$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a39303a3a2f34342d3438203d3e203436393937.roa File: 323430363a343434303a39303a3a2f34342d3438203d3e203436393937.roa (raw, json) Hash identifier: eNE8EEhc1iG8sZv5FHajTlSX0SAornZSI0y9pXBOT6Y= Subject key identifier: 51:57:78:07:CA:0A:21:E6:56:A6:B1:C3:C1:B7:02:97:2B:D2:B2:CE Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Certificate serial: 2F623E0DBF35976B760F4120DDC2D3C4114097B8 Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a39303a3a2f34342d3438203d3e203436393937.roa Signing time: Wed 19 Feb 2025 07:00:00 +0000 ROA not before: Wed 19 Feb 2025 06:55:00 +0000 ROA not after: Thu 19 Feb 2026 07:00:00 +0000 asID: 46997 IP address blocks: 2406:4440:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 05:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:62:3e:0d:bf:35:97:6b:76:0f:41:20:dd:c2:d3:c4:11:40:97:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Validity Not Before: Feb 19 06:55:00 2025 GMT Not After : Feb 19 07:00:00 2026 GMT Subject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ubject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:87:a4:30:e3:44:de:fd:ab:b3:83:c7:d9:df: 64:15:52:d8:35:0e:e8:db:8a:6c:af:37:bf:36:d7: fd:12:cf:8b:46:e3:ec:f0:bf:b9:04:dc:fa:36:6f: 64:b4:43:6c:67:89:bb:a0:12:ad:89:61:f3:63:2c: 1c:f6:7c:4f:f6:a9:b2:9f:28:ba:0a:04:e2:60:f2: 72:34:d0:03:20:37:91:5e:4e:6d:b3:96:61:bf:c4: 05:70:97:22:e5:30:de:65:ee:22:0c:a5:b1:37:bb: f9:9d:d5:bd:29:b5:25:2a:ed:3d:76:28:86:cf:ad: 79:bd:21:1a:1b:97:d1:20:3a:ec:2f:25:9f:5b:45: f7:eb:9b:0d:e2:aa:15:9c:5a:f6:fd:4e:b8:0c:44: d0:bf:af:75:87:0f:b6:4b:80:b6:7a:cc:82:f2:c5: 32:02:6d:0c:00:57:0f:55:f2:df:9c:08:e7:79:2b: 43:84:8c:7e:73:6e:9e:e1:4d:21:43:60:e9:3a:01: c6:f9:34:36:66:c3:5b:df:8c:ec:6b:fc:a7:6a:8f: 6e:83:7c:3c:8b:2a:36:88:81:3e:12:d6:71:5a:d9: cc:5f:eb:7e:85:80:f3:fd:af:84:2c:97:18:e7:cc: ca:3c:98:3d:96:aa:d9:eb:13:ac:27:72:97:e6:6c: 26:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:57:78:07:CA:0A:21:E6:56:A6:B1:C3:C1:B7:02:97:2B:D2:B2:CE X509v3 Authority Key Identifier: keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl Authority Information Access: CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject Information Access: Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a39303a3a2f34342d3438203d3e203436393937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4440:90::/44 Signature Algorithm: sha256WithRSAEncryption ac:d1:e8:70:60:0b:ce:a1:64:a4:a2:d7:3f:f8:1c:4b:5b:c2: 3a:4a:21:6d:41:ce:05:f8:40:e8:d2:be:aa:bf:77:9b:58:c1: 2b:af:66:93:0a:2e:b7:39:f8:e1:2c:50:1a:b8:a1:1a:6f:93: b6:ba:ac:ae:43:31:14:e0:82:33:a1:54:e2:b2:e3:4d:ca:bb: 5f:63:6c:81:a4:7b:7f:ff:85:e1:42:d5:35:ed:f6:f3:9a:47: b9:a5:fb:49:0c:81:14:67:4e:88:9e:55:98:19:9e:7a:1b:40: 67:b1:df:9d:04:fd:1e:65:70:5e:e4:7c:ef:60:51:ad:c0:c5: c2:e8:41:38:fa:f0:3c:95:12:b7:a9:8c:eb:44:f9:b9:10:0b: da:bf:de:49:4e:a8:85:49:03:5b:6f:34:72:de:ae:f3:99:a9: 6d:5f:49:15:3c:a6:8a:dd:e9:d4:58:2d:ce:46:97:af:17:e5: 7d:75:74:0b:5d:c4:3d:04:6c:de:fa:20:be:f6:9f:94:39:08: e0:76:b0:32:34:7c:dc:97:52:5d:44:94:07:33:f7:9f:49:66: 57:fb:d5:e7:89:03:47:68:70:de:b2:49:d6:d9:3c:d7:54:92: 70:19:d1:b0:da:b1:fb:0f:29:19:b3:f5:49:d7:23:59:65:9a: 74:ad:0c:b6 -----BEGIN CERTIFICATE----- MIIG3TCCBcWgAwIBAgIUL2I+Db81l2t2D0Eg3cLTxBFAl7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNCMTgwNUZBN0FFMjJENTY1RTBBNTAyRDA4RDM3RUIy QkQ4MzdBNzAeFw0yNTAyMTkwNjU1MDBaFw0yNjAyMTkwNzAwMDBaMIICLTGCAikw ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwRDc4N0E0MzBFMzQ0REVGREFC QjM4M0M3RDlERjY0MTU1MkQ4MzUwRUU4REI4QTZDQUYzN0JGMzZEN0ZEMTJDRjhC NDZFM0VDRjBCRkI5MDREQ0ZBMzY2RjY0QjQ0MzZDNjc4OUJCQTAxMkFEODk2MUYz NjMyQzFDRjY3QzRGRjZBOUIyOUYyOEJBMEEwNEUyNjBGMjcyMzREMDAzMjAzNzkx NUU0RTZEQjM5NjYxQkZDNDA1NzA5NzIyRTUzMERFNjVFRTIyMENBNUIxMzdCQkY5 OURENUJEMjlCNTI1MkFFRDNENzYyODg2Q0ZBRDc5QkQyMTFBMUI5N0QxMjAzQUVD MkYyNTlGNUI0NUY3RUI5QjBERTJBQTE1OUM1QUY2RkQ0RUI4MEM0NEQwQkZBRjc1 ODcwRkI2NEI4MEI2N0FDQzgyRjJDNTMyMDI2RDBDMDA1NzBGNTVGMkRGOUMwOEU3 NzkyQjQzODQ4QzdFNzM2RTlFRTE0RDIxNDM2MEU5M0EwMUM2RjkzNDM2NjZDMzVC REY4Q0VDNkJGQ0E3NkE4RjZFODM3QzNDOEIyQTM2ODg4MTNFMTJENjcxNUFEOUND NUZFQjdFODU4MEYzRkRBRjg0MkM5NzE4RTdDQ0NBM0M5ODNEOTZBQUQ5RUIxM0FD Mjc3Mjk3RTY2QzI2RjcwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA14ekMONE3v2rs4PH2d9kFVLYNQ7o24psrze/Ntf9Es+LRuPs8L+5 BNz6Nm9ktENsZ4m7oBKtiWHzYywc9nxP9qmynyi6CgTiYPJyNNADIDeRXk5ts5Zh v8QFcJci5TDeZe4iDKWxN7v5ndW9KbUlKu09diiGz615vSEaG5fRIDrsLyWfW0X3 65sN4qoVnFr2/U64DETQv691hw+2S4C2esyC8sUyAm0MAFcPVfLfnAjneStDhIx+ c26e4U0hQ2DpOgHG+TQ2ZsNb34zsa/ynao9ug3w8iyo2iIE+EtZxWtnMX+t+hYDz /a+ELJcY58zKPJg9lqrZ6xOsJ3KX5mwm9wIDAQABo4IB6zCCAecwHQYDVR0OBBYE FFFXeAfKCiHmVqaxw8G3Apcr0rLOMB8GA1UdIwQYMBaAFPyxgF+nriLVZeClAtCN N+sr2DenMA4GA1UdDwEB/wQEAwIHgDBkBgNVHR8EXTBbMFmgV6BVhlNyc3luYzov L3Jwa2kuYXBlcm5ldC5pby9yZXBvL0FQRVJORVQvMS9GQ0IxODA1RkE3QUUyMkQ1 NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNybDBtBggrBgEFBQcBAQRhMF8wXQYI KwYBBQUHMAKGUXJzeW5jOi8vc2FrdXlhLm5hdC5tb2UvcmVwby9OQVRPQ0EvMS9G Q0IxODA1RkE3QUUyMkQ1NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNlcjCBgQYI KwYBBQUHAQsEdTBzMHEGCCsGAQUFBzALhmVyc3luYzovL3Jwa2kuYXBlcm5ldC5p by9yZXBvL0FQRVJORVQvMS8zMjM0MzAzNjNhMzQzNDM0MzAzYTM5MzAzYTNhMmYz NDM0MmQzNDM4MjAzZDNlMjAzNDM2MzkzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEJAZEQACQMA0G CSqGSIb3DQEBCwUAA4IBAQCs0ehwYAvOoWSkotc/+BxLW8I6SiFtQc4F+EDo0r6q v3ebWMErr2aTCi63OfjhLFAauKEab5O2uqyuQzEU4IIzoVTisuNNyrtfY2yBpHt/ /4XhQtU17fbzmke5pftJDIEUZ06InlWYGZ56G0Bnsd+dBP0eZXBe5HzvYFGtwMXC 6EE4+vA8lRK3qYzrRPm5EAvav95JTqiFSQNbbzRy3q7zmaltX0kVPKaK3enUWC3O RpevF+V9dXQLXcQ9BGze+iC+9p+UOQjgdrAyNHzcl1JdRJQHM/efSWZX+9XniQNH aHDesknW2TzXVJJwGdGw2rH7DykZs/VJ1yNZZZp0rQy2 -----END CERTIFICATE-----Generated at Sat Apr 5 17:50:59 2025 by rpki-client