$ rpki-client -vvf 0.sb/repo/sb/39/3230322e352e3232302e302f32322d3234203d3e2034373835.roa File: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (raw, json) Hash identifier: CC8E23Yh7/HhtCNdi2KuY5mXbENB/iwBI2NRmwM7MTw= Subject key identifier: 52:14:74:7F:6F:19:02:8A:8A:93:11:54:5C:11:D6:0E:E1:27:5F:09 Certificate issuer: /CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Certificate serial: 1EE761A16BAC91BE1087FA22AA13D2BF6281B98A Authority key identifier: 52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject info access: rsync://0.sb/repo/sb/39/3230322e352e3232302e302f32322d3234203d3e2034373835.roa Signing time: Thu 14 Aug 2025 13:52:41 +0000 ROA not before: Thu 14 Aug 2025 13:47:41 +0000 ROA not after: Thu 13 Aug 2026 13:52:41 +0000 asID: 4785 IP address blocks: 202.5.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 09:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:e7:61:a1:6b:ac:91:be:10:87:fa:22:aa:13:d2:bf:62:81:b9:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Validity Not Before: Aug 14 13:47:41 2025 GMT Not After : Aug 13 13:52:41 2026 GMT Subject: CN=5214747F6F19028A8A9311545C11D60EE1275F09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:18:b0:d8:de:00:c6:4e:da:5f:68:7a:2c:47: ff:bd:00:67:ae:f7:d5:8a:9d:2a:f1:eb:c4:dc:f4: f3:e7:f7:c7:49:cc:a8:50:c6:c2:20:3c:00:23:b1: 97:a4:8b:8e:17:aa:04:b1:72:ed:8d:3f:47:7d:64: a8:28:38:43:c8:d8:b0:bc:9b:40:7b:60:84:1f:ed: 6e:a8:1c:b5:64:9f:41:c8:49:6f:93:72:08:0a:9a: 6c:29:76:88:1e:97:8d:7d:0a:35:41:5e:5c:b4:8f: a9:eb:0b:6a:d4:32:21:0a:9a:80:b5:eb:63:f4:3d: bd:cb:6a:8e:59:e4:33:d6:32:af:cb:5c:02:6d:26: a7:c2:0d:b1:49:ab:0f:18:6c:f0:2a:d9:c8:04:70: bf:85:e7:ce:27:f7:46:43:c8:ed:a9:1d:e0:c8:b9: b1:48:80:0c:49:a5:cd:ff:46:d3:c5:07:c7:25:41: 48:c4:0f:70:3f:9a:7d:6a:2e:d8:a0:e7:42:54:ff: 63:be:15:5e:7f:96:2f:dc:03:e2:5c:52:1f:b6:c8: 08:8f:f8:b4:54:67:c9:19:e0:b3:b9:d7:5b:95:59: 59:2f:05:42:56:7d:d2:94:83:8d:c5:61:0e:d1:59: bf:6a:de:f3:07:b4:54:5d:11:39:0c:cf:9a:46:ff: c1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:14:74:7F:6F:19:02:8A:8A:93:11:54:5C:11:D6:0E:E1:27:5F:09 X509v3 Authority Key Identifier: keyid:52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/39/3230322e352e3232302e302f32322d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.220.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:27:b6:ec:69:e6:75:bf:87:3e:41:3e:bc:be:7a:7f:42:1b: 79:bc:6b:b5:2c:97:a7:59:a2:7c:11:b8:46:2f:42:7e:a7:50: 18:2c:d5:af:cb:aa:74:fb:c4:70:cf:51:4e:67:4e:e2:b5:05: 45:30:7c:e9:4f:67:86:65:84:41:61:df:66:7b:dd:29:da:7f: b8:04:d0:10:fa:21:0e:d0:dd:29:9a:88:72:78:7f:18:df:12: c6:54:d4:ab:12:84:31:42:a2:a1:a9:1c:fc:60:da:28:a9:25: 29:00:6c:05:7b:78:9b:db:1f:cc:1c:f9:53:9b:cd:ee:cd:a3: e1:d0:ff:11:c6:c4:74:9a:18:4a:33:38:48:e2:6c:14:90:72: 2b:05:c6:6b:4c:c8:c2:77:80:2c:2b:3c:03:17:55:b5:17:bf: dc:b7:69:a4:ba:d5:46:1f:78:48:49:a1:a6:7e:59:27:21:4f: 47:eb:94:70:15:e1:ab:43:9f:38:19:9a:d0:f5:7c:0b:ba:40: 01:04:f3:8f:a2:36:35:d5:f1:78:62:d0:15:53:9f:81:43:93: 0e:6c:e7:2d:c9:db:c8:0d:de:d5:5e:57:4d:28:80:12:67:a1: db:6e:6b:4f:42:ef:1d:f9:84:67:a5:5a:71:a5:8c:30:9d:fe: fa:62:66:7b -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUHudhoWuskb4Qh/oiqhPSv2KBuYowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1Mjg0MDQyMkQw QjcyQkE5OTI3REUwRkY3MzUzNUZERjE2MzUyMUE0MB4XDTI1MDgxNDEzNDc0MVoX DTI2MDgxMzEzNTI0MVowMzExMC8GA1UEAxMoNTIxNDc0N0Y2RjE5MDI4QThBOTMx MTU0NUMxMUQ2MEVFMTI3NUYwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALwYsNjeAMZO2l9oeixH/70AZ6731YqdKvHrxNz08+f3x0nMqFDGwiA8ACOx l6SLjheqBLFy7Y0/R31kqCg4Q8jYsLybQHtghB/tbqgctWSfQchJb5NyCAqabCl2 iB6XjX0KNUFeXLSPqesLatQyIQqagLXrY/Q9vctqjlnkM9Yyr8tcAm0mp8INsUmr Dxhs8CrZyARwv4Xnzif3RkPI7akd4Mi5sUiADEmlzf9G08UHxyVBSMQPcD+afWou 2KDnQlT/Y74VXn+WL9wD4lxSH7bICI/4tFRnyRngs7nXW5VZWS8FQlZ90pSDjcVh DtFZv2re8we0VF0ROQzPmkb/wccCAwEAAaOCAdIwggHOMB0GA1UdDgQWBBRSFHR/ bxkCioqTEVRcEdYO4SdfCTAfBgNVHSMEGDAWgBRShAQi0LcrqZJ94P9zU1/fFjUh pDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzkvNTI4NDA0MjJEMEI3MkJBOTkyN0RFMEZGNzM1MzVGREYxNjM1 MjFBNC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvVW9RRUl0QzNLNm1TZmVEX2MxTmYzeFkxSWFRLmNlcjBqBggrBgEF BQcBCwReMFwwWgYIKwYBBQUHMAuGTnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM5LzMy MzAzMjJlMzUyZTMyMzIzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM0MzczODM1 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQCygXcMA0GCSqGSIb3DQEBCwUAA4IBAQBtJ7bsaeZ1v4c+QT68 vnp/Qht5vGu1LJenWaJ8EbhGL0J+p1AYLNWvy6p0+8Rwz1FOZ07itQVFMHzpT2eG ZYRBYd9me90p2n+4BNAQ+iEO0N0pmohyeH8Y3xLGVNSrEoQxQqKhqRz8YNooqSUp AGwFe3ib2x/MHPlTm83uzaPh0P8RxsR0mhhKMzhI4mwUkHIrBcZrTMjCd4AsKzwD F1W1F7/ct2mkutVGH3hISaGmflknIU9H65RwFeGrQ584GZrQ9XwLukABBPOPojY1 1fF4YtAVU5+BQ5MObOctydvIDd7VXldNKIASZ6HbbmtPQu8d+YRnpVpxpYwwnf76 YmZ7 -----END CERTIFICATE-----Generated at Sat Aug 23 21:46:53 2025 by rpki-client