$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203436393937.roa File: 32332e3234372e3133362e302f32322d3234203d3e203436393937.roa (raw, json) Hash identifier: B72/LWReMxhr8zcPQ1PzEzUjKN73iCE3X2MBRGeKDXs= Subject key identifier: 99:A5:2D:09:87:BC:A3:9C:04:88:D0:0E:FE:27:3E:0D:2A:6A:FB:18 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 45679A9F7040CCF9FDE10BC1A9CE6C06C5D6A22F Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203436393937.roa Signing time: Mon 16 Jun 2025 08:52:24 +0000 ROA not before: Mon 16 Jun 2025 08:47:24 +0000 ROA not after: Mon 15 Jun 2026 08:52:24 +0000 asID: 46997 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Jun 2025 00:38:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:67:9a:9f:70:40:cc:f9:fd:e1:0b:c1:a9:ce:6c:06:c5:d6:a2:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jun 16 08:47:24 2025 GMT Not After : Jun 15 08:52:24 2026 GMT Subject: CN=99A52D0987BCA39C0488D00EFE273E0D2A6AFB18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:8e:9f:ca:e2:2a:49:6b:08:fb:f8:1b:ac:e6: 8a:cc:5f:6d:c5:a6:78:a1:db:28:cf:4e:7f:b0:0c: 21:91:4f:d5:44:63:eb:ba:6a:1d:3d:ce:66:fa:26: e7:0d:a2:41:e7:89:d2:8f:73:0f:c4:4f:8e:9d:a8: c5:25:50:a9:92:4a:31:c0:36:36:8c:31:93:6e:cd: 9c:aa:8a:aa:be:17:6c:62:57:b4:7b:10:87:80:b4: b4:77:20:a7:8c:4e:55:b7:13:c1:ba:57:e0:89:7f: d3:80:ae:ef:4c:98:17:ec:28:6b:37:20:aa:6e:93: 09:ee:aa:68:b8:76:39:21:18:cb:3c:2a:d6:0a:bb: b6:e8:ad:10:48:d6:7e:25:c6:40:04:55:78:40:3c: d6:6f:9a:4c:c7:f9:49:7e:46:f1:7f:ee:4b:9d:de: 4f:17:74:23:e2:6b:42:6b:69:51:2a:86:72:1d:0c: e1:0f:93:3d:da:32:08:f6:d8:4c:9c:b0:ba:68:a8: a8:f2:49:02:d5:77:14:51:ef:c9:3f:5a:94:13:0b: 32:aa:a8:b5:b8:20:18:04:cc:8d:1a:08:50:e0:a7: 30:84:0b:b1:7a:60:b4:58:ae:be:ec:9b:b5:79:8d: 43:9c:a9:bd:b1:1a:08:37:d3:fb:9e:a5:b5:4f:a6: 44:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A5:2D:09:87:BC:A3:9C:04:88:D0:0E:FE:27:3E:0D:2A:6A:FB:18 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203436393937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:17:d8:26:97:5e:3d:51:7e:98:73:99:b2:9e:58:21:e3:34: 31:36:e5:68:4d:3e:4d:42:65:39:bf:1c:8f:66:2a:50:7a:da: 94:74:10:60:26:fd:05:1a:9d:d4:c1:2e:27:58:41:74:53:25: 14:4f:bf:3f:c3:f4:63:af:93:fb:e5:bd:53:14:90:43:fc:c8: d6:a0:7d:1d:e2:d6:d9:2d:61:7e:35:ed:f0:54:40:7b:8a:fc: c8:e0:95:2d:63:08:5c:44:71:5f:95:4b:0a:80:4f:27:cc:54: 06:6a:ca:66:bb:72:38:c9:0b:3a:ee:9a:c5:42:f1:d9:39:ea: 17:61:30:f6:7b:e0:ec:05:e7:d4:49:3c:d9:a9:6b:b5:2a:43: 7c:65:dc:3f:6a:92:54:e9:a3:9e:c1:47:f7:85:1d:42:e3:af: 1f:b4:9b:a2:a4:2b:51:ce:bf:23:e1:53:d9:87:c9:c3:c0:c5: 0a:89:88:f1:08:bc:44:98:3a:32:14:ea:d0:4b:a3:b1:e3:2e: 27:a3:2b:f5:de:24:e1:da:78:25:ad:a9:28:04:50:0d:4b:0c: 62:40:5d:7b:f2:5f:f6:bf:a7:3d:68:19:63:21:20:b8:bf:91: 70:1b:3c:08:1d:58:09:eb:79:36:13:ee:27:ae:3e:2f:a3:84: 6c:4e:b6:9a -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIURWean3BAzPn94QvBqc5sBsXWoi8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjUwNjE2MDg0NzI0WhcNMjYwNjE1MDg1MjI0 WjAzMTEwLwYDVQQDEyg5OUE1MkQwOTg3QkNBMzlDMDQ4OEQwMEVGRTI3M0UwRDJB NkFGQjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7o6fyuIqSWsI +/gbrOaKzF9txaZ4odsoz05/sAwhkU/VRGPrumodPc5m+ibnDaJB54nSj3MPxE+O najFJVCpkkoxwDY2jDGTbs2cqoqqvhdsYle0exCHgLS0dyCnjE5VtxPBulfgiX/T gK7vTJgX7ChrNyCqbpMJ7qpouHY5IRjLPCrWCru26K0QSNZ+JcZABFV4QDzWb5pM x/lJfkbxf+5Lnd5PF3Qj4mtCa2lRKoZyHQzhD5M92jII9thMnLC6aKio8kkC1XcU Ue/JP1qUEwsyqqi1uCAYBMyNGghQ4KcwhAuxemC0WK6+7Ju1eY1DnKm9sRoIN9P7 nqW1T6ZEswIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJmlLQmHvKOcBIjQDv4nPg0q avsYMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM2MzkzOTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF/eI MA0GCSqGSIb3DQEBCwUAA4IBAQBaF9gml149UX6Yc5mynlgh4zQxNuVoTT5NQmU5 vxyPZipQetqUdBBgJv0FGp3UwS4nWEF0UyUUT78/w/Rjr5P75b1TFJBD/MjWoH0d 4tbZLWF+Ne3wVEB7ivzI4JUtYwhcRHFflUsKgE8nzFQGaspmu3I4yQs67prFQvHZ OeoXYTD2e+DsBefUSTzZqWu1KkN8Zdw/apJU6aOewUf3hR1C468ftJuipCtRzr8j 4VPZh8nDwMUKiYjxCLxEmDoyFOrQS6Ox4y4noyv13iTh2nglrakoBFANSwxiQF17 8l/2v6c9aBljISC4v5FwGzwIHVgJ63k2E+4nrj4vo4RsTraa -----END CERTIFICATE-----Generated at Thu Jun 19 11:06:44 2025 by rpki-client