$ rpki-client -vvf 0.sb/repo/sb/39/323430333a616338303a3a2f33322d3438203d3e2034373835.roa File: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (raw, json) Hash identifier: of2lUbNuQom6rR9aba5WRy88RY/aB/ddNJAkiL5owZ0= Subject key identifier: F2:E0:B7:C2:6C:0D:2D:97:E3:AB:C3:C0:E6:4E:18:53:A6:7B:DB:4B Certificate issuer: /CN=A91FFE3F0000/serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Certificate serial: 0B6F3AD8684C0156CC691FA0ED5362A6268C1A1E Authority key identifier: 52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject info access: rsync://0.sb/repo/sb/39/323430333a616338303a3a2f33322d3438203d3e2034373835.roa Signing time: Thu 14 Aug 2025 13:52:40 +0000 ROA not before: Thu 14 Aug 2025 13:47:40 +0000 ROA not after: Thu 13 Aug 2026 13:52:40 +0000 asID: 4785 IP address blocks: 2403:ac80::/32 maxlen: 48 Validation: OK Signature path: rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 09:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:6f:3a:d8:68:4c:01:56:cc:69:1f:a0:ed:53:62:a6:26:8c:1a:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=52840422D0B72BA9927DE0FF73535FDF163521A4 Validity Not Before: Aug 14 13:47:40 2025 GMT Not After : Aug 13 13:52:40 2026 GMT Subject: CN=F2E0B7C26C0D2D97E3ABC3C0E64E1853A67BDB4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:98:8a:c4:72:00:69:4f:2e:d9:ed:f9:29:b2: f6:13:9a:56:57:a8:5c:e9:42:d4:90:bf:2e:15:b2: 3d:4c:05:aa:ed:75:7b:f8:0c:01:10:4f:89:3e:ef: 38:15:32:2b:b5:77:70:e0:db:38:09:95:79:44:6c: 48:ca:3e:2d:0b:36:f3:47:13:2a:01:9c:94:26:bb: f5:25:a6:d3:46:70:7a:b1:d8:f2:c8:66:9f:cc:92: cb:55:de:c8:a8:39:10:b5:71:d8:44:db:54:da:64: 6b:7a:29:3a:bd:60:cc:11:43:4a:11:ee:7a:55:91: 5e:c1:28:2a:6d:99:aa:89:82:4a:c7:3d:cd:4d:db: 9a:d1:3e:4e:87:82:79:3e:9b:44:84:df:93:fb:9b: 32:65:04:22:05:a9:65:05:0e:1d:df:78:32:cb:9f: ca:75:21:ed:a1:8b:66:a3:80:df:6f:62:8f:05:29: 17:8a:23:da:13:6e:18:f9:f3:77:ea:e5:de:48:08: ac:ef:7e:0c:c2:86:2a:e8:ce:90:27:83:71:2c:47: 30:08:22:40:50:f4:5b:27:35:d4:bc:9f:f9:de:62: 45:ff:ee:10:d1:02:9a:d1:85:cd:9d:4e:6d:03:33: da:83:8c:92:10:3e:87:93:e8:4a:01:6c:b7:9d:2e: 92:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:E0:B7:C2:6C:0D:2D:97:E3:AB:C3:C0:E6:4E:18:53:A6:7B:DB:4B X509v3 Authority Key Identifier: keyid:52:84:04:22:D0:B7:2B:A9:92:7D:E0:FF:73:53:5F:DF:16:35:21:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://0.sb/repo/sb/39/52840422D0B72BA9927DE0FF73535FDF163521A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoQEItC3K6mSfeD_c1Nf3xY1IaQ.cer Subject Information Access: Signed Object - URI:rsync://0.sb/repo/sb/39/323430333a616338303a3a2f33322d3438203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:ac80::/32 Signature Algorithm: sha256WithRSAEncryption 70:40:ea:16:9e:45:7b:3b:dd:ea:c3:7e:13:05:26:ab:60:34: 43:b5:8c:2e:cc:fc:70:d5:55:bc:2a:f6:69:87:fa:38:91:0d: a4:3e:2b:d2:53:e7:20:25:35:92:84:23:30:0e:6f:90:83:92: 1f:69:1b:0a:4c:13:31:86:ca:db:76:1f:29:ea:0e:ea:40:82: ec:84:94:de:b9:ce:33:c6:27:ae:bd:81:31:4b:2c:58:48:7b: 55:a5:f7:d0:9f:b4:1f:3f:20:79:d5:81:d1:f3:03:54:82:0e: 5e:dd:2c:6c:3c:ea:1f:cf:9f:9b:67:78:e1:8b:23:e4:26:f5: 7b:44:d9:5e:df:a0:54:2f:64:0e:ea:17:89:05:b5:59:d8:ef: 00:45:d3:24:00:03:97:d3:d7:0b:23:4e:2a:87:a9:ba:ff:6c: 7b:03:b2:8f:78:13:38:a2:c3:b4:3a:db:e5:4b:40:b4:0a:23: e4:ec:fa:74:78:54:0d:0e:f8:72:39:7a:7e:8b:07:24:4d:01: e4:c7:68:4b:64:28:6e:f2:d7:e9:f5:fa:48:ec:d0:0b:3c:38: e7:4d:97:03:a1:aa:f8:8b:5e:ac:72:0a:47:81:82:17:4b:4b: a2:e9:7b:93:a3:f4:85:7f:82:b8:15:fd:7a:74:65:64:2b:dd: 21:f9:16:a9 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUC2862GhMAVbMaR+g7VNipiaMGh4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1Mjg0MDQyMkQw QjcyQkE5OTI3REUwRkY3MzUzNUZERjE2MzUyMUE0MB4XDTI1MDgxNDEzNDc0MFoX DTI2MDgxMzEzNTI0MFowMzExMC8GA1UEAxMoRjJFMEI3QzI2QzBEMkQ5N0UzQUJD M0MwRTY0RTE4NTNBNjdCREI0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOqYisRyAGlPLtnt+Smy9hOaVleoXOlC1JC/LhWyPUwFqu11e/gMARBPiT7v OBUyK7V3cODbOAmVeURsSMo+LQs280cTKgGclCa79SWm00ZwerHY8shmn8ySy1Xe yKg5ELVx2ETbVNpka3opOr1gzBFDShHuelWRXsEoKm2ZqomCSsc9zU3bmtE+ToeC eT6bRITfk/ubMmUEIgWpZQUOHd94MsufynUh7aGLZqOA329ijwUpF4oj2hNuGPnz d+rl3kgIrO9+DMKGKujOkCeDcSxHMAgiQFD0Wyc11Lyf+d5iRf/uENECmtGFzZ1O bQMz2oOMkhA+h5PoSgFst50uknMCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTy4LfC bA0tl+Orw8DmThhTpnvbSzAfBgNVHSMEGDAWgBRShAQi0LcrqZJ94P9zU1/fFjUh pDAOBgNVHQ8BAf8EBAMCB4AwVQYDVR0fBE4wTDBKoEigRoZEcnN5bmM6Ly8wLnNi L3JlcG8vc2IvMzkvNTI4NDA0MjJEMEI3MkJBOTkyN0RFMEZGNzM1MzVGREYxNjM1 MjFBNC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD NzJGRDFGRjIvVW9RRUl0QzNLNm1TZmVEX2MxTmYzeFkxSWFRLmNlcjBqBggrBgEF BQcBCwReMFwwWgYIKwYBBQUHMAuGTnJzeW5jOi8vMC5zYi9yZXBvL3NiLzM5LzMy MzQzMDMzM2E2MTYzMzgzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDM0MzczODM1 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEw DzANBAIAAjAHAwUAJAOsgDANBgkqhkiG9w0BAQsFAAOCAQEAcEDqFp5Fezvd6sN+ EwUmq2A0Q7WMLsz8cNVVvCr2aYf6OJENpD4r0lPnICU1koQjMA5vkIOSH2kbCkwT MYbK23YfKeoO6kCC7ISU3rnOM8Ynrr2BMUssWEh7VaX30J+0Hz8gedWB0fMDVIIO Xt0sbDzqH8+fm2d44Ysj5Cb1e0TZXt+gVC9kDuoXiQW1WdjvAEXTJAADl9PXCyNO Koepuv9sewOyj3gTOKLDtDrb5UtAtAoj5Oz6dHhUDQ74cjl6fosHJE0B5MdoS2Qo bvLX6fX6SOzQCzw4502XA6Gq+IterHIKR4GCF0tLoul7k6P0hX+CuBX9enRlZCvd IfkWqQ== -----END CERTIFICATE-----Generated at Sat Aug 23 21:48:38 2025 by rpki-client