Route Origin Authorization
$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e2037373231.roa
File: 323430363a343434303a663030303a3a2f34342d3438203d3e2037373231.roa (raw, json)
Hash identifier: 8wZ0vJ61XrFhRDwRcjG53sUgW9srp3bLgyid9R66fAo=
Subject key identifier: 8F:D6:3B:83:15:73:F8:CE:05:BE:D5:D1:AC:8C:25:50:B7:7D:A9:B7
Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Certificate serial: 06E9E67500E07E7F1AFE0324DA8607A3718CB61B
Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e2037373231.roa
Signing time: Thu 24 Oct 2024 07:00:01 +0000
ROA not before: Thu 24 Oct 2024 06:55:01 +0000
ROA not after: Fri 24 Oct 2025 07:00:01 +0000
asID: 7721
IP address blocks: 2406:4440:f000::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl
rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft
rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl
rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 20:34:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:e9:e6:75:00:e0:7e:7f:1a:fe:03:24:da:86:07:a3:71:8c:b6:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Validity
Not Before: Oct 24 06:55:01 2024 GMT
Not After : Oct 24 07:00:01 2025 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:25:34:8a:8d:a8:a7:fc:70:87:7a:46:57:1c:
95:e3:5a:f3:96:28:8c:b0:07:92:28:f3:27:b9:c3:
8a:4a:9e:40:37:40:6b:27:59:1f:e4:7c:11:ee:b4:
63:20:2c:c2:28:48:ef:86:37:5f:6c:ba:ed:41:1a:
48:01:5f:d2:fa:28:83:c4:58:60:f5:0a:56:c2:b3:
fd:cf:ea:6c:4d:09:60:08:9a:da:79:90:56:f7:c7:
dc:83:83:5b:15:a4:b1:91:81:9c:91:bc:ee:e8:40:
a9:cd:89:07:7e:ff:72:c6:19:d6:29:bd:6e:2f:21:
e6:54:10:1a:4e:d0:54:ba:ee:65:80:5b:f8:e6:0f:
fe:10:79:86:8d:2c:75:85:50:7f:ff:d5:98:1f:ab:
7d:a9:25:9b:d2:7e:b7:17:12:91:5a:54:7d:fe:b0:
66:54:53:c2:34:37:eb:31:cd:97:3b:5b:e5:b9:96:
d0:33:72:0c:15:2f:04:8a:bc:18:bd:e7:43:dd:fb:
8c:13:e9:37:00:62:d2:5e:e5:2c:01:21:16:ef:8d:
96:7b:08:2b:d6:1c:ef:10:15:52:ea:59:24:53:52:
5c:c6:46:a5:b9:3d:34:6c:c1:36:0f:d3:26:a8:32:
29:c1:98:5a:07:03:be:27:3f:66:6c:72:f8:7f:3f:
e4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:D6:3B:83:15:73:F8:CE:05:BE:D5:D1:AC:8C:25:50:B7:7D:A9:B7
X509v3 Authority Key Identifier:
keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl
Authority Information Access:
CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e2037373231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:4440:f000::/44
Signature Algorithm: sha256WithRSAEncryption
2e:97:7f:7d:c3:57:cc:5c:c7:2c:a0:ef:b2:eb:f7:ce:3b:ab:
20:bd:6d:17:37:a9:1c:28:ab:ef:0f:10:d6:fc:1c:95:4b:ed:
df:68:80:0a:28:3f:be:d6:c9:94:1a:da:4c:55:61:29:18:fe:
c0:64:6f:7f:b1:89:ab:e2:23:63:e6:99:35:aa:db:72:72:ae:
c8:a6:01:17:3e:2a:e8:01:f2:04:55:ef:67:04:be:44:89:de:
11:af:26:ad:d0:f4:07:9e:ab:e3:84:d2:fd:f4:ce:1b:b7:fb:
c0:31:28:71:eb:74:ab:30:62:28:f5:ad:c0:02:78:07:48:d1:
f7:5a:e7:67:06:c2:26:80:95:c6:4f:88:83:e8:fc:65:e3:26:
d0:45:be:08:05:9e:95:61:d7:23:97:3a:d7:5f:a6:c7:df:2b:
ab:d2:b3:37:10:19:22:80:0a:1d:3f:a6:c9:aa:ff:61:88:1b:
be:65:7e:9f:8d:81:cf:04:11:44:e8:9a:62:b7:05:65:c9:5b:
20:f7:a6:ee:07:3a:09:b7:0a:07:6d:25:e1:92:7f:81:a8:3f:
17:52:a1:72:f2:0e:df:9f:7e:c8:eb:aa:81:51:36:f3:c5:0d:
12:c1:d4:64:f3:3f:f8:48:ed:8a:7a:35:82:f5:4f:36:c7:62:
6f:de:ea:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:31:42 2024 by rpki-client on console-fra.rpki-client.org