Route Origin Authorization
$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e2037373231.roa
File: 323430363a343434303a663030303a3a2f34342d3438203d3e2037373231.roa (raw, json)
Hash identifier: o3F/bydf3No0iTGX5upcp8bfx8ynAY7P3fXxUtAS1rI=
Subject key identifier: 39:51:0E:F7:BB:92:F0:83:39:DD:76:F1:60:E1:72:C1:6D:AF:09:36
Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Certificate serial: 6441F101BA14A7FCBF29C5E5EEEA362D3B36F037
Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e2037373231.roa
Signing time: Tue 21 Nov 2023 07:00:00 +0000
ROA not before: Tue 21 Nov 2023 06:55:00 +0000
ROA not after: Thu 21 Nov 2024 07:00:00 +0000
asID: 7721
IP address blocks: 2406:4440:f000::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl
rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft
rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl
rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 16 May 2024 15:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:41:f1:01:ba:14:a7:fc:bf:29:c5:e5:ee:ea:36:2d:3b:36:f0:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Validity
Not Before: Nov 21 06:55:00 2023 GMT
Not After : Nov 21 07:00:00 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:02:57:69:38:82:59:9b:1b:aa:67:19:0c:a0:
56:f2:13:6a:74:66:8b:17:ef:dc:f2:5b:70:29:6f:
e7:c6:e2:75:50:ab:bc:97:23:f0:6c:6c:f8:ce:3e:
da:6c:60:bd:59:90:02:a7:d3:76:06:46:5f:bb:09:
f4:37:a1:24:e0:c3:bf:bc:04:a6:f6:67:84:46:fe:
e9:e0:5e:fd:b4:83:5b:81:d6:5d:24:11:da:9a:c3:
a2:3b:bb:8b:8c:b1:da:bc:55:be:22:94:a0:b5:f0:
37:16:31:cb:88:94:3d:13:45:cd:f8:52:5a:9d:45:
30:c5:f2:f1:35:b3:b7:a8:f5:79:4d:80:04:23:c1:
89:2d:b4:9a:65:dd:1a:28:4c:bd:51:2d:bf:c2:87:
b0:8e:27:6c:57:d2:cc:26:fd:1f:ab:99:81:83:d2:
5f:b5:71:29:88:d2:66:d4:60:8f:c3:06:f3:8d:c0:
32:7f:c8:a4:b6:69:cd:8d:06:8b:17:a7:1e:75:8e:
04:1d:f7:73:60:62:d8:08:3d:11:e6:f2:b9:6f:ab:
fc:72:73:42:23:b3:e8:42:0b:e9:bb:f3:a3:4e:6c:
f1:58:04:ad:18:9e:57:a4:47:62:fd:f5:ac:6c:0a:
69:8b:a9:6f:73:43:2e:2b:9d:42:8a:fd:6f:ac:d3:
95:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:51:0E:F7:BB:92:F0:83:39:DD:76:F1:60:E1:72:C1:6D:AF:09:36
X509v3 Authority Key Identifier:
keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl
Authority Information Access:
CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e2037373231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:4440:f000::/44
Signature Algorithm: sha256WithRSAEncryption
80:a0:b2:99:4b:12:be:8c:13:85:c6:da:1e:fc:0f:c6:72:5b:
44:04:eb:93:3e:5b:46:98:c4:52:ef:94:d1:fd:0e:57:05:4e:
02:f0:82:c0:70:1a:0e:ff:d8:c2:9e:f7:3e:3b:4b:42:27:bd:
0b:73:98:59:14:96:b6:68:14:3c:34:14:aa:a1:da:33:4e:59:
08:dc:1e:33:82:57:8c:06:77:25:5e:a6:f8:86:e8:d1:5a:56:
c7:48:64:2e:01:5b:a3:69:c1:70:f4:cd:66:7e:52:d5:71:c4:
db:41:5a:81:46:d8:6f:e4:f5:e3:91:89:b8:a7:12:b4:02:1c:
04:14:c7:73:27:c6:ec:94:5b:0b:d7:3b:4d:f9:1c:85:62:c7:
aa:cc:f9:60:3f:b9:21:8f:10:a8:a3:57:4a:d6:cc:47:a1:18:
1b:c7:63:ac:e9:d2:62:75:fa:bb:f5:f7:68:c4:2e:2f:7a:9c:
5a:8b:5f:41:ab:a7:cc:46:04:19:b0:61:3b:6d:f5:47:b0:bc:
c7:35:1b:55:e1:e3:a1:0e:7c:82:9a:5a:51:3b:f9:ee:82:5a:
33:49:b1:fb:58:af:12:41:fa:a3:cc:57:63:bf:a8:cf:3b:08:
2f:f3:68:e2:15:35:b1:42:b2:7e:58:e5:d9:c9:09:f6:2e:77:
ac:fa:69:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 18:19:46 2024 by rpki-client on console-ams.rpki-client.org