$ rpki-client -vvf rsync.rp.ki/repo/misakaio/0/323430373a623963303a3a2f33322d3438203d3e203537363935.roa File: 323430373a623963303a3a2f33322d3438203d3e203537363935.roa (raw, json) Hash identifier: FfYGvZr4SFWPjlAzX82KpSKmBRhTz7G//KPcNec2hhc= Subject key identifier: 9D:A2:26:5C:77:45:88:98:44:BF:64:2C:CD:77:0F:22:C9:7D:C9:78 Certificate issuer: /CN=A9121C330000/serialNumber=9CF05E7024D4A487E0B79E2F57525BF345DB53EC Certificate serial: 177FEFBA8F30FEFA6EBDB93CEE6082DD23E4169D Authority key identifier: 9C:F0:5E:70:24:D4:A4:87:E0:B7:9E:2F:57:52:5B:F3:45:DB:53:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPBecCTUpIfgt54vV1Jb80XbU-w.cer Subject info access: rsync://rsync.rp.ki/repo/misakaio/0/323430373a623963303a3a2f33322d3438203d3e203537363935.roa Signing time: Sun 03 Nov 2024 22:30:25 +0000 ROA not before: Sun 03 Nov 2024 22:25:25 +0000 ROA not after: Sun 02 Nov 2025 22:30:25 +0000 asID: 57695 IP address blocks: 2407:b9c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.crl rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPBecCTUpIfgt54vV1Jb80XbU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:7f:ef:ba:8f:30:fe:fa:6e:bd:b9:3c:ee:60:82:dd:23:e4:16:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121C330000/serialNumber=9CF05E7024D4A487E0B79E2F57525BF345DB53EC Validity Not Before: Nov 3 22:25:25 2024 GMT Not After : Nov 2 22:30:25 2025 GMT Subject: CN=9DA2265C7745889844BF642CCD770F22C97DC978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:81:12:1b:99:5a:9f:58:f4:c3:47:86:cc:cf: 11:6f:d0:ab:61:d7:89:f0:32:38:cf:b7:a3:95:5d: 03:65:6b:96:37:12:f6:d0:8a:48:ba:c8:56:26:84: 67:11:f8:40:50:5e:7d:6c:bf:ff:b1:c7:0d:db:6a: 12:8b:2e:52:6b:b1:2c:1f:7a:44:59:a9:42:14:6a: 89:35:10:40:a4:11:da:24:fe:36:3d:d7:66:b8:d7: 12:af:70:90:83:9d:1e:a7:f2:72:31:b5:ff:df:57: fd:e6:63:2a:63:35:4d:ed:a7:03:2b:e0:9c:41:c0: e6:bb:3a:b5:ab:82:c1:57:31:42:00:96:ee:95:c1: 91:ef:a2:99:65:57:ef:dd:2e:27:0e:d6:dd:43:45: 30:73:6b:1d:40:4e:70:cb:a1:d3:e4:03:16:1a:2b: 56:5b:66:68:e8:c7:c6:93:86:4b:c9:3f:09:66:f9: fa:3c:87:ac:86:05:f8:ba:48:77:4c:70:ac:b3:7d: 71:8a:5d:9c:54:2e:fa:de:e0:42:4b:18:50:ce:84: c9:72:b4:33:1e:0e:24:af:fd:61:52:09:d8:98:df: db:fa:6f:54:07:67:7c:b2:52:ae:cb:a9:9b:69:b1: 86:a4:31:be:a5:1e:8a:e7:62:e6:80:69:2c:5a:68: 26:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:A2:26:5C:77:45:88:98:44:BF:64:2C:CD:77:0F:22:C9:7D:C9:78 X509v3 Authority Key Identifier: keyid:9C:F0:5E:70:24:D4:A4:87:E0:B7:9E:2F:57:52:5B:F3:45:DB:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPBecCTUpIfgt54vV1Jb80XbU-w.cer Subject Information Access: Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/0/323430373a623963303a3a2f33322d3438203d3e203537363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:b9c0::/32 Signature Algorithm: sha256WithRSAEncryption 3e:db:c0:14:45:67:94:5f:d7:16:a1:3b:2d:7c:4b:c5:53:22: fe:e5:5d:bd:14:c6:47:d9:5b:dd:8b:fe:d5:b7:99:54:e3:17: 5e:3d:1d:f8:8b:e8:b4:32:94:e0:dd:cb:34:12:c1:a9:bf:4a: f1:e1:6a:74:fe:01:5d:e3:97:f1:4e:89:45:81:cc:4d:79:e3: 0a:9b:38:e6:71:8d:15:1f:62:8e:13:6e:37:30:b4:cb:e9:e6: a0:2b:17:e4:35:d3:39:a1:a9:7f:e1:ee:e5:28:ba:6e:61:be: 6b:b6:b6:ce:97:d9:f7:6a:b4:c4:7e:a8:25:a4:77:68:b0:cc: 85:94:f8:06:af:4e:30:88:0e:39:ba:f3:2c:77:f7:f8:9c:47: 4a:57:c6:cb:c6:06:db:50:03:a8:75:db:09:e1:cd:77:d9:51: f3:9b:8d:37:09:f9:e2:3c:45:84:59:ec:9d:15:98:8f:fa:74: 69:8f:5b:48:af:d3:3d:14:4e:eb:fc:af:a0:d5:2e:32:2c:c3: 6f:25:61:fc:e9:41:60:f0:28:72:a4:7c:96:1a:1f:9d:12:c8: 4d:94:73:4c:dc:ee:15:b6:b1:3e:9a:2c:02:c8:c6:eb:e5:12: 2e:ba:1c:4e:34:0b:57:0b:47:2d:64:f6:42:2c:c4:c9:fd:6d: 1b:13:91:34 -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUF3/vuo8w/vpuvbk87mCC3SPkFp0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjFDMzMwMDAwMTEwLwYDVQQFEyg5Q0YwNUU3MDI0 RDRBNDg3RTBCNzlFMkY1NzUyNUJGMzQ1REI1M0VDMB4XDTI0MTEwMzIyMjUyNVoX DTI1MTEwMjIyMzAyNVowMzExMC8GA1UEAxMoOURBMjI2NUM3NzQ1ODg5ODQ0QkY2 NDJDQ0Q3NzBGMjJDOTdEQzk3ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALGBEhuZWp9Y9MNHhszPEW/Qq2HXifAyOM+3o5VdA2VrljcS9tCKSLrIViaE ZxH4QFBefWy//7HHDdtqEosuUmuxLB96RFmpQhRqiTUQQKQR2iT+Nj3XZrjXEq9w kIOdHqfycjG1/99X/eZjKmM1Te2nAyvgnEHA5rs6tauCwVcxQgCW7pXBke+imWVX 790uJw7W3UNFMHNrHUBOcMuh0+QDFhorVltmaOjHxpOGS8k/CWb5+jyHrIYF+LpI d0xwrLN9cYpdnFQu+t7gQksYUM6EyXK0Mx4OJK/9YVIJ2Jjf2/pvVAdnfLJSrsup m2mxhqQxvqUeiudi5oBpLFpoJsECAwEAAaOCAe0wggHpMB0GA1UdDgQWBBSdoiZc d0WImES/ZCzNdw8iyX3JeDAfBgNVHSMEGDAWgBSc8F5wJNSkh+C3ni9XUlvzRdtT 7DAOBgNVHQ8BAf8EBAMCB4AwYQYDVR0fBFowWDBWoFSgUoZQcnN5bmM6Ly9yc3lu Yy5ycC5raS9yZXBvL21pc2FrYWlvLzAvOUNGMDVFNzAyNEQ0QTQ4N0UwQjc5RTJG NTc1MjVCRjM0NURCNTNFQy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAC hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2 MTFFMkJCNDY4RjdDNzJGRDFGRjIvblBCZWNDVFVwSWZndDU0dlYxSmI4MFhiVS13 LmNlcjB4BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJzeW5jOi8vcnN5bmMu cnAua2kvcmVwby9taXNha2Fpby8wLzMyMzQzMDM3M2E2MjM5NjMzMDNhM2EyZjMz MzIyZDM0MzgyMDNkM2UyMDM1MzczNjM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB7nAMA0GCSqG SIb3DQEBCwUAA4IBAQA+28AURWeUX9cWoTstfEvFUyL+5V29FMZH2Vvdi/7Vt5lU 4xdePR34i+i0MpTg3cs0EsGpv0rx4Wp0/gFd45fxTolFgcxNeeMKmzjmcY0VH2KO E243MLTL6eagKxfkNdM5oal/4e7lKLpuYb5rtrbOl9n3arTEfqglpHdosMyFlPgG r04wiA45uvMsd/f4nEdKV8bLxgbbUAOoddsJ4c132VHzm403CfniPEWEWeydFZiP +nRpj1tIr9M9FE7r/K+g1S4yLMNvJWH86UFg8ChypHyWGh+dEshNlHNM3O4VtrE+ miwCyMbr5RIuuhxONAtXC0ctZPZCLMTJ/W0bE5E0 -----END CERTIFICATE-----Generated at Sat Nov 23 06:18:04 2024 by rpki-client on console-ams.rpki-client.org