$ rpki-client -vvf 0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e2033323538.roa File: 323430333a373163303a3a2f33322d3438203d3e2033323538.roa (raw, json) Hash identifier: /0TIiXzZkdshf306gvpxHBaOY31/ZlaUpzWQMbDlABE= Subject key identifier: FF:C5:13:F8:DE:AD:E2:FE:A8:1C:07:05:0B:1A:E8:70:9C:A7:AD:41 Certificate issuer: /CN=A91FD4CC0000/serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Certificate serial: 2368FA8665A44ED34A8D97DED0212769C33857F1 Authority key identifier: D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject info access: rsync://0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e2033323538.roa Signing time: Fri 11 Apr 2025 08:52:20 +0000 ROA not before: Fri 11 Apr 2025 08:47:20 +0000 ROA not after: Fri 10 Apr 2026 08:52:20 +0000 asID: 3258 IP address blocks: 2403:71c0::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 21:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:68:fa:86:65:a4:4e:d3:4a:8d:97:de:d0:21:27:69:c3:38:57:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000, serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Validity Not Before: Apr 11 08:47:20 2025 GMT Not After : Apr 10 08:52:20 2026 GMT Subject: CN=FFC513F8DEADE2FEA81C07050B1AE8709CA7AD41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:13:76:65:83:58:a7:4c:93:5f:a8:59:8b:21: 19:92:68:d6:83:df:7b:e5:d8:42:1c:3b:9f:cc:a8: 53:f1:cf:b8:1f:6f:4c:a2:f3:a9:60:1a:7b:a7:f4: e9:b2:55:88:98:a1:3e:eb:8d:e7:16:83:2c:87:c2: f3:8f:6c:6f:8e:40:95:e0:91:7b:4b:08:65:f6:49: c9:a2:46:63:c7:31:93:e8:c3:1e:7b:14:15:a0:c0: 02:ea:0e:31:13:92:64:5b:cc:ca:6f:7c:7f:b4:09: 45:21:8f:e5:4f:ae:f9:0e:17:e6:77:3f:65:2a:96: 40:6c:63:96:a1:cf:c5:6c:59:62:9a:b8:71:e4:7a: ed:2a:2c:8c:81:8e:c5:8c:4e:25:58:a5:53:ef:e9: c7:1f:d0:48:72:aa:46:41:3f:cc:20:8c:9a:37:b3: 18:d8:38:25:a9:4e:87:b1:f4:31:cb:1c:c5:7b:ce: f9:c5:65:15:45:de:ca:86:b3:44:48:26:72:0c:6a: f4:f7:0a:4d:78:0b:64:0a:97:e7:af:98:2b:7c:0c: 48:af:67:e5:27:c7:f6:e4:1f:32:6c:4e:38:6f:64: ec:23:7a:77:fc:c1:f0:0c:77:3c:05:da:25:0b:8a: c5:87:1d:85:c8:c0:41:c4:c4:6f:43:a4:ff:54:85: d4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C5:13:F8:DE:AD:E2:FE:A8:1C:07:05:0B:1A:E8:70:9C:A7:AD:41 X509v3 Authority Key Identifier: keyid:D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:71c0::/32 Signature Algorithm: sha256WithRSAEncryption a3:93:93:ca:19:c9:0a:6e:c3:d1:b3:d2:23:24:82:95:55:8a: f3:8a:74:36:a0:b5:28:66:6e:22:cf:1d:06:e6:1d:df:a3:82: 4b:bb:e6:64:4b:5f:e4:48:05:0d:a4:19:19:f3:25:d9:5c:da: 8e:4e:de:ce:39:28:c4:1d:19:50:9b:75:89:73:41:a8:d8:66: 33:97:62:40:6a:c3:af:77:07:1d:fc:3f:83:4a:d5:f7:3b:be: 5f:e6:d3:a9:de:6a:ea:99:e4:0e:a4:42:c5:7c:ee:35:61:13: de:6a:f8:c7:d2:b1:b0:bd:56:8d:d5:6f:55:cd:b8:84:83:4f: 24:d0:ae:d5:d9:8d:5e:22:c1:28:98:f6:94:cd:21:4f:bc:f7: 42:76:fc:d8:1e:86:4a:b3:d1:a1:7f:af:5b:12:65:db:ed:7d: 9a:ae:3b:76:1e:f5:2d:13:14:f8:60:0c:db:df:5f:e5:2b:b5: bb:6d:4c:c5:0d:30:3d:ca:d5:9b:c5:5a:15:cf:49:bc:e2:43: 9c:f6:cb:83:13:f6:d7:67:8d:91:42:84:7b:dc:84:c9:83:28: ec:46:9a:24:7a:45:4e:4d:f3:92:22:de:0c:b8:50:ee:c4:02: ef:2a:ef:ef:82:8d:a4:99:58:a2:93:50:44:3a:2d:58:44:54: 60:1b:bd:06 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUI2j6hmWkTtNKjZfe0CEnacM4V/EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhENjdDNTMwQzhF MTZCNjFGRjUyQzA4NUIyNzg2QzY3RUNDRDZBOTA5MB4XDTI1MDQxMTA4NDcyMFoX DTI2MDQxMDA4NTIyMFowMzExMC8GA1UEAxMoRkZDNTEzRjhERUFERTJGRUE4MUMw NzA1MEIxQUU4NzA5Q0E3QUQ0MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANUTdmWDWKdMk1+oWYshGZJo1oPfe+XYQhw7n8yoU/HPuB9vTKLzqWAae6f0 6bJViJihPuuN5xaDLIfC849sb45AleCRe0sIZfZJyaJGY8cxk+jDHnsUFaDAAuoO MROSZFvMym98f7QJRSGP5U+u+Q4X5nc/ZSqWQGxjlqHPxWxZYpq4ceR67SosjIGO xYxOJVilU+/pxx/QSHKqRkE/zCCMmjezGNg4JalOh7H0McscxXvO+cVlFUXeyoaz REgmcgxq9PcKTXgLZAqX56+YK3wMSK9n5SfH9uQfMmxOOG9k7CN6d/zB8Ax3PAXa JQuKxYcdhcjAQcTEb0Ok/1SF1O8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBT/xRP4 3q3i/qgcBwULGuhwnKetQTAfBgNVHSMEGDAWgBTWfFMMjha2H/UsCFsnhsZ+zNap CTAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzgvRDY3QzUzMEM4RTE2QjYxRkY1MkMwODVCMjc4NkM2N0VDQ0Q2 QTkwOS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvMW54VERJNFd0aF8xTEFoYko0Ykdmc3pXcVFrLmNlcjBqBggrBgEF BQcBCwReMFwwWgYIKwYBBQUHMAuGTnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM4LzMy MzQzMDMzM2EzNzMxNjMzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDMzMzIzNTM4 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEw DzANBAIAAjAHAwUAJANxwDANBgkqhkiG9w0BAQsFAAOCAQEAo5OTyhnJCm7D0bPS IySClVWK84p0NqC1KGZuIs8dBuYd36OCS7vmZEtf5EgFDaQZGfMl2Vzajk7ezjko xB0ZUJt1iXNBqNhmM5diQGrDr3cHHfw/g0rV9zu+X+bTqd5q6pnkDqRCxXzuNWET 3mr4x9KxsL1WjdVvVc24hINPJNCu1dmNXiLBKJj2lM0hT7z3Qnb82B6GSrPRoX+v WxJl2+19mq47dh71LRMU+GAM299f5Su1u21MxQ0wPcrVm8VaFc9JvOJDnPbLgxP2 12eNkUKEe9yEyYMo7EaaJHpFTk3zkiLeDLhQ7sQC7yrv74KNpJlYopNQRDotWERU YBu9Bg== -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:02 2025 by rpki-client