$ rpki-client -vvf rsync.rp.ki/repo/misakaio/0/323430373a623963303a3a2f33322d3438203d3e203537363935.roa File: 323430373a623963303a3a2f33322d3438203d3e203537363935.roa (raw, json) Hash identifier: u/XnJa9+weKkbBmbGBH1zIspRgFeJx0eVJf/gQ4nW8I= Subject key identifier: C8:C6:9C:A2:37:49:11:4B:29:2C:DA:1A:08:72:09:A3:96:4D:37:56 Certificate issuer: /CN=A9121C330000/serialNumber=9CF05E7024D4A487E0B79E2F57525BF345DB53EC Certificate serial: F9AF0DE99C155D0A6D2C0785768B819E9CA584 Authority key identifier: 9C:F0:5E:70:24:D4:A4:87:E0:B7:9E:2F:57:52:5B:F3:45:DB:53:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPBecCTUpIfgt54vV1Jb80XbU-w.cer Subject info access: rsync://rsync.rp.ki/repo/misakaio/0/323430373a623963303a3a2f33322d3438203d3e203537363935.roa Signing time: Sun 03 Dec 2023 21:38:28 +0000 ROA not before: Sun 03 Dec 2023 21:33:28 +0000 ROA not after: Sun 01 Dec 2024 21:38:28 +0000 asID: 57695 IP address blocks: 2407:b9c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.crl rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPBecCTUpIfgt54vV1Jb80XbU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: f9:af:0d:e9:9c:15:5d:0a:6d:2c:07:85:76:8b:81:9e:9c:a5:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121C330000/serialNumber=9CF05E7024D4A487E0B79E2F57525BF345DB53EC Validity Not Before: Dec 3 21:33:28 2023 GMT Not After : Dec 1 21:38:28 2024 GMT Subject: CN=C8C69CA23749114B292CDA1A087209A3964D3756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:59:23:35:fd:1f:7d:31:41:b1:fc:2d:2c:8b: 3e:07:9f:57:91:d6:ce:f2:9a:c7:69:06:0a:8e:d7: d6:42:1b:5d:a3:b1:61:b2:36:db:12:a5:fb:8a:1a: d9:8d:d8:67:ba:bc:d3:05:70:c8:94:21:96:fa:71: 58:7d:69:6d:b1:4f:1b:4f:a9:8c:e6:24:89:c4:9d: 70:34:08:90:c4:d6:c1:4e:63:e9:5b:d2:91:90:bc: 5f:fb:70:7d:3c:b9:ed:ad:08:cc:49:3d:be:96:41: f6:0b:f6:66:92:03:0c:55:15:ca:f3:58:34:01:8d: c0:8c:e7:36:b2:c5:db:a9:fc:32:46:7a:33:c1:9a: fe:5c:36:a9:22:b1:a7:46:5b:7c:ac:7a:69:d2:fb: 13:f6:62:c2:a8:63:43:b5:fd:29:bb:ae:84:b8:fe: 5c:a9:6e:39:af:cd:58:23:06:1c:8d:49:e9:be:1e: 04:b8:7d:6b:65:00:a0:f2:4a:12:40:68:38:2a:ca: 02:30:0f:fd:51:b3:e5:c3:09:f4:66:98:b7:5a:23: 7e:80:79:1b:15:04:f4:47:cc:7c:0c:e0:37:68:55: 78:2c:58:33:b7:04:b9:1c:92:9c:30:6b:7a:95:8a: 49:54:86:9d:34:62:eb:1b:8b:aa:c5:98:0e:e7:07: 35:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C6:9C:A2:37:49:11:4B:29:2C:DA:1A:08:72:09:A3:96:4D:37:56 X509v3 Authority Key Identifier: keyid:9C:F0:5E:70:24:D4:A4:87:E0:B7:9E:2F:57:52:5B:F3:45:DB:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPBecCTUpIfgt54vV1Jb80XbU-w.cer Subject Information Access: Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/0/323430373a623963303a3a2f33322d3438203d3e203537363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:b9c0::/32 Signature Algorithm: sha256WithRSAEncryption 1e:35:38:dc:3b:28:b8:8d:ec:9f:2b:23:d9:41:1f:4d:69:6b: ed:da:e8:74:e1:67:d3:d1:d2:e7:da:35:b8:e8:10:d7:ec:30: 2c:d4:59:35:63:4f:48:67:5b:6c:1c:6e:1b:03:bc:be:37:fd: 6c:b7:4f:e5:a5:2a:3c:4d:96:8a:b5:85:a3:e6:29:c7:cd:32: 03:2c:8c:c8:77:01:4f:17:d9:6d:11:a6:0c:68:5c:b6:44:03: e5:86:5a:25:e5:0e:38:11:02:8f:13:c6:1e:6a:78:5b:49:41: 46:57:e2:41:61:12:39:56:7d:bf:92:b5:36:3e:f0:af:a5:2a: d1:79:ce:45:5b:cf:47:03:b6:da:66:37:08:1e:bc:ca:7c:b3: af:dc:61:c4:9f:65:47:63:4b:ed:88:8d:cb:e8:28:53:3e:e5: d5:10:e9:1f:dd:d1:59:f9:e7:43:58:fd:b7:35:bf:af:14:9c: 50:2e:1f:d4:7a:16:44:71:5a:df:40:9f:18:c9:04:b4:02:6b: 7a:bd:b7:cb:ee:19:09:7e:2f:0b:1a:fd:9b:50:1e:a1:98:19: 6f:e3:cb:bc:08:35:09:b3:50:7c:7a:56:b5:08:41:79:b2:c6: 46:b4:31:4c:8d:48:26:2d:85:e7:f7:89:2f:36:e7:89:f1:79: 95:00:cd:5f -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUAPmvDemcFV0KbSwHhXaLgZ6cpYQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjFDMzMwMDAwMTEwLwYDVQQFEyg5Q0YwNUU3MDI0 RDRBNDg3RTBCNzlFMkY1NzUyNUJGMzQ1REI1M0VDMB4XDTIzMTIwMzIxMzMyOFoX DTI0MTIwMTIxMzgyOFowMzExMC8GA1UEAxMoQzhDNjlDQTIzNzQ5MTE0QjI5MkNE QTFBMDg3MjA5QTM5NjREMzc1NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALhZIzX9H30xQbH8LSyLPgefV5HWzvKax2kGCo7X1kIbXaOxYbI22xKl+4oa 2Y3YZ7q80wVwyJQhlvpxWH1pbbFPG0+pjOYkicSdcDQIkMTWwU5j6VvSkZC8X/tw fTy57a0IzEk9vpZB9gv2ZpIDDFUVyvNYNAGNwIznNrLF26n8MkZ6M8Ga/lw2qSKx p0ZbfKx6adL7E/ZiwqhjQ7X9KbuuhLj+XKluOa/NWCMGHI1J6b4eBLh9a2UAoPJK EkBoOCrKAjAP/VGz5cMJ9GaYt1ojfoB5GxUE9EfMfAzgN2hVeCxYM7cEuRySnDBr epWKSVSGnTRi6xuLqsWYDucHNU8CAwEAAaOCAe0wggHpMB0GA1UdDgQWBBTIxpyi N0kRSyks2hoIcgmjlk03VjAfBgNVHSMEGDAWgBSc8F5wJNSkh+C3ni9XUlvzRdtT 7DAOBgNVHQ8BAf8EBAMCB4AwYQYDVR0fBFowWDBWoFSgUoZQcnN5bmM6Ly9yc3lu Yy5ycC5raS9yZXBvL21pc2FrYWlvLzAvOUNGMDVFNzAyNEQ0QTQ4N0UwQjc5RTJG NTc1MjVCRjM0NURCNTNFQy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAC hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2 MTFFMkJCNDY4RjdDNzJGRDFGRjIvblBCZWNDVFVwSWZndDU0dlYxSmI4MFhiVS13 LmNlcjB4BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJzeW5jOi8vcnN5bmMu cnAua2kvcmVwby9taXNha2Fpby8wLzMyMzQzMDM3M2E2MjM5NjMzMDNhM2EyZjMz MzIyZDM0MzgyMDNkM2UyMDM1MzczNjM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB7nAMA0GCSqG SIb3DQEBCwUAA4IBAQAeNTjcOyi4jeyfKyPZQR9NaWvt2uh04WfT0dLn2jW46BDX 7DAs1Fk1Y09IZ1tsHG4bA7y+N/1st0/lpSo8TZaKtYWj5inHzTIDLIzIdwFPF9lt EaYMaFy2RAPlhlol5Q44EQKPE8YeanhbSUFGV+JBYRI5Vn2/krU2PvCvpSrRec5F W89HA7baZjcIHrzKfLOv3GHEn2VHY0vtiI3L6ChTPuXVEOkf3dFZ+edDWP23Nb+v FJxQLh/UehZEcVrfQJ8YyQS0Amt6vbfL7hkJfi8LGv2bUB6hmBlv48u8CDUJs1B8 ela1CEF5ssZGtDFMjUgmLYXn94kvNueJ8XmVAM1f -----END CERTIFICATE-----Generated at Tue May 21 10:00:37 2024 by rpki-client on console-fra.rpki-client.org