$ rpki-client -vvf 0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e2034373835.roa File: 323430333a373163303a3a2f33322d3438203d3e2034373835.roa (raw, json) Hash identifier: neyYF6TgtOcAkGMz1hTMC5RbHMnVjwd7iQRSvV4vJaM= Subject key identifier: 9A:C5:41:5A:35:FD:89:7F:3E:36:6A:CA:69:43:D1:C9:E3:E7:0D:B4 Certificate issuer: /CN=A91FD4CC0000/serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Certificate serial: 7938756C9617DC7BE6025434B13CC0590B842B51 Authority key identifier: D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject info access: rsync://0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e2034373835.roa Signing time: Thu 14 Aug 2025 13:52:42 +0000 ROA not before: Thu 14 Aug 2025 13:47:42 +0000 ROA not after: Thu 13 Aug 2026 13:52:42 +0000 asID: 4785 IP address blocks: 2403:71c0::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 07:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:38:75:6c:96:17:dc:7b:e6:02:54:34:b1:3c:c0:59:0b:84:2b:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000, serialNumber=D67C530C8E16B61FF52C085B2786C67ECCD6A909 Validity Not Before: Aug 14 13:47:42 2025 GMT Not After : Aug 13 13:52:42 2026 GMT Subject: CN=9AC5415A35FD897F3E366ACA6943D1C9E3E70DB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:af:dc:de:33:18:14:42:68:69:14:1e:37:90: 04:81:f7:f6:08:7c:93:c5:ff:2e:0d:98:ec:51:0f: 48:32:c7:2a:73:de:90:23:d0:17:49:f6:e9:a7:b2: 62:37:70:29:91:a5:67:8b:bd:cf:49:af:b7:e2:17: 00:52:04:10:50:c2:1d:65:df:61:06:c3:ff:df:64: ff:92:25:c9:d5:02:2c:28:83:ac:48:82:cd:77:c4: 18:ef:69:0c:0a:5e:97:72:5b:c2:c0:15:38:df:0a: 64:35:56:72:f6:a5:56:c9:d4:3f:58:72:24:84:4b: 4d:dc:dc:fe:12:28:69:e5:1a:01:07:11:98:93:f5: fa:7b:57:13:63:25:6a:8e:1b:9a:41:87:6f:5f:0b: 77:b6:0d:ca:fc:5f:72:df:db:1e:85:1b:9b:fc:96: d6:85:5e:c9:0d:3a:ba:b4:99:66:02:7e:9b:d4:4e: 61:ab:92:bc:a1:6a:95:02:fd:70:46:8f:b1:ac:09: bd:7e:f0:d3:a4:c9:a5:88:04:08:18:5b:b2:75:99: 03:f3:05:24:9a:1f:84:c4:54:30:5a:39:43:b3:34: dc:af:7e:6a:05:41:f0:89:fb:69:46:6b:01:1c:cc: 73:60:3d:cf:dd:1b:67:ce:7f:71:fd:7c:b8:25:12: 14:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C5:41:5A:35:FD:89:7F:3E:36:6A:CA:69:43:D1:C9:E3:E7:0D:B4 X509v3 Authority Key Identifier: keyid:D6:7C:53:0C:8E:16:B6:1F:F5:2C:08:5B:27:86:C6:7E:CC:D6:A9:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/38/D67C530C8E16B61FF52C085B2786C67ECCD6A909.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nxTDI4Wth_1LAhbJ4bGfszWqQk.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/38/323430333a373163303a3a2f33322d3438203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:71c0::/32 Signature Algorithm: sha256WithRSAEncryption 34:03:77:f4:9f:3e:6e:24:af:fa:33:3c:aa:b4:10:31:83:3b: 94:6c:bf:10:99:44:1e:09:7e:1d:96:c7:d1:da:ee:d9:10:1a: fd:cd:c4:60:79:42:b2:53:18:f1:7c:3e:68:9c:c7:54:ed:5f: 19:55:59:03:07:3e:1c:16:88:07:f4:74:8d:19:be:8c:a0:36: dc:88:a3:5b:98:95:7f:ce:1c:21:ad:d3:9a:cc:99:17:f6:95: ed:a2:74:39:bd:5d:98:b2:da:94:79:68:a0:d9:ed:34:68:1e: 0a:9e:3a:e6:d6:9f:41:8b:2b:98:c4:9f:06:d9:74:a8:d1:73: 4d:bb:8f:2d:bd:10:af:eb:80:0c:44:79:2f:19:fe:16:0e:7e: 53:bb:c1:2d:18:4e:ec:28:ea:c6:36:46:6f:05:a2:72:04:05: 2b:84:24:6f:17:bc:e1:91:18:af:51:d0:26:e2:f9:1c:e1:eb: 69:79:2a:06:8c:05:5b:e0:23:da:a3:57:05:f9:ce:be:8e:8d: 88:a0:2f:fc:8b:0a:0c:f7:ae:8b:09:67:1a:d3:19:3f:5c:d6: 18:2f:3e:45:1e:43:f4:9c:22:e5:fc:94:2e:56:b0:68:8a:e6: 62:19:d6:06:70:29:1e:d2:9d:15:8e:d1:8b:36:53:05:4f:9c: 0d:91:91:6e -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUeTh1bJYX3HvmAlQ0sTzAWQuEK1EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhENjdDNTMwQzhF MTZCNjFGRjUyQzA4NUIyNzg2QzY3RUNDRDZBOTA5MB4XDTI1MDgxNDEzNDc0MloX DTI2MDgxMzEzNTI0MlowMzExMC8GA1UEAxMoOUFDNTQxNUEzNUZEODk3RjNFMzY2 QUNBNjk0M0QxQzlFM0U3MERCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK2v3N4zGBRCaGkUHjeQBIH39gh8k8X/Lg2Y7FEPSDLHKnPekCPQF0n26aey YjdwKZGlZ4u9z0mvt+IXAFIEEFDCHWXfYQbD/99k/5IlydUCLCiDrEiCzXfEGO9p DApel3JbwsAVON8KZDVWcvalVsnUP1hyJIRLTdzc/hIoaeUaAQcRmJP1+ntXE2Ml ao4bmkGHb18Ld7YNyvxfct/bHoUbm/yW1oVeyQ06urSZZgJ+m9ROYauSvKFqlQL9 cEaPsawJvX7w06TJpYgECBhbsnWZA/MFJJofhMRUMFo5Q7M03K9+agVB8In7aUZr ARzMc2A9z90bZ85/cf18uCUSFCMCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSaxUFa Nf2Jfz42asppQ9HJ4+cNtDAfBgNVHSMEGDAWgBTWfFMMjha2H/UsCFsnhsZ+zNap CTAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzgvRDY3QzUzMEM4RTE2QjYxRkY1MkMwODVCMjc4NkM2N0VDQ0Q2 QTkwOS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvMW54VERJNFd0aF8xTEFoYko0Ykdmc3pXcVFrLmNlcjBqBggrBgEF BQcBCwReMFwwWgYIKwYBBQUHMAuGTnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM4LzMy MzQzMDMzM2EzNzMxNjMzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDM0MzczODM1 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEw DzANBAIAAjAHAwUAJANxwDANBgkqhkiG9w0BAQsFAAOCAQEANAN39J8+biSv+jM8 qrQQMYM7lGy/EJlEHgl+HZbH0dru2RAa/c3EYHlCslMY8Xw+aJzHVO1fGVVZAwc+ HBaIB/R0jRm+jKA23IijW5iVf84cIa3TmsyZF/aV7aJ0Ob1dmLLalHlooNntNGge Cp465tafQYsrmMSfBtl0qNFzTbuPLb0Qr+uADER5Lxn+Fg5+U7vBLRhO7CjqxjZG bwWicgQFK4Qkbxe84ZEYr1HQJuL5HOHraXkqBowFW+Aj2qNXBfnOvo6NiKAv/IsK DPeuiwlnGtMZP1zWGC8+RR5D9Jwi5fyULlawaIrmYhnWBnApHtKdFY7RizZTBU+c DZGRbg== -----END CERTIFICATE-----Generated at Sat Aug 23 19:44:22 2025 by rpki-client