$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38778.roa File: AS38778.roa (raw, json) Hash identifier: aHDbqAKfkg/bthngBn3QTCZop/lodsJ9eC2/iJpcdZw= Subject key identifier: 9D:BC:2A:CA:E0:5E:CC:A5:29:DB:F4:CD:0E:1B:ED:2D:5C:BD:BA:45 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 43E5DDC2E3DC436587D7353C4A2D07A302E2159F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38778.roa Signing time: Thu 16 Nov 2023 03:31:35 +0000 ROA not before: Thu 16 Nov 2023 03:26:35 +0000 ROA not after: Thu 14 Nov 2024 03:31:35 +0000 asID: 38778 IP address blocks: 2407:f900::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e5:dd:c2:e3:dc:43:65:87:d7:35:3c:4a:2d:07:a3:02:e2:15:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 16 03:26:35 2023 GMT Not After : Nov 14 03:31:35 2024 GMT Subject: CN=9DBC2ACAE05ECCA529DBF4CD0E1BED2D5CBDBA45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:36:fd:ae:d4:df:e1:b0:84:10:f1:09:48:67: 49:ee:9d:a3:e8:c6:66:89:35:f9:e0:6a:97:dd:ff: 0b:3c:3e:84:2e:16:a3:7c:3c:1d:b8:86:18:b5:5f: 55:b6:a3:9a:94:a5:8b:9d:c8:fc:8c:35:ff:f5:da: 4d:3d:bb:7e:37:5c:58:c1:3a:b3:e1:e4:00:4f:db: 19:82:9b:59:7d:98:a1:ff:3e:0a:3a:e2:0c:e3:2e: 3f:30:25:40:a6:d9:ad:4f:c7:df:3f:5b:d5:f5:0c: a9:4c:c2:af:c1:12:4e:a7:9f:ba:47:63:db:27:da: 55:97:a4:04:cc:7d:a9:76:08:d9:c1:e9:d3:cc:e9: 72:26:c4:fc:09:96:41:22:3c:82:da:3f:36:f5:15: 12:1b:a8:73:79:6e:0e:bf:e8:38:d3:87:52:2f:9c: 63:f5:9a:22:23:48:3d:1e:95:51:40:44:08:02:ab: 5b:0b:6f:88:9e:0e:7f:f2:7b:ad:81:55:a1:d2:84: ab:6a:c0:68:cd:49:4d:fe:21:17:b9:4a:d2:a4:76: 7a:27:df:9c:7d:00:70:68:9b:48:51:94:b9:41:f4: 5b:c7:d5:f5:90:96:78:02:52:04:e5:63:f7:d0:f3: ea:3d:ab:61:89:25:b5:9a:76:ea:ee:37:ea:f3:52: 0e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:BC:2A:CA:E0:5E:CC:A5:29:DB:F4:CD:0E:1B:ED:2D:5C:BD:BA:45 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38778.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:f900::/32 Signature Algorithm: sha256WithRSAEncryption 57:8f:ed:49:ed:a9:35:aa:8e:5c:35:b1:d2:df:67:84:bb:6e: 13:39:ec:3f:c2:ed:62:9f:92:23:cc:23:fa:60:d1:68:01:9d: 38:be:34:71:79:f4:ae:02:0c:06:e8:31:a9:2f:15:a3:0f:c2: a7:87:3c:08:26:cb:f7:01:c0:16:ce:fa:b6:f2:26:b6:ba:7b: ef:aa:85:3f:26:6d:25:7f:1f:07:9b:e0:04:71:c0:9f:44:18: 80:69:86:ae:92:47:6a:18:56:7c:15:80:8a:af:8e:33:0b:0b: b9:37:d5:3e:05:dc:f6:9d:92:9e:e6:df:da:95:9d:07:ad:92: ba:82:81:b9:56:a2:07:96:c7:d5:62:b7:b9:56:c6:52:95:2d: 50:ad:7b:a3:c9:10:d3:26:1b:c0:6d:ba:2c:4b:87:f7:f4:78: b8:e9:5d:31:a8:cf:b0:3a:6c:69:ca:df:a9:d5:6d:c1:43:b8: be:8f:93:a4:61:ca:ab:d7:05:bd:0f:6a:db:91:67:13:b8:d7: 7b:50:75:6f:f8:ea:91:5e:99:50:cb:15:81:7d:69:af:e3:e9: ef:08:11:ec:ed:a7:08:02:c9:1b:30:e1:45:ed:40:ee:49:2a: cd:5e:00:a1:02:e0:ad:4a:10:9a:a8:d6:eb:02:90:2a:d2:74: 0a:9c:0d:c4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQ+XdwuPcQ2WH1zU8Si0HowLiFZ8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNjAzMjYzNVoX DTI0MTExNDAzMzEzNVowMzExMC8GA1UEAxMoOURCQzJBQ0FFMDVFQ0NBNTI5REJG NENEMEUxQkVEMkQ1Q0JEQkE0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALw2/a7U3+GwhBDxCUhnSe6do+jGZok1+eBql93/Czw+hC4Wo3w8HbiGGLVf VbajmpSli53I/Iw1//XaTT27fjdcWME6s+HkAE/bGYKbWX2Yof8+CjriDOMuPzAl QKbZrU/H3z9b1fUMqUzCr8ESTqefukdj2yfaVZekBMx9qXYI2cHp08zpcibE/AmW QSI8gto/NvUVEhuoc3luDr/oONOHUi+cY/WaIiNIPR6VUUBECAKrWwtviJ4Of/J7 rYFVodKEq2rAaM1JTf4hF7lK0qR2eiffnH0AcGibSFGUuUH0W8fV9ZCWeAJSBOVj 99Dz6j2rYYkltZp26u436vNSDu8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSdvCrK 4F7MpSnb9M0OG+0tXL26RTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4Nzc4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAf5ADANBgkqhkiG9w0BAQsFAAOCAQEAV4/tSe2pNaqOXDWx0t9n hLtuEznsP8LtYp+SI8wj+mDRaAGdOL40cXn0rgIMBugxqS8Vow/Cp4c8CCbL9wHA Fs76tvImtrp776qFPyZtJX8fB5vgBHHAn0QYgGmGrpJHahhWfBWAiq+OMwsLuTfV PgXc9p2Snubf2pWdB62SuoKBuVaiB5bH1WK3uVbGUpUtUK17o8kQ0yYbwG26LEuH 9/R4uOldMajPsDpsacrfqdVtwUO4vo+TpGHKq9cFvQ9q25FnE7jXe1B1b/jqkV6Z UMsVgX1pr+Pp7wgR7O2nCALJGzDhRe1A7kkqzV4AoQLgrUoQmqjW6wKQKtJ0CpwN xA== -----END CERTIFICATE-----Generated at Fri May 3 04:42:28 2024 by rpki-client on console-fra.rpki-client.org