$ rpki-client -vvf 0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa File: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (raw, json) Hash identifier: NzvxeOISCBxGqvrzZjBZu0oMo4rqIXiZ91cAneYGZFA= Subject key identifier: 89:6F:2A:A3:B2:DB:DC:CF:80:19:5A:B4:2E:F9:AF:B7:C5:44:7B:54 Certificate issuer: /CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Certificate serial: 17D5BF8EC0F6D7902540AEF8E1D7E65886B4E6AB Authority key identifier: 52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject info access: rsync://0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa Signing time: Fri 11 Apr 2025 08:52:21 +0000 ROA not before: Fri 11 Apr 2025 08:47:21 +0000 ROA not after: Fri 10 Apr 2026 08:52:21 +0000 asID: 3258 IP address blocks: 103.201.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 15:34:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:d5:bf:8e:c0:f6:d7:90:25:40:ae:f8:e1:d7:e6:58:86:b4:e6:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Validity Not Before: Apr 11 08:47:21 2025 GMT Not After : Apr 10 08:52:21 2026 GMT Subject: CN=896F2AA3B2DBDCCF80195AB42EF9AFB7C5447B54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:76:75:01:2f:fc:2d:f2:3d:fc:6d:69:49:fb: 73:5b:88:0a:e5:85:b4:10:18:8c:f6:73:b6:e0:d3: 20:06:cc:79:53:fb:49:4d:1d:28:e9:1f:2e:b0:ab: 41:ad:9f:75:30:da:11:dd:86:ab:53:54:43:1a:12: 96:df:89:35:54:b5:3f:a8:33:b6:54:7e:e0:be:12: b6:9b:33:d8:df:a4:a5:dc:4a:03:03:4b:9b:aa:06: 45:20:ed:e1:26:0d:a1:e1:ec:96:da:4f:f0:c9:4b: 0b:e1:c6:42:88:22:e2:50:f9:85:56:70:c1:95:19: e1:4b:fd:1d:3e:43:77:c6:27:b4:44:de:e7:04:0b: 94:e3:3d:20:c9:a8:72:3f:f5:a4:f6:af:d8:10:96: df:30:79:b2:81:fe:51:e8:7e:62:bb:ba:d6:cf:81: 48:a1:06:0c:3c:c3:4b:90:06:ac:b0:71:98:10:0b: 89:93:f5:9a:c4:a7:29:3c:17:35:44:6e:18:60:b6: d3:22:db:db:85:e5:ed:44:1d:c3:00:cd:59:47:3c: 41:44:86:fd:b2:f4:3d:f7:7a:47:8b:3b:75:7f:40: 03:b5:30:df:5e:19:72:39:ae:cc:2e:62:09:fd:81: 4a:ca:63:e8:02:83:6d:97:96:7f:19:f7:a0:c3:36: a5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:6F:2A:A3:B2:DB:DC:CF:80:19:5A:B4:2E:F9:AF:B7:C5:44:7B:54 X509v3 Authority Key Identifier: keyid:52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/39/3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.201.128.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:7e:2a:f5:27:e6:8c:21:cc:fe:fa:e1:bd:5b:a3:57:7d:57: 79:e8:43:8b:6c:59:84:89:20:3b:76:a4:0d:65:37:6f:7f:32: 2c:15:27:05:91:a5:74:1e:5f:27:15:98:31:7a:37:be:52:e6: 78:5e:26:6f:23:28:cb:8e:bb:15:14:b4:30:f3:ed:2e:a3:00: 62:ea:1f:6b:d2:32:87:7a:bc:f1:78:8d:d1:75:4e:92:2c:b4: cd:d2:b0:b3:55:1c:5a:0a:f2:52:46:61:0a:ab:e5:41:b5:09: d6:ac:d1:ff:43:7b:a3:25:82:21:e5:ae:64:56:64:64:9f:73: c2:a8:fc:3f:ac:ae:58:fc:f7:02:e3:d3:f1:4a:ae:d4:ca:6d: ba:df:ca:a4:64:95:73:74:11:18:dd:b1:83:35:c6:91:4b:ca: e6:8a:eb:9f:1a:f1:9d:96:3e:a8:3e:a2:27:c2:f2:4b:98:76: 0c:0a:5b:09:90:23:60:5e:68:4c:bc:74:a3:61:69:e1:99:96: 97:e4:2f:c0:d8:9a:fe:44:68:e5:96:04:f0:30:c8:06:ac:44: 39:8b:3a:26:ba:63:83:b1:fe:9a:97:09:a2:2e:01:d5:1a:d1: 89:11:ee:dd:1e:fb:e0:05:9d:ea:c6:cd:cd:6f:22:a6:2d:72: 6b:4a:a1:59 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUF9W/jsD215AlQK744dfmWIa05qswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1Mjg0MDQyMkQw QjcyQkE5OTI3REUwRkY3MzUzNUZERjE2MzUyMUE0MB4XDTI1MDQxMTA4NDcyMVoX DTI2MDQxMDA4NTIyMVowMzExMC8GA1UEAxMoODk2RjJBQTNCMkRCRENDRjgwMTk1 QUI0MkVGOUFGQjdDNTQ0N0I1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZ2dQEv/C3yPfxtaUn7c1uICuWFtBAYjPZztuDTIAbMeVP7SU0dKOkfLrCr Qa2fdTDaEd2Gq1NUQxoSlt+JNVS1P6gztlR+4L4Stpsz2N+kpdxKAwNLm6oGRSDt 4SYNoeHsltpP8MlLC+HGQogi4lD5hVZwwZUZ4Uv9HT5Dd8YntETe5wQLlOM9IMmo cj/1pPav2BCW3zB5soH+Ueh+Yru61s+BSKEGDDzDS5AGrLBxmBALiZP1msSnKTwX NURuGGC20yLb24Xl7UQdwwDNWUc8QUSG/bL0Pfd6R4s7dX9AA7Uw314ZcjmuzC5i Cf2BSspj6AKDbZeWfxn3oMM2pScCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBSJbyqj stvcz4AZWrQu+a+3xUR7VDAfBgNVHSMEGDAWgBRShAQi0LcrqZJ94P9zU1/fFjUh pDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzkvNTI4NDA0MjJEMEI3MkJBOTkyN0RFMEZGNzM1MzVGREYxNjM1 MjFBNC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvVW9RRUl0QzNLNm1TZmVEX2MxTmYzeFkxSWFRLmNlcjBuBggrBgEF BQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM5LzMx MzAzMzJlMzIzMDMxMmUzMTMyMzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMzMy MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAmfJgDANBgkqhkiG9w0BAQsFAAOCAQEAOn4q9SfmjCHM /vrhvVujV31XeehDi2xZhIkgO3akDWU3b38yLBUnBZGldB5fJxWYMXo3vlLmeF4m byMoy467FRS0MPPtLqMAYuofa9Iyh3q88XiN0XVOkiy0zdKws1UcWgryUkZhCqvl QbUJ1qzR/0N7oyWCIeWuZFZkZJ9zwqj8P6yuWPz3AuPT8Uqu1Mptut/KpGSVc3QR GN2xgzXGkUvK5orrnxrxnZY+qD6iJ8LyS5h2DApbCZAjYF5oTLx0o2Fp4ZmWl+Qv wNia/kRo5ZYE8DDIBqxEOYs6Jrpjg7H+mpcJoi4B1RrRiRHu3R774AWd6sbNzW8i pi1ya0qhWQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:10:39 2025 by rpki-client