$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203134363138.roa File: 32332e3234372e3133362e302f32322d3234203d3e203134363138.roa (raw, json) Hash identifier: xOg+pavRH5RkzyV4BlQM01mzBAtZhSPmd/67qGXMrAY= Subject key identifier: BB:9C:2E:B0:CB:52:3B:EA:B3:3F:1D:0A:5F:AC:A6:83:8C:93:25:30 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 5F4CA0F88717D03EBBCC565E8B6D09D47E8308E3 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203134363138.roa Signing time: Mon 16 Jun 2025 08:52:26 +0000 ROA not before: Mon 16 Jun 2025 08:47:26 +0000 ROA not after: Mon 15 Jun 2026 08:52:26 +0000 asID: 14618 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 03:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:4c:a0:f8:87:17:d0:3e:bb:cc:56:5e:8b:6d:09:d4:7e:83:08:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jun 16 08:47:26 2025 GMT Not After : Jun 15 08:52:26 2026 GMT Subject: CN=BB9C2EB0CB523BEAB33F1D0A5FACA6838C932530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8a:a2:90:98:6d:22:66:08:75:7a:58:55:3b: 71:c3:e2:fa:ef:cb:f8:4d:54:a0:51:4a:ff:d6:e4: 86:d9:f2:bf:8c:fa:76:16:f7:9c:d8:15:dc:65:47: 8f:9e:b0:a7:f0:e2:91:3b:40:5e:de:c9:e3:b8:a7: c9:ae:7a:0c:c5:65:e3:00:d4:a6:bd:55:17:81:4e: 20:e9:67:50:64:b1:20:47:f3:2a:a4:c9:e2:34:d1: 17:e7:1b:40:25:e9:de:11:be:d4:d2:89:b5:10:81: 34:f0:28:83:ce:6f:11:fd:90:9e:d1:33:b9:f7:2c: 4b:d2:29:07:20:d8:96:10:3e:e7:21:04:6c:59:5b: f5:99:c8:46:a2:2f:f3:65:fc:98:0a:78:0a:05:20: 1e:9f:49:30:92:16:8d:cb:19:12:04:03:c3:ef:d3: 74:94:0f:4c:80:60:f0:ed:68:e9:0d:28:f6:f7:da: 48:41:ef:d1:83:97:81:c8:7f:fa:a2:c1:c9:9b:03: 55:45:a0:63:05:57:18:77:e0:1a:2c:5c:d0:7e:94: ad:10:4f:0c:6c:07:ec:a2:ef:9c:0c:23:b0:69:ac: ae:3c:6c:3a:c6:80:53:ca:23:e6:d9:ab:c6:b8:ee: 98:1d:f9:ea:df:64:03:62:f3:81:a6:42:01:0c:c7: ac:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:9C:2E:B0:CB:52:3B:EA:B3:3F:1D:0A:5F:AC:A6:83:8C:93:25:30 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203134363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:1d:5e:1a:98:e5:d4:be:60:0d:c5:68:82:12:1d:ec:76:27: a1:f8:74:97:7a:34:4b:5d:4a:fe:1e:77:bc:3e:c5:12:fc:4f: 84:48:f2:1a:36:cc:a6:d8:da:5b:f7:08:4c:4c:13:dd:70:b4: 64:e7:29:14:7a:11:50:2e:51:c7:ac:93:f3:33:94:b5:95:21: 07:6c:da:ad:5c:af:0b:45:01:cc:27:ff:92:33:54:39:7c:3e: a2:5b:f0:ca:f8:e4:91:3c:55:8a:2b:aa:70:1f:bb:43:87:99: b7:0b:a3:90:d4:82:86:f0:13:e5:d1:05:fe:0c:96:63:8f:88: 95:4c:0d:3b:94:f7:8a:bb:c5:e4:8b:44:13:ad:66:bf:ec:98: 9f:35:45:6c:41:11:2c:96:c5:39:c2:b3:70:e7:54:50:03:23: 1d:51:78:57:0a:86:47:64:49:4f:a1:8d:0d:b9:f6:18:24:9f: f1:cf:e2:46:1e:85:b5:06:50:cb:3c:3b:f3:cf:22:31:02:b6: 89:79:f5:15:b9:b5:da:d9:7a:0b:dd:b7:85:46:05:74:4b:79: 83:20:15:07:7a:06:3f:b8:6c:dc:38:18:1d:c3:10:9a:e1:96: 75:5d:3c:52:8d:1c:67:99:ee:f0:04:af:09:7b:ed:b7:d9:1a: 6e:82:c7:41 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUX0yg+IcX0D67zFZei20J1H6DCOMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjUwNjE2MDg0NzI2WhcNMjYwNjE1MDg1MjI2 WjAzMTEwLwYDVQQDEyhCQjlDMkVCMENCNTIzQkVBQjMzRjFEMEE1RkFDQTY4MzhD OTMyNTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAroqikJhtImYI dXpYVTtxw+L678v4TVSgUUr/1uSG2fK/jPp2Fvec2BXcZUePnrCn8OKRO0Be3snj uKfJrnoMxWXjANSmvVUXgU4g6WdQZLEgR/MqpMniNNEX5xtAJeneEb7U0om1EIE0 8CiDzm8R/ZCe0TO59yxL0ikHINiWED7nIQRsWVv1mchGoi/zZfyYCngKBSAen0kw khaNyxkSBAPD79N0lA9MgGDw7WjpDSj299pIQe/Rg5eByH/6osHJmwNVRaBjBVcY d+AaLFzQfpStEE8MbAfsou+cDCOwaayuPGw6xoBTyiPm2avGuO6YHfnq32QDYvOB pkIBDMesdQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLucLrDLUjvqsz8dCl+spoOM kyUwMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMTM0MzYzMTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF/eI MA0GCSqGSIb3DQEBCwUAA4IBAQBeHV4amOXUvmANxWiCEh3sdieh+HSXejRLXUr+ Hne8PsUS/E+ESPIaNsym2Npb9whMTBPdcLRk5ykUehFQLlHHrJPzM5S1lSEHbNqt XK8LRQHMJ/+SM1Q5fD6iW/DK+OSRPFWKK6pwH7tDh5m3C6OQ1IKG8BPl0QX+DJZj j4iVTA07lPeKu8Xki0QTrWa/7JifNUVsQREslsU5wrNw51RQAyMdUXhXCoZHZElP oY0NufYYJJ/xz+JGHoW1BlDLPDvzzyIxAraJefUVubXa2XoL3beFRgV0S3mDIBUH egY/uGzcOBgdwxCa4ZZ1XTxSjRxnme7wBK8Je+232RpugsdB -----END CERTIFICATE-----Generated at Thu Jul 3 06:01:23 2025 by rpki-client