Certificate
$ rpki-client -vvf sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
File: FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer (raw, json)
Hash identifier: cIY8MVlLm9JgK/dm24sUQfxqntuvPhnKzYtz/zbgxlQ=
Subject key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
Authority key identifier: 5A:17:96:48:B3:EF:23:69:DC:E7:BD:B5:81:40:FF:7D:C7:06:0A:BF
Certificate issuer: /CN=A9114E750000/serialNumber=5A179648B3EF2369DCE7BDB58140FF7DC7060ABF
Certificate serial: 075F5E176306FAF8D9CBFAAD1B725AEA173CF04B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer
Manifest: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft
caRepository: rsync://rpki.apernet.io/repo/APERNET/1/
Notify URL: https://rpki.apernet.io/rrdp/notification.xml
Certificate not before: Sat 11 May 2024 20:01:00 +0000
Certificate not after: Sat 10 May 2025 20:06:00 +0000
Subordinate resources: AS: 38008
IP: 103.152.34.0/23
IP: 2406:4440::/32
Validation: OK
Signature path: rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl
rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 20:34:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:5f:5e:17:63:06:fa:f8:d9:cb:fa:ad:1b:72:5a:ea:17:3c:f0:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9114E750000/serialNumber=5A179648B3EF2369DCE7BDB58140FF7DC7060ABF
Validity
Not Before: May 11 20:01:00 2024 GMT
Not After : May 10 20:06:00 2025 GMT
Subject: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:04:80:85:1b:8d:28:18:60:48:09:5d:4a:41:
e4:27:38:c2:85:15:66:92:7b:8b:e3:de:55:31:f8:
7b:5d:5a:81:66:f2:7b:13:32:7f:f0:bc:0b:33:15:
17:f3:96:87:d0:24:73:d9:9c:39:1e:2a:99:4d:57:
7b:af:95:36:c2:79:aa:6d:47:b1:d7:88:62:5a:46:
c6:2d:23:ae:bb:61:62:81:d9:8a:5e:01:d3:53:e1:
1e:c8:53:3d:d8:09:58:e9:9f:2d:06:db:d9:4e:4a:
6e:88:3e:02:aa:59:06:f5:03:8e:6c:ab:b9:ca:d5:
b9:d5:c2:41:40:d3:a2:a4:ea:9f:5d:d5:84:b6:4f:
cd:fa:bf:e4:55:af:10:36:3a:d9:47:9b:a8:44:3f:
3d:18:ac:1c:0b:bf:3a:39:da:e5:b0:be:29:4f:b5:
49:78:e6:7d:86:53:e2:d2:f7:59:7a:dd:84:83:0b:
b6:cf:99:27:da:26:e5:f0:b6:c7:51:e9:06:c7:ff:
e7:27:25:50:8f:4d:ac:94:c4:af:4d:68:c1:d1:2e:
74:8a:b6:51:f5:7c:f3:5b:ee:73:c0:c5:6b:86:cb:
82:cb:3e:76:80:e7:ec:03:d8:01:30:d3:1c:24:29:
e9:a5:88:9d:5c:83:0c:68:75:16:59:6e:19:55:34:
b0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
X509v3 Authority Key Identifier:
keyid:5A:17:96:48:B3:EF:23:69:DC:E7:BD:B5:81:40:FF:7D:C7:06:0A:BF
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.apernet.io/repo/APERNET/1/
RPKI Manifest - URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft
RPKI Notify - URI:https://rpki.apernet.io/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.152.34.0/23
IPv6:
2406:4440::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38008
Signature Algorithm: sha256WithRSAEncryption
0a:1d:d0:52:b4:a8:bf:8c:09:b1:a7:c5:33:ee:91:69:0b:2e:
0d:83:1c:0c:fb:79:f9:58:7d:11:22:47:27:69:1b:9d:d5:eb:
17:64:c9:02:fe:28:5f:e4:17:39:63:d2:3b:e1:97:19:e8:54:
69:2f:7f:8f:b1:7b:28:3d:f0:a4:1a:ab:6f:6a:5b:ac:c0:c1:
89:19:d1:60:f1:16:fb:6d:a9:82:64:b5:8b:c1:42:63:20:ae:
4d:5b:cc:b6:24:35:f2:96:2c:d2:8b:8a:32:ba:cc:83:f6:8a:
c9:66:43:b7:61:ce:5c:ae:1a:ab:ed:d9:5a:4e:27:62:13:1e:
2f:12:cd:62:70:ae:43:12:8d:63:f7:50:ab:c3:88:83:23:54:
b8:5e:2c:6f:49:4d:98:4f:53:f9:78:28:f1:d0:0c:9f:2c:67:
17:59:db:15:1b:f3:1e:b2:6a:23:8e:da:31:01:32:42:cd:53:
b9:21:d8:3d:96:86:4d:c1:d8:f3:95:06:f0:da:3e:3d:37:22:
6b:d9:46:cf:aa:ec:77:21:25:ed:fd:ec:0a:2c:b3:ef:bc:a7:
3d:ce:5c:35:85:a7:72:86:67:cc:a0:ab:96:79:cf:8e:f9:18:
7e:ed:1a:2d:dc:a4:cc:2f:3d:67:b1:8d:a3:05:8d:bb:41:c5:
98:ed:f6:37
-----BEGIN CERTIFICATE-----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Generated at Fri Nov 22 00:15:24 2024 by rpki-client on console-ams.rpki-client.org