Route Origin Authorization
$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a38303a3a2f34342d3438203d3e203436393937.roa
File: 323430363a343434303a38303a3a2f34342d3438203d3e203436393937.roa (raw, json)
Hash identifier: NC46EeBAd+aePRB8f9CzQf6C6pep7n/solMPrbFb3xY=
Subject key identifier: D6:5C:99:BE:DE:16:40:BB:A0:99:27:70:2F:B1:2B:93:FE:A2:7D:A1
Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Certificate serial: 546C0324FB597EC035B0B09236C5BD85A2FD8713
Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a38303a3a2f34342d3438203d3e203436393937.roa
Signing time: Tue 19 Mar 2024 07:00:00 +0000
ROA not before: Tue 19 Mar 2024 06:55:00 +0000
ROA not after: Wed 19 Mar 2025 07:00:00 +0000
asID: 46997
IP address blocks: 2406:4440:80::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl
rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft
rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl
rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 07 May 2024 10:08:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:6c:03:24:fb:59:7e:c0:35:b0:b0:92:36:c5:bd:85:a2:fd:87:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Validity
Not Before: Mar 19 06:55:00 2024 GMT
Not After : Mar 19 07:00:00 2025 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:21:10:66:b4:0b:e2:cc:3d:dc:df:21:a3:d9:
42:e8:74:ca:84:7c:87:45:c5:57:43:79:a2:b9:cf:
f9:b2:06:18:9a:e5:21:03:93:4c:99:bc:80:a8:0c:
66:41:fe:c7:4a:99:1c:3f:03:03:41:95:b4:af:e9:
49:29:95:39:7c:73:57:a0:2e:2f:68:43:5d:f3:ee:
9e:f7:a6:a9:23:57:a8:25:42:17:c8:ab:1e:11:a9:
3a:f4:9a:7f:ad:78:af:8a:15:e8:c1:2a:31:f2:e3:
55:08:15:7a:9f:b1:64:63:4e:33:78:c2:c4:32:25:
4d:bb:2c:d4:5f:f4:ab:29:22:e0:cd:c4:f5:b5:24:
89:06:b7:a3:52:a9:22:51:cf:d0:a0:d8:e4:9d:b6:
46:f7:6c:e8:a6:ac:65:7e:3a:88:0a:b1:59:12:35:
2f:22:fe:43:48:f1:a3:32:58:45:da:02:7e:0a:c4:
ff:b4:f3:d8:6d:ac:49:f6:14:b8:e2:bf:de:d0:36:
75:cc:4f:9b:67:29:47:1b:6d:cc:63:71:dd:fb:4e:
06:0c:12:4c:61:1c:52:6b:1e:0b:8e:08:d5:65:ed:
5e:d3:55:de:cb:33:16:5d:dc:22:f5:89:c7:66:74:
d1:c2:e0:a5:09:76:9f:c4:64:eb:5a:a8:e0:eb:59:
96:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:5C:99:BE:DE:16:40:BB:A0:99:27:70:2F:B1:2B:93:FE:A2:7D:A1
X509v3 Authority Key Identifier:
keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl
Authority Information Access:
CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a38303a3a2f34342d3438203d3e203436393937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:4440:80::/44
Signature Algorithm: sha256WithRSAEncryption
c7:9e:5c:8d:56:f8:5a:86:95:1a:8e:b9:ea:ef:7d:a0:8d:10:
04:81:21:be:e1:f5:54:57:2e:59:8f:e1:3f:8e:1c:d8:9c:f9:
ec:ba:cc:32:4e:38:4c:f3:98:15:da:71:c5:2d:33:ff:df:a4:
87:58:89:91:0f:c9:44:02:1e:95:90:58:e0:c7:46:e2:69:4b:
79:e1:20:4c:83:d7:58:b5:ab:71:e2:18:d0:c7:1a:eb:ce:27:
df:4c:3f:ca:5d:aa:b4:0b:22:1a:9e:ae:a0:8c:58:f1:fa:39:
7c:be:45:a7:46:72:7e:05:72:85:7b:39:ac:5c:c2:f1:8f:47:
52:61:5d:05:df:ae:78:e8:0a:37:4e:53:9b:be:6b:d0:92:e1:
4b:8c:83:e5:ee:38:c7:ae:90:1e:77:13:35:df:8a:c3:eb:2b:
c9:73:2c:5a:db:aa:c6:d7:f0:63:da:e1:e2:5a:f0:a7:2f:7d:
49:aa:1c:e3:8d:90:c9:7f:62:14:d5:95:69:29:22:5b:3c:ca:
07:aa:3a:8b:dc:a3:a6:a6:0a:64:d4:7f:0a:c4:eb:00:c9:17:
f2:7e:6d:cd:2a:66:90:b3:9b:03:e9:3d:0b:fd:6f:28:3a:71:
b1:75:e6:43:8b:69:c0:fd:6c:2c:09:e0:51:95:f5:42:e5:80:
e5:d1:e8:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 15:05:02 2024 by rpki-client on console-ams.rpki-client.org