$ rpki-client -vvf rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/323430363a343434303a653030303a3a2f34302d3438203d3e20313430393338.roa File: 323430363a343434303a653030303a3a2f34302d3438203d3e20313430393338.roa (raw, json) Hash identifier: NOwi2jYQ8FHV+5iFygC9Tyw/h3+CkwWSkGkdIOKT9Zg= Subject key identifier: C9:EB:6A:5C:81:5F:65:C5:16:31:07:60:07:FD:51:94:1A:18:63:60 Certificate issuer: /CN=9FE9B4C3090206D5B28CED4F5179539F698ADB91 Certificate serial: 67D5B059C40FE2CB2B5057DEFC278647F8C50284 Authority key identifier: 9F:E9:B4:C3:09:02:06:D5:B2:8C:ED:4F:51:79:53:9F:69:8A:DB:91 Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.cer Subject info access: rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/323430363a343434303a653030303a3a2f34302d3438203d3e20313430393338.roa Signing time: Wed 16 Apr 2025 15:49:54 +0000 ROA not before: Wed 16 Apr 2025 15:44:54 +0000 ROA not after: Wed 15 Apr 2026 15:49:54 +0000 asID: 140938 IP address blocks: 2406:4440:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.crl rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.mft rsync://sakuya.nat.moe/repo/NATOCA/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.cer rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 11:46:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:d5:b0:59:c4:0f:e2:cb:2b:50:57:de:fc:27:86:47:f8:c5:02:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FE9B4C3090206D5B28CED4F5179539F698ADB91 Validity Not Before: Apr 16 15:44:54 2025 GMT Not After : Apr 15 15:49:54 2026 GMT Subject: CN=C9EB6A5C815F65C51631076007FD51941A186360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e0:c3:99:13:d4:89:de:d0:c5:08:d0:2b:f4: a4:c8:cd:86:6d:d2:c7:85:c3:af:fe:29:73:da:3c: b2:9a:3a:cd:6e:d2:9d:ca:6a:3e:05:f3:26:9f:c8: d8:01:42:13:74:04:93:17:ec:05:3e:fb:f9:c0:64: 91:b2:b9:7a:54:86:41:68:01:aa:6e:f6:b9:42:f1: cc:b4:de:5d:ba:27:67:d2:2c:49:ff:3e:11:ba:82: ed:3c:35:2c:1d:4b:1f:9c:b6:39:4a:ab:d0:10:eb: cc:5b:c6:56:e6:93:de:8c:d1:fe:20:6f:f7:cb:0f: ca:81:16:66:24:10:8a:b5:b1:80:d5:19:88:48:62: 4b:ae:2e:47:b5:a7:59:62:e4:fb:d5:58:65:c7:43: ea:97:cc:e1:76:61:f6:6c:28:7f:a6:1b:b9:5a:70: 0d:7f:9a:06:c8:3f:5e:0b:e7:52:a7:b5:8f:cb:fa: 5c:69:ab:af:09:7c:fb:d2:a7:98:71:6b:57:36:b6: b3:9f:1d:8b:4c:a6:f8:c7:8f:fe:a7:80:7f:ab:1c: be:a0:b3:61:fe:8c:72:15:57:b0:e6:5b:99:50:fc: e4:5b:15:8a:57:b1:04:38:0a:db:81:c1:61:9b:12: 99:6c:11:80:e2:4c:b1:91:1a:97:80:6b:2b:79:d2: 67:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:EB:6A:5C:81:5F:65:C5:16:31:07:60:07:FD:51:94:1A:18:63:60 X509v3 Authority Key Identifier: keyid:9F:E9:B4:C3:09:02:06:D5:B2:8C:ED:4F:51:79:53:9F:69:8A:DB:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.crl Authority Information Access: CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/323430363a343434303a653030303a3a2f34302d3438203d3e20313430393338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4440:e000::/40 Signature Algorithm: sha256WithRSAEncryption 45:9a:b3:75:e3:43:6a:d6:94:9a:34:33:d0:40:d9:40:c0:63: 87:ac:0e:04:72:2b:a5:af:75:c1:36:ac:dd:c0:75:60:ee:e0: 1c:22:d6:6d:3a:46:7f:63:21:a6:00:bc:8c:30:da:ef:6d:60: 54:75:cf:df:b9:66:be:3b:13:ef:bf:a0:81:68:86:e2:e6:8f: 6c:05:eb:cc:f3:96:58:d3:48:91:62:f0:0d:a4:42:4f:a1:1d: 43:86:5b:1c:7b:fb:4b:1f:11:9e:45:e6:22:77:15:6f:69:0a: a0:7f:f2:da:a5:78:46:6f:0c:df:ca:0d:58:dd:b6:05:22:ed: 7f:cb:cc:65:7b:8c:62:5c:80:77:cd:67:9a:2c:49:cc:be:3f: 05:a6:e5:54:ed:19:9a:1b:e3:83:61:d0:b6:00:cf:05:a3:94: ca:68:40:5d:a0:17:a6:66:f9:b5:b6:84:27:04:82:ea:8f:49: 2c:35:e6:21:ed:35:b1:84:8d:9f:84:8e:7d:c0:9f:1f:dc:88: 17:bf:40:fb:78:81:90:51:c5:e1:97:c4:e8:d0:aa:88:a2:60: f2:1b:b1:5f:48:b0:f9:45:21:1a:92:3e:8b:07:a8:e2:59:0f: 5c:13:00:55:4e:29:29:18:b8:c8:a9:b9:b7:1d:b5:d4:9c:a8: d4:1b:a5:2c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgIUZ9WwWcQP4ssrUFfe/CeGR/jFAoQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFOUI0QzMwOTAyMDZENUIyOENFRDRGNTE3OTUzOUY2 OThBREI5MTAeFw0yNTA0MTYxNTQ0NTRaFw0yNjA0MTUxNTQ5NTRaMDMxMTAvBgNV BAMTKEM5RUI2QTVDODE1RjY1QzUxNjMxMDc2MDA3RkQ1MTk0MUExODYzNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC74MOZE9SJ3tDFCNAr9KTIzYZt 0seFw6/+KXPaPLKaOs1u0p3Kaj4F8yafyNgBQhN0BJMX7AU++/nAZJGyuXpUhkFo Aapu9rlC8cy03l26J2fSLEn/PhG6gu08NSwdSx+ctjlKq9AQ68xbxlbmk96M0f4g b/fLD8qBFmYkEIq1sYDVGYhIYkuuLke1p1li5PvVWGXHQ+qXzOF2YfZsKH+mG7la cA1/mgbIP14L51KntY/L+lxpq68JfPvSp5hxa1c2trOfHYtMpvjHj/6ngH+rHL6g s2H+jHIVV7DmW5lQ/ORbFYpXsQQ4CtuBwWGbEplsEYDiTLGRGpeAayt50mfdAgMB AAGjggIHMIICAzAdBgNVHQ4EFgQUyetqXIFfZcUWMQdgB/1RlBoYY2AwHwYDVR0j BBgwFoAUn+m0wwkCBtWyjO1PUXlTn2mK25EwDgYDVR0PAQH/BAQDAgeAMG4GA1Ud HwRnMGUwY6BhoF+GXXJzeW5jOi8vcnBraS1yc3luYy5tbmloeWMuY29tL3JlcG8v bW5paHljLXJwa2kvMS85RkU5QjRDMzA5MDIwNkQ1QjI4Q0VENEY1MTc5NTM5RjY5 OEFEQjkxLmNybDBtBggrBgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8v c2FrdXlhLm5hdC5tb2UvcmVwby9OQVRPQ0EvMS85RkU5QjRDMzA5MDIwNkQ1QjI4 Q0VENEY1MTc5NTM5RjY5OEFEQjkxLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEG CCsGAQUFBzALhnVyc3luYzovL3Jwa2ktcnN5bmMubW5paHljLmNvbS9yZXBvL21u aWh5Yy1ycGtpLzEvMzIzNDMwMzYzYTM0MzQzNDMwM2E2NTMwMzAzMDNhM2EyZjM0 MzAyZDM0MzgyMDNkM2UyMDMxMzQzMDM5MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQGREDgMA0G CSqGSIb3DQEBCwUAA4IBAQBFmrN140Nq1pSaNDPQQNlAwGOHrA4Eciulr3XBNqzd wHVg7uAcItZtOkZ/YyGmALyMMNrvbWBUdc/fuWa+OxPvv6CBaIbi5o9sBevM85ZY 00iRYvANpEJPoR1Dhlsce/tLHxGeReYidxVvaQqgf/LapXhGbwzfyg1Y3bYFIu1/ y8xle4xiXIB3zWeaLEnMvj8FpuVU7RmaG+ODYdC2AM8Fo5TKaEBdoBemZvm1toQn BILqj0ksNeYh7TWxhI2fhI59wJ8f3IgXv0D7eIGQUcXhl8To0KqIomDyG7FfSLD5 RSEakj6LB6jiWQ9cEwBVTikpGLjIqbm3HbXUnKjUG6Us -----END CERTIFICATE-----Generated at Thu Apr 17 15:11:57 2025 by rpki-client