$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3130353a3a2f34382d3438203d3e20333936333033.roa File: 323630323a666564613a3130353a3a2f34382d3438203d3e20333936333033.roa (raw, json) Hash identifier: QlT1qvMWWwXjV/b60w0M7yP9U1LLQ6dIkuCOpzZS7L8= Subject key identifier: 52:F6:2B:CC:4D:B4:7D:4F:D1:AA:48:81:6E:B2:E8:1E:3D:45:A0:B8 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 0C5CA6F6BE3E7C5D7377E7D861BC437205AA57C3 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3130353a3a2f34382d3438203d3e20333936333033.roa Signing time: Mon 16 Jun 2025 08:52:27 +0000 ROA not before: Mon 16 Jun 2025 08:47:27 +0000 ROA not after: Mon 15 Jun 2026 08:52:27 +0000 asID: 396303 IP address blocks: 2602:feda:105::/48 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 11:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:5c:a6:f6:be:3e:7c:5d:73:77:e7:d8:61:bc:43:72:05:aa:57:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jun 16 08:47:27 2025 GMT Not After : Jun 15 08:52:27 2026 GMT Subject: CN=52F62BCC4DB47D4FD1AA48816EB2E81E3D45A0B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2d:94:8e:d2:39:af:5c:e4:40:b1:68:4d:d8: bd:c6:d5:fe:f8:a9:30:cf:17:b5:8a:0a:4a:e8:73: 13:85:98:b8:f1:01:82:70:e8:57:7b:a9:d6:c2:ef: 29:bf:f0:db:bf:aa:6d:41:58:a9:1a:7f:fe:39:dc: 2f:39:bb:b0:63:f1:c8:b4:97:d2:06:b5:95:76:46: 6d:39:50:9c:c1:c2:81:68:44:03:c8:bd:05:cc:3a: 43:87:cc:25:3c:8d:1f:d1:d5:cc:3c:8f:cc:89:2a: 05:32:45:b0:aa:f8:2a:66:74:a1:5a:01:20:3d:7e: 3b:aa:44:9d:11:1d:a9:27:38:c2:a1:89:90:c9:b9: d3:79:23:7c:ea:08:dd:1e:4b:b4:14:ce:d1:50:90: 1b:84:e3:5d:16:d7:e9:4a:1d:87:ee:47:3a:97:4c: 72:f3:c6:57:a1:95:b9:41:01:d6:85:ec:9f:05:d9: e3:ea:41:b4:7d:1d:e9:ad:bf:ef:b5:2a:c6:fb:e2: dd:43:48:fb:71:7c:aa:48:31:d6:41:85:80:cd:85: d5:04:30:13:6c:20:fe:34:02:9c:ab:2e:d3:80:dd: e5:a6:08:05:2a:ed:c3:90:a1:e8:92:c9:d1:f1:19: 2a:02:3e:aa:be:c1:78:76:e4:b1:63:60:91:2d:24: d3:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F6:2B:CC:4D:B4:7D:4F:D1:AA:48:81:6E:B2:E8:1E:3D:45:A0:B8 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3130353a3a2f34382d3438203d3e20333936333033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:105::/48 Signature Algorithm: sha256WithRSAEncryption 74:ea:de:d8:ad:d0:30:23:70:88:ee:4d:b0:a3:21:17:30:db: 9c:18:26:e7:a6:f2:01:0c:ec:79:9e:b4:36:00:2f:7e:85:df: 97:cb:55:23:66:78:d7:4e:b1:55:95:29:9a:b5:1f:06:96:5b: 2c:cc:fd:b9:2b:c6:2e:06:c5:57:12:6b:79:45:00:03:c1:99: a2:1f:2c:7b:15:8f:5c:c4:2e:5a:e5:c0:84:f4:7a:9b:49:c9: 4a:be:73:34:a2:af:38:58:1c:60:3a:d7:e8:d4:dc:a3:80:d6: ac:2e:6e:a1:96:87:64:3d:cd:36:ac:76:01:e4:9e:c5:f6:7f: 81:71:0e:5f:9c:2c:a1:a1:f4:64:5c:d6:dd:55:75:7e:94:ea: 09:3c:21:ea:c3:9a:cc:2d:fa:07:d3:9a:1f:86:b1:e1:49:f0: 85:f7:fb:e8:7d:ad:7b:36:b8:32:3f:c1:b9:14:62:9f:1b:aa: b5:6b:fd:f6:c4:c1:c6:be:c3:f3:05:69:ce:c5:6e:49:50:a3: 76:b0:fe:d7:e2:d2:b1:52:7d:c8:bb:20:44:71:53:50:02:6c: 7a:16:bb:3f:02:0d:2f:51:dd:1d:38:93:f0:a9:de:81:be:83: 16:6c:ad:f5:f6:c9:fc:ef:fa:b6:72:bb:3b:67:e3:15:d8:83: 19:55:42:02 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUDFym9r4+fF1zd+fYYbxDcgWqV8MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjUwNjE2MDg0NzI3WhcNMjYwNjE1MDg1MjI3 WjAzMTEwLwYDVQQDEyg1MkY2MkJDQzREQjQ3RDRGRDFBQTQ4ODE2RUIyRTgxRTNE NDVBMEI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAny2UjtI5r1zk QLFoTdi9xtX++Kkwzxe1igpK6HMThZi48QGCcOhXe6nWwu8pv/Dbv6ptQVipGn/+ OdwvObuwY/HItJfSBrWVdkZtOVCcwcKBaEQDyL0FzDpDh8wlPI0f0dXMPI/MiSoF MkWwqvgqZnShWgEgPX47qkSdER2pJzjCoYmQybnTeSN86gjdHku0FM7RUJAbhONd FtfpSh2H7kc6l0xy88ZXoZW5QQHWheyfBdnj6kG0fR3prb/vtSrG++LdQ0j7cXyq SDHWQYWAzYXVBDATbCD+NAKcqy7TgN3lpggFKu3DkKHoksnR8RkqAj6qvsF4duSx Y2CRLSTTHQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFFL2K8xNtH1P0apIgW6y6B49 RaC4MB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh MzEzMDM1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzMzMDMzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAJgL+2gEFMA0GCSqGSIb3DQEBCwUAA4IBAQB06t7YrdAwI3CI7k2woyEX MNucGCbnpvIBDOx5nrQ2AC9+hd+Xy1UjZnjXTrFVlSmatR8GllsszP25K8YuBsVX Emt5RQADwZmiHyx7FY9cxC5a5cCE9HqbSclKvnM0oq84WBxgOtfo1NyjgNasLm6h lodkPc02rHYB5J7F9n+BcQ5fnCyhofRkXNbdVXV+lOoJPCHqw5rMLfoH05ofhrHh SfCF9/vofa17NrgyP8G5FGKfG6q1a/32xMHGvsPzBWnOxW5JUKN2sP7X4tKxUn3I uyBEcVNQAmx6Frs/Ag0vUd0dOJPwqd6BvoMWbK319sn87/q2crs7Z+MV2IMZVUIC -----END CERTIFICATE-----Generated at Mon Jun 16 20:03:52 2025 by rpki-client