$ rpki-client -vvf 0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e203233393539.roa File: 323430333a373163303a3a2f33322d3438203d3e203233393539.roa (raw, json) Hash identifier: Yah6HZnMNDn4XvmcUXeHLxkyzp17P1oJRLMzMO6SZ8E= Subject key identifier: 21:E1:CF:E1:77:87:1E:AB:5C:CE:32:95:16:CE:41:2B:2F:8F:B2:41 Certificate issuer: /CN=A91FD4CC0000/serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Certificate serial: 1AD7E668FE03A9665DF3FE8A1572BA7BA2B27271 Authority key identifier: D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject info access: rsync://0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e203233393539.roa Signing time: Thu 14 Aug 2025 13:52:42 +0000 ROA not before: Thu 14 Aug 2025 13:47:42 +0000 ROA not after: Thu 13 Aug 2026 13:52:42 +0000 asID: 23959 IP address blocks: 2403:71c0::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 07:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:d7:e6:68:fe:03:a9:66:5d:f3:fe:8a:15:72:ba:7b:a2:b2:72:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000, serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Validity Not Before: Aug 14 13:47:42 2025 GMT Not After : Aug 13 13:52:42 2026 GMT Subject: CN=21E1CFE177871EAB5CCE329516CE412B2F8FB241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5b:46:ea:3c:c1:4a:e1:9f:25:e0:50:af:61: 11:77:43:ec:94:e6:ee:76:0d:73:47:f0:4e:c6:50: a0:65:c1:35:98:83:97:07:d1:ab:2e:d0:db:a5:bd: 1a:66:db:bb:6e:fe:cd:a9:07:7f:6d:ee:e4:f1:72: 13:ac:48:d2:59:39:19:43:ee:69:c3:92:c8:12:42: ad:af:65:4a:f0:1e:f9:ec:3b:4b:6d:97:36:67:12: 50:1d:1e:71:c3:d1:89:97:af:62:f8:2d:3c:18:a9: 9f:e0:9d:ce:5e:02:35:ec:be:9c:67:a0:29:0c:38: 89:f3:73:00:d3:b3:78:42:bb:bc:11:99:fa:53:b0: 49:d8:ea:d2:15:41:c9:95:33:f2:9e:94:a6:52:e8: 18:36:f3:08:6a:af:6d:0c:dc:85:5e:37:e6:d0:24: e6:53:88:22:c6:33:80:7c:29:89:16:27:62:be:ea: 11:d5:9a:f7:d1:b9:52:79:a5:7d:1d:c7:27:e9:9d: 6a:6f:11:fe:c3:31:28:fd:24:f8:f3:a3:47:41:47: 13:c8:eb:c2:03:fc:ac:cf:e0:3c:1f:a9:67:f8:4a: 16:65:69:4b:70:5f:88:c6:5c:71:bd:7b:58:39:cb: 2b:de:61:56:13:32:98:1d:65:be:a8:bb:9d:23:ce: 5d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E1:CF:E1:77:87:1E:AB:5C:CE:32:95:16:CE:41:2B:2F:8F:B2:41 X509v3 Authority Key Identifier: keyid:D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e203233393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:71c0::/32 Signature Algorithm: sha256WithRSAEncryption 84:18:07:bc:04:ea:59:31:7e:7a:b6:dc:1b:04:6f:bd:de:8c: 60:35:c6:d3:05:78:d7:24:ba:1e:61:fd:50:f2:03:b5:ae:f8: 70:9d:38:40:d2:b6:85:26:76:82:98:0a:89:04:19:a1:11:34: 5b:20:4a:6e:1d:9f:a9:08:f8:59:f5:78:7b:b4:39:f9:0b:5d: 35:15:15:70:75:8b:7c:f7:48:c1:51:59:5c:20:ef:3f:c7:fb: fc:67:41:8e:01:c0:59:7e:a2:96:15:47:2e:5b:d4:13:a9:48: 65:21:33:eb:ca:c0:58:0d:b9:48:44:4c:75:27:8d:da:24:e8: 4e:19:95:58:3f:ba:0e:06:5a:88:6b:6d:73:14:38:21:66:ba: b4:9b:a8:e6:bb:70:54:13:c9:52:30:60:c0:e8:f3:4a:8c:d9: e2:79:80:c1:d8:dd:d6:52:fb:34:a8:91:56:13:d2:bd:e6:09: 99:ce:b3:35:0d:50:0d:e4:8d:ee:37:c2:6a:84:9e:74:46:fb: 8a:a1:54:bd:f2:80:8d:bb:65:51:6f:c6:7c:e2:82:e8:20:3b: 16:8a:11:bf:95:92:dc:2f:91:4e:06:42:58:57:98:6a:02:a8: 47:ba:8c:33:45:b0:cc:78:ca:52:82:19:89:ca:cd:bf:76:9f: 61:f9:21:7c -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUGtfmaP4DqWZd8/6KFXK6e6KycnEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhENjdDNTMwQzhF MTZCNjFGRjUyQzA4NUIyNzg2QzY3RUNDRDZBOTA5MB4XDTI1MDgxNDEzNDc0MloX DTI2MDgxMzEzNTI0MlowMzExMC8GA1UEAxMoMjFFMUNGRTE3Nzg3MUVBQjVDQ0Uz Mjk1MTZDRTQxMkIyRjhGQjI0MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAONbRuo8wUrhnyXgUK9hEXdD7JTm7nYNc0fwTsZQoGXBNZiDlwfRqy7Q26W9 Gmbbu27+zakHf23u5PFyE6xI0lk5GUPuacOSyBJCra9lSvAe+ew7S22XNmcSUB0e ccPRiZevYvgtPBipn+Cdzl4CNey+nGegKQw4ifNzANOzeEK7vBGZ+lOwSdjq0hVB yZUz8p6UplLoGDbzCGqvbQzchV435tAk5lOIIsYzgHwpiRYnYr7qEdWa99G5Unml fR3HJ+mdam8R/sMxKP0k+POjR0FHE8jrwgP8rM/gPB+pZ/hKFmVpS3BfiMZccb17 WDnLK95hVhMymB1lvqi7nSPOXY0CAwEAAaOCAdUwggHRMB0GA1UdDgQWBBQh4c/h d4ceq1zOMpUWzkErL4+yQTAfBgNVHSMEGDAWgBTWfFMMjha2H/UsCFsnhsZ+zNap CTAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzgvRDY3QzUzMEM4RTE2QjYxRkY1MkMwODVCMjc4NkM2N0VDQ0Q2 QTkwOS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvMW54VERJNFd0aF8xTEFoYko0Ykdmc3pXcVFrLmNlcjBsBggrBgEF BQcBCwRgMF4wXAYIKwYBBQUHMAuGUHJzeW5jOi8vMC5zYi9yZXBvL3NiLzM4LzMy MzQzMDMzM2EzNzMxNjMzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzMzOTM1 Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkA3HAMA0GCSqGSIb3DQEBCwUAA4IBAQCEGAe8BOpZMX56 ttwbBG+93oxgNcbTBXjXJLoeYf1Q8gO1rvhwnThA0raFJnaCmAqJBBmhETRbIEpu HZ+pCPhZ9Xh7tDn5C101FRVwdYt890jBUVlcIO8/x/v8Z0GOAcBZfqKWFUcuW9QT qUhlITPrysBYDblIREx1J43aJOhOGZVYP7oOBlqIa21zFDghZrq0m6jmu3BUE8lS MGDA6PNKjNnieYDB2N3WUvs0qJFWE9K95gmZzrM1DVAN5I3uN8JqhJ50RvuKoVS9 8oCNu2VRb8Z84oLoIDsWihG/lZLcL5FOBkJYV5hqAqhHuowzRbDMeMpSghmJys2/ dp9h+SF8 -----END CERTIFICATE-----Generated at Sat Aug 23 22:03:34 2025 by rpki-client