$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e203338313733.roa File: 323430363a343434303a663030303a3a2f34342d3438203d3e203338313733.roa (raw, json) Hash identifier: 0UUfSVfD70ODNfQQczqS73KrVntUNPr2YJ4FkC+VOXY= Subject key identifier: 97:39:53:96:3E:E2:D2:72:CE:20:6B:96:10:A7:A7:98:BE:4C:87:E1 Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Certificate serial: 4B27D9AB309232902BA0703E38AA71DEDA6ABF04 Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e203338313733.roa Signing time: Mon 11 Nov 2024 05:00:00 +0000 ROA not before: Mon 11 Nov 2024 04:55:00 +0000 ROA not after: Tue 11 Nov 2025 05:00:00 +0000 asID: 38173 IP address blocks: 2406:4440:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Feb 2025 08:44:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:27:d9:ab:30:92:32:90:2b:a0:70:3e:38:aa:71:de:da:6a:bf:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Validity Not Before: Nov 11 04:55:00 2024 GMT Not After : Nov 11 05:00:00 2025 GMT Subject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ubject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bd:58:f1:f8:11:2d:f3:7c:67:71:50:e2:9a: 59:83:06:35:f8:80:b9:56:95:ad:7d:4a:53:4f:71: 3a:d0:06:c7:d2:ef:0f:bd:e0:06:7a:5d:a4:3d:4a: 2c:30:cc:24:14:a5:8a:90:7d:8c:f2:b9:89:84:fd: 3f:44:0f:6c:ed:04:06:ec:4b:66:50:ef:cc:99:1a: f9:3b:69:36:eb:58:b3:7a:af:4b:58:a9:82:63:4c: 6e:9b:a4:88:3c:71:6e:4b:48:b2:50:48:69:53:ce: 23:65:7b:56:76:2a:8d:17:1d:46:97:87:4b:f5:d0: be:cd:a0:53:8b:7f:ce:f4:27:68:76:fd:84:c7:8a: 6d:82:fa:e4:7b:13:77:e3:f8:04:f8:1e:04:da:d9: 80:fd:3a:d3:4e:82:bb:c2:41:d5:30:94:b1:1c:dc: e2:60:84:8a:1e:c9:08:77:e9:ed:b9:b5:7f:c2:6d: 6f:85:b9:7c:32:78:c3:dd:9c:9d:b1:d1:8e:3d:df: 8c:71:d8:cf:87:16:f0:1d:36:61:af:4c:07:7f:c7: cf:7c:4b:63:03:ab:22:46:76:f4:d0:a2:42:f1:cd: 30:af:49:fd:4c:66:0c:a5:8f:eb:39:be:38:54:a9: 4e:38:a2:b7:91:5b:59:ee:e3:31:74:06:1e:1c:60: f8:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:39:53:96:3E:E2:D2:72:CE:20:6B:96:10:A7:A7:98:BE:4C:87:E1 X509v3 Authority Key Identifier: keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl Authority Information Access: CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject Information Access: Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e203338313733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4440:f000::/44 Signature Algorithm: sha256WithRSAEncryption bf:7f:c9:c7:65:88:90:03:43:1f:e1:4b:1b:b9:fa:91:c1:90: 81:4c:c0:25:9d:5a:f3:d8:c1:89:6a:25:17:75:20:9e:3d:fa: 61:36:23:45:46:4c:1f:bd:4a:eb:16:0a:8e:e5:2d:c1:ca:ad: 92:29:41:bb:71:e7:46:d3:81:72:a9:20:0b:8b:2d:79:46:df: a6:23:e5:ab:20:21:82:a8:65:be:cc:f2:0f:52:23:5d:3e:66: 40:cc:e1:89:62:aa:58:af:a2:38:23:97:36:d2:87:66:f3:ea: 0a:7d:79:48:6c:7f:37:62:b2:1a:a5:2b:83:48:cf:aa:7c:01: 08:d5:84:db:bf:84:63:84:c3:25:2b:91:50:5f:57:e2:02:56: db:90:53:71:6b:a5:4a:af:54:cf:c7:18:58:c5:e0:c2:c7:4a: 4b:48:98:22:e3:4c:6f:66:f6:17:ad:89:2f:14:31:63:27:3a: 9f:d9:d4:6a:4b:17:f7:fb:b7:cf:b7:0c:aa:72:b2:ff:23:0f: 00:dd:33:d2:3a:6d:96:38:22:c9:4e:32:ea:a4:82:4e:a3:13: 32:48:d3:a3:a9:08:8e:f2:e1:f5:c6:8a:c6:d0:db:62:b6:9d: 93:9e:8a:4a:e6:db:79:86:5b:dd:bd:79:f3:5f:be:d0:ec:d3: f5:73:8c:62 -----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUSyfZqzCSMpAroHA+OKpx3tpqvwQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNCMTgwNUZBN0FFMjJENTY1RTBBNTAyRDA4RDM3RUIy QkQ4MzdBNzAeFw0yNDExMTEwNDU1MDBaFw0yNTExMTEwNTAwMDBaMIICLTGCAikw ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwQUJCRDU4RjFGODExMkRGMzdD Njc3MTUwRTI5QTU5ODMwNjM1Rjg4MEI5NTY5NUFEN0Q0QTUzNEY3MTNBRDAwNkM3 RDJFRjBGQkRFMDA2N0E1REE0M0Q0QTJDMzBDQzI0MTRBNThBOTA3RDhDRjJCOTg5 ODRGRDNGNDQwRjZDRUQwNDA2RUM0QjY2NTBFRkNDOTkxQUY5M0I2OTM2RUI1OEIz N0FBRjRCNThBOTgyNjM0QzZFOUJBNDg4M0M3MTZFNEI0OEIyNTA0ODY5NTNDRTIz NjU3QjU2NzYyQThEMTcxRDQ2OTc4NzRCRjVEMEJFQ0RBMDUzOEI3RkNFRjQyNzY4 NzZGRDg0Qzc4QTZEODJGQUU0N0IxMzc3RTNGODA0RjgxRTA0REFEOTgwRkQzQUQz NEU4MkJCQzI0MUQ1MzA5NEIxMUNEQ0UyNjA4NDhBMUVDOTA4NzdFOUVEQjlCNTdG QzI2RDZGODVCOTdDMzI3OEMzREQ5QzlEQjFEMThFM0RERjhDNzFEOENGODcxNkYw MUQzNjYxQUY0QzA3N0ZDN0NGN0M0QjYzMDNBQjIyNDY3NkY0RDBBMjQyRjFDRDMw QUY0OUZENEM2NjBDQTU4RkVCMzlCRTM4NTRBOTRFMzhBMkI3OTE1QjU5RUVFMzMx NzQwNjFFMUM2MEY4NjcwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAq71Y8fgRLfN8Z3FQ4ppZgwY1+IC5VpWtfUpTT3E60AbH0u8PveAG el2kPUosMMwkFKWKkH2M8rmJhP0/RA9s7QQG7EtmUO/MmRr5O2k261izeq9LWKmC Y0xum6SIPHFuS0iyUEhpU84jZXtWdiqNFx1Gl4dL9dC+zaBTi3/O9Cdodv2Ex4pt gvrkexN34/gE+B4E2tmA/TrTToK7wkHVMJSxHNziYISKHskId+ntubV/wm1vhbl8 MnjD3ZydsdGOPd+McdjPhxbwHTZhr0wHf8fPfEtjA6siRnb00KJC8c0wr0n9TGYM pY/rOb44VKlOOKK3kVtZ7uMxdAYeHGD4ZwIDAQABo4IB7zCCAeswHQYDVR0OBBYE FJc5U5Y+4tJyziBrlhCnp5i+TIfhMB8GA1UdIwQYMBaAFPyxgF+nriLVZeClAtCN N+sr2DenMA4GA1UdDwEB/wQEAwIHgDBkBgNVHR8EXTBbMFmgV6BVhlNyc3luYzov L3Jwa2kuYXBlcm5ldC5pby9yZXBvL0FQRVJORVQvMS9GQ0IxODA1RkE3QUUyMkQ1 NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNybDBtBggrBgEFBQcBAQRhMF8wXQYI KwYBBQUHMAKGUXJzeW5jOi8vc2FrdXlhLm5hdC5tb2UvcmVwby9OQVRPQ0EvMS9G Q0IxODA1RkE3QUUyMkQ1NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNlcjCBhQYI KwYBBQUHAQsEeTB3MHUGCCsGAQUFBzALhmlyc3luYzovL3Jwa2kuYXBlcm5ldC5p by9yZXBvL0FQRVJORVQvMS8zMjM0MzAzNjNhMzQzNDM0MzAzYTY2MzAzMDMwM2Ez YTJmMzQzNDJkMzQzODIwM2QzZTIwMzMzODMxMzczMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCQGREDw ADANBgkqhkiG9w0BAQsFAAOCAQEAv3/Jx2WIkANDH+FLG7n6kcGQgUzAJZ1a89jB iWolF3Ugnj36YTYjRUZMH71K6xYKjuUtwcqtkilBu3HnRtOBcqkgC4steUbfpiPl qyAhgqhlvszyD1IjXT5mQMzhiWKqWK+iOCOXNtKHZvPqCn15SGx/N2KyGqUrg0jP qnwBCNWE27+EY4TDJSuRUF9X4gJW25BTcWulSq9Uz8cYWMXgwsdKS0iYIuNMb2b2 F62JLxQxYyc6n9nUaksX9/u3z7cMqnKy/yMPAN0z0jptljgiyU4y6qSCTqMTMkjT o6kIjvLh9caKxtDbYradk56KSubbeYZb3b1581++0OzT9XOMYg== -----END CERTIFICATE-----Generated at Sun Feb 16 21:59:06 2025 by rpki-client