$ rpki-client -vvf sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer File: FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer (raw, json) Hash identifier: 86BO5HBDaOlf6INaoxfvvESPVqk8O1NZfFaWzKEXX4A= Subject key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 Authority key identifier: 5A:17:96:48:B3:EF:23:69:DC:E7:BD:B5:81:40:FF:7D:C7:06:0A:BF Certificate issuer: /CN=A9114E750000/serialNumber=5A179648B3EF2369DCE7BDB58140FF7DC7060ABF Certificate serial: 70ABE177B3FB388C7FAAF643D6147128B2825E92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer Manifest: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft caRepository: rsync://rpki.apernet.io/repo/APERNET/1/ Notify URL: https://rpki.apernet.io/rrdp/notification.xml Certificate not before: Sat 14 Mar 2026 20:05:00 +0000 Certificate not after: Sat 13 Mar 2027 20:10:00 +0000 Subordinate resources: AS: 38008 IP: 103.152.34.0/23 IP: 2406:4440::/32 Validation: OK Signature path: rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 04:12:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:ab:e1:77:b3:fb:38:8c:7f:aa:f6:43:d6:14:71:28:b2:82:5e:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114E750000, serialNumber=5A179648B3EF2369DCE7BDB58140FF7DC7060ABF Validity Not Before: Mar 14 20:05:00 2026 GMT Not After : Mar 13 20:10:00 2027 GMT Subject: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:04:80:85:1b:8d:28:18:60:48:09:5d:4a:41: e4:27:38:c2:85:15:66:92:7b:8b:e3:de:55:31:f8: 7b:5d:5a:81:66:f2:7b:13:32:7f:f0:bc:0b:33:15: 17:f3:96:87:d0:24:73:d9:9c:39:1e:2a:99:4d:57: 7b:af:95:36:c2:79:aa:6d:47:b1:d7:88:62:5a:46: c6:2d:23:ae:bb:61:62:81:d9:8a:5e:01:d3:53:e1: 1e:c8:53:3d:d8:09:58:e9:9f:2d:06:db:d9:4e:4a: 6e:88:3e:02:aa:59:06:f5:03:8e:6c:ab:b9:ca:d5: b9:d5:c2:41:40:d3:a2:a4:ea:9f:5d:d5:84:b6:4f: cd:fa:bf:e4:55:af:10:36:3a:d9:47:9b:a8:44:3f: 3d:18:ac:1c:0b:bf:3a:39:da:e5:b0:be:29:4f:b5: 49:78:e6:7d:86:53:e2:d2:f7:59:7a:dd:84:83:0b: b6:cf:99:27:da:26:e5:f0:b6:c7:51:e9:06:c7:ff: e7:27:25:50:8f:4d:ac:94:c4:af:4d:68:c1:d1:2e: 74:8a:b6:51:f5:7c:f3:5b:ee:73:c0:c5:6b:86:cb: 82:cb:3e:76:80:e7:ec:03:d8:01:30:d3:1c:24:29: e9:a5:88:9d:5c:83:0c:68:75:16:59:6e:19:55:34: b0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 X509v3 Authority Key Identifier: keyid:5A:17:96:48:B3:EF:23:69:DC:E7:BD:B5:81:40:FF:7D:C7:06:0A:BF X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer Subject Information Access: CA Repository - URI:rsync://rpki.apernet.io/repo/APERNET/1/ RPKI Manifest - URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft RPKI Notify - URI:https://rpki.apernet.io/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.34.0/23 IPv6: 2406:4440::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 38008 Signature Algorithm: sha256WithRSAEncryption 9a:b1:0d:c6:02:0d:7a:5a:dd:9e:8e:1f:2a:03:2a:86:ce:ec: 2b:3c:63:4b:ec:f5:9b:84:ed:1d:5f:3a:0f:ea:43:76:83:73: 2e:0a:a6:c6:fe:ec:8a:c7:ca:0b:2e:b9:b8:bf:69:41:0f:da: e6:93:e3:ca:3f:89:f0:f5:2f:5e:83:f5:4c:1d:ae:27:1e:93: ac:ac:40:5c:69:73:05:52:d8:ed:f1:13:de:0d:2e:59:87:e8: 87:c6:7c:c3:16:da:1e:94:c1:41:cd:03:27:b0:ad:73:8c:d9: 74:53:8d:e0:eb:ec:e7:44:58:e1:da:63:d2:05:e9:87:56:4c: a0:cc:f1:5f:d8:21:c5:b6:94:39:fa:43:2c:5b:89:73:b6:a3: 2a:aa:cb:f4:94:bb:09:8e:78:14:64:fe:d5:3b:37:f9:3c:8d: 75:21:8a:cc:b4:d6:ce:68:92:8a:e7:d9:d9:de:c9:a2:35:4e: ed:08:f8:c1:85:64:e5:e3:3c:a6:65:b3:16:01:af:b8:1d:ad: 3a:33:f9:66:a2:7c:b2:ab:0a:a8:e0:d8:90:83:72:35:cf:a0: 77:e6:3a:41:ec:72:e1:ef:e6:ee:36:25:4a:44:31:94:d1:d8: 4b:97:8f:51:24:6d:a7:0f:9f:02:8e:40:da:13:1a:98:f7:e8: c9:0c:15:30 -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgIUcKvhd7P7OIx/qvZD1hRxKLKCXpIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMTRFNzUwMDAwMTEwLwYDVQQFEyg1QTE3OTY0OEIz RUYyMzY5RENFN0JEQjU4MTQwRkY3REM3MDYwQUJGMB4XDTI2MDMxNDIwMDUwMFoX DTI3MDMxMzIwMTAwMFowMzExMC8GA1UEAxMoRkNCMTgwNUZBN0FFMjJENTY1RTBB NTAyRDA4RDM3RUIyQkQ4MzdBNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANcEgIUbjSgYYEgJXUpB5Cc4woUVZpJ7i+PeVTH4e11agWbyexMyf/C8CzMV F/OWh9Akc9mcOR4qmU1Xe6+VNsJ5qm1HsdeIYlpGxi0jrrthYoHZil4B01PhHshT PdgJWOmfLQbb2U5Kbog+AqpZBvUDjmyrucrVudXCQUDToqTqn13VhLZPzfq/5FWv EDY62UebqEQ/PRisHAu/Ojna5bC+KU+1SXjmfYZT4tL3WXrdhIMLts+ZJ9om5fC2 x1HpBsf/5yclUI9NrJTEr01owdEudIq2UfV881vuc8DFa4bLgss+doDn7APYATDT HCQp6aWInVyDDGh1FlluGVU0sBcCAwEAAaOCApMwggKPMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPyxgF+nriLVZeClAtCNN+sr2DenMB8GA1UdIwQYMBaAFFoX lkiz7yNp3Oe9tYFA/33HBgq/MA4GA1UdDwEB/wQEAwIBBjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Nha3V5YS5uYXQubW9lL3JlcG8vTkFUT0NBLzEvNUExNzk2 NDhCM0VGMjM2OURDRTdCREI1ODE0MEZGN0RDNzA2MEFCRi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvV2hlV1NMUHZJ Mm5jNTcyMWdVRF9mY2NHQ3I4LmNlcjCB4QYIKwYBBQUHAQsEgdQwgdEwMwYIKwYB BQUHMAWGJ3JzeW5jOi8vcnBraS5hcGVybmV0LmlvL3JlcG8vQVBFUk5FVC8xLzBf BggrBgEFBQcwCoZTcnN5bmM6Ly9ycGtpLmFwZXJuZXQuaW8vcmVwby9BUEVSTkVU LzEvRkNCMTgwNUZBN0FFMjJENTY1RTBBNTAyRDA4RDM3RUIyQkQ4MzdBNy5tZnQw OQYIKwYBBQUHMA2GLWh0dHBzOi8vcnBraS5hcGVybmV0LmlvL3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQBZ5giMA0EAgACMAcDBQAkBkRAMBoGCCsGAQUFBwEI AQH/BAswCaAHMAUCAwCUeDANBgkqhkiG9w0BAQsFAAOCAQEAmrENxgINelrdno4f KgMqhs7sKzxjS+z1m4TtHV86D+pDdoNzLgqmxv7sisfKCy65uL9pQQ/a5pPjyj+J 8PUvXoP1TB2uJx6TrKxAXGlzBVLY7fET3g0uWYfoh8Z8wxbaHpTBQc0DJ7Ctc4zZ dFON4Ovs50RY4dpj0gXph1ZMoMzxX9ghxbaUOfpDLFuJc7ajKqrL9JS7CY54FGT+ 1Ts3+TyNdSGKzLTWzmiSiufZ2d7JojVO7Qj4wYVk5eM8pmWzFgGvuB2tOjP5ZqJ8 sqsKqODYkINyNc+gd+Y6Qexy4e/m7jYlSkQxlNHYS5ePUSRtpw+fAo5A2hMamPfo yQwVMA== -----END CERTIFICATE-----Generated at Mon Mar 16 19:10:57 2026 by rpki-client