Route Origin Authorization
$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a37303a3a2f34342d3434203d3e20333936333033.roa
File: 323430363a343434303a37303a3a2f34342d3434203d3e20333936333033.roa (raw, json)
Hash identifier: eTLy/rY002hBPuygo79gy6WtD/WQk8Tuf3awi/rYdH8=
Subject key identifier: 47:2B:BB:B4:13:5A:A8:96:59:EF:39:1F:38:33:5E:4D:DC:A7:9A:43
Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Certificate serial: 12DFC2213A43B3DCB2D4B844D240550F58277791
Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a37303a3a2f34342d3434203d3e20333936333033.roa
Signing time: Fri 24 Nov 2023 05:00:01 +0000
ROA not before: Fri 24 Nov 2023 04:55:01 +0000
ROA not after: Sun 24 Nov 2024 05:00:01 +0000
asID: 396303
IP address blocks: 2406:4440:70::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl
rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft
rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl
rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 10:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:df:c2:21:3a:43:b3:dc:b2:d4:b8:44:d2:40:55:0f:58:27:77:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Validity
Not Before: Nov 24 04:55:01 2023 GMT
Not After : Nov 24 05:00:01 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:41:9b:3d:1d:94:21:71:1f:fd:b3:3f:d4:2d:
68:6c:d2:3c:87:60:de:6d:a7:d9:07:51:b9:44:98:
44:85:53:8e:c4:a7:26:9c:b6:6b:dc:c1:d8:63:bf:
3f:5f:51:f8:b1:be:db:8a:a1:5e:ca:5e:1e:46:0a:
96:91:29:dd:7a:8d:36:eb:94:46:56:94:77:58:2c:
4b:c8:0e:21:2a:18:dd:86:97:b4:80:a3:ca:c6:ac:
d0:4a:71:d7:3f:02:8d:31:af:7a:63:14:59:93:a2:
2b:a4:da:d6:24:35:18:1e:22:70:f8:98:4b:0d:9e:
b8:72:25:90:65:0b:ad:34:94:21:23:d2:7d:3b:93:
24:c9:42:45:93:a2:05:dd:da:ea:00:7c:64:0b:61:
52:5f:2c:0a:87:7b:26:57:82:e7:09:d2:0e:ba:ce:
f9:99:72:5b:42:7a:75:2e:f9:b5:ee:48:9d:b1:36:
26:57:e3:10:50:0f:be:f9:fa:4b:c8:09:b3:2c:24:
ae:0c:22:c9:34:03:81:b6:e4:9a:8b:a3:02:54:9b:
9e:e1:c0:ae:63:c4:68:d7:d4:f2:32:b0:e3:3f:70:
c5:a7:00:31:48:fd:e9:23:f7:48:c5:cf:67:69:a7:
6b:7b:aa:01:60:c8:b5:43:20:95:66:58:6f:a6:85:
71:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:2B:BB:B4:13:5A:A8:96:59:EF:39:1F:38:33:5E:4D:DC:A7:9A:43
X509v3 Authority Key Identifier:
keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl
Authority Information Access:
CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a37303a3a2f34342d3434203d3e20333936333033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:4440:70::/44
Signature Algorithm: sha256WithRSAEncryption
1e:19:38:7b:dd:10:64:67:83:27:d5:af:d3:8e:cd:95:fe:7e:
b6:c3:fb:1b:2d:e0:2e:fe:6c:ad:a8:0f:f2:24:85:9b:74:27:
2e:2d:0a:94:0d:2f:92:40:28:05:25:03:86:33:18:ad:03:23:
8e:3e:ac:72:c2:da:a9:1c:c8:0b:eb:57:c5:b5:b0:31:0b:f2:
71:26:33:62:e3:2a:84:b5:7a:9d:b7:56:fb:52:5c:6a:4b:62:
e2:79:e1:0f:b6:a8:e6:81:3f:38:c4:e2:18:f9:9c:ec:be:f5:
ec:8c:9f:41:dc:ce:73:41:42:23:b9:98:ff:cf:05:e6:78:5b:
41:14:87:35:6c:e0:7d:79:f8:b1:25:0c:00:95:1c:b4:73:e8:
48:a4:a0:60:5e:f4:69:34:a8:5d:92:4e:17:45:6b:dc:d9:82:
b1:14:3a:13:d0:92:5b:3a:ce:52:03:69:3b:c6:e3:1a:63:11:
0f:95:c5:58:c5:cf:79:5d:80:f1:06:aa:9d:88:e7:99:9e:ec:
32:ed:bc:90:4b:73:b7:90:63:1e:a8:07:89:76:97:e8:2c:8b:
16:5d:fd:d7:10:f3:26:b4:ab:d3:2e:b2:f4:35:c3:74:f7:3d:
b2:18:40:94:17:c3:f7:34:cf:d5:5f:86:ea:68:bf:ec:b4:43:
a4:63:56:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 12:23:49 2024 by rpki-client on console-ams.rpki-client.org