$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e2037373231.roa File: 323430363a343434303a663030303a3a2f34342d3438203d3e2037373231.roa (raw, json) Hash identifier: H/OqXn1pbV8T/wjgjaAu0tZ0nsGa8M9kfs0xVMkzCT4= Subject key identifier: EC:D3:BF:0D:4C:CB:84:20:C2:BD:1E:32:13:DB:D2:14:70:BF:0B:C0 Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Certificate serial: 0A12C0FCD5C139362B497AC45791515D56A971AD Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e2037373231.roa Signing time: Fri 26 Sep 2025 08:00:00 +0000 ROA not before: Fri 26 Sep 2025 07:55:00 +0000 ROA not after: Sat 26 Sep 2026 08:00:00 +0000 asID: 7721 IP address blocks: 2406:4440:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:12:c0:fc:d5:c1:39:36:2b:49:7a:c4:57:91:51:5d:56:a9:71:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Validity Not Before: Sep 26 07:55:00 2025 GMT Not After : Sep 26 08:00:00 2026 GMT Subject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ubject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:45:52:14:7c:5c:f1:50:c2:f7:0e:4b:2b:98: 35:ab:28:15:4a:c5:f6:99:8f:66:d0:c9:38:fb:b3: 01:35:a4:f7:ed:1e:ec:28:26:3b:81:44:b3:30:0f: 01:c7:51:01:84:f7:af:2d:02:ef:09:23:4d:7a:7a: 7d:d1:cd:db:c6:e1:89:6e:1f:b9:82:75:a4:a4:45: 29:11:9a:ba:37:99:cd:b1:2f:19:b5:75:83:89:58: fd:f1:8c:17:1e:bb:35:3c:d1:49:5a:e1:c8:a1:c9: 04:54:d2:e9:13:85:84:3b:3d:28:20:b7:da:ba:a7: cc:f7:be:01:2f:f1:94:91:21:30:0a:5a:13:ba:05: 5a:f2:fe:f5:7a:bf:79:9e:f3:55:5a:26:3b:10:d0: 39:17:d2:69:a2:c2:a0:68:c6:b3:9d:b5:d8:d3:9a: d9:89:68:fd:47:b9:e2:85:e4:65:36:18:4c:22:62: a2:1d:e1:81:af:eb:e6:db:01:4c:77:3c:5d:e8:3d: 1d:ed:d7:80:5d:a8:d2:94:1d:7f:5e:6f:50:57:d9: 94:4c:55:4b:b5:c3:ab:14:0c:4d:ee:57:8e:5c:e3: c1:4d:8e:3a:7e:4f:5a:98:13:cb:2a:65:97:bb:c2: 8d:1c:6d:5b:9b:d4:e9:fe:86:76:75:59:16:af:4d: d3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D3:BF:0D:4C:CB:84:20:C2:BD:1E:32:13:DB:D2:14:70:BF:0B:C0 X509v3 Authority Key Identifier: keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl Authority Information Access: CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject Information Access: Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/323430363a343434303a663030303a3a2f34342d3438203d3e2037373231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4440:f000::/44 Signature Algorithm: sha256WithRSAEncryption 84:a8:52:9a:34:0f:ab:6e:37:ea:b8:fd:79:60:3a:bf:30:75: fd:e3:76:86:c2:b2:1f:09:ec:22:f8:65:e4:64:a3:00:04:e3: 9f:e4:6e:b5:b0:e0:c4:94:8d:01:11:51:04:38:b8:a7:be:2e: 05:2a:41:d8:04:77:26:4a:4c:03:aa:7c:e4:67:27:bf:c6:e5: 63:18:b6:b1:02:9a:09:6d:39:2d:a8:be:56:39:7f:5e:f8:98: ed:a3:06:13:0f:2c:38:cd:38:3c:3b:ea:23:00:b4:7e:05:6e: bc:83:b1:13:4f:f6:da:89:b6:f9:3e:4b:45:67:19:81:89:a0: b7:2c:46:59:f1:c1:51:d0:6b:44:25:c8:55:98:3f:84:76:26: 8f:4f:2c:64:8e:47:96:64:f5:5c:73:b7:6b:39:fe:41:04:50: 5d:69:85:6f:13:2f:6d:fa:73:05:81:23:0d:80:b3:d6:cb:7a: 13:73:79:53:15:74:58:ff:d2:b7:93:c5:5c:ab:ea:f5:10:0e: f8:6b:1f:24:35:9a:c6:15:72:a4:e5:6b:d6:e6:cf:e7:4e:5a: d4:33:8f:e2:6d:5f:71:59:20:8e:02:7c:d5:09:5d:b3:c7:83: a2:79:85:d0:9a:ac:7f:28:e7:01:f4:36:47:f1:39:19:5b:22: b2:9e:be:be -----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUChLA/NXBOTYrSXrEV5FRXVapca0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNCMTgwNUZBN0FFMjJENTY1RTBBNTAyRDA4RDM3RUIy QkQ4MzdBNzAeFw0yNTA5MjYwNzU1MDBaFw0yNjA5MjYwODAwMDBaMIICLTGCAikw ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwQjI0NTUyMTQ3QzVDRjE1MEMy RjcwRTRCMkI5ODM1QUIyODE1NEFDNUY2OTk4RjY2RDBDOTM4RkJCMzAxMzVBNEY3 RUQxRUVDMjgyNjNCODE0NEIzMzAwRjAxQzc1MTAxODRGN0FGMkQwMkVGMDkyMzRE N0E3QTdERDFDRERCQzZFMTg5NkUxRkI5ODI3NUE0QTQ0NTI5MTE5QUJBMzc5OUNE QjEyRjE5QjU3NTgzODk1OEZERjE4QzE3MUVCQjM1M0NEMTQ5NUFFMUM4QTFDOTA0 NTREMkU5MTM4NTg0M0IzRDI4MjBCN0RBQkFBN0NDRjdCRTAxMkZGMTk0OTEyMTMw MEE1QTEzQkEwNTVBRjJGRUY1N0FCRjc5OUVGMzU1NUEyNjNCMTBEMDM5MTdEMjY5 QTJDMkEwNjhDNkIzOURCNUQ4RDM5QUQ5ODk2OEZENDdCOUUyODVFNDY1MzYxODRD MjI2MkEyMURFMTgxQUZFQkU2REIwMTRDNzczQzVERTgzRDFERURENzgwNURBOEQy OTQxRDdGNUU2RjUwNTdEOTk0NEM1NTRCQjVDM0FCMTQwQzRERUU1NzhFNUNFM0Mx NEQ4RTNBN0U0RjVBOTgxM0NCMkE2NTk3QkJDMjhEMUM2RDVCOUJENEU5RkU4Njc2 NzU1OTE2QUY0REQzQkIwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAskVSFHxc8VDC9w5LK5g1qygVSsX2mY9m0Mk4+7MBNaT37R7sKCY7 gUSzMA8Bx1EBhPevLQLvCSNNenp90c3bxuGJbh+5gnWkpEUpEZq6N5nNsS8ZtXWD iVj98YwXHrs1PNFJWuHIockEVNLpE4WEOz0oILfauqfM974BL/GUkSEwCloTugVa 8v71er95nvNVWiY7ENA5F9JposKgaMaznbXY05rZiWj9R7niheRlNhhMImKiHeGB r+vm2wFMdzxd6D0d7deAXajSlB1/Xm9QV9mUTFVLtcOrFAxN7leOXOPBTY46fk9a mBPLKmWXu8KNHG1bm9Tp/oZ2dVkWr03TuwIDAQABo4IB7TCCAekwHQYDVR0OBBYE FOzTvw1My4Qgwr0eMhPb0hRwvwvAMB8GA1UdIwQYMBaAFPyxgF+nriLVZeClAtCN N+sr2DenMA4GA1UdDwEB/wQEAwIHgDBkBgNVHR8EXTBbMFmgV6BVhlNyc3luYzov L3Jwa2kuYXBlcm5ldC5pby9yZXBvL0FQRVJORVQvMS9GQ0IxODA1RkE3QUUyMkQ1 NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNybDBtBggrBgEFBQcBAQRhMF8wXQYI KwYBBQUHMAKGUXJzeW5jOi8vc2FrdXlhLm5hdC5tb2UvcmVwby9OQVRPQ0EvMS9G Q0IxODA1RkE3QUUyMkQ1NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNlcjCBgwYI KwYBBQUHAQsEdzB1MHMGCCsGAQUFBzALhmdyc3luYzovL3Jwa2kuYXBlcm5ldC5p by9yZXBvL0FQRVJORVQvMS8zMjM0MzAzNjNhMzQzNDM0MzAzYTY2MzAzMDMwM2Ez YTJmMzQzNDJkMzQzODIwM2QzZTIwMzczNzMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkBkRA8AAw DQYJKoZIhvcNAQELBQADggEBAISoUpo0D6tuN+q4/XlgOr8wdf3jdobCsh8J7CL4 ZeRkowAE45/kbrWw4MSUjQERUQQ4uKe+LgUqQdgEdyZKTAOqfORnJ7/G5WMYtrEC mgltOS2ovlY5f174mO2jBhMPLDjNODw76iMAtH4FbryDsRNP9tqJtvk+S0VnGYGJ oLcsRlnxwVHQa0QlyFWYP4R2Jo9PLGSOR5Zk9Vxzt2s5/kEEUF1phW8TL236cwWB Iw2As9bLehNzeVMVdFj/0reTxVyr6vUQDvhrHyQ1msYVcqTla9bmz+dOWtQzj+Jt X3FZII4CfNUJXbPHg6J5hdCarH8o5wH0NkfxORlbIrKevr4= -----END CERTIFICATE-----Generated at Mon Oct 20 08:08:52 2025 by rpki-client