$ rpki-client -vvf rsync.rp.ki/repo/misakaio/0/323430373a623963303a3a2f33322d3438203d3e20393137.roa File: 323430373a623963303a3a2f33322d3438203d3e20393137.roa (raw, json) Hash identifier: wQms65uxYZWClMs+PtDfuFviS48pXEOPsERJ/M86/R4= Subject key identifier: FC:3F:08:E9:4C:30:6B:D3:39:13:5C:B6:EF:A0:02:9A:EF:31:8B:75 Certificate issuer: /CN=A9121C330000/serialNumber=9CF05E7024D4A487E0B79E2F57525BF345DB53EC Certificate serial: 4F160BECDB88C693901BA40B6F73052F603F2A93 Authority key identifier: 9C:F0:5E:70:24:D4:A4:87:E0:B7:9E:2F:57:52:5B:F3:45:DB:53:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPBecCTUpIfgt54vV1Jb80XbU-w.cer Subject info access: rsync://rsync.rp.ki/repo/misakaio/0/323430373a623963303a3a2f33322d3438203d3e20393137.roa Signing time: Sun 03 Dec 2023 21:38:27 +0000 ROA not before: Sun 03 Dec 2023 21:33:27 +0000 ROA not after: Sun 01 Dec 2024 21:38:27 +0000 asID: 917 IP address blocks: 2407:b9c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.crl rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPBecCTUpIfgt54vV1Jb80XbU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:16:0b:ec:db:88:c6:93:90:1b:a4:0b:6f:73:05:2f:60:3f:2a:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121C330000/serialNumber=9CF05E7024D4A487E0B79E2F57525BF345DB53EC Validity Not Before: Dec 3 21:33:27 2023 GMT Not After : Dec 1 21:38:27 2024 GMT Subject: CN=FC3F08E94C306BD339135CB6EFA0029AEF318B75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4d:4e:f7:3b:91:50:57:e1:de:9a:30:54:ae: 33:3b:96:aa:13:01:50:dc:10:43:3f:be:08:79:c5: d7:7f:8f:ee:df:dc:be:9a:c2:cc:ca:11:a8:5d:a1: 18:03:89:3c:37:f3:79:53:73:d0:71:ea:65:61:2c: 62:09:d0:63:6c:9e:d5:2f:c0:ba:06:1c:1b:72:21: 9d:03:9b:9a:70:c4:0b:6f:15:c9:11:d7:4f:ae:72: 41:5e:b0:99:de:51:38:0a:27:ea:c4:8b:95:6b:c9: f7:a9:62:a3:5a:4e:c4:1c:92:a3:0b:38:cf:9e:1b: 25:3b:f7:6b:fe:07:48:e6:4f:ee:64:5c:e2:08:d6: ea:db:ab:52:5f:0c:1b:08:ef:94:ce:70:71:73:25: 84:d2:aa:0d:06:dd:ba:d4:cb:d1:5e:a9:15:32:d9: a8:8e:ec:8f:27:a4:e4:87:99:1c:5e:0d:da:f9:b0: ad:68:54:f0:3b:2b:4c:2d:69:c7:58:93:a0:15:e3: 96:6c:0d:bf:0f:d3:7e:02:9c:7c:4d:b9:8d:7c:bd: 47:11:db:6a:e5:06:bd:0e:5f:72:89:55:6c:72:b5: 02:63:30:a3:1c:ff:4c:8e:23:89:82:9f:b6:2b:66: ef:2a:d4:df:c0:d7:8a:8d:0c:30:51:8c:8e:92:23: 80:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3F:08:E9:4C:30:6B:D3:39:13:5C:B6:EF:A0:02:9A:EF:31:8B:75 X509v3 Authority Key Identifier: keyid:9C:F0:5E:70:24:D4:A4:87:E0:B7:9E:2F:57:52:5B:F3:45:DB:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPBecCTUpIfgt54vV1Jb80XbU-w.cer Subject Information Access: Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/0/323430373a623963303a3a2f33322d3438203d3e20393137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:b9c0::/32 Signature Algorithm: sha256WithRSAEncryption 73:81:b2:c7:29:cc:84:3f:33:17:df:40:28:13:ae:81:57:bc: 13:88:40:a8:46:a0:63:b5:ce:06:c5:92:b5:98:6a:8e:01:6d: e6:9b:48:38:f1:37:5b:d5:84:92:2e:39:73:81:ed:e0:34:17: 75:fa:86:f7:c7:a6:7a:bb:ef:8f:51:7d:b5:dc:1f:8d:9f:35: 42:73:d8:de:27:06:eb:55:71:78:94:37:31:08:08:32:eb:3a: 0e:76:9c:4e:e0:2c:e8:77:0b:8f:b5:9b:fb:45:38:32:f0:8a: dc:6f:e1:31:43:59:8b:34:89:52:c7:d6:58:79:66:70:2e:f9: 0e:fb:91:cd:0f:e2:d2:fd:65:b6:55:4c:37:64:ac:96:9e:45: 0c:1d:21:af:d0:4c:4b:55:51:0f:7c:1c:e4:c7:a1:20:80:98: d5:d9:d8:e2:d8:6b:39:ef:6b:e0:c9:dc:cc:c8:47:87:93:84: 3a:08:5d:9b:c9:79:a2:53:fd:08:46:48:19:8a:67:34:c7:92: 1a:ae:cb:5f:2e:bb:ea:c6:95:b5:00:2f:c0:fd:76:e9:a3:fa: 11:81:41:64:c7:e4:a5:71:e7:a2:a2:5d:03:50:e8:1d:c8:5c: 59:45:13:7c:7e:81:af:6a:ca:4a:63:58:98:23:09:21:a5:6f: cb:57:4f:b0 -----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgIUTxYL7NuIxpOQG6QLb3MFL2A/KpMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjFDMzMwMDAwMTEwLwYDVQQFEyg5Q0YwNUU3MDI0 RDRBNDg3RTBCNzlFMkY1NzUyNUJGMzQ1REI1M0VDMB4XDTIzMTIwMzIxMzMyN1oX DTI0MTIwMTIxMzgyN1owMzExMC8GA1UEAxMoRkMzRjA4RTk0QzMwNkJEMzM5MTM1 Q0I2RUZBMDAyOUFFRjMxOEI3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALxNTvc7kVBX4d6aMFSuMzuWqhMBUNwQQz++CHnF13+P7t/cvprCzMoRqF2h GAOJPDfzeVNz0HHqZWEsYgnQY2ye1S/AugYcG3IhnQObmnDEC28VyRHXT65yQV6w md5ROAon6sSLlWvJ96lio1pOxBySows4z54bJTv3a/4HSOZP7mRc4gjW6turUl8M GwjvlM5wcXMlhNKqDQbdutTL0V6pFTLZqI7sjyek5IeZHF4N2vmwrWhU8DsrTC1p x1iToBXjlmwNvw/TfgKcfE25jXy9RxHbauUGvQ5fcolVbHK1AmMwoxz/TI4jiYKf titm7yrU38DXio0MMFGMjpIjgL0CAwEAAaOCAekwggHlMB0GA1UdDgQWBBT8Pwjp TDBr0zkTXLbvoAKa7zGLdTAfBgNVHSMEGDAWgBSc8F5wJNSkh+C3ni9XUlvzRdtT 7DAOBgNVHQ8BAf8EBAMCB4AwYQYDVR0fBFowWDBWoFSgUoZQcnN5bmM6Ly9yc3lu Yy5ycC5raS9yZXBvL21pc2FrYWlvLzAvOUNGMDVFNzAyNEQ0QTQ4N0UwQjc5RTJG NTc1MjVCRjM0NURCNTNFQy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAC hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2 MTFFMkJCNDY4RjdDNzJGRDFGRjIvblBCZWNDVFVwSWZndDU0dlYxSmI4MFhiVS13 LmNlcjB0BggrBgEFBQcBCwRoMGYwZAYIKwYBBQUHMAuGWHJzeW5jOi8vcnN5bmMu cnAua2kvcmVwby9taXNha2Fpby8wLzMyMzQzMDM3M2E2MjM5NjMzMDNhM2EyZjMz MzIyZDM0MzgyMDNkM2UyMDM5MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHucAwDQYJKoZIhvcN AQELBQADggEBAHOBsscpzIQ/MxffQCgTroFXvBOIQKhGoGO1zgbFkrWYao4Bbeab SDjxN1vVhJIuOXOB7eA0F3X6hvfHpnq7749RfbXcH42fNUJz2N4nButVcXiUNzEI CDLrOg52nE7gLOh3C4+1m/tFODLwitxv4TFDWYs0iVLH1lh5ZnAu+Q77kc0P4tL9 ZbZVTDdkrJaeRQwdIa/QTEtVUQ98HOTHoSCAmNXZ2OLYaznva+DJ3MzIR4eThDoI XZvJeaJT/QhGSBmKZzTHkhquy18uu+rGlbUAL8D9dumj+hGBQWTH5KVx56KiXQNQ 6B3IXFlFE3x+ga9qykpjWJgjCSGlb8tXT7A= -----END CERTIFICATE-----Generated at Tue May 21 10:00:37 2024 by rpki-client on console-fra.rpki-client.org