$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3361383a3a2f34352d3438203d3e20313430393133.roa File: 323630323a666564613a3361383a3a2f34352d3438203d3e20313430393133.roa (raw, json) Hash identifier: HfHBVOohOl97/RlFsIEq3dux0qeQU64FR9+HTLNJdb8= Subject key identifier: DE:C0:C2:98:8D:C8:88:8D:A2:9E:70:E9:4C:89:1C:58:5A:D0:81:CE Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 5A6AD3C69964CA6A526EAFF0EA2B22F13993F420 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3361383a3a2f34352d3438203d3e20313430393133.roa Signing time: Mon 16 Jun 2025 08:52:22 +0000 ROA not before: Mon 16 Jun 2025 08:47:22 +0000 ROA not after: Mon 15 Jun 2026 08:52:22 +0000 asID: 140913 IP address blocks: 2602:feda:3a8::/45 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:6a:d3:c6:99:64:ca:6a:52:6e:af:f0:ea:2b:22:f1:39:93:f4:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jun 16 08:47:22 2025 GMT Not After : Jun 15 08:52:22 2026 GMT Subject: CN=DEC0C2988DC8888DA29E70E94C891C585AD081CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e1:f0:9e:13:9d:8f:ea:60:d0:d4:8b:4b:6f: 97:59:2c:2c:3d:09:ab:d4:31:e5:b5:08:cb:b5:50: c2:36:62:e4:0b:bd:52:04:45:78:f9:3b:9e:00:72: 21:1b:14:17:d7:3f:5b:66:d1:a1:cf:d7:15:d2:a1: b4:8a:27:89:a5:20:20:f8:c1:3f:95:bd:63:8d:c5: de:29:2b:44:6c:67:e0:70:0c:89:f4:22:48:db:75: 28:53:ef:d8:5b:78:fc:2e:03:62:7f:d9:cd:d6:8e: 89:c8:f3:f2:da:01:e7:51:87:d2:fb:e3:65:fd:34: eb:43:2d:27:71:3c:d6:40:93:0d:47:0c:5d:58:de: 7f:0a:bb:9f:d4:f5:dd:0f:cc:a0:18:c2:f6:b2:e2: 66:c1:05:7f:96:ac:21:6f:c7:b7:f8:8e:75:b6:8a: f1:e5:c9:a2:17:7d:b3:8e:fd:74:cd:3b:bd:e0:48: 39:26:f5:3e:0b:47:8c:6e:3b:bb:29:3b:54:bf:09: 82:d6:16:73:38:2c:68:6a:88:a5:fc:1c:7e:0b:ab: d1:ef:bb:5a:f7:94:37:f5:73:65:31:a1:4b:99:06: 84:d6:e2:e0:40:30:55:6a:c1:89:a7:77:67:0d:77: 13:43:ee:20:c1:49:2d:90:16:de:8a:cc:08:72:c9: 2b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:C0:C2:98:8D:C8:88:8D:A2:9E:70:E9:4C:89:1C:58:5A:D0:81:CE X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3361383a3a2f34352d3438203d3e20313430393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:3a8::/45 Signature Algorithm: sha256WithRSAEncryption 42:1f:7b:e3:64:cd:40:9b:23:c3:3f:26:fb:b1:cc:7f:d4:75: 2c:4d:c9:08:0c:3f:2b:9b:bc:00:92:27:bb:d4:5e:88:05:22: 17:9b:69:61:f4:76:58:a0:ac:b0:6a:a2:7e:3d:fa:a8:32:0b: db:04:1f:f1:2e:62:72:97:22:a2:15:eb:60:4d:73:21:6d:ad: e4:8b:9e:54:3e:0a:b2:46:da:87:5f:b2:91:ac:2a:5f:f9:53: 6d:a8:1f:a9:54:e8:cc:83:16:20:38:43:a4:54:9a:28:75:83: bd:6a:9b:fb:b0:9e:3e:28:c6:5f:e7:18:46:43:37:d4:61:dd: 22:7a:f1:06:3c:71:6d:98:c7:a7:46:61:22:9b:01:52:a6:be: aa:77:36:03:84:7c:a5:8c:c2:82:13:cb:8a:ac:b6:d5:56:cf: 02:36:db:8a:90:4e:02:41:07:62:25:62:49:46:c6:ef:5a:13: bc:6a:cf:0b:c4:15:49:dc:64:81:e3:37:19:53:d5:ad:5d:8c: e5:7a:f3:30:3a:e4:8c:a8:2c:62:2a:3c:75:bc:8a:30:04:18: 02:c4:5a:39:8e:26:dc:a7:5c:93:10:81:da:f3:9f:a6:9f:7f: 82:bf:1d:2b:14:62:2e:a0:d4:d1:3d:90:f5:4d:0d:83:98:0e: b7:68:74:cd -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUWmrTxplkympSbq/w6isi8TmT9CAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjUwNjE2MDg0NzIyWhcNMjYwNjE1MDg1MjIy WjAzMTEwLwYDVQQDEyhERUMwQzI5ODhEQzg4ODhEQTI5RTcwRTk0Qzg5MUM1ODVB RDA4MUNFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuHwnhOdj+pg 0NSLS2+XWSwsPQmr1DHltQjLtVDCNmLkC71SBEV4+TueAHIhGxQX1z9bZtGhz9cV 0qG0iieJpSAg+ME/lb1jjcXeKStEbGfgcAyJ9CJI23UoU+/YW3j8LgNif9nN1o6J yPPy2gHnUYfS++Nl/TTrQy0ncTzWQJMNRwxdWN5/Cruf1PXdD8ygGML2suJmwQV/ lqwhb8e3+I51torx5cmiF32zjv10zTu94Eg5JvU+C0eMbju7KTtUvwmC1hZzOCxo aoil/Bx+C6vR77ta95Q39XNlMaFLmQaE1uLgQDBVasGJp3dnDXcTQ+4gwUktkBbe iswIcskrZQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFN7AwpiNyIiNop5w6UyJHFha 0IHOMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh MzM2MTM4M2EzYTJmMzQzNTJkMzQzODIwM2QzZTIwMzEzNDMwMzkzMTMzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcDJgL+2gOoMA0GCSqGSIb3DQEBCwUAA4IBAQBCH3vjZM1AmyPDPyb7scx/ 1HUsTckIDD8rm7wAkie71F6IBSIXm2lh9HZYoKywaqJ+PfqoMgvbBB/xLmJylyKi FetgTXMhba3ki55UPgqyRtqHX7KRrCpf+VNtqB+pVOjMgxYgOEOkVJoodYO9apv7 sJ4+KMZf5xhGQzfUYd0ievEGPHFtmMenRmEimwFSpr6qdzYDhHyljMKCE8uKrLbV Vs8CNtuKkE4CQQdiJWJJRsbvWhO8as8LxBVJ3GSB4zcZU9WtXYzlevMwOuSMqCxi Kjx1vIowBBgCxFo5jibcp1yTEIHa85+mn3+Cvx0rFGIuoNTRPZD1TQ2DmA63aHTN -----END CERTIFICATE-----Generated at Wed Nov 5 09:03:20 2025 by rpki-client