$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a31303a3a2f34342d3438203d3e20313432363431.roa File: 323430363a343434303a31303a3a2f34342d3438203d3e20313432363431.roa (raw, json) Hash identifier: SYZ2OH+k2YISjuktZbG4B3PzStjw5pYcBLRc6bwXWhs= Subject key identifier: B1:17:18:32:84:C8:07:79:B6:16:A0:E2:24:E3:34:71:47:09:B7:C0 Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Certificate serial: 59B9B5FD429EDFF7A708B481A0542EEA721C828B Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a31303a3a2f34342d3438203d3e20313432363431.roa Signing time: Sun 09 Jul 2023 18:00:00 +0000 ROA not before: Sun 09 Jul 2023 17:55:00 +0000 ROA not after: Tue 09 Jul 2024 18:00:00 +0000 asID: 142641 IP address blocks: 2406:4440:10::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 16 May 2024 15:16:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:b9:b5:fd:42:9e:df:f7:a7:08:b4:81:a0:54:2e:ea:72:1c:82:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Validity Not Before: Jul 9 17:55:00 2023 GMT Not After : Jul 9 18:00:00 2024 GMT Subject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ubject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:34:b5:72:a0:dc:fb:f3:9c:72:83:d1:7c:b5: df:8b:cd:08:b7:c3:d0:e3:fa:c2:0f:2c:bb:b6:73: fe:39:7a:6c:e8:0d:36:e8:55:01:d2:3c:1c:73:c2: c7:d1:2f:7a:6a:e3:00:f2:f0:a5:3e:29:00:e2:e0: 2b:2e:03:dd:59:94:96:f2:ab:f8:a7:e7:7a:16:f6: 9b:31:b8:68:59:11:84:66:17:b7:21:ed:14:28:b1: 6d:14:f2:2a:08:d1:7a:5b:16:75:17:77:6c:29:38: 69:e1:70:b5:31:15:f2:1a:2d:81:fa:b4:e1:ef:4c: 79:63:8b:46:4a:1f:0a:ac:b4:e1:14:47:ec:ed:4c: 32:ed:50:36:66:7c:ee:e9:c1:68:8e:b2:2c:e0:9d: 32:8d:04:37:2e:53:6b:ad:2c:9a:94:f1:fd:66:d9: 9b:a4:34:47:ef:61:16:52:87:38:24:bd:11:a1:4f: e2:74:14:82:c8:ba:06:79:b4:cc:0c:24:9a:0f:1b: 07:e7:8a:9e:45:68:e2:53:54:51:14:e3:d3:d0:7f: 03:1c:d8:63:04:12:84:79:4e:8c:e5:78:bb:27:b9: 72:71:8c:cb:ce:0d:9b:ca:66:01:9b:e0:d6:b5:e1: f8:63:ca:8b:55:61:73:e2:8c:b7:4d:ef:9d:f8:f5: b6:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:17:18:32:84:C8:07:79:B6:16:A0:E2:24:E3:34:71:47:09:B7:C0 X509v3 Authority Key Identifier: keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl Authority Information Access: CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject Information Access: Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a31303a3a2f34342d3438203d3e20313432363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4440:10::/44 Signature Algorithm: sha256WithRSAEncryption 32:1e:a2:c6:6f:03:c4:23:32:43:2b:8a:29:8f:34:6b:88:29: 6e:f1:ab:56:7d:80:47:13:fc:b3:89:79:f6:c1:a5:48:7e:8f: 00:b8:3a:3a:98:ce:ef:5d:b9:d8:ae:c2:42:9c:96:08:61:25: a7:c3:d6:a5:c9:e7:eb:c6:7d:4f:a6:76:6d:4c:86:28:03:9f: d7:30:e3:1d:4f:f6:d9:1e:2c:90:fe:88:ab:1b:34:7c:c3:6d: ae:b1:42:47:f0:e2:09:82:28:35:ef:e1:2f:e0:4e:3c:22:f1: 47:9e:a0:98:d7:cf:84:77:c5:29:d6:16:2c:3f:3f:a7:8e:4a: 73:4e:f7:71:01:4a:d6:d2:18:f7:ec:9a:86:e2:3d:0a:ed:14: 00:42:1a:95:22:33:a2:3c:47:2f:00:b3:21:33:ef:05:67:59: c8:d7:a3:8c:0f:ca:61:87:aa:0b:54:06:81:20:cc:2e:75:a7: b2:07:6b:4c:15:b8:82:f9:db:17:15:f1:5e:d5:2d:92:9f:2d: 20:68:7c:9f:93:ff:a8:33:31:e0:2b:3e:44:ee:14:8f:9a:48: 1a:57:55:e8:8a:42:be:b2:72:63:6a:1c:0a:94:e9:6a:26:5e: 7c:32:69:73:a4:a2:9d:de:52:b0:a7:e9:ce:74:8a:5e:67:f1: b9:0b:e2:e3 -----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUWbm1/UKe3/enCLSBoFQu6nIcgoswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNCMTgwNUZBN0FFMjJENTY1RTBBNTAyRDA4RDM3RUIy QkQ4MzdBNzAeFw0yMzA3MDkxNzU1MDBaFw0yNDA3MDkxODAwMDBaMIICLTGCAikw ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwOTYzNEI1NzJBMERDRkJGMzlD NzI4M0QxN0NCNURGOEJDRDA4QjdDM0QwRTNGQUMyMEYyQ0JCQjY3M0ZFMzk3QTZD RTgwRDM2RTg1NTAxRDIzQzFDNzNDMkM3RDEyRjdBNkFFMzAwRjJGMEE1M0UyOTAw RTJFMDJCMkUwM0RENTk5NDk2RjJBQkY4QTdFNzdBMTZGNjlCMzFCODY4NTkxMTg0 NjYxN0I3MjFFRDE0MjhCMTZEMTRGMjJBMDhEMTdBNUIxNjc1MTc3NzZDMjkzODY5 RTE3MEI1MzExNUYyMUEyRDgxRkFCNEUxRUY0Qzc5NjM4QjQ2NEExRjBBQUNCNEUx MTQ0N0VDRUQ0QzMyRUQ1MDM2NjY3Q0VFRTlDMTY4OEVCMjJDRTA5RDMyOEQwNDM3 MkU1MzZCQUQyQzlBOTRGMUZENjZEOTlCQTQzNDQ3RUY2MTE2NTI4NzM4MjRCRDEx QTE0RkUyNzQxNDgyQzhCQTA2NzlCNENDMEMyNDlBMEYxQjA3RTc4QTlFNDU2OEUy NTM1NDUxMTRFM0QzRDA3RjAzMUNEODYzMDQxMjg0Nzk0RThDRTU3OEJCMjdCOTcy NzE4Q0NCQ0UwRDlCQ0E2NjAxOUJFMEQ2QjVFMUY4NjNDQThCNTU2MTczRTI4Q0I3 NERFRjlERjhGNUI2QkIwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAljS1cqDc+/OccoPRfLXfi80It8PQ4/rCDyy7tnP+OXps6A026FUB 0jwcc8LH0S96auMA8vClPikA4uArLgPdWZSW8qv4p+d6FvabMbhoWRGEZhe3Ie0U KLFtFPIqCNF6WxZ1F3dsKThp4XC1MRXyGi2B+rTh70x5Y4tGSh8KrLThFEfs7Uwy 7VA2Znzu6cFojrIs4J0yjQQ3LlNrrSyalPH9ZtmbpDRH72EWUoc4JL0RoU/idBSC yLoGebTMDCSaDxsH54qeRWjiU1RRFOPT0H8DHNhjBBKEeU6M5Xi7J7lycYzLzg2b ymYBm+DWteH4Y8qLVWFz4oy3Te+d+PW2uwIDAQABo4IB7TCCAekwHQYDVR0OBBYE FLEXGDKEyAd5thag4iTjNHFHCbfAMB8GA1UdIwQYMBaAFPyxgF+nriLVZeClAtCN N+sr2DenMA4GA1UdDwEB/wQEAwIHgDBkBgNVHR8EXTBbMFmgV6BVhlNyc3luYzov L3Jwa2kuYXBlcm5ldC5pby9yZXBvL0FQRVJORVQvMS9GQ0IxODA1RkE3QUUyMkQ1 NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNybDBtBggrBgEFBQcBAQRhMF8wXQYI KwYBBQUHMAKGUXJzeW5jOi8vc2FrdXlhLm5hdC5tb2UvcmVwby9OQVRPQ0EvMS9G Q0IxODA1RkE3QUUyMkQ1NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNlcjCBgwYI KwYBBQUHAQsEdzB1MHMGCCsGAQUFBzALhmdyc3luYzovL3Jwa2kuYXBlcm5ldC5p by9yZXBvL0FQRVJORVQvMS8zMjM0MzAzNjNhMzQzNDM0MzAzYTMxMzAzYTNhMmYz NDM0MmQzNDM4MjAzZDNlMjAzMTM0MzIzNjM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkBkRAABAw DQYJKoZIhvcNAQELBQADggEBADIeosZvA8QjMkMriimPNGuIKW7xq1Z9gEcT/LOJ efbBpUh+jwC4OjqYzu9dudiuwkKclghhJafD1qXJ5+vGfU+mdm1MhigDn9cw4x1P 9tkeLJD+iKsbNHzDba6xQkfw4gmCKDXv4S/gTjwi8UeeoJjXz4R3xSnWFiw/P6eO SnNO93EBStbSGPfsmobiPQrtFABCGpUiM6I8Ry8AsyEz7wVnWcjXo4wPymGHqgtU BoEgzC51p7IHa0wVuIL52xcV8V7VLZKfLSBofJ+T/6gzMeArPkTuFI+aSBpXVeiK Qr6ycmNqHAqU6WomXnwyaXOkop3eUrCn6c50il5n8bkL4uM= -----END CERTIFICATE-----Generated at Wed May 15 17:48:21 2024 by rpki-client on console-fra.rpki-client.org