$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a36303a3a2f34342d3434203d3e20333936333033.roa File: 323430363a343434303a36303a3a2f34342d3434203d3e20333936333033.roa (raw, json) Hash identifier: Gt4FDhrN+28MeIEFQUXRXVybQ44ldI0QDu2JQIBZDW0= Subject key identifier: 9A:D9:31:CB:EE:71:E9:78:CC:05:2F:E5:82:1B:2B:56:8F:3B:D2:B1 Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Certificate serial: 06CA532AD22D17A7A1D2BD17516FEAB888C797E8 Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a36303a3a2f34342d3434203d3e20333936333033.roa Signing time: Mon 29 Sep 2025 05:00:00 +0000 ROA not before: Mon 29 Sep 2025 04:55:00 +0000 ROA not after: Tue 29 Sep 2026 05:00:00 +0000 asID: 396303 IP address blocks: 2406:4440:60::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:ca:53:2a:d2:2d:17:a7:a1:d2:bd:17:51:6f:ea:b8:88:c7:97:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Validity Not Before: Sep 29 04:55:00 2025 GMT Not After : Sep 29 05:00:00 2026 GMT Subject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ubject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:76:cd:9d:b0:d4:fb:f8:a8:3f:bc:68:1f:c9: 7b:02:34:96:fe:54:91:1b:41:13:84:f1:8d:b4:a8: 26:aa:45:eb:85:ce:01:69:33:bd:2f:0a:a2:ac:d2: 10:dc:d0:c8:0d:ac:09:13:d1:89:71:f8:9b:ad:79: 1f:87:4b:bc:d5:a2:99:65:84:1d:fd:7f:90:60:96: 61:f4:e9:e2:dd:dd:b2:d3:37:18:a7:bb:b6:4b:d9: 52:05:3f:31:ea:8a:a9:b2:d2:a7:0d:3c:15:fb:d1: 85:c8:55:7c:36:f1:09:17:79:fd:66:43:48:3e:ea: f3:1d:ef:2c:54:98:66:1d:7b:41:01:ba:38:13:93: a5:bc:1c:8d:80:c9:b1:14:db:12:65:53:59:fa:7b: b9:a6:73:86:bc:1a:b0:78:73:3b:67:ad:51:ca:df: 10:71:e1:e3:24:fe:65:70:b6:67:45:e1:5b:87:f6: ad:86:d3:2b:79:81:78:6c:e0:bc:4a:64:53:90:3c: 36:01:5d:c1:24:3b:df:2f:a1:38:13:3c:09:c8:60: e1:cc:d2:8d:c7:b5:63:3b:bf:74:ec:a1:8c:fd:32: 36:0e:71:2a:90:0d:9b:c5:12:1c:68:89:65:cb:d8: a4:d0:10:94:5f:6b:ba:ad:15:2a:4d:2f:6b:12:23: a6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D9:31:CB:EE:71:E9:78:CC:05:2F:E5:82:1B:2B:56:8F:3B:D2:B1 X509v3 Authority Key Identifier: keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl Authority Information Access: CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject Information Access: Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a36303a3a2f34342d3434203d3e20333936333033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4440:60::/44 Signature Algorithm: sha256WithRSAEncryption 4a:47:21:c3:38:8e:dc:70:a0:40:c3:19:59:2f:9e:b4:5c:bf: 81:34:80:8e:39:e0:22:01:0c:1f:68:c2:06:89:f8:08:64:f0: 93:d0:d2:af:71:1c:48:02:b2:d3:4e:af:73:71:2a:83:6a:96: 64:f4:fe:39:3d:0d:55:3d:6e:09:74:71:fa:39:c5:05:9a:fb: ae:f5:11:16:9c:a9:be:c6:1c:00:b2:67:d4:6f:ae:34:36:2b: 56:cd:08:76:11:f1:d0:61:32:09:86:3d:88:40:71:35:ef:32: a8:88:e3:7d:e9:89:c2:f4:64:da:46:59:0f:25:76:be:97:11: 27:da:fd:eb:52:dd:ba:ac:cb:d3:5f:3d:84:2c:d3:00:59:c1: df:9c:54:6b:3b:a1:c9:fb:87:ec:53:6b:9c:2b:e9:51:eb:cc: 57:eb:e8:de:84:3a:7a:fe:e4:d4:4d:b8:97:c1:0a:cf:41:9f: 2e:b1:88:74:ae:64:fa:d7:60:86:2c:c4:ee:26:13:95:14:92: 3f:d9:01:80:25:31:2a:fd:ec:a8:25:ed:04:be:25:30:5d:a0: a5:50:01:27:86:2d:37:cc:bd:6e:92:c1:a2:d2:1c:83:81:83: 54:c1:7a:12:8d:a4:45:66:84:07:7c:0d:3c:ae:5f:1d:8c:16: 55:44:a0:d0 -----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUBspTKtItF6eh0r0XUW/quIjHl+gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNCMTgwNUZBN0FFMjJENTY1RTBBNTAyRDA4RDM3RUIy QkQ4MzdBNzAeFw0yNTA5MjkwNDU1MDBaFw0yNjA5MjkwNTAwMDBaMIICLTGCAikw ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwRDM3NkNEOURCMEQ0RkJGOEE4 M0ZCQzY4MUZDOTdCMDIzNDk2RkU1NDkxMUI0MTEzODRGMThEQjRBODI2QUE0NUVC ODVDRTAxNjkzM0JEMkYwQUEyQUNEMjEwRENEMEM4MERBQzA5MTNEMTg5NzFGODlC QUQ3OTFGODc0QkJDRDVBMjk5NjU4NDFERkQ3RjkwNjA5NjYxRjRFOUUyREREREIy RDMzNzE4QTdCQkI2NEJEOTUyMDUzRjMxRUE4QUE5QjJEMkE3MEQzQzE1RkJEMTg1 Qzg1NTdDMzZGMTA5MTc3OUZENjY0MzQ4M0VFQUYzMURFRjJDNTQ5ODY2MUQ3QjQx MDFCQTM4MTM5M0E1QkMxQzhEODBDOUIxMTREQjEyNjU1MzU5RkE3QkI5QTY3Mzg2 QkMxQUIwNzg3MzNCNjdBRDUxQ0FERjEwNzFFMUUzMjRGRTY1NzBCNjY3NDVFMTVC ODdGNkFEODZEMzJCNzk4MTc4NkNFMEJDNEE2NDUzOTAzQzM2MDE1REMxMjQzQkRG MkZBMTM4MTMzQzA5Qzg2MEUxQ0NEMjhEQzdCNTYzM0JCRjc0RUNBMThDRkQzMjM2 MEU3MTJBOTAwRDlCQzUxMjFDNjg4OTY1Q0JEOEE0RDAxMDk0NUY2QkJBQUQxNTJB NEQyRjZCMTIyM0E2NDUwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA03bNnbDU+/ioP7xoH8l7AjSW/lSRG0EThPGNtKgmqkXrhc4BaTO9 LwqirNIQ3NDIDawJE9GJcfibrXkfh0u81aKZZYQd/X+QYJZh9Oni3d2y0zcYp7u2 S9lSBT8x6oqpstKnDTwV+9GFyFV8NvEJF3n9ZkNIPurzHe8sVJhmHXtBAbo4E5Ol vByNgMmxFNsSZVNZ+nu5pnOGvBqweHM7Z61Ryt8QceHjJP5lcLZnReFbh/athtMr eYF4bOC8SmRTkDw2AV3BJDvfL6E4EzwJyGDhzNKNx7VjO7907KGM/TI2DnEqkA2b xRIcaIlly9ik0BCUX2u6rRUqTS9rEiOmRQIDAQABo4IB7TCCAekwHQYDVR0OBBYE FJrZMcvucel4zAUv5YIbK1aPO9KxMB8GA1UdIwQYMBaAFPyxgF+nriLVZeClAtCN N+sr2DenMA4GA1UdDwEB/wQEAwIHgDBkBgNVHR8EXTBbMFmgV6BVhlNyc3luYzov L3Jwa2kuYXBlcm5ldC5pby9yZXBvL0FQRVJORVQvMS9GQ0IxODA1RkE3QUUyMkQ1 NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNybDBtBggrBgEFBQcBAQRhMF8wXQYI KwYBBQUHMAKGUXJzeW5jOi8vc2FrdXlhLm5hdC5tb2UvcmVwby9OQVRPQ0EvMS9G Q0IxODA1RkE3QUUyMkQ1NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNlcjCBgwYI KwYBBQUHAQsEdzB1MHMGCCsGAQUFBzALhmdyc3luYzovL3Jwa2kuYXBlcm5ldC5p by9yZXBvL0FQRVJORVQvMS8zMjM0MzAzNjNhMzQzNDM0MzAzYTM2MzAzYTNhMmYz NDM0MmQzNDM0MjAzZDNlMjAzMzM5MzYzMzMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkBkRAAGAw DQYJKoZIhvcNAQELBQADggEBAEpHIcM4jtxwoEDDGVkvnrRcv4E0gI454CIBDB9o wgaJ+Ahk8JPQ0q9xHEgCstNOr3NxKoNqlmT0/jk9DVU9bgl0cfo5xQWa+671ERac qb7GHACyZ9RvrjQ2K1bNCHYR8dBhMgmGPYhAcTXvMqiI433picL0ZNpGWQ8ldr6X ESfa/etS3bqsy9NfPYQs0wBZwd+cVGs7ocn7h+xTa5wr6VHrzFfr6N6EOnr+5NRN uJfBCs9Bny6xiHSuZPrXYIYsxO4mE5UUkj/ZAYAlMSr97Kgl7QS+JTBdoKVQASeG LTfMvW6SwaLSHIOBg1TBehKNpEVmhAd8DTyuXx2MFlVEoNA= -----END CERTIFICATE-----Generated at Mon Oct 20 08:16:48 2025 by rpki-client