$ rpki-client -vvf 0.sb/repo/sb/31/323430343a393534303a3a2f33322d3438203d3e203234323432.roa File: 323430343a393534303a3a2f33322d3438203d3e203234323432.roa (raw, json) Hash identifier: bu7q7K1/BO3GR1G13IRKXShxBvopVYkoePQsgHC7bjM= Subject key identifier: 9C:84:B6:7B:31:E0:FD:05:BA:A7:5D:A9:0F:53:8A:E7:3D:94:5B:FC Certificate issuer: /CN=A9124B5E0000/serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Certificate serial: 389AE00FB3FDC8D3856116A5F1589A1E0CBAB6A0 Authority key identifier: 81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject info access: rsync://0.sb/repo/sb/31/323430343a393534303a3a2f33322d3438203d3e203234323432.roa Signing time: Fri 25 Jul 2025 10:52:40 +0000 ROA not before: Fri 25 Jul 2025 10:47:40 +0000 ROA not after: Fri 24 Jul 2026 10:52:40 +0000 asID: 24242 IP address blocks: 2404:9540::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 08:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:9a:e0:0f:b3:fd:c8:d3:85:61:16:a5:f1:58:9a:1e:0c:ba:b6:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B5E0000, serialNumber=81C294D4B365DC4172B5A21B67F05B20D6B87A62 Validity Not Before: Jul 25 10:47:40 2025 GMT Not After : Jul 24 10:52:40 2026 GMT Subject: CN=9C84B67B31E0FD05BAA75DA90F538AE73D945BFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:82:13:07:89:6f:1f:94:0d:a3:39:1b:80:16: 43:71:96:c1:39:e2:7e:ba:87:fc:c0:3e:68:17:46: 2d:1a:f6:fb:ee:4a:61:19:a6:f5:16:d3:0f:94:c5: 70:41:5c:04:15:f9:f5:74:9a:60:4c:61:91:49:c6: 89:f3:76:4d:77:7c:d8:61:7b:b6:06:7c:8f:ec:b2: c1:67:44:94:73:05:66:8e:4a:08:6f:e6:07:db:9a: 76:a4:ca:9c:fe:1a:de:e8:6d:8c:ec:ee:82:23:97: 4f:c5:5f:c0:f8:af:ba:4c:22:16:13:0e:65:e7:88: 44:75:6d:d2:f9:4e:ba:b4:bd:c8:07:6f:5d:31:45: f3:33:cc:f4:50:0d:e6:94:65:2c:64:02:22:33:50: a6:08:1f:9a:29:4c:7a:6b:36:29:c8:66:80:93:1e: 0c:21:f0:11:c2:86:54:7c:73:7a:d4:da:f3:a8:54: 39:ff:f1:e2:8d:5f:ce:7d:74:99:ba:f2:6c:d1:09: 71:92:a5:e8:3a:1d:14:8f:9b:1b:56:a4:92:d8:10: e1:f4:17:df:89:54:64:db:44:2d:51:d9:94:8e:3d: 5c:ea:b3:3c:d3:c4:4f:6a:1c:25:2f:ea:b1:95:d0: d1:82:41:8f:99:3b:4d:84:a8:2a:ad:18:d8:44:3e: 32:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:84:B6:7B:31:E0:FD:05:BA:A7:5D:A9:0F:53:8A:E7:3D:94:5B:FC X509v3 Authority Key Identifier: keyid:81:C2:94:D4:B3:65:DC:41:72:B5:A2:1B:67:F0:5B:20:D6:B8:7A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/31/81C294D4B365DC4172B5A21B67F05B20D6B87A62.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gcKU1LNl3EFytaIbZ_BbINa4emI.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/31/323430343a393534303a3a2f33322d3438203d3e203234323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:9540::/32 Signature Algorithm: sha256WithRSAEncryption 4a:d3:77:f6:98:f5:ee:61:17:db:0f:cd:bf:d3:5e:10:b5:91: a9:ce:7c:2b:db:1b:20:38:3a:8f:75:28:e8:47:88:6b:97:db: 6c:94:b4:d5:1f:95:38:1e:65:5f:78:61:0e:2a:02:68:d2:05: a0:eb:a7:46:ea:40:b8:ce:32:f0:ec:c2:0c:0c:21:e9:a6:48: 1b:37:d3:17:d7:02:80:f0:51:a0:bf:58:22:8a:14:32:af:46: 19:c8:86:b4:02:8e:08:ff:90:00:c1:14:5e:3d:c0:4e:4e:18: a6:e6:32:67:07:bd:45:e1:85:c1:d5:32:05:79:65:32:39:af: c0:36:5f:35:fb:37:54:49:11:dd:e3:d8:cc:c3:16:98:ad:45: bd:12:3a:8e:0e:c1:4d:f2:23:dd:a3:0b:fd:23:e2:83:10:5f: 51:ce:c8:63:9d:97:a6:2b:68:e0:b5:c8:f1:b4:c4:9b:4d:7e: 3d:8c:ad:27:46:96:5f:e4:b9:b2:73:eb:64:52:3e:3d:32:01: c0:c8:cf:74:5f:72:d8:b0:e0:c0:1f:f3:32:57:ba:19:d8:c4: 5d:2d:9a:19:87:20:f7:6a:f8:51:6e:dd:13:fe:7f:8b:45:8c: 14:16:4c:f1:5c:96:2c:38:8c:a5:57:f2:b9:d7:ad:6c:a8:9b: e3:6f:6e:8b -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUOJrgD7P9yNOFYRal8ViaHgy6tqAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjRCNUUwMDAwMTEwLwYDVQQFEyg4MUMyOTRENEIz NjVEQzQxNzJCNUEyMUI2N0YwNUIyMEQ2Qjg3QTYyMB4XDTI1MDcyNTEwNDc0MFoX DTI2MDcyNDEwNTI0MFowMzExMC8GA1UEAxMoOUM4NEI2N0IzMUUwRkQwNUJBQTc1 REE5MEY1MzhBRTczRDk0NUJGQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMiCEweJbx+UDaM5G4AWQ3GWwTnifrqH/MA+aBdGLRr2++5KYRmm9RbTD5TF cEFcBBX59XSaYExhkUnGifN2TXd82GF7tgZ8j+yywWdElHMFZo5KCG/mB9uadqTK nP4a3uhtjOzugiOXT8VfwPivukwiFhMOZeeIRHVt0vlOurS9yAdvXTFF8zPM9FAN 5pRlLGQCIjNQpggfmilMems2KchmgJMeDCHwEcKGVHxzetTa86hUOf/x4o1fzn10 mbrybNEJcZKl6DodFI+bG1akktgQ4fQX34lUZNtELVHZlI49XOqzPNPET2ocJS/q sZXQ0YJBj5k7TYSoKq0Y2EQ+MnsCAwEAAaOCAdUwggHRMB0GA1UdDgQWBBSchLZ7 MeD9BbqnXakPU4rnPZRb/DAfBgNVHSMEGDAWgBSBwpTUs2XcQXK1ohtn8Fsg1rh6 YjAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzEvODFDMjk0RDRCMzY1REM0MTcyQjVBMjFCNjdGMDVCMjBENkI4 N0E2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvZ2NLVTFMTmwzRUZ5dGFJYlpfQmJJTmE0ZW1JLmNlcjBsBggrBgEF BQcBCwRgMF4wXAYIKwYBBQUHMAuGUHJzeW5jOi8vMC5zYi9yZXBvL3NiLzMxLzMy MzQzMDM0M2EzOTM1MzQzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzQzMjM0 MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBJVAMA0GCSqGSIb3DQEBCwUAA4IBAQBK03f2mPXuYRfb D82/014QtZGpznwr2xsgODqPdSjoR4hrl9tslLTVH5U4HmVfeGEOKgJo0gWg66dG 6kC4zjLw7MIMDCHppkgbN9MX1wKA8FGgv1giihQyr0YZyIa0Ao4I/5AAwRRePcBO Thim5jJnB71F4YXB1TIFeWUyOa/ANl81+zdUSRHd49jMwxaYrUW9EjqODsFN8iPd owv9I+KDEF9RzshjnZemK2jgtcjxtMSbTX49jK0nRpZf5Lmyc+tkUj49MgHAyM90 X3LYsODAH/MyV7oZ2MRdLZoZhyD3avhRbt0T/n+LRYwUFkzxXJYsOIylV/K5161s qJvjb26L -----END CERTIFICATE-----Generated at Thu Aug 7 11:09:53 2025 by rpki-client