$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203436393937.roa File: 32332e3234372e3133362e302f32322d3234203d3e203436393937.roa (raw, json) Hash identifier: ZfwCi8xrOTLLG7GH1aNnsM5WBxtFHN2jUVb5jp8pkjE= Subject key identifier: 47:98:09:D2:4A:50:8D:3B:A6:62:34:45:E2:75:41:28:44:EE:1C:66 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 3F28A70BA2DFED305C8B67F70A976B8E9EB0C59C Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203436393937.roa Signing time: Mon 18 May 2026 09:21:32 +0000 ROA not before: Mon 18 May 2026 09:16:32 +0000 ROA not after: Mon 17 May 2027 09:21:32 +0000 asID: 46997 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 05:51:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:28:a7:0b:a2:df:ed:30:5c:8b:67:f7:0a:97:6b:8e:9e:b0:c5:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: May 18 09:16:32 2026 GMT Not After : May 17 09:21:32 2027 GMT Subject: CN=479809D24A508D3BA6623445E275412844EE1C66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:19:36:cc:2b:37:de:43:0a:b2:8b:30:0d:5a: f8:da:39:1e:df:dd:71:3b:63:ab:05:78:6c:6b:99: 57:bc:91:f1:21:0c:96:7c:0f:5a:1e:bb:43:3b:e0: 92:a7:ca:c4:55:e2:eb:35:0a:fd:cd:5c:83:2c:4d: c6:2c:33:f1:8e:c2:bd:91:62:45:15:c6:5c:02:e6: b6:c3:3b:14:3c:81:9e:56:77:4d:6b:6f:23:41:da: 75:63:44:95:78:e7:a0:bb:a8:43:8b:86:15:91:cb: f8:d2:5d:d1:6e:89:cc:8a:bf:25:be:96:ec:32:3b: fd:3f:50:33:9b:00:06:55:2f:2f:b9:a8:4a:e6:88: 28:64:c8:68:b3:4b:83:3e:d7:8e:fb:2f:0d:27:77: 11:00:35:c1:4d:05:b4:08:d4:c4:6e:4e:c2:4f:2b: fc:f5:96:30:b7:b9:82:13:63:87:8f:67:80:bf:5e: 0f:b9:57:2b:af:74:49:02:01:2d:6e:51:51:36:38: d5:14:50:a9:83:6a:78:ca:49:7d:02:1c:eb:c8:06: 19:44:29:d2:04:85:ad:ad:d8:f8:38:f8:b3:f4:8f: 44:bd:04:a7:c2:c5:da:3f:d7:07:71:a8:c5:77:4e: 01:9e:49:23:1d:fd:42:b7:97:30:71:29:c7:28:d6: 95:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:98:09:D2:4A:50:8D:3B:A6:62:34:45:E2:75:41:28:44:EE:1C:66 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203436393937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption 63:cf:f0:a3:ac:14:2b:85:83:cc:19:7f:f6:aa:cc:4c:b0:29: 6e:32:a7:34:9b:5a:b0:97:44:a8:5d:80:0f:91:84:f9:91:f3: 41:f9:27:5e:44:fa:16:20:4a:44:19:53:06:12:cb:91:25:24: 4b:79:db:e9:0d:1e:fb:55:f9:45:75:cc:0b:a1:46:1f:fa:0c: b6:35:02:db:54:13:38:de:b9:9a:86:25:15:7d:97:f1:1b:ef: e0:d5:bd:50:81:e3:fc:63:84:f2:9c:ad:66:65:3e:0d:9d:0e: ca:b4:7c:78:fc:13:13:ce:c8:4c:0f:59:68:c3:cc:af:34:65: 40:0a:8a:0d:9f:07:ab:19:6e:40:f3:c1:5c:fb:75:15:f7:a5: 20:57:d1:64:34:e5:95:b8:68:e6:55:d1:e8:27:60:7b:1c:90: f6:47:19:7d:3d:07:38:c9:5a:8d:2a:d6:d2:d9:e8:ba:f0:bc: 82:f6:30:cd:9f:e6:c7:d1:1a:f9:2d:ba:c3:15:ab:20:ee:1c: 01:48:8b:d9:47:fc:b4:dd:53:70:10:4e:2c:77:03:09:30:5e: 1e:f4:a7:82:1d:49:eb:60:f0:f5:4c:07:e1:8e:aa:9c:21:73: e1:f7:3a:d4:a1:bf:c1:48:07:f0:90:27:01:dd:5c:21:9f:aa: 31:cb:d5:31 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUPyinC6Lf7TBci2f3Cpdrjp6wxZwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjYwNTE4MDkxNjMyWhcNMjcwNTE3MDkyMTMy WjAzMTEwLwYDVQQDEyg0Nzk4MDlEMjRBNTA4RDNCQTY2MjM0NDVFMjc1NDEyODQ0 RUUxQzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxk2zCs33kMK soswDVr42jke391xO2OrBXhsa5lXvJHxIQyWfA9aHrtDO+CSp8rEVeLrNQr9zVyD LE3GLDPxjsK9kWJFFcZcAua2wzsUPIGeVndNa28jQdp1Y0SVeOegu6hDi4YVkcv4 0l3RbonMir8lvpbsMjv9P1AzmwAGVS8vuahK5ogoZMhos0uDPteO+y8NJ3cRADXB TQW0CNTEbk7CTyv89ZYwt7mCE2OHj2eAv14PuVcrr3RJAgEtblFRNjjVFFCpg2p4 ykl9AhzryAYZRCnSBIWtrdj4OPiz9I9EvQSnwsXaP9cHcajFd04BnkkjHf1Ct5cw cSnHKNaVzQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEeYCdJKUI07pmI0ReJ1QShE 7hxmMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM2MzkzOTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF/eI MA0GCSqGSIb3DQEBCwUAA4IBAQBjz/CjrBQrhYPMGX/2qsxMsCluMqc0m1qwl0So XYAPkYT5kfNB+SdeRPoWIEpEGVMGEsuRJSRLedvpDR77VflFdcwLoUYf+gy2NQLb VBM43rmahiUVfZfxG+/g1b1QgeP8Y4TynK1mZT4NnQ7KtHx4/BMTzshMD1low8yv NGVACooNnwerGW5A88Fc+3UV96UgV9FkNOWVuGjmVdHoJ2B7HJD2Rxl9PQc4yVqN KtbS2ei68LyC9jDNn+bH0Rr5LbrDFasg7hwBSIvZR/y03VNwEE4sdwMJMF4e9KeC HUnrYPD1TAfhjqqcIXPh9zrUob/BSAfwkCcB3Vwhn6oxy9Ux -----END CERTIFICATE-----Generated at Sat Jun 13 09:29:27 2026 by rpki-client