$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/3130332e3135322e33342e302f32332d3233203d3e203332353139.roa File: 3130332e3135322e33342e302f32332d3233203d3e203332353139.roa (raw, json) Hash identifier: zRC2uGd1inhs6KfyF86XQrMjx/87ZSPG4ivJMGZPqXg= Subject key identifier: 1B:81:A2:46:DB:8A:DA:99:14:E8:FC:02:75:89:D7:DE:08:E9:EF:C1 Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Certificate serial: 48A6F223125BEB56F7A2ED312D2A9893BBDF9095 Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/3130332e3135322e33342e302f32332d3233203d3e203332353139.roa Signing time: Mon 03 Mar 2025 16:00:00 +0000 ROA not before: Mon 03 Mar 2025 15:55:00 +0000 ROA not after: Tue 03 Mar 2026 16:00:00 +0000 asID: 32519 IP address blocks: 103.152.34.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 05:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:a6:f2:23:12:5b:eb:56:f7:a2:ed:31:2d:2a:98:93:bb:df:90:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Validity Not Before: Mar 3 15:55:00 2025 GMT Not After : Mar 3 16:00:00 2026 GMT Subject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ubject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:03:6b:b2:d0:55:73:f8:2f:96:3a:7d:04:84: 1d:a9:83:65:ed:d3:0c:77:c0:70:96:c0:4b:76:a0: f2:de:7e:0a:44:38:9e:ec:7c:da:fd:59:18:95:9b: 1c:60:00:5d:c1:cc:06:07:f6:7c:7f:57:f9:f3:e4: 1c:88:e2:58:94:dd:fe:5b:8e:fa:80:92:b3:3f:d6: 3a:16:1a:21:2f:e7:95:0f:b5:9a:e5:48:7f:f3:7f: 5a:25:9c:bf:ab:36:12:8a:7c:fe:2b:2e:e7:86:c4: 31:99:be:7d:34:65:2f:64:a5:c9:d7:7f:ba:1a:2b: 7d:a8:6d:53:e8:a5:15:00:f2:d1:97:27:e1:86:21: f5:9d:13:f7:92:1d:20:94:30:7c:4f:44:6d:45:f1: ce:5a:8a:3c:6a:a8:72:81:17:5a:fc:90:02:1e:d9: 6a:c1:69:53:bb:d9:61:2c:46:2d:82:14:66:13:0b: be:6b:9e:c4:ce:ac:ad:30:0f:2f:16:2c:dd:2f:85: 01:42:17:e9:48:ff:63:f5:e8:9a:5a:71:9b:5b:c3: eb:e7:87:b0:fe:61:a1:8c:ee:3d:da:38:ce:9c:aa: 70:03:b4:34:96:f1:4c:26:f6:70:c2:7c:8b:2a:3c: 2e:77:8a:5e:a0:ef:30:77:30:18:2a:2b:27:89:88: c0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:81:A2:46:DB:8A:DA:99:14:E8:FC:02:75:89:D7:DE:08:E9:EF:C1 X509v3 Authority Key Identifier: keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl Authority Information Access: CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject Information Access: Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/3130332e3135322e33342e302f32332d3233203d3e203332353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.34.0/23 Signature Algorithm: sha256WithRSAEncryption cc:f0:38:f4:29:39:19:e9:1b:74:e4:54:68:44:ea:2d:8b:f8: a0:27:59:4f:f6:2c:9a:41:54:34:62:70:3d:7e:51:c1:14:1a: bd:c4:b0:36:b2:ad:0a:12:08:4b:20:dd:91:1b:6b:5d:87:e3: 64:ab:05:75:b5:b4:ae:03:bd:cf:ac:2c:72:f8:b1:38:d1:e0: 49:27:a1:d8:77:1d:4a:5a:a6:2a:65:0e:b3:1f:b7:46:09:de: a5:64:7d:25:e4:68:b7:21:93:ae:72:2d:54:e8:e4:36:e3:58: ba:38:7d:6a:8d:a0:30:d4:0b:f5:33:ee:2f:64:75:61:25:d8: 49:83:7d:e9:e8:d0:dd:49:ea:63:4c:25:26:69:54:fc:a1:76: af:02:2f:1e:1c:ca:80:94:c1:25:4a:34:79:18:c6:ae:82:13: eb:67:d6:5b:c5:fa:51:dc:aa:32:09:ab:fe:3d:01:a3:c7:67: e1:b9:ac:2e:b7:63:80:8e:39:a2:6d:cd:29:95:10:53:51:28: a0:c1:16:69:7a:f3:b2:10:dd:8c:18:c2:1a:2f:44:0f:99:56: 90:10:d9:b0:79:27:5c:f6:25:d5:97:5d:60:40:1f:5c:16:af: 56:cf:64:e6:db:96:c5:05:04:0d:c8:51:c7:d6:1b:06:40:68: 59:20:fa:0e -----BEGIN CERTIFICATE----- MIIG1TCCBb2gAwIBAgIUSKbyIxJb61b3ou0xLSqYk7vfkJUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNCMTgwNUZBN0FFMjJENTY1RTBBNTAyRDA4RDM3RUIy QkQ4MzdBNzAeFw0yNTAzMDMxNTU1MDBaFw0yNjAzMDMxNjAwMDBaMIICLTGCAikw ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwREEwMzZCQjJEMDU1NzNGODJG OTYzQTdEMDQ4NDFEQTk4MzY1RUREMzBDNzdDMDcwOTZDMDRCNzZBMEYyREU3RTBB NDQzODlFRUM3Q0RBRkQ1OTE4OTU5QjFDNjAwMDVEQzFDQzA2MDdGNjdDN0Y1N0Y5 RjNFNDFDODhFMjU4OTREREZFNUI4RUZBODA5MkIzM0ZENjNBMTYxQTIxMkZFNzk1 MEZCNTlBRTU0ODdGRjM3RjVBMjU5Q0JGQUIzNjEyOEE3Q0ZFMkIyRUU3ODZDNDMx OTlCRTdEMzQ2NTJGNjRBNUM5RDc3RkJBMUEyQjdEQTg2RDUzRThBNTE1MDBGMkQx OTcyN0UxODYyMUY1OUQxM0Y3OTIxRDIwOTQzMDdDNEY0NDZENDVGMUNFNUE4QTND NkFBODcyODExNzVBRkM5MDAyMUVEOTZBQzE2OTUzQkJEOTYxMkM0NjJEODIxNDY2 MTMwQkJFNkI5RUM0Q0VBQ0FEMzAwRjJGMTYyQ0REMkY4NTAxNDIxN0U5NDhGRjYz RjVFODlBNUE3MTlCNUJDM0VCRTc4N0IwRkU2MUExOENFRTNEREEzOENFOUNBQTcw MDNCNDM0OTZGMTRDMjZGNjcwQzI3QzhCMkEzQzJFNzc4QTVFQTBFRjMwNzczMDE4 MkEyQjI3ODk4OEMwMzUwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA2gNrstBVc/gvljp9BIQdqYNl7dMMd8BwlsBLdqDy3n4KRDie7Hza /VkYlZscYABdwcwGB/Z8f1f58+QciOJYlN3+W476gJKzP9Y6FhohL+eVD7Wa5Uh/ 839aJZy/qzYSinz+Ky7nhsQxmb59NGUvZKXJ13+6Git9qG1T6KUVAPLRlyfhhiH1 nRP3kh0glDB8T0RtRfHOWoo8aqhygRda/JACHtlqwWlTu9lhLEYtghRmEwu+a57E zqytMA8vFizdL4UBQhfpSP9j9eiaWnGbW8Pr54ew/mGhjO492jjOnKpwA7Q0lvFM JvZwwnyLKjwud4peoO8wdzAYKisniYjANQIDAQABo4IB4zCCAd8wHQYDVR0OBBYE FBuBokbbitqZFOj8AnWJ194I6e/BMB8GA1UdIwQYMBaAFPyxgF+nriLVZeClAtCN N+sr2DenMA4GA1UdDwEB/wQEAwIHgDBkBgNVHR8EXTBbMFmgV6BVhlNyc3luYzov L3Jwa2kuYXBlcm5ldC5pby9yZXBvL0FQRVJORVQvMS9GQ0IxODA1RkE3QUUyMkQ1 NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNybDBtBggrBgEFBQcBAQRhMF8wXQYI KwYBBQUHMAKGUXJzeW5jOi8vc2FrdXlhLm5hdC5tb2UvcmVwby9OQVRPQ0EvMS9G Q0IxODA1RkE3QUUyMkQ1NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNlcjB9Bggr BgEFBQcBCwRxMG8wbQYIKwYBBQUHMAuGYXJzeW5jOi8vcnBraS5hcGVybmV0Lmlv L3JlcG8vQVBFUk5FVC8xLzMxMzAzMzJlMzEzNTMyMmUzMzM0MmUzMDJmMzIzMzJk MzIzMzIwM2QzZTIwMzMzMjM1MzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeYIjANBgkqhkiG9w0B AQsFAAOCAQEAzPA49Ck5GekbdORUaETqLYv4oCdZT/YsmkFUNGJwPX5RwRQavcSw NrKtChIISyDdkRtrXYfjZKsFdbW0rgO9z6wscvixONHgSSeh2HcdSlqmKmUOsx+3 RgnepWR9JeRotyGTrnItVOjkNuNYujh9ao2gMNQL9TPuL2R1YSXYSYN96ejQ3Unq Y0wlJmlU/KF2rwIvHhzKgJTBJUo0eRjGroIT62fWW8X6UdyqMgmr/j0Bo8dn4bms LrdjgI45om3NKZUQU1EooMEWaXrzshDdjBjCGi9ED5lWkBDZsHknXPYl1ZddYEAf XBavVs9k5tuWxQUEDchRx9YbBkBoWSD6Dg== -----END CERTIFICATE-----Generated at Sat Apr 26 19:48:50 2025 by rpki-client