$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a37303a3a2f34342d3434203d3e20333936333033.roa File: 323430363a343434303a37303a3a2f34342d3434203d3e20333936333033.roa (raw, json) Hash identifier: 6pwOcY55h1w9q107rm235NhWJP++2dePf4iMO8ef3oE= Subject key identifier: E7:FB:7F:D1:28:C1:3E:70:CC:91:A9:4C:A5:37:45:C5:4F:E4:58:CA Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Certificate serial: 0CBF3625940A6A62E1BB738E072D24A9510B3459 Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a37303a3a2f34342d3434203d3e20333936333033.roa Signing time: Mon 29 Sep 2025 06:00:00 +0000 ROA not before: Mon 29 Sep 2025 05:55:00 +0000 ROA not after: Tue 29 Sep 2026 06:00:00 +0000 asID: 396303 IP address blocks: 2406:4440:70::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:bf:36:25:94:0a:6a:62:e1:bb:73:8e:07:2d:24:a9:51:0b:34:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Validity Not Before: Sep 29 05:55:00 2025 GMT Not After : Sep 29 06:00:00 2026 GMT Subject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ubject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:49:bc:e3:6b:54:dd:f1:a9:8f:d2:43:b6:2c: 2f:37:61:e3:d9:7e:7d:61:68:26:75:66:96:c6:7d: 11:c4:ef:d6:a3:ca:12:d3:67:76:80:33:8e:d1:52: 90:b3:52:ca:b7:84:a5:07:cb:82:62:c0:52:b4:04: 55:b6:47:8d:e2:3b:05:b2:55:f8:6f:50:5a:eb:78: 23:7c:df:80:51:22:6d:3e:6c:02:cb:5d:14:bf:4d: 38:7c:5b:9e:a4:f1:18:3a:75:1d:d6:02:aa:02:ea: 6d:c2:92:7f:fa:31:79:ee:05:9e:c8:a1:36:c1:8c: 70:3e:10:0f:2a:a4:9a:7d:f5:70:de:32:fe:a0:eb: 64:34:3d:b8:bb:6e:d6:76:35:9d:ad:9e:35:ee:51: 0a:3f:6c:90:3a:d2:a5:9d:b3:63:f7:09:b9:0a:97: ff:a7:05:25:b6:28:4d:f2:e7:6d:a8:e4:11:e4:10: 93:3a:a0:d2:1c:2e:f6:2c:2f:a6:64:5c:f4:03:79: 60:b5:97:92:66:dc:6d:47:81:35:ac:74:c3:e0:5d: 99:c0:56:3a:c6:5c:60:91:18:f4:4e:f8:fd:4f:73: 7a:d8:49:73:ac:51:81:3b:07:74:83:e6:63:04:24: 3b:45:b7:b9:e2:1a:f4:ab:74:33:db:e7:4a:cf:ff: e6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:FB:7F:D1:28:C1:3E:70:CC:91:A9:4C:A5:37:45:C5:4F:E4:58:CA X509v3 Authority Key Identifier: keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl Authority Information Access: CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject Information Access: Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a37303a3a2f34342d3434203d3e20333936333033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4440:70::/44 Signature Algorithm: sha256WithRSAEncryption 28:e2:cf:e3:c1:ad:c1:68:5e:a2:f4:6d:de:5f:79:a7:9b:f5: 96:06:a7:7b:bf:00:24:1a:4b:92:c7:5b:87:43:20:c3:1f:c3: 0e:0d:50:bb:78:92:b5:21:34:b8:67:cd:10:54:38:54:bc:a6: db:30:95:02:62:4f:d7:83:7b:f8:df:b1:bb:97:a5:7c:dd:8a: 97:4b:d9:9f:06:17:76:fd:b5:a5:7a:22:cf:a0:53:fe:ba:7d: 14:c7:da:0f:dd:14:ad:25:07:9b:0d:a1:9e:36:91:03:7b:fd: d2:43:10:12:7c:a8:11:46:a7:73:e7:2c:21:41:c4:74:fc:01: 5d:bd:73:86:51:93:e8:47:81:aa:c9:e6:b2:06:df:48:08:42: dc:b7:cb:18:6b:5a:40:e2:75:2d:b3:7b:2f:cc:62:46:c4:4a: c9:b4:cf:42:68:78:e8:68:39:d2:01:14:c2:2a:c4:c4:c5:10: 67:42:77:a4:e9:57:da:6b:e9:39:b2:d2:09:15:6a:b2:4b:81: c8:1f:70:19:41:b7:13:ba:31:2d:e7:9f:c0:d8:50:03:fa:e3: 33:93:40:bd:0f:d8:5b:1d:2d:e2:41:f4:54:e9:e7:4a:4e:88: f8:4d:cf:3e:91:a1:b2:a3:bf:94:b8:45:32:fb:37:49:63:e2: 5d:05:9e:85 -----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUDL82JZQKamLhu3OOBy0kqVELNFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNCMTgwNUZBN0FFMjJENTY1RTBBNTAyRDA4RDM3RUIy QkQ4MzdBNzAeFw0yNTA5MjkwNTU1MDBaFw0yNjA5MjkwNjAwMDBaMIICLTGCAikw ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwRUI0OUJDRTM2QjU0RERGMUE5 OEZEMjQzQjYyQzJGMzc2MUUzRDk3RTdENjE2ODI2NzU2Njk2QzY3RDExQzRFRkQ2 QTNDQTEyRDM2Nzc2ODAzMzhFRDE1MjkwQjM1MkNBQjc4NEE1MDdDQjgyNjJDMDUy QjQwNDU1QjY0NzhERTIzQjA1QjI1NUY4NkY1MDVBRUI3ODIzN0NERjgwNTEyMjZE M0U2QzAyQ0I1RDE0QkY0RDM4N0M1QjlFQTRGMTE4M0E3NTFERDYwMkFBMDJFQTZE QzI5MjdGRkEzMTc5RUUwNTlFQzhBMTM2QzE4QzcwM0UxMDBGMkFBNDlBN0RGNTcw REUzMkZFQTBFQjY0MzQzREI4QkI2RUQ2NzYzNTlEQUQ5RTM1RUU1MTBBM0Y2Qzkw M0FEMkE1OURCMzYzRjcwOUI5MEE5N0ZGQTcwNTI1QjYyODRERjJFNzZEQThFNDEx RTQxMDkzM0FBMEQyMUMyRUY2MkMyRkE2NjQ1Q0Y0MDM3OTYwQjU5NzkyNjZEQzZE NDc4MTM1QUM3NEMzRTA1RDk5QzA1NjNBQzY1QzYwOTExOEY0NEVGOEZENEY3MzdB RDg0OTczQUM1MTgxM0IwNzc0ODNFNjYzMDQyNDNCNDVCN0I5RTIxQUY0QUI3NDMz REJFNzRBQ0ZGRkU2RDMwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA60m842tU3fGpj9JDtiwvN2Hj2X59YWgmdWaWxn0RxO/Wo8oS02d2 gDOO0VKQs1LKt4SlB8uCYsBStARVtkeN4jsFslX4b1Ba63gjfN+AUSJtPmwCy10U v004fFuepPEYOnUd1gKqAuptwpJ/+jF57gWeyKE2wYxwPhAPKqSaffVw3jL+oOtk ND24u27WdjWdrZ417lEKP2yQOtKlnbNj9wm5Cpf/pwUltihN8udtqOQR5BCTOqDS HC72LC+mZFz0A3lgtZeSZtxtR4E1rHTD4F2ZwFY6xlxgkRj0Tvj9T3N62ElzrFGB Owd0g+ZjBCQ7Rbe54hr0q3Qz2+dKz//m0wIDAQABo4IB7TCCAekwHQYDVR0OBBYE FOf7f9EowT5wzJGpTKU3RcVP5FjKMB8GA1UdIwQYMBaAFPyxgF+nriLVZeClAtCN N+sr2DenMA4GA1UdDwEB/wQEAwIHgDBkBgNVHR8EXTBbMFmgV6BVhlNyc3luYzov L3Jwa2kuYXBlcm5ldC5pby9yZXBvL0FQRVJORVQvMS9GQ0IxODA1RkE3QUUyMkQ1 NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNybDBtBggrBgEFBQcBAQRhMF8wXQYI KwYBBQUHMAKGUXJzeW5jOi8vc2FrdXlhLm5hdC5tb2UvcmVwby9OQVRPQ0EvMS9G Q0IxODA1RkE3QUUyMkQ1NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNlcjCBgwYI KwYBBQUHAQsEdzB1MHMGCCsGAQUFBzALhmdyc3luYzovL3Jwa2kuYXBlcm5ldC5p by9yZXBvL0FQRVJORVQvMS8zMjM0MzAzNjNhMzQzNDM0MzAzYTM3MzAzYTNhMmYz NDM0MmQzNDM0MjAzZDNlMjAzMzM5MzYzMzMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkBkRAAHAw DQYJKoZIhvcNAQELBQADggEBACjiz+PBrcFoXqL0bd5feaeb9ZYGp3u/ACQaS5LH W4dDIMMfww4NULt4krUhNLhnzRBUOFS8ptswlQJiT9eDe/jfsbuXpXzdipdL2Z8G F3b9taV6Is+gU/66fRTH2g/dFK0lB5sNoZ42kQN7/dJDEBJ8qBFGp3PnLCFBxHT8 AV29c4ZRk+hHgarJ5rIG30gIQty3yxhrWkDidS2zey/MYkbESsm0z0JoeOhoOdIB FMIqxMTFEGdCd6TpV9pr6Tmy0gkVarJLgcgfcBlBtxO6MS3nn8DYUAP64zOTQL0P 2FsdLeJB9FTp50pOiPhNzz6RobKjv5S4RTL7N0lj4l0FnoU= -----END CERTIFICATE-----Generated at Mon Oct 20 08:17:19 2025 by rpki-client