$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58381.roa File: AS58381.roa (raw, json) Hash identifier: DuI6PgwNBvJqVGwC4EdoEQPhN+4FoA3zQfu7lUK9q9o= Subject key identifier: 08:9D:36:33:F5:E3:28:7C:80:EA:2B:A6:AA:4F:CB:29:FA:FC:C8:15 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 78DBC212BFD7323201078C9B2A18F786AEE7237D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58381.roa Signing time: Thu 05 Oct 2023 04:43:37 +0000 ROA not before: Thu 05 Oct 2023 04:38:37 +0000 ROA not after: Thu 03 Oct 2024 04:43:37 +0000 asID: 58381 IP address blocks: 2401:4160::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 20:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:db:c2:12:bf:d7:32:32:01:07:8c:9b:2a:18:f7:86:ae:e7:23:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 5 04:38:37 2023 GMT Not After : Oct 3 04:43:37 2024 GMT Subject: CN=089D3633F5E3287C80EA2BA6AA4FCB29FAFCC815 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:40:27:a5:d6:60:d6:a3:da:42:8c:21:b8:e6: 56:5c:73:b0:21:95:66:a2:66:7c:e7:34:15:39:0f: 10:5d:55:71:d1:47:cb:ed:70:b4:4e:d9:dd:0e:27: 04:75:51:bd:d3:59:50:17:df:f1:89:ee:3c:de:f2: 12:41:ae:ba:e7:73:bf:c1:33:1d:4b:e3:80:30:b1: 57:a0:51:22:7f:95:b3:b1:33:0e:d0:00:bb:8b:a4: 7a:ca:ba:5d:4b:f2:43:7a:80:e1:03:01:81:d4:93: 37:8e:6c:a1:ae:3f:42:5c:80:5d:ec:cc:eb:0f:c1: fb:4d:4e:ec:95:c8:e9:11:35:bd:78:1c:62:a8:76: 74:fd:68:8a:43:44:7e:c9:95:fe:17:fd:71:e6:a2: 07:2c:98:fc:9c:d2:29:a4:ca:e0:3f:d3:82:1b:a2: 0f:14:27:19:07:b1:d2:71:4b:95:55:c7:e4:d6:68: 1c:d3:e6:b7:ae:e0:36:ad:6a:b3:56:30:17:6a:54: c8:15:e6:6e:1e:b7:b4:4b:82:f3:29:b3:06:62:b1: 88:73:76:5f:c5:75:61:e4:8c:62:82:b2:5e:49:0a: 70:f1:a6:5d:a3:53:0c:6a:97:db:38:75:06:18:1f: 6d:cd:9d:8c:16:0b:66:90:dd:e2:1b:3b:7e:18:5c: 0e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:9D:36:33:F5:E3:28:7C:80:EA:2B:A6:AA:4F:CB:29:FA:FC:C8:15 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58381.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:4160::/32 Signature Algorithm: sha256WithRSAEncryption 3b:9c:d6:b5:77:b7:c0:2c:6b:ae:c0:f0:e3:6d:b0:53:b3:0a: 57:31:a7:79:41:f7:63:44:26:ab:b5:e2:39:13:27:a3:21:4e: 0b:21:59:b5:03:d8:25:f6:b6:be:9c:87:e0:b3:21:43:73:21: 08:9d:37:b9:8a:4c:4b:62:a4:8e:c7:a1:4e:70:3e:02:ce:da: fa:b0:2f:8b:8d:ce:a0:74:85:b7:57:1d:d6:8b:b4:8c:9a:61: cb:7b:ec:a3:3e:22:90:74:e8:f0:5a:db:b5:cf:8f:c6:ed:c0: c5:b9:88:f6:02:ff:3c:fb:93:e0:04:12:57:fa:18:ed:b1:eb: 76:dd:eb:0c:1f:e2:70:e6:f9:b3:ad:b7:d2:e6:5e:f2:33:94: e7:16:d5:2d:68:0e:20:52:bc:70:61:a6:fa:e4:46:76:04:1b: 7c:38:e8:ab:a4:fe:63:9c:be:8b:a6:a2:dd:d4:73:15:f7:72: df:bf:ef:de:fd:fc:df:bb:41:3a:6c:97:01:f5:95:37:c1:a7: 95:e1:6c:40:19:22:18:c2:cd:19:8a:1b:0c:4c:d3:94:a2:16: 9a:bb:aa:91:44:6a:55:3f:f7:eb:6e:32:7c:6d:1b:01:d8:be: 4e:be:34:52:b3:2b:c5:2a:b3:5a:bf:38:a7:e6:f8:45:2f:4a: 3f:87:b1:d0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUeNvCEr/XMjIBB4ybKhj3hq7nI30wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwNTA0MzgzN1oX DTI0MTAwMzA0NDMzN1owMzExMC8GA1UEAxMoMDg5RDM2MzNGNUUzMjg3QzgwRUEy QkE2QUE0RkNCMjlGQUZDQzgxNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMxAJ6XWYNaj2kKMIbjmVlxzsCGVZqJmfOc0FTkPEF1VcdFHy+1wtE7Z3Q4n BHVRvdNZUBff8YnuPN7yEkGuuudzv8EzHUvjgDCxV6BRIn+Vs7EzDtAAu4ukesq6 XUvyQ3qA4QMBgdSTN45soa4/QlyAXezM6w/B+01O7JXI6RE1vXgcYqh2dP1oikNE fsmV/hf9ceaiByyY/JzSKaTK4D/TghuiDxQnGQex0nFLlVXH5NZoHNPmt67gNq1q s1YwF2pUyBXmbh63tEuC8ymzBmKxiHN2X8V1YeSMYoKyXkkKcPGmXaNTDGqX2zh1 Bhgfbc2djBYLZpDd4hs7fhhcDm8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQInTYz 9eMofIDqK6aqT8sp+vzIFTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4MzgxLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAFBYDANBgkqhkiG9w0BAQsFAAOCAQEAO5zWtXe3wCxrrsDw422w U7MKVzGneUH3Y0Qmq7XiORMnoyFOCyFZtQPYJfa2vpyH4LMhQ3MhCJ03uYpMS2Kk jsehTnA+As7a+rAvi43OoHSFt1cd1ou0jJphy3vsoz4ikHTo8Frbtc+Pxu3AxbmI 9gL/PPuT4AQSV/oY7bHrdt3rDB/icOb5s6230uZe8jOU5xbVLWgOIFK8cGGm+uRG dgQbfDjoq6T+Y5y+i6ai3dRzFfdy37/v3v3837tBOmyXAfWVN8GnleFsQBkiGMLN GYobDEzTlKIWmruqkURqVT/3624yfG0bAdi+Tr40UrMrxSqzWr84p+b4RS9KP4ex 0A== -----END CERTIFICATE-----Generated at Sat Apr 27 13:32:34 2024 by rpki-client on console-ams.rpki-client.org