$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6163303a3a2f34342d3438203d3e20313430393734.roa File: 323630323a666564613a6163303a3a2f34342d3438203d3e20313430393734.roa (raw, json) Hash identifier: mQaZKiT+WjStZkzoUA9nRbKY8Iz64FxDRElOj/+Sko8= Subject key identifier: 09:EB:17:1B:B7:E6:AF:CA:51:90:63:C5:B8:0E:F0:75:64:D5:04:FD Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 02FCEA1140EB0993CB34F16C8F4C2A4F15C87C Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6163303a3a2f34342d3438203d3e20313430393734.roa Signing time: Mon 16 Jun 2025 08:52:31 +0000 ROA not before: Mon 16 Jun 2025 08:47:31 +0000 ROA not after: Mon 15 Jun 2026 08:52:31 +0000 asID: 140974 IP address blocks: 2602:feda:ac0::/44 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 18 Jun 2025 03:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:fc:ea:11:40:eb:09:93:cb:34:f1:6c:8f:4c:2a:4f:15:c8:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jun 16 08:47:31 2025 GMT Not After : Jun 15 08:52:31 2026 GMT Subject: CN=09EB171BB7E6AFCA519063C5B80EF07564D504FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6f:a8:19:75:b5:fa:7c:8a:ca:4d:8d:db:1b: 8d:2e:3f:4e:0a:e2:53:ed:4f:08:b4:65:a3:97:5a: d3:37:b0:42:75:cf:a4:9a:09:4a:67:bc:7d:cc:87: 85:ef:c4:0b:53:60:24:9f:7b:b3:d4:ff:93:63:59: 7a:f1:4d:bc:e5:51:18:68:1f:10:8d:a4:2a:56:26: 2d:2f:99:51:8c:c4:eb:fe:72:b7:8e:6d:1e:75:3a: 7e:81:52:fc:c1:8d:bb:ae:9e:1f:a1:ba:da:ed:8a: 31:d7:5f:85:b5:a1:31:3f:0b:f6:9f:e2:80:5c:06: 2d:c9:29:ea:70:20:1b:1c:4c:b1:45:75:a5:3c:14: 97:2f:48:5a:35:6f:26:f1:57:16:ca:fd:91:5a:95: 00:69:d4:6c:00:41:21:1f:36:0f:ca:7d:c3:a5:9a: db:e3:52:e1:82:9a:d2:2d:a0:f3:78:7e:75:c3:81: 1a:df:59:b3:38:b4:5e:e0:6c:26:4e:77:c9:97:6f: 6b:0f:ea:ac:da:a5:b5:a8:01:f3:46:47:89:a9:59: 83:ff:78:17:bf:b9:93:95:80:f5:34:fc:6b:44:52: e9:e6:aa:d6:01:af:2f:39:c5:b7:1f:71:fa:d8:b4: 4d:1a:76:9c:44:45:61:b8:e2:00:7f:f6:a8:25:69: 37:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:EB:17:1B:B7:E6:AF:CA:51:90:63:C5:B8:0E:F0:75:64:D5:04:FD X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6163303a3a2f34342d3438203d3e20313430393734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:ac0::/44 Signature Algorithm: sha256WithRSAEncryption 26:37:24:a9:31:b3:c7:ff:a3:b6:5e:75:8b:e3:4c:c7:56:44: 6f:40:b3:43:63:d3:c4:32:ea:e6:28:63:61:e2:b4:6f:19:71: 25:41:da:06:9f:67:a3:c1:8a:0f:52:06:96:54:12:cd:05:bd: ab:c0:8d:0d:df:03:61:1a:ad:9c:79:4a:fa:5b:0d:52:9c:93: 3d:cb:c1:e0:b5:6c:0c:4b:5c:11:e9:7b:30:09:a6:c0:cc:c3: e1:74:69:50:84:c5:c0:47:d4:ca:46:21:72:78:b7:0e:33:35: a8:d1:6e:b8:6c:21:58:a4:60:f5:b4:7c:81:19:6f:aa:cf:36: db:80:32:52:1b:97:06:43:cc:1a:d1:f3:0b:07:4d:8f:24:cd: 01:82:5e:d8:ba:d8:c7:98:34:5f:7a:19:cf:44:4f:72:a1:38: c0:2b:ec:08:b8:17:ab:a9:64:91:10:e2:6f:f9:7e:6f:4f:e0: a6:9d:3c:13:59:55:e2:9a:c5:ec:de:c9:e6:3f:a0:c3:ba:ea: 68:70:37:f0:f1:ef:8a:49:7c:98:8e:bc:d5:8e:28:14:1e:7f: 65:c9:dd:dd:5a:de:3f:06:1c:cf:4a:46:73:4a:75:fd:00:51: bb:69:93:b2:7f:0f:89:6f:ee:8f:ae:29:82:ac:04:71:78:8f: 4a:a2:7f:de -----BEGIN CERTIFICATE----- MIIFazCCBFOgAwIBAgITAvzqEUDrCZPLNPFsj0wqTxXIfDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI1MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJi NDMzYmJhM2Y5NjBmYmMxODAeFw0yNTA2MTYwODQ3MzFaFw0yNjA2MTUwODUyMzFa MDMxMTAvBgNVBAMTKDA5RUIxNzFCQjdFNkFGQ0E1MTkwNjNDNUI4MEVGMDc1NjRE NTA0RkQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmb6gZdbX6fIrK TY3bG40uP04K4lPtTwi0ZaOXWtM3sEJ1z6SaCUpnvH3Mh4XvxAtTYCSfe7PU/5Nj WXrxTbzlURhoHxCNpCpWJi0vmVGMxOv+creObR51On6BUvzBjbuunh+hutrtijHX X4W1oTE/C/af4oBcBi3JKepwIBscTLFFdaU8FJcvSFo1bybxVxbK/ZFalQBp1GwA QSEfNg/KfcOlmtvjUuGCmtItoPN4fnXDgRrfWbM4tF7gbCZOd8mXb2sP6qzapbWo AfNGR4mpWYP/eBe/uZOVgPU0/GtEUunmqtYBry85xbcfcfrYtE0adpxERWG44gB/ 9qglaTdrAgMBAAGjggJsMIICaDAdBgNVHQ4EFgQUCesXG7fmr8pRkGPFuA7wdWTV BP0wHwYDVR0jBBgwFoAUFiV8GWaMZxPEASsQHmRiZs13tQ0wDgYDVR0PAQH/BAQD AgeAMF8GA1UdHwRYMFYwVKBSoFCGTnJzeW5jOi8vY2EubmF0Lm1vZS9yZXBvL05B VE9MQUIvMi8xNjI1N0MxOTY2OEM2NzEzQzQwMTJCMTAxRTY0NjI2NkNENzdCNTBE LmNybDCB8wYIKwYBBQUHAQEEgeYwgeMwgeAGCCsGAQUFBzAChoHTcnN5bmM6Ly9y cGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRhLzVlNGEyM2VhLWU4 MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1hODdjLTQzMzktYTJm My02Mjk5YTNiMDJlMjkvMDRjMTJjNmMtYWIwZS00ZDAzLWI5YzgtNmMzNTkyMzY4 Yzc3LzUwOTNjYmI0NmY2OTkwMWMxMTlhMmJlMTA4M2RmMmFhMmI0MzNiYmEzZjk2 MGZiYzE4LmNlcjCBgAYIKwYBBQUHAQsEdDByMHAGCCsGAQUFBzALhmRyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzNjMwMzIzYTY2NjU2NDYxM2E2 MTYzMzAzYTNhMmYzNDM0MmQzNDM4MjAzZDNlMjAzMTM0MzAzOTM3MzQucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAv7aCsAwDQYJKoZIhvcNAQELBQADggEBACY3JKkxs8f/o7ZedYvjTMdW RG9As0Nj08Qy6uYoY2HitG8ZcSVB2gafZ6PBig9SBpZUEs0FvavAjQ3fA2EarZx5 SvpbDVKckz3LweC1bAxLXBHpezAJpsDMw+F0aVCExcBH1MpGIXJ4tw4zNajRbrhs IVikYPW0fIEZb6rPNtuAMlIblwZDzBrR8wsHTY8kzQGCXti62MeYNF96Gc9ET3Kh OMAr7Ai4F6upZJEQ4m/5fm9P4KadPBNZVeKaxezeyeY/oMO66mhwN/Dx74pJfJiO vNWOKBQef2XJ3d1a3j8GHM9KRnNKdf0AUbtpk7J/D4lv7o+uKYKsBHF4j0qif94= -----END CERTIFICATE-----Generated at Tue Jun 17 09:59:12 2025 by rpki-client