Route Origin Authorization
$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a35303a3a2f34342d3434203d3e20333936333033.roa
File: 323430363a343434303a35303a3a2f34342d3434203d3e20333936333033.roa (raw, json)
Hash identifier: QvWt+mYVbqg4EvfCf4LuV8jFBkDOKhmHPp36TZtK9DE=
Subject key identifier: A3:D2:A0:65:94:BF:30:95:19:F4:5A:F0:0D:25:27:15:FB:2A:56:6D
Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Certificate serial: 6AE819F496A08499ADD9C1EC5219132ED84E65AA
Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a35303a3a2f34342d3434203d3e20333936333033.roa
Signing time: Fri 24 Nov 2023 05:00:00 +0000
ROA not before: Fri 24 Nov 2023 04:55:00 +0000
ROA not after: Sun 24 Nov 2024 05:00:00 +0000
asID: 396303
IP address blocks: 2406:4440:50::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl
rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft
rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl
rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 10:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:e8:19:f4:96:a0:84:99:ad:d9:c1:ec:52:19:13:2e:d8:4e:65:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Validity
Not Before: Nov 24 04:55:00 2023 GMT
Not After : Nov 24 05:00:00 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a9:2b:94:8b:1f:79:6a:13:41:27:b8:54:e4:
59:5a:25:27:aa:33:5d:83:64:76:da:3f:3b:85:02:
0b:67:1c:af:13:5c:ac:9f:21:70:2f:7a:a5:5b:fd:
1f:63:57:77:83:6a:05:70:48:d7:ba:31:fc:1e:37:
1b:e5:90:ee:77:f3:33:1f:03:a6:13:72:a3:ab:04:
d3:92:43:bc:4f:c3:54:44:18:f2:17:3d:29:88:4b:
42:78:22:cb:92:cb:2f:18:4d:8f:4d:5d:a2:b4:66:
a0:53:24:5c:ab:24:1f:93:82:a8:a4:97:d3:57:92:
03:74:27:63:77:31:0c:1a:ae:ea:68:d0:d3:13:28:
c5:f5:14:3f:18:65:33:21:41:44:10:57:8d:28:e8:
66:16:f4:36:69:22:76:cc:96:09:72:f9:73:33:92:
3f:75:ce:42:04:a0:1c:48:85:b9:2a:07:78:43:75:
ad:03:66:1d:83:2e:b3:23:f8:60:4c:bb:55:81:a0:
30:96:2a:62:f4:3b:d6:f7:56:b9:d9:51:13:ee:09:
a5:f3:69:04:d4:8c:f1:7c:24:ad:d2:ab:e4:ec:c0:
6b:17:83:e9:9b:04:21:f6:a8:7b:c8:c9:d0:db:f1:
0f:a6:77:00:27:1a:c7:25:3f:cf:1a:52:31:26:47:
d9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:D2:A0:65:94:BF:30:95:19:F4:5A:F0:0D:25:27:15:FB:2A:56:6D
X509v3 Authority Key Identifier:
keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl
Authority Information Access:
CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a35303a3a2f34342d3434203d3e20333936333033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:4440:50::/44
Signature Algorithm: sha256WithRSAEncryption
02:17:24:88:87:c5:f6:9a:81:6c:32:49:30:70:28:2b:93:a4:
40:c6:42:97:bf:3f:2c:4c:19:c3:69:e1:a9:f5:6d:8b:4c:f0:
5f:ed:01:d0:a7:e8:fe:a5:49:b9:68:c4:a8:1f:1d:ad:36:06:
31:28:a1:9c:a4:d2:bf:22:45:88:4d:78:8b:03:7d:cc:20:2a:
b5:42:21:98:37:3c:a5:08:76:98:f3:b3:8d:d0:55:94:89:43:
04:7d:d0:1c:ad:4d:0d:b6:68:d6:a2:9b:fe:43:4e:1b:a3:ae:
fe:c5:73:55:f5:44:f7:8f:40:8b:1a:80:fd:06:7b:c4:e4:fc:
18:64:92:e0:3b:23:bb:50:9a:e5:c1:e1:4d:7c:42:17:ea:e0:
84:ea:fc:06:31:91:f6:ce:05:2d:08:a9:6a:b6:55:39:17:b5:
ef:c0:f4:58:78:29:e7:68:86:0b:58:24:65:3c:b3:cb:0c:d8:
8c:78:68:3b:1d:8f:1d:2f:3d:d7:0a:98:ff:ca:50:e7:cb:07:
b7:be:7d:f1:f2:02:bf:c7:8c:b1:38:5c:48:eb:05:68:8c:9d:
64:82:1b:93:fe:4a:e6:81:11:27:91:2b:13:9b:c0:22:28:09:
4e:fc:0d:07:9c:73:c4:fe:1f:54:be:0f:2c:74:05:06:18:71:
94:ce:c3:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 11:34:15 2024 by rpki-client on console-fra.rpki-client.org