This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a3a2f34342d3438203d3e203136353039.roa File: 323430363a343434303a3a2f34342d3438203d3e203136353039.roa (raw, json) Hash identifier: SBHLbyLMe3Cd6T258Wh/Yr+hq19lrGB/i1+DLsvf6VA= Subject key identifier: 79:E3:FE:F8:CC:EC:37:EE:5D:72:2B:DE:DB:66:98:99:56:25:2D:1F Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Certificate serial: 298388A2C6E88701AA93653258031DCD4578D190 Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a3a2f34342d3438203d3e203136353039.roa Signing time: Thu 29 Jan 2026 08:00:00 +0000 ROA not before: Thu 29 Jan 2026 07:55:00 +0000 ROA not after: Fri 29 Jan 2027 08:00:00 +0000 asID: 16509 IP address blocks: 2406:4440::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 09:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:83:88:a2:c6:e8:87:01:aa:93:65:32:58:03:1d:cd:45:78:d1:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Validity Not Before: Jan 29 07:55:00 2026 GMT Not After : Jan 29 08:00:00 2027 GMT Subject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ubject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1f:1f:9e:a8:7a:0f:be:37:c7:4f:cf:83:68: 60:29:33:82:84:2e:13:c6:5e:ce:da:12:bf:1e:45: 68:de:9c:81:ab:4f:c3:e5:a2:ea:9a:e0:73:a3:43: 39:25:a1:1c:db:f0:6f:49:69:9b:db:c3:97:32:24: 97:2e:68:22:d8:a3:d5:9a:a3:63:d2:ea:08:91:09: ed:ab:c5:aa:5a:c3:a4:40:2e:58:1c:ef:b4:f5:ca: b2:67:ee:c7:5b:b2:fc:39:11:2a:2a:f2:dc:a4:c4: c3:d3:22:13:fa:39:08:cb:2c:54:2e:96:e8:b3:fa: ac:04:b4:c1:a4:7a:ae:4f:b0:bb:66:66:0c:4d:14: d1:7c:15:58:20:2d:d8:4f:30:52:63:a5:32:c5:1e: 0e:33:89:b1:f7:4d:d5:74:f6:37:97:f5:9f:ed:f7: 0a:3f:c6:7a:c2:5b:57:10:e7:f1:7b:7e:88:e2:25: c0:0d:48:ab:eb:76:3c:ec:cb:0b:55:7a:9b:3d:70: d7:b5:b0:e7:ba:4d:45:17:d3:10:d4:55:cb:11:f1: b5:e5:7d:7c:03:12:1b:c6:58:29:f4:29:2e:80:fe: 78:80:54:98:cd:91:b2:01:e3:26:d2:ce:c8:2f:fc: 81:ab:e1:42:62:b0:56:c1:24:4f:49:6e:9f:5c:0f: b2:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:E3:FE:F8:CC:EC:37:EE:5D:72:2B:DE:DB:66:98:99:56:25:2D:1F X509v3 Authority Key Identifier: keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl Authority Information Access: CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject Information Access: Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a3a2f34342d3438203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4440::/44 Signature Algorithm: sha256WithRSAEncryption 0f:97:65:3a:0e:1c:d6:28:27:eb:4f:91:08:2b:d3:ec:f9:6b: d8:d7:a6:78:02:0b:68:14:4c:59:25:d7:1d:ae:68:81:ca:d5: 35:51:f6:88:ca:24:71:21:2e:5c:68:67:c8:58:c7:59:d3:73: 10:67:68:b4:6a:c5:94:eb:a7:46:90:ed:13:ac:46:c4:06:48: b2:f4:d5:e2:19:e3:1d:2f:84:68:ee:77:08:25:13:c6:af:63: 94:6e:1e:75:ac:49:3a:a7:ee:a5:eb:c4:d7:5c:7f:89:5d:09: 9f:1d:fd:6a:75:23:58:61:98:29:dc:38:9f:2d:88:54:40:38: ec:95:95:0c:3e:a5:79:3e:93:77:44:1e:b6:28:b4:4d:1d:1f: 03:2b:b2:09:dd:48:f4:e8:cd:d4:c5:2e:6e:2d:76:f9:8c:85: db:c3:b3:5b:e7:45:16:44:40:9a:2b:b1:3e:b8:5e:a4:55:e3: 99:b3:28:0b:1e:33:de:4b:58:51:61:9f:7a:a9:2b:0c:f6:68: 8a:c8:1a:d5:79:d3:7d:b0:3a:5a:c2:68:80:d4:8c:2d:2b:f8: ac:09:4b:89:fe:36:7a:db:c0:9e:53:56:e6:21:31:1f:c3:5e: d2:f2:da:b9:5a:0e:1e:b6:5c:5a:6d:98:c3:14:0a:1d:c1:a0: 46:cf:1a:28 -----BEGIN CERTIFICATE----- MIIG1jCCBb6gAwIBAgIUKYOIosbohwGqk2UyWAMdzUV40ZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNCMTgwNUZBN0FFMjJENTY1RTBBNTAyRDA4RDM3RUIy QkQ4MzdBNzAeFw0yNjAxMjkwNzU1MDBaFw0yNzAxMjkwODAwMDBaMIICLTGCAikw ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwQjkxRjFGOUVBODdBMEZCRTM3 Qzc0RkNGODM2ODYwMjkzMzgyODQyRTEzQzY1RUNFREExMkJGMUU0NTY4REU5Qzgx QUI0RkMzRTVBMkVBOUFFMDczQTM0MzM5MjVBMTFDREJGMDZGNDk2OTlCREJDMzk3 MzIyNDk3MkU2ODIyRDhBM0Q1OUFBMzYzRDJFQTA4OTEwOUVEQUJDNUFBNUFDM0E0 NDAyRTU4MUNFRkI0RjVDQUIyNjdFRUM3NUJCMkZDMzkxMTJBMkFGMkRDQTRDNEMz RDMyMjEzRkEzOTA4Q0IyQzU0MkU5NkU4QjNGQUFDMDRCNEMxQTQ3QUFFNEZCMEJC NjY2NjBDNEQxNEQxN0MxNTU4MjAyREQ4NEYzMDUyNjNBNTMyQzUxRTBFMzM4OUIx Rjc0REQ1NzRGNjM3OTdGNTlGRURGNzBBM0ZDNjdBQzI1QjU3MTBFN0YxN0I3RTg4 RTIyNUMwMEQ0OEFCRUI3NjNDRUNDQjBCNTU3QTlCM0Q3MEQ3QjVCMEU3QkE0RDQ1 MTdEMzEwRDQ1NUNCMTFGMUI1RTU3RDdDMDMxMjFCQzY1ODI5RjQyOTJFODBGRTc4 ODA1NDk4Q0Q5MUIyMDFFMzI2RDJDRUM4MkZGQzgxQUJFMTQyNjJCMDU2QzEyNDRG NDk2RTlGNUMwRkIyNzMwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAuR8fnqh6D743x0/Pg2hgKTOChC4Txl7O2hK/HkVo3pyBq0/D5aLq muBzo0M5JaEc2/BvSWmb28OXMiSXLmgi2KPVmqNj0uoIkQntq8WqWsOkQC5YHO+0 9cqyZ+7HW7L8OREqKvLcpMTD0yIT+jkIyyxULpbos/qsBLTBpHquT7C7ZmYMTRTR fBVYIC3YTzBSY6UyxR4OM4mx903VdPY3l/Wf7fcKP8Z6wltXEOfxe36I4iXADUir 63Y87MsLVXqbPXDXtbDnuk1FF9MQ1FXLEfG15X18AxIbxlgp9CkugP54gFSYzZGy AeMm0s7IL/yBq+FCYrBWwSRPSW6fXA+ycwIDAQABo4IB5DCCAeAwHQYDVR0OBBYE FHnj/vjM7DfuXXIr3ttmmJlWJS0fMB8GA1UdIwQYMBaAFPyxgF+nriLVZeClAtCN N+sr2DenMA4GA1UdDwEB/wQEAwIHgDBkBgNVHR8EXTBbMFmgV6BVhlNyc3luYzov L3Jwa2kuYXBlcm5ldC5pby9yZXBvL0FQRVJORVQvMS9GQ0IxODA1RkE3QUUyMkQ1 NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNybDBtBggrBgEFBQcBAQRhMF8wXQYI KwYBBQUHMAKGUXJzeW5jOi8vc2FrdXlhLm5hdC5tb2UvcmVwby9OQVRPQ0EvMS9G Q0IxODA1RkE3QUUyMkQ1NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNlcjB7Bggr BgEFBQcBCwRvMG0wawYIKwYBBQUHMAuGX3JzeW5jOi8vcnBraS5hcGVybmV0Lmlv L3JlcG8vQVBFUk5FVC8xLzMyMzQzMDM2M2EzNDM0MzQzMDNhM2EyZjM0MzQyZDM0 MzgyMDNkM2UyMDMxMzYzNTMwMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkBkRAAAAwDQYJKoZIhvcN AQELBQADggEBAA+XZToOHNYoJ+tPkQgr0+z5a9jXpngCC2gUTFkl1x2uaIHK1TVR 9ojKJHEhLlxoZ8hYx1nTcxBnaLRqxZTrp0aQ7ROsRsQGSLL01eIZ4x0vhGjudwgl E8avY5RuHnWsSTqn7qXrxNdcf4ldCZ8d/Wp1I1hhmCncOJ8tiFRAOOyVlQw+pXk+ k3dEHrYotE0dHwMrsgndSPTozdTFLm4tdvmMhdvDs1vnRRZEQJorsT64XqRV45mz KAseM95LWFFhn3qpKwz2aIrIGtV5032wOlrCaIDUjC0r+KwJS4n+NnrbwJ5TVuYh MR/DXtLy2rlaDh62XFptmMMUCh3BoEbPGig= -----END CERTIFICATE-----Generated at Thu Jan 29 20:52:51 2026 by rpki-client