e3133362e3134342e302f32322d3234203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.144.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:a3:79:e1:42:ae:18:25:40:65:75:4a:15:75:dd:16:ef:46: 7f:99:01:47:47:61:f7:2b:69:3d:8c:13:c3:6b:05:77:67:53: 39:aa:3f:54:81:8c:00:43:54:76:08:69:9e:66:e1:14:c0:1b: f3:31:95:e6:1b:82:42:07:74:15:f8:79:11:44:89:de:c8:24: df:d2:4e:4b:f4:bc:e7:fb:5f:73:69:98:23:92:e6:b0:d0:d8: d3:2f:7d:49:a5:4e:4f:76:44:f4:5d:a9:c3:2b:73:7d:7d:61: 57:c1:49:b5:bf:dc:fa:7d:15:af:02:25:74:a9:76:fa:b4:04: be:b5:98:28:2b:96:bb:00:82:1e:51:37:4e:56:c7:3f:80:4c: ac:be:98:05:8e:9e:24:d4:da:84:7e:c1:67:49:97:2b:34:06: 88:9b:09:c6:17:e8:78:26:c4:d0:a7:b1:07:b5:be:73:03:93: 7e:34:70:78:1a:b5:91:6c:30:2d:b7:bd:68:19:4f:d0:83:e1: ff:8d:8a:ac:0b:3e:b6:b2:5c:f1:88:25:67:d5:13:99:7d:03: 94:bf:b3:e6:aa:7b:c2:42:2d:fc:b8:28:3e:0c:a0:b5:eb:83: 75:16:5f:a6:47:ef:ef:c6:84:aa:fd:ca:e5:5b:0f:41:e2:03: 7f:da:05:4c -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUdIXtYPAng9J5/Mhk5Xo4XJZMWH8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjRCNUUwMDAwMTEwLwYDVQQFEyg4MUMyOTRENEIz NjVEQzQxNzJCNUEyMUI2N0YwNUIyMEQ2Qjg3QTYyMB4XDTI1MDcyNTEwNDczOVoX DTI2MDcyNDEwNTIzOVowMzExMC8GA1UEAxMoMDNBQkZGQUZEMDlGQjY5Njc5NEY5 MEUxNEREQjZFRENGQzJDQURCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOqEm4cmlCc3LyRsrdACTtTxoZHbZhYSspTjHPhQPy85jljhT7u6iKMA6K6e TU5Xlu3bpWhECpkp6al73a0Ld/nay4km4I/sekHu+W0VIm7H3nQmAOxy0+K//fZL jNAnYWg6nj2dx/NRHGwK8dKM5KbAUwQ/w+IFDPydo8YbxkdCOan3CeWzbsc7NO9I PKL2vVBHlHLz4RQ8DheNijE2qTUvUJz0Yh90XixKgh9zbXghkruQMesQljsFFjK4 1eIOi41WmCwQ1sPO4+Ifn9fgmE2j6tD520b2sEaYimqr/oOFra+27SQ/N2TagcgW 2Nc6vsXl/5UBttQAn3lRCVKhjEkCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQDq/+v 0J+2lnlPkOFN227c/CyttDAfBgNVHSMEGDAWgBSBwpTUs2XcQXK1ohtn8Fsg1rh6 YjAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzEvODFDMjk0RDRCMzY1REM0MTcyQjVBMjFCNjdGMDVCMjBENkI4 N0E2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvZ2NLVTFMTmwzRUZ5dGFJYlpfQmJJTmE0ZW1JLmNlcjBuBggrBgEF BQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJzeW5jOi8vMC5zYi9yZXBvL3NiLzMxLzMx MzAzMzJlMzEzMzM2MmUzMTM0MzQyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzODM4 MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAmeIkDANBgkqhkiG9w0BAQsFAAOCAQEAmqN54UKuGCVA ZXVKFXXdFu9Gf5kBR0dh9ytpPYwTw2sFd2dTOao/VIGMAENUdghpnmbhFMAb8zGV 5huCQgd0Ffh5EUSJ3sgk39JOS/S85/tfc2mYI5LmsNDY0y99SaVOT3ZE9F2pwytz fX1hV8FJtb/c+n0VrwIldKl2+rQEvrWYKCuWuwCCHlE3TlbHP4BMrL6YBY6eJNTa hH7BZ0mXKzQGiJsJxhfoeCbE0KexB7W+cwOTfjRweBq1kWwwLbe9aBlP0IPh/42K rAs+trJc8YglZ9UTmX0DlL+z5qp7wkIt/LgoPgygteuDdRZfpkfv78aEqv3K5VsP QeIDf9oFTA== -----END CERTIFICATE-----Generated at Wed Aug 6 16:01:46 2025 by rpki-client