$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e2038303735.roa File: 32332e3234372e3133362e302f32322d3234203d3e2038303735.roa (raw, json) Hash identifier: ORkfp8hcjW6hd87987MNw4R0Da1Aj8Vm2F3WpFwqMYc= Subject key identifier: C5:63:27:D3:B6:BB:0F:AD:9E:2D:5E:E9:6B:D1:E4:98:A3:88:91:DB Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 179B77F038F0C549BB56F120E07F22CAB7FDBC02 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e2038303735.roa Signing time: Mon 16 Jun 2025 08:52:22 +0000 ROA not before: Mon 16 Jun 2025 08:47:22 +0000 ROA not after: Mon 15 Jun 2026 08:52:22 +0000 asID: 8075 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Jun 2025 17:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:9b:77:f0:38:f0:c5:49:bb:56:f1:20:e0:7f:22:ca:b7:fd:bc:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jun 16 08:47:22 2025 GMT Not After : Jun 15 08:52:22 2026 GMT Subject: CN=C56327D3B6BB0FAD9E2D5EE96BD1E498A38891DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a5:79:12:62:1b:2e:d7:f5:17:e1:a1:d6:e3: 65:1c:2f:bb:8d:43:f3:bb:66:49:10:ea:cd:a5:65: 72:a0:de:cd:d2:1c:b3:e9:94:4e:7c:eb:eb:36:cc: 99:f5:c0:0c:2e:a8:82:c6:c5:21:85:9c:ab:a0:fe: 20:94:75:23:6c:f5:10:6d:67:be:aa:36:2e:ab:92: 40:f4:b0:ea:b3:11:94:9c:c6:6d:a5:fd:4b:ff:bc: 6a:72:27:4e:f3:d8:d0:26:d3:d2:8f:b0:ef:b7:93: 76:78:b4:8d:bf:c0:f0:9d:64:92:f0:5f:aa:c2:b7: 71:15:07:9d:fd:bc:47:1d:95:a8:56:2d:44:3b:bf: 98:77:bb:71:26:49:d7:6b:6a:f3:48:2c:b8:2b:6f: af:51:b0:d5:7b:0c:93:41:43:94:99:53:f1:a9:8a: 61:8d:bb:49:7e:84:4d:df:ba:bc:59:47:76:c7:5f: 2e:5b:b5:2d:87:f4:0f:1c:d7:5b:16:21:cb:d8:f3: b8:df:44:cc:8b:c7:88:06:74:4e:7b:6e:42:dd:2d: d4:88:53:89:af:0b:06:f5:e5:da:07:dc:e5:cd:58: 01:cd:6f:5a:c8:60:52:60:8a:f0:38:e0:5d:7d:a4: 08:e2:87:10:cb:35:cf:f0:aa:c6:a8:25:8d:43:29: 82:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:63:27:D3:B6:BB:0F:AD:9E:2D:5E:E9:6B:D1:E4:98:A3:88:91:DB X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e2038303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption 89:62:78:ab:23:af:a9:92:ad:0a:50:49:a8:8f:81:cd:e4:3f: 1d:52:c0:40:95:88:8e:14:48:dd:2a:53:bf:8c:3b:6d:2c:d7: 15:fb:1c:98:bd:ba:f7:f6:d9:b2:fe:cb:a4:6d:32:65:3d:3e: 31:43:e2:27:8b:4b:c8:6b:8e:2f:6b:73:4e:b9:fb:98:72:d0: 0b:eb:13:c1:f0:45:b4:67:3f:09:81:1c:d9:c8:f9:c5:e1:34: a9:fa:21:e7:fc:2c:31:c1:09:47:5c:67:8f:31:5a:e9:f5:4b: 9b:34:38:aa:b3:34:55:28:eb:ab:2f:3e:97:f0:04:ba:ea:98: 76:5e:ce:de:63:b7:65:21:fb:c8:ce:8f:13:b1:0a:8d:d8:b3: 06:34:9f:26:6b:06:96:00:b3:51:9c:ad:55:74:c8:67:bd:4a: 5e:2a:36:d0:85:23:49:91:11:9c:3e:55:7f:a0:e8:df:39:3b: 0a:6a:fb:39:d4:a5:90:d4:0b:3f:c2:2f:37:ac:db:b7:85:f2: a7:e8:4c:c7:f7:bd:ad:ca:da:4e:e8:a8:0b:03:39:8b:60:4c: 96:d3:c0:b3:7d:ba:29:f3:90:0f:43:29:07:a1:25:b1:35:7f: 73:61:da:6c:56:a5:89:c2:98:4f:cd:79:ac:a9:b9:14:f6:88: 0c:65:57:b2 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUF5t38DjwxUm7VvEg4H8iyrf9vAIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjUwNjE2MDg0NzIyWhcNMjYwNjE1MDg1MjIy WjAzMTEwLwYDVQQDEyhDNTYzMjdEM0I2QkIwRkFEOUUyRDVFRTk2QkQxRTQ5OEEz ODg5MURCMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0qV5EmIbLtf1 F+Gh1uNlHC+7jUPzu2ZJEOrNpWVyoN7N0hyz6ZROfOvrNsyZ9cAMLqiCxsUhhZyr oP4glHUjbPUQbWe+qjYuq5JA9LDqsxGUnMZtpf1L/7xqcidO89jQJtPSj7Dvt5N2 eLSNv8DwnWSS8F+qwrdxFQed/bxHHZWoVi1EO7+Yd7txJknXa2rzSCy4K2+vUbDV ewyTQUOUmVPxqYphjbtJfoRN37q8WUd2x18uW7Uth/QPHNdbFiHL2PO430TMi8eI BnROe25C3S3UiFOJrwsG9eXaB9zlzVgBzW9ayGBSYIrwOOBdfaQI4ocQyzXP8KrG qCWNQymCLQIDAQABo4ICXjCCAlowHQYDVR0OBBYEFMVjJ9O2uw+tni1e6WvR5Jij iJHbMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzODMwMzczNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhf3iDAN BgkqhkiG9w0BAQsFAAOCAQEAiWJ4qyOvqZKtClBJqI+BzeQ/HVLAQJWIjhRI3SpT v4w7bSzXFfscmL269/bZsv7LpG0yZT0+MUPiJ4tLyGuOL2tzTrn7mHLQC+sTwfBF tGc/CYEc2cj5xeE0qfoh5/wsMcEJR1xnjzFa6fVLmzQ4qrM0VSjrqy8+l/AEuuqY dl7O3mO3ZSH7yM6PE7EKjdizBjSfJmsGlgCzUZytVXTIZ71KXio20IUjSZERnD5V f6Do3zk7Cmr7OdSlkNQLP8IvN6zbt4Xyp+hMx/e9rcraTuioCwM5i2BMltPAs326 KfOQD0MpB6ElsTV/c2HabFalicKYT815rKm5FPaIDGVXsg== -----END CERTIFICATE-----Generated at Thu Jun 19 20:44:58 2025 by rpki-client