$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6239303a3a2f34342d3438203d3e20323132393935.roa File: 323630323a666564613a6239303a3a2f34342d3438203d3e20323132393935.roa (raw, json) Hash identifier: 8a28zxCpUnmrfUehJt8k/qlkr1IBPQtUs4SAZs/Nyrc= Subject key identifier: DB:41:78:6A:99:46:9A:0D:A0:8E:BA:31:18:2F:49:96:A7:2F:18:B4 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 4DCEB9FD30B638F743A0CCF033AB71B070A8F911 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6239303a3a2f34342d3438203d3e20323132393935.roa Signing time: Mon 16 Jun 2025 08:52:21 +0000 ROA not before: Mon 16 Jun 2025 08:47:21 +0000 ROA not after: Mon 15 Jun 2026 08:52:21 +0000 asID: 212995 IP address blocks: 2602:feda:b90::/44 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 11:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:ce:b9:fd:30:b6:38:f7:43:a0:cc:f0:33:ab:71:b0:70:a8:f9:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jun 16 08:47:21 2025 GMT Not After : Jun 15 08:52:21 2026 GMT Subject: CN=DB41786A99469A0DA08EBA31182F4996A72F18B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d5:a4:64:1d:33:f3:30:1e:78:94:9c:76:7a: 84:1a:6a:59:29:b9:54:93:da:af:96:a8:8e:0c:91: 87:d8:11:75:58:33:6e:bf:14:e8:10:c6:64:59:46: 15:6a:14:35:60:ce:d8:b5:53:c9:59:71:19:77:51: 17:80:7c:f7:58:d0:c4:7e:60:39:a0:54:2b:44:d6: 45:ac:f6:70:62:3b:78:11:36:e2:40:f2:8f:14:9f: dd:08:0d:dc:a5:01:8c:43:a6:0e:b9:fe:71:ee:1e: 60:96:46:78:ad:66:fa:39:d0:dd:47:e0:8e:7e:ab: f0:25:68:6e:d8:96:3d:18:5b:e2:d4:c8:bd:05:bb: 89:d5:b0:0f:e4:a5:fc:18:91:b6:22:04:76:a2:15: 9e:70:ee:15:46:5b:13:23:43:9f:10:0e:6c:1a:83: ac:82:da:98:13:11:a6:f3:46:ae:2e:b7:a3:fe:13: 46:23:fc:d0:57:1a:81:2d:03:59:3e:85:f9:12:cf: 93:e6:0e:4a:0d:ee:32:5a:2d:d0:69:c6:ec:14:79: c1:1f:13:d5:b6:00:71:ce:7a:75:b2:90:f9:b3:ee: a0:88:2e:39:a2:77:27:1c:73:ca:06:fa:f3:c4:80: 95:f5:3d:1a:1e:ce:32:cd:39:98:70:4a:a3:7e:c6: 49:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:41:78:6A:99:46:9A:0D:A0:8E:BA:31:18:2F:49:96:A7:2F:18:B4 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6239303a3a2f34342d3438203d3e20323132393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:b90::/44 Signature Algorithm: sha256WithRSAEncryption 54:b6:c2:81:4a:0f:d8:5e:94:90:54:63:cc:c3:67:1f:ba:db: 6d:7a:00:88:98:2a:1f:7d:d0:8c:80:6e:9c:2e:da:54:fd:d6: 47:8a:61:14:fc:e2:0d:1c:11:dd:db:27:0d:a5:16:d3:d3:b9: 34:80:76:bb:bf:97:45:aa:7e:b7:a2:05:09:47:32:11:54:44: c6:b9:07:fe:11:41:95:3f:7e:25:8f:cd:55:a3:d4:f4:5d:b6: 58:b3:72:98:31:d4:db:e7:b9:6e:e7:1f:53:ce:a2:2d:5a:83: de:87:79:0b:90:3e:10:3a:9f:2f:0e:6b:1d:8c:0b:b8:fd:7d: ba:e1:fe:2e:b0:c1:59:0b:43:f0:77:7a:9d:ab:eb:b2:20:86: 84:66:8b:26:00:97:e1:27:4f:ae:7c:e3:c4:c1:f3:7b:bf:46: df:ac:55:c4:e1:2f:e4:5e:d5:ac:d6:b9:bd:a6:12:a7:56:74: 14:14:2d:c1:df:19:68:e6:c7:2d:8c:72:cb:86:42:75:8b:43: 06:32:c5:6e:ce:0b:f1:53:94:28:fb:2d:64:b2:94:b4:38:72: df:71:d0:54:6d:62:a9:ef:e7:2f:c4:be:c6:1a:5a:99:99:de: d8:f5:3b:1b:fd:13:b8:bd:4f:b2:3c:af:2b:bf:b2:7b:4f:1e: bf:8e:07:d9 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUTc65/TC2OPdDoMzwM6txsHCo+REwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjUwNjE2MDg0NzIxWhcNMjYwNjE1MDg1MjIx WjAzMTEwLwYDVQQDEyhEQjQxNzg2QTk5NDY5QTBEQTA4RUJBMzExODJGNDk5NkE3 MkYxOEI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAztWkZB0z8zAe eJScdnqEGmpZKblUk9qvlqiODJGH2BF1WDNuvxToEMZkWUYVahQ1YM7YtVPJWXEZ d1EXgHz3WNDEfmA5oFQrRNZFrPZwYjt4ETbiQPKPFJ/dCA3cpQGMQ6YOuf5x7h5g lkZ4rWb6OdDdR+COfqvwJWhu2JY9GFvi1Mi9BbuJ1bAP5KX8GJG2IgR2ohWecO4V RlsTI0OfEA5sGoOsgtqYExGm80auLrej/hNGI/zQVxqBLQNZPoX5Es+T5g5KDe4y Wi3QacbsFHnBHxPVtgBxznp1spD5s+6giC45oncnHHPKBvrzxICV9T0aHs4yzTmY cEqjfsZJwwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFNtBeGqZRpoNoI66MRgvSZan Lxi0MB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh NjIzOTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIzMTMyMzkzOTM1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcEJgL+2guQMA0GCSqGSIb3DQEBCwUAA4IBAQBUtsKBSg/YXpSQVGPMw2cf utttegCImCoffdCMgG6cLtpU/dZHimEU/OINHBHd2ycNpRbT07k0gHa7v5dFqn63 ogUJRzIRVETGuQf+EUGVP34lj81Vo9T0XbZYs3KYMdTb57lu5x9TzqItWoPeh3kL kD4QOp8vDmsdjAu4/X264f4usMFZC0Pwd3qdq+uyIIaEZosmAJfhJ0+ufOPEwfN7 v0bfrFXE4S/kXtWs1rm9phKnVnQUFC3B3xlo5sctjHLLhkJ1i0MGMsVuzgvxU5Qo +y1kspS0OHLfcdBUbWKp7+cvxL7GGlqZmd7Y9Tsb/RO4vU+yPK8rv7J7Tx6/jgfZ -----END CERTIFICATE-----Generated at Mon Jun 16 22:15:34 2025 by rpki-client