$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e203338313733.roa File: 323430363a343434303a663030303a3a2f34342d3438203d3e203338313733.roa (raw, json) Hash identifier: RxGsIdlN6yfFJt01yqfdvZ4I2uLCgu9ShQWrUWlq200= Subject key identifier: CD:D0:CA:BF:C0:23:11:64:3F:55:25:91:78:E0:B2:E7:FA:7E:A8:D4 Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Certificate serial: 21AA659F1160AAFDD2170D03F399CA1D0422CBE0 Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e203338313733.roa Signing time: Sat 09 Dec 2023 05:00:00 +0000 ROA not before: Sat 09 Dec 2023 04:55:00 +0000 ROA not after: Mon 09 Dec 2024 05:00:00 +0000 asID: 38173 IP address blocks: 2406:4440:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 10:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:aa:65:9f:11:60:aa:fd:d2:17:0d:03:f3:99:ca:1d:04:22:cb:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Validity Not Before: Dec 9 04:55:00 2023 GMT Not After : Dec 9 05:00:00 2024 GMT Subject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ubject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:84:8e:f0:97:2e:46:dd:33:13:10:75:14:ef: b6:4c:b2:38:d8:5e:76:f7:40:dd:17:a8:f4:ed:8d: 4e:7d:9a:54:5f:b6:5e:95:33:3d:45:37:a8:27:b5: f6:4d:bb:a7:33:66:7d:bf:98:b7:e5:64:ee:d1:f0: 6d:f0:11:f4:8a:12:64:8d:c2:1f:16:61:56:a6:07: 73:03:1e:9b:7b:25:68:33:96:58:57:42:78:cc:18: 76:bc:0f:e0:3b:19:32:34:16:04:84:1a:23:11:f2: 5d:7f:72:c7:6e:55:51:41:c2:72:b1:89:95:30:64: 57:c2:d1:57:d5:ea:8a:95:44:11:9d:5f:48:de:03: f2:db:1a:28:28:d4:2e:35:d1:a9:91:84:4f:ec:02: ea:37:c7:c3:fe:b7:7e:ef:5f:fc:c3:b0:45:b0:17: 5f:6f:91:81:bd:bc:3f:32:b1:a8:e8:ea:90:f9:41: ef:61:bd:0b:8d:f1:13:74:5c:70:5e:18:a3:26:fc: 7e:20:44:62:94:90:69:ba:d4:4a:08:b7:67:b4:a7: 4a:ca:9e:56:c2:19:db:e4:67:c3:f5:71:9e:c0:e9: f2:b4:a4:cd:b9:a8:ce:10:74:a0:bc:d8:42:e4:9b: b6:a0:04:ca:42:7f:4a:98:98:fa:58:b9:e0:4e:49: 1d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D0:CA:BF:C0:23:11:64:3F:55:25:91:78:E0:B2:E7:FA:7E:A8:D4 X509v3 Authority Key Identifier: keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl Authority Information Access: CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject Information Access: Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e203338313733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4440:f000::/44 Signature Algorithm: sha256WithRSAEncryption 27:eb:81:d8:d6:ac:35:d8:be:99:40:85:b0:4f:8a:ba:20:9b: 8b:3e:47:d0:08:60:29:4a:dd:aa:3c:d5:6d:f4:e7:b3:89:f9: 6d:cb:61:e7:60:7d:3a:29:e4:5c:47:22:bd:ed:fc:72:a6:c2: 5f:a5:07:ea:fa:a8:1c:05:7a:3c:d4:70:c7:ed:9b:c8:1a:e1: e7:57:ab:52:bf:46:59:89:dc:66:d6:85:19:5b:25:59:74:10: b8:0f:34:c0:35:4e:4e:bf:b6:b8:cf:a4:38:f6:6e:e4:6e:29: ab:a4:45:ba:e7:08:36:b9:c3:9f:78:11:98:90:9c:e1:87:51: d3:4c:cb:dd:db:ab:0b:ee:b7:c7:f6:43:04:ac:89:5a:bb:66: 9b:3f:1d:65:c1:f0:74:79:73:56:3a:70:8f:b9:06:ef:05:54: 44:d9:5d:f0:33:60:86:c9:73:91:64:8e:0d:c9:a4:63:71:39: 10:3a:27:4d:17:b8:aa:40:e2:2c:25:f9:5a:b1:4e:55:96:89: 33:70:70:f3:d6:b1:7c:eb:55:99:58:da:3c:8b:72:36:08:74: f1:a0:1e:5f:75:14:79:fc:3e:df:fe:70:b3:a7:9e:6c:6b:dc: f5:8d:a5:b1:6e:ae:ff:d4:e9:52:ef:34:5e:80:75:1b:b8:f0: 43:f1:0c:74 -----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUIaplnxFgqv3SFw0D85nKHQQiy+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNCMTgwNUZBN0FFMjJENTY1RTBBNTAyRDA4RDM3RUIy QkQ4MzdBNzAeFw0yMzEyMDkwNDU1MDBaFw0yNDEyMDkwNTAwMDBaMIICLTGCAikw ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwQzA4NDhFRjA5NzJFNDZERDMz MTMxMDc1MTRFRkI2NENCMjM4RDg1RTc2Rjc0MEREMTdBOEY0RUQ4RDRFN0Q5QTU0 NUZCNjVFOTUzMzNENDUzN0E4MjdCNUY2NERCQkE3MzM2NjdEQkY5OEI3RTU2NEVF RDFGMDZERjAxMUY0OEExMjY0OERDMjFGMTY2MTU2QTYwNzczMDMxRTlCN0IyNTY4 MzM5NjU4NTc0Mjc4Q0MxODc2QkMwRkUwM0IxOTMyMzQxNjA0ODQxQTIzMTFGMjVE N0Y3MkM3NkU1NTUxNDFDMjcyQjE4OTk1MzA2NDU3QzJEMTU3RDVFQThBOTU0NDEx OUQ1RjQ4REUwM0YyREIxQTI4MjhENDJFMzVEMUE5OTE4NDRGRUMwMkVBMzdDN0Mz RkVCNzdFRUY1RkZDQzNCMDQ1QjAxNzVGNkY5MTgxQkRCQzNGMzJCMUE4RThFQTkw Rjk0MUVGNjFCRDBCOERGMTEzNzQ1QzcwNUUxOEEzMjZGQzdFMjA0NDYyOTQ5MDY5 QkFENDRBMDhCNzY3QjRBNzRBQ0E5RTU2QzIxOURCRTQ2N0MzRjU3MTlFQzBFOUYy QjRBNENEQjlBOENFMTA3NEEwQkNEODQyRTQ5QkI2QTAwNENBNDI3RjRBOTg5OEZB NThCOUUwNEU0OTFEN0YwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAwISO8JcuRt0zExB1FO+2TLI42F5290DdF6j07Y1OfZpUX7ZelTM9 RTeoJ7X2TbunM2Z9v5i35WTu0fBt8BH0ihJkjcIfFmFWpgdzAx6beyVoM5ZYV0J4 zBh2vA/gOxkyNBYEhBojEfJdf3LHblVRQcJysYmVMGRXwtFX1eqKlUQRnV9I3gPy 2xooKNQuNdGpkYRP7ALqN8fD/rd+71/8w7BFsBdfb5GBvbw/MrGo6OqQ+UHvYb0L jfETdFxwXhijJvx+IERilJBputRKCLdntKdKyp5Wwhnb5GfD9XGewOnytKTNuajO EHSgvNhC5Ju2oATKQn9KmJj6WLngTkkdfwIDAQABo4IB7zCCAeswHQYDVR0OBBYE FM3Qyr/AIxFkP1UlkXjgsuf6fqjUMB8GA1UdIwQYMBaAFPyxgF+nriLVZeClAtCN N+sr2DenMA4GA1UdDwEB/wQEAwIHgDBkBgNVHR8EXTBbMFmgV6BVhlNyc3luYzov L3Jwa2kuYXBlcm5ldC5pby9yZXBvL0FQRVJORVQvMS9GQ0IxODA1RkE3QUUyMkQ1 NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNybDBtBggrBgEFBQcBAQRhMF8wXQYI KwYBBQUHMAKGUXJzeW5jOi8vc2FrdXlhLm5hdC5tb2UvcmVwby9OQVRPQ0EvMS9G Q0IxODA1RkE3QUUyMkQ1NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNlcjCBhQYI KwYBBQUHAQsEeTB3MHUGCCsGAQUFBzALhmlyc3luYzovL3Jwa2kuYXBlcm5ldC5p by9yZXBvL0FQRVJORVQvMS8zMjM0MzAzNjNhMzQzNDM0MzAzYTY2MzAzMDMwM2Ez YTJmMzQzNDJkMzQzODIwM2QzZTIwMzMzODMxMzczMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCQGREDw ADANBgkqhkiG9w0BAQsFAAOCAQEAJ+uB2NasNdi+mUCFsE+KuiCbiz5H0AhgKUrd qjzVbfTns4n5bcth52B9OinkXEcive38cqbCX6UH6vqoHAV6PNRwx+2byBrh51er Ur9GWYncZtaFGVslWXQQuA80wDVOTr+2uM+kOPZu5G4pq6RFuucINrnDn3gRmJCc 4YdR00zL3durC+63x/ZDBKyJWrtmmz8dZcHwdHlzVjpwj7kG7wVURNld8DNghslz kWSODcmkY3E5EDonTRe4qkDiLCX5WrFOVZaJM3Bw89axfOtVmVjaPItyNgh08aAe X3UUefw+3/5ws6eebGvc9Y2lsW6u/9TpUu80XoB1G7jwQ/EMdA== -----END CERTIFICATE-----Generated at Thu May 2 12:23:49 2024 by rpki-client on console-ams.rpki-client.org