Route Origin Authorization
$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a31303a3a2f34342d3438203d3e20313432363431.roa
File: 323430363a343434303a31303a3a2f34342d3438203d3e20313432363431.roa (raw, json)
Hash identifier: Tti3EMD5BHbLAWqxrbZLibfGyTreO0oncxFKF30Ot9M=
Subject key identifier: BA:44:4D:4F:85:C1:EF:8E:45:64:00:36:E1:37:07:8E:58:33:88:F8
Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Certificate serial: 0E83DBBCF24E1AB0FC2B864CEBDFA8A7FEFC3802
Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a31303a3a2f34342d3438203d3e20313432363431.roa
Signing time: Tue 11 Jun 2024 18:00:00 +0000
ROA not before: Tue 11 Jun 2024 17:55:00 +0000
ROA not after: Wed 11 Jun 2025 18:00:00 +0000
asID: 142641
IP address blocks: 2406:4440:10::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl
rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft
rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl
rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 20:34:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:83:db:bc:f2:4e:1a:b0:fc:2b:86:4c:eb:df:a8:a7:fe:fc:38:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Validity
Not Before: Jun 11 17:55:00 2024 GMT
Not After : Jun 11 18:00:00 2025 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a9:97:95:49:f0:f9:6e:6a:b6:3d:7b:62:06:
0e:49:82:93:7e:a6:61:fc:bf:5d:d2:07:61:2d:e9:
8d:ab:43:6a:c8:64:33:14:0a:d1:5a:db:28:e6:01:
74:2e:b7:96:a7:d6:e7:c6:11:4e:a6:65:52:ec:07:
17:fc:ac:0f:36:5a:b1:f4:f4:a0:cc:e2:1c:4d:e6:
6c:6c:31:4e:71:fd:8b:01:74:99:ed:40:82:e7:95:
38:34:68:d8:ac:9e:0d:a6:0c:47:23:0b:a3:d6:98:
3a:7b:74:27:fd:78:52:04:38:9d:0a:3c:27:78:7d:
11:a8:cf:4a:02:ad:3f:6f:10:21:cc:2a:5e:1d:b0:
d3:59:51:9e:ba:56:6c:9a:db:62:2b:c6:71:af:fc:
95:d2:0d:83:bb:35:bc:07:83:ab:b9:08:f3:f6:38:
ed:00:49:f3:13:34:d5:9c:78:0d:22:3a:c0:0c:ae:
f7:b4:8d:49:09:26:af:55:e6:92:43:54:6b:c1:91:
ea:05:c7:6e:eb:12:71:6e:34:cb:f3:11:a9:36:21:
7a:f8:35:c2:07:75:6e:84:95:7c:da:c1:fb:f9:e3:
49:ff:22:02:d0:d6:1d:df:63:be:5e:c6:fc:f9:d2:
82:f9:a1:dd:85:75:1c:8b:29:88:84:77:56:5c:50:
04:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:44:4D:4F:85:C1:EF:8E:45:64:00:36:E1:37:07:8E:58:33:88:F8
X509v3 Authority Key Identifier:
keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl
Authority Information Access:
CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a31303a3a2f34342d3438203d3e20313432363431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:4440:10::/44
Signature Algorithm: sha256WithRSAEncryption
b8:83:85:c7:27:69:6f:53:55:4c:76:81:91:13:ac:61:b5:c7:
b1:01:c3:70:20:3f:fb:db:8d:bd:43:a0:89:dc:df:21:74:7a:
09:3b:ea:28:47:00:50:be:42:f9:93:c6:5c:38:35:65:b0:fa:
d9:51:fd:23:cb:80:5d:ab:a1:ea:11:d0:a8:0d:6f:3c:2a:4b:
42:9f:f7:73:5c:ee:b4:f0:73:80:47:fa:5e:ee:a9:2a:20:3c:
1f:01:46:9f:c8:7a:22:08:b5:b8:04:e3:a8:90:c8:d5:c0:26:
14:cd:a7:87:5a:22:0f:0e:cc:64:af:f8:06:ba:cc:4f:b3:a6:
7a:24:cd:33:69:3b:33:aa:f0:23:fc:7b:9b:a5:4a:ac:cc:2d:
63:6b:ef:41:e3:a5:d2:f5:68:6f:3e:75:d4:4b:13:bb:2b:55:
ac:9b:1c:82:39:9c:91:ab:3e:e1:83:84:86:75:2f:52:ee:78:
2d:5e:c2:5a:39:9a:aa:7a:74:d0:42:68:6b:9b:8a:c5:c1:5e:
3c:ea:21:6e:5d:cc:88:43:fc:7c:91:c0:35:85:bc:3d:b7:ad:
30:d2:63:4e:56:c0:0e:7e:22:0a:bd:c8:d0:00:ec:b1:d9:ba:
9a:5e:3f:bd:20:6f:93:e3:44:82:ce:78:24:e3:0f:c4:9e:ac:
02:90:f2:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:31:42 2024 by rpki-client on console-fra.rpki-client.org