$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/3130332e3135322e33342e302f32332d3233203d3e203332353139.roa File: 3130332e3135322e33342e302f32332d3233203d3e203332353139.roa (raw, json) Hash identifier: 4pYjD3vVYnnT7Vd2BpC8zUqzpY7fBZl0qUmOCIvq+d0= Subject key identifier: 19:01:0B:71:C1:9A:32:A5:9C:1A:9F:05:04:D9:31:57:8E:24:19:8B Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Certificate serial: 5176103D5AB5C5FE0150A591BA7522CECA43EC0E Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/3130332e3135322e33342e302f32332d3233203d3e203332353139.roa Signing time: Tue 03 Feb 2026 16:00:01 +0000 ROA not before: Tue 03 Feb 2026 15:55:01 +0000 ROA not after: Wed 03 Feb 2027 16:00:01 +0000 asID: 32519 IP address blocks: 103.152.34.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.mft rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:76:10:3d:5a:b5:c5:fe:01:50:a5:91:ba:75:22:ce:ca:43:ec:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7 Validity Not Before: Feb 3 15:55:01 2026 GMT Not After : Feb 3 16:00:01 2027 GMT Subject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ubject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:49:a9:79:20:66:24:f3:af:45:1b:d3:d2:3a: 4c:82:b3:04:0e:35:2a:35:6b:49:5d:de:da:41:99: e8:48:ae:8c:10:27:72:d7:09:7f:ae:4f:66:6b:fc: 13:fb:20:37:48:5c:e4:4f:0b:9d:e1:9e:95:94:4c: 49:c7:31:58:5f:96:78:d3:fc:09:26:d9:ee:75:c0: 7a:37:e3:40:a7:bd:46:b2:6f:95:bc:92:9b:53:b6: d2:2e:01:2b:a7:ac:66:b5:4b:57:19:c1:80:5a:34: 95:1f:26:b0:fe:00:3d:59:c7:05:d2:64:16:5e:49: 07:eb:ab:32:25:d5:a9:eb:4d:2c:e5:0c:7e:03:e7: 7f:07:3e:fc:fe:d4:c6:22:1a:19:06:bc:a7:94:8c: 2a:21:00:d9:fc:98:d0:6c:ee:a9:e0:aa:fa:15:b0: 02:2c:f7:61:d5:f1:1e:ce:32:5e:a4:c7:de:d7:82: 00:ae:2f:57:0a:73:09:73:f6:3a:42:f0:09:f8:28: f1:d3:68:1c:32:1e:ba:17:f3:14:4b:42:30:ff:0c: 5e:c0:f8:26:41:70:fb:2b:8a:28:db:f7:8f:ad:85: 71:6d:44:18:61:c6:30:3e:a1:2b:6d:54:35:cd:7d: 7b:81:d6:09:91:af:bd:c3:61:0e:72:64:b6:87:df: ef:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:01:0B:71:C1:9A:32:A5:9C:1A:9F:05:04:D9:31:57:8E:24:19:8B X509v3 Authority Key Identifier: keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl Authority Information Access: CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer Subject Information Access: Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/3130332e3135322e33342e302f32332d3233203d3e203332353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.34.0/23 Signature Algorithm: sha256WithRSAEncryption 10:76:b3:6b:41:ed:5c:39:fc:28:f0:c2:f7:d7:a3:53:31:5e: 28:c4:c1:84:77:29:67:ec:21:0b:52:10:0f:6c:bb:5b:56:a0: 16:e7:47:e6:f9:c8:1f:f8:23:2e:1b:fc:53:0c:0c:84:86:0f: e7:5b:c0:c5:95:ef:93:de:b5:2a:59:ff:da:0c:da:fa:2b:d7: f0:e8:0a:22:6e:6a:b5:b7:c6:dc:dd:32:5c:bc:98:48:7d:b1: bf:40:be:ce:13:b9:84:2b:05:a0:61:a5:bb:e6:52:63:68:b9: e3:16:79:1d:e8:1a:5c:9f:9f:d9:e5:85:2c:cb:08:39:21:55: 46:a5:e3:26:1b:f7:2a:32:ed:f9:1d:b0:10:98:b6:b1:34:a3: 15:b7:61:4e:8d:b5:dc:30:8c:c8:ca:20:26:1e:28:e2:10:e5: 6b:57:54:30:75:8f:70:c8:0b:b3:1c:99:ff:ad:2a:80:3d:ed: 2d:6b:2a:2a:d6:7e:df:46:82:18:65:5c:d7:3f:84:96:03:9d: fb:6c:65:c7:cf:3b:11:48:10:9f:bf:66:69:f0:f8:e1:e7:c7: b8:cf:72:58:b5:36:16:16:a4:90:40:ce:13:51:51:98:2b:62: 24:ca:e6:d9:ca:71:91:a1:9f:1f:76:a1:bf:0c:56:fb:e3:ef: 7a:2c:53:9c -----BEGIN CERTIFICATE----- MIIG1TCCBb2gAwIBAgIUUXYQPVq1xf4BUKWRunUizspD7A4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNCMTgwNUZBN0FFMjJENTY1RTBBNTAyRDA4RDM3RUIy QkQ4MzdBNzAeFw0yNjAyMDMxNTU1MDFaFw0yNzAyMDMxNjAwMDFaMIICLTGCAikw ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwRTI0OUE5NzkyMDY2MjRGM0FG NDUxQkQzRDIzQTRDODJCMzA0MEUzNTJBMzU2QjQ5NURERURBNDE5OUU4NDhBRThD MTAyNzcyRDcwOTdGQUU0RjY2NkJGQzEzRkIyMDM3NDg1Q0U0NEYwQjlERTE5RTk1 OTQ0QzQ5QzczMTU4NUY5Njc4RDNGQzA5MjZEOUVFNzVDMDdBMzdFMzQwQTdCRDQ2 QjI2Rjk1QkM5MjlCNTNCNkQyMkUwMTJCQTdBQzY2QjU0QjU3MTlDMTgwNUEzNDk1 MUYyNkIwRkUwMDNENTlDNzA1RDI2NDE2NUU0OTA3RUJBQjMyMjVENUE5RUI0RDJD RTUwQzdFMDNFNzdGMDczRUZDRkVENEM2MjIxQTE5MDZCQ0E3OTQ4QzJBMjEwMEQ5 RkM5OEQwNkNFRUE5RTBBQUZBMTVCMDAyMkNGNzYxRDVGMTFFQ0UzMjVFQTRDN0RF RDc4MjAwQUUyRjU3MEE3MzA5NzNGNjNBNDJGMDA5RjgyOEYxRDM2ODFDMzIxRUJB MTdGMzE0NEI0MjMwRkYwQzVFQzBGODI2NDE3MEZCMkI4QTI4REJGNzhGQUQ4NTcx NkQ0NDE4NjFDNjMwM0VBMTJCNkQ1NDM1Q0Q3RDdCODFENjA5OTFBRkJEQzM2MTBF NzI2NEI2ODdERkVGOEQwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA4kmpeSBmJPOvRRvT0jpMgrMEDjUqNWtJXd7aQZnoSK6MECdy1wl/ rk9ma/wT+yA3SFzkTwud4Z6VlExJxzFYX5Z40/wJJtnudcB6N+NAp71Gsm+VvJKb U7bSLgErp6xmtUtXGcGAWjSVHyaw/gA9WccF0mQWXkkH66syJdWp600s5Qx+A+d/ Bz78/tTGIhoZBrynlIwqIQDZ/JjQbO6p4Kr6FbACLPdh1fEezjJepMfe14IAri9X CnMJc/Y6QvAJ+Cjx02gcMh66F/MUS0Iw/wxewPgmQXD7K4oo2/ePrYVxbUQYYcYw PqErbVQ1zX17gdYJka+9w2EOcmS2h9/vjQIDAQABo4IB4zCCAd8wHQYDVR0OBBYE FBkBC3HBmjKlnBqfBQTZMVeOJBmLMB8GA1UdIwQYMBaAFPyxgF+nriLVZeClAtCN N+sr2DenMA4GA1UdDwEB/wQEAwIHgDBkBgNVHR8EXTBbMFmgV6BVhlNyc3luYzov L3Jwa2kuYXBlcm5ldC5pby9yZXBvL0FQRVJORVQvMS9GQ0IxODA1RkE3QUUyMkQ1 NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNybDBtBggrBgEFBQcBAQRhMF8wXQYI KwYBBQUHMAKGUXJzeW5jOi8vc2FrdXlhLm5hdC5tb2UvcmVwby9OQVRPQ0EvMS9G Q0IxODA1RkE3QUUyMkQ1NjVFMEE1MDJEMDhEMzdFQjJCRDgzN0E3LmNlcjB9Bggr BgEFBQcBCwRxMG8wbQYIKwYBBQUHMAuGYXJzeW5jOi8vcnBraS5hcGVybmV0Lmlv L3JlcG8vQVBFUk5FVC8xLzMxMzAzMzJlMzEzNTMyMmUzMzM0MmUzMDJmMzIzMzJk MzIzMzIwM2QzZTIwMzMzMjM1MzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeYIjANBgkqhkiG9w0B AQsFAAOCAQEAEHaza0HtXDn8KPDC99ejUzFeKMTBhHcpZ+whC1IQD2y7W1agFudH 5vnIH/gjLhv8UwwMhIYP51vAxZXvk961Kln/2gza+ivX8OgKIm5qtbfG3N0yXLyY SH2xv0C+zhO5hCsFoGGlu+ZSY2i54xZ5HegaXJ+f2eWFLMsIOSFVRqXjJhv3KjLt +R2wEJi2sTSjFbdhTo213DCMyMogJh4o4hDla1dUMHWPcMgLsxyZ/60qgD3tLWsq KtZ+30aCGGVc1z+ElgOd+2xlx887EUgQn79mafD44efHuM9yWLU2FhakkEDOE1FR mCtiJMrm2cpxkaGfH3ahvwxW++PveixTnA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:32:18 2026 by rpki-client