$ rpki-client -vvf sakuya.nat.moe/repo/NATOCA/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.cer File: 9FE9B4C3090206D5B28CED4F5179539F698ADB91.cer (raw, json) Hash identifier: L9SKOfzlWCbf3ZEfwVUoxYt9hsBGjULfYjAnC6NGFMc= Subject key identifier: 9F:E9:B4:C3:09:02:06:D5:B2:8C:ED:4F:51:79:53:9F:69:8A:DB:91 Authority key identifier: 5A:17:96:48:B3:EF:23:69:DC:E7:BD:B5:81:40:FF:7D:C7:06:0A:BF Certificate issuer: /CN=A9114E750000/serialNumber=5A179648B3EF2369DCE7BDB58140FF7DC7060ABF Certificate serial: 67FD2CFD3AC1F1D7913312C3B0ADBBCA3BD650BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer Manifest: rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.mft caRepository: rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/ Notify URL: https://rpki-rrdp.mnihyc.com/rrdp/notification.xml Certificate not before: Thu 17 Apr 2025 19:51:22 +0000 Certificate not after: Thu 16 Apr 2026 19:56:22 +0000 Subordinate resources: AS: 140938 IP: 2406:4440:e000::/40 Validation: OK Signature path: rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 13:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:fd:2c:fd:3a:c1:f1:d7:91:33:12:c3:b0:ad:bb:ca:3b:d6:50:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114E750000, serialNumber=5A179648B3EF2369DCE7BDB58140FF7DC7060ABF Validity Not Before: Apr 17 19:51:22 2025 GMT Not After : Apr 16 19:56:22 2026 GMT Subject: CN=9FE9B4C3090206D5B28CED4F5179539F698ADB91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:91:5b:f7:32:74:b1:74:b2:df:8a:62:79:3b: 22:3b:10:e8:7d:37:e5:9e:14:30:27:3e:81:0d:d3: 1f:07:63:3d:39:22:7f:99:06:ae:66:45:07:69:0a: d6:ef:e0:0d:3b:7c:fa:a2:d6:ae:f9:2d:87:9a:3d: 64:a9:09:a8:3c:9d:08:2c:98:d0:da:1c:df:fd:f6: eb:15:6e:c9:ca:67:e0:99:e4:88:5c:c3:67:7d:ad: e2:5d:6c:3b:0f:5d:29:59:5b:c9:fa:52:23:5e:4b: 68:53:e5:f7:b8:55:a4:12:33:d8:6e:54:29:a1:44: fd:d7:37:69:0e:7a:99:88:f1:78:10:a2:9f:93:15: 05:e5:43:76:45:8a:59:93:3f:31:ff:a0:8c:6f:3a: bf:f2:0f:68:cb:ba:01:dc:a2:c3:13:7c:29:30:25: 82:9b:2a:cf:06:5c:e6:2e:79:f1:f6:62:a3:4e:7c: e9:c8:56:6c:22:4a:8e:4c:ca:b5:35:4f:1f:9b:a4: 52:52:a1:a9:80:f9:91:92:05:c6:1c:48:70:68:64: 03:81:40:c0:ef:e4:e6:ba:31:31:ab:8f:7b:51:3d: bf:ae:e8:4f:0e:14:09:8e:54:7a:23:10:4f:1b:53: be:0f:a7:e3:aa:5b:7b:74:1f:d7:48:02:86:1a:7d: 16:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 9F:E9:B4:C3:09:02:06:D5:B2:8C:ED:4F:51:79:53:9F:69:8A:DB:91 X509v3 Authority Key Identifier: keyid:5A:17:96:48:B3:EF:23:69:DC:E7:BD:B5:81:40:FF:7D:C7:06:0A:BF X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/ RPKI Manifest - URI:rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.mft RPKI Notify - URI:https://rpki-rrdp.mnihyc.com/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4440:e000::/40 sbgp-autonomousSysNum: critical Autonomous System Numbers: 140938 Signature Algorithm: sha256WithRSAEncryption 07:b5:61:2b:27:e9:2a:d8:f1:ef:4d:14:84:7a:ab:bb:d0:3c: 43:3f:c5:24:6d:9c:8b:b8:c5:d4:8d:87:c1:e3:02:1a:c6:da: 3a:44:a1:e3:e6:1b:08:09:ec:85:e1:bf:06:88:6e:46:67:f8: ea:96:58:7c:1a:fb:bb:c5:7f:b0:fe:e5:4c:05:68:5c:36:b5: 04:fa:92:c6:dc:88:db:c6:d7:64:5f:3d:2d:07:ef:33:fb:f6: 55:03:d3:c7:6c:44:2b:98:a1:0f:fa:8f:92:b5:12:c2:ef:55: b1:5d:6d:cd:55:2e:2d:c5:b9:56:4a:0b:a3:0b:94:46:ee:97: 02:be:ea:28:7a:8f:ea:0d:c5:9c:8c:86:4c:90:0c:50:1e:e4: 72:f6:9e:e5:6d:5c:20:56:03:74:95:90:78:bd:b1:0d:29:9b: 1f:5c:16:3e:0d:b5:aa:37:e5:5c:27:4f:8f:5b:16:ab:5a:2e: 56:e4:b8:26:0b:09:c5:09:ba:13:d4:fe:29:d2:7d:93:98:eb: 04:36:04:bf:4a:73:01:6d:87:9b:22:56:db:8c:2a:75:7c:a0: 42:c1:5a:31:b7:c9:a3:50:86:fe:53:6c:11:67:47:7a:73:77: d9:aa:77:a6:64:32:ea:45:2c:49:59:de:be:ca:0c:68:91:5c: 04:17:58:04 -----BEGIN CERTIFICATE----- MIIFrDCCBJSgAwIBAgIUZ/0s/TrB8deRMxLDsK27yjvWUL0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMTRFNzUwMDAwMTEwLwYDVQQFEyg1QTE3OTY0OEIz RUYyMzY5RENFN0JEQjU4MTQwRkY3REM3MDYwQUJGMB4XDTI1MDQxNzE5NTEyMloX DTI2MDQxNjE5NTYyMlowMzExMC8GA1UEAxMoOUZFOUI0QzMwOTAyMDZENUIyOENF RDRGNTE3OTUzOUY2OThBREI5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWRW/cydLF0st+KYnk7IjsQ6H035Z4UMCc+gQ3THwdjPTkif5kGrmZFB2kK 1u/gDTt8+qLWrvkth5o9ZKkJqDydCCyY0Noc3/326xVuycpn4JnkiFzDZ32t4l1s Ow9dKVlbyfpSI15LaFPl97hVpBIz2G5UKaFE/dc3aQ56mYjxeBCin5MVBeVDdkWK WZM/Mf+gjG86v/IPaMu6AdyiwxN8KTAlgpsqzwZc5i558fZio0586chWbCJKjkzK tTVPH5ukUlKhqYD5kZIFxhxIcGhkA4FAwO/k5roxMauPe1E9v67oTw4UCY5UeiMQ TxtTvg+n46pbe3Qf10gChhp9FvkCAwEAAaOCAp8wggKbMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJ/ptMMJAgbVsoztT1F5U59pituRMB8GA1UdIwQYMBaAFFoX lkiz7yNp3Oe9tYFA/33HBgq/MA4GA1UdDwEB/wQEAwIBBjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Nha3V5YS5uYXQubW9lL3JlcG8vTkFUT0NBLzEvNUExNzk2 NDhCM0VGMjM2OURDRTdCREI1ODE0MEZGN0RDNzA2MEFCRi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvV2hlV1NMUHZJ Mm5jNTcyMWdVRF9mY2NHQ3I4LmNlcjCB+gYIKwYBBQUHAQsEge0wgeowPQYIKwYB BQUHMAWGMXJzeW5jOi8vcnBraS1yc3luYy5tbmloeWMuY29tL3JlcG8vbW5paHlj LXJwa2kvMS8waQYIKwYBBQUHMAqGXXJzeW5jOi8vcnBraS1yc3luYy5tbmloeWMu Y29tL3JlcG8vbW5paHljLXJwa2kvMS85RkU5QjRDMzA5MDIwNkQ1QjI4Q0VENEY1 MTc5NTM5RjY5OEFEQjkxLm1mdDA+BggrBgEFBQcwDYYyaHR0cHM6Ly9ycGtpLXJy ZHAubW5paHljLmNvbS9ycmRwL25vdGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQGREDg MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwImijANBgkqhkiG9w0BAQsFAAOCAQEA B7VhKyfpKtjx700UhHqru9A8Qz/FJG2ci7jF1I2HweMCGsbaOkSh4+YbCAnsheG/ BohuRmf46pZYfBr7u8V/sP7lTAVoXDa1BPqSxtyI28bXZF89LQfvM/v2VQPTx2xE K5ihD/qPkrUSwu9VsV1tzVUuLcW5VkoLowuURu6XAr7qKHqP6g3FnIyGTJAMUB7k cvae5W1cIFYDdJWQeL2xDSmbH1wWPg21qjflXCdPj1sWq1ouVuS4JgsJxQm6E9T+ KdJ9k5jrBDYEv0pzAW2HmyJW24wqdXygQsFaMbfJo1CG/lNsEWdHenN32ap3pmQy 6kUsSVnevsoMaJFcBBdYBA== -----END CERTIFICATE-----Generated at Sun Apr 27 17:05:54 2025 by rpki-client on console.sobornost.net