$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6265303a3a2f34342d3438203d3e203338313733.roa File: 323630323a666564613a6265303a3a2f34342d3438203d3e203338313733.roa (raw, json) Hash identifier: XUsZKldasIetEG8JgZUpeAFx4MjWago+eAnkGH1Cb1o= Subject key identifier: B3:A6:56:FD:27:DF:1E:AF:58:03:77:F2:43:70:D7:86:3A:B6:FF:75 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 08201DE7C1B16156E51904D7AE259AD8170F4D04 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6265303a3a2f34342d3438203d3e203338313733.roa Signing time: Mon 16 Jun 2025 08:52:21 +0000 ROA not before: Mon 16 Jun 2025 08:47:21 +0000 ROA not after: Mon 15 Jun 2026 08:52:21 +0000 asID: 38173 IP address blocks: 2602:feda:be0::/44 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 19:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:20:1d:e7:c1:b1:61:56:e5:19:04:d7:ae:25:9a:d8:17:0f:4d:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jun 16 08:47:21 2025 GMT Not After : Jun 15 08:52:21 2026 GMT Subject: CN=B3A656FD27DF1EAF580377F24370D7863AB6FF75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:88:89:b5:3a:05:0f:47:96:57:a7:d5:b9:9c: cb:e6:4f:8d:60:bd:a7:b2:f2:1e:4c:f8:7d:e7:52: 71:eb:61:bb:89:e5:e6:ae:dd:c5:90:eb:94:ed:8a: 39:f4:cd:04:03:da:0f:8d:99:23:bf:f7:23:e2:a7: d0:e6:30:3b:59:a4:84:03:6f:70:3c:65:5e:1d:fe: 55:60:66:9b:b6:49:74:66:de:1f:dc:b9:05:b4:54: 52:2a:1e:6a:47:33:a7:7c:91:74:be:33:c7:ed:6a: eb:ce:a2:5d:a7:49:35:50:63:4c:9e:9c:7b:bd:c1: 1c:8a:c3:88:0a:59:e8:58:cf:4f:d5:d9:7e:31:7f: a6:5a:05:3f:0c:1e:86:e1:9b:52:d6:1c:8c:a8:70: 92:04:9c:bc:dd:72:f8:27:96:16:a7:cf:0e:cc:76: ff:e0:92:7b:26:c0:b3:a8:aa:61:d8:e9:dd:db:7c: f5:5d:5b:af:40:2d:77:a2:f4:1a:fc:9f:71:bd:b3: c4:1e:32:b9:75:4a:b2:b4:51:30:eb:56:2a:1f:c1: 88:c8:f2:8d:68:5a:9a:20:1c:11:36:b4:13:3f:31: 54:ce:73:1f:2f:3c:24:1e:48:5f:4a:b9:9f:2f:1c: a1:80:de:77:2f:ec:8c:38:a4:91:41:6d:ef:84:90: 42:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A6:56:FD:27:DF:1E:AF:58:03:77:F2:43:70:D7:86:3A:B6:FF:75 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6265303a3a2f34342d3438203d3e203338313733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:be0::/44 Signature Algorithm: sha256WithRSAEncryption b6:43:f1:99:c3:29:af:a6:e9:b2:10:c0:84:ba:46:8e:86:9c: ba:d0:a7:f1:e3:82:b3:3f:d7:65:53:37:88:cf:3a:c6:3f:57: d6:0c:a5:3a:4e:fe:b9:91:b6:eb:fd:bf:53:93:5d:56:51:7a: 8b:27:03:78:3b:41:ce:92:c7:10:cc:24:a8:a6:f9:58:b1:3c: bd:d4:6b:23:01:09:3e:29:d6:bc:c9:70:3e:49:49:6c:e9:5f: 97:28:2c:fe:41:27:34:95:b1:f7:bb:c1:a3:21:0e:04:f3:b2: 79:2b:1a:73:98:34:5e:2a:cb:fd:16:38:c9:db:92:07:f3:91: 0d:b1:be:6a:2c:bb:80:f3:b6:62:bb:57:2b:eb:78:09:a7:fc: c5:3b:d1:03:29:df:51:4d:33:05:b2:7b:c3:98:1e:bd:75:d2: 09:dd:41:44:97:54:e6:d7:44:31:6c:e2:6a:f3:6f:3c:27:fd: c5:4d:35:60:05:a3:1b:c6:cb:d3:90:a6:e8:54:0a:4c:6c:99: ae:30:d3:f1:38:42:b1:ca:c6:db:6a:49:b1:31:7d:c3:31:4f: 54:04:f2:47:8e:6c:57:07:bd:e9:8f:68:68:e4:00:6b:7a:fa: 5d:03:35:5c:50:92:25:fc:11:a4:7f:e5:99:b1:62:b5:af:4f: f3:10:9d:9a -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIUCCAd58GxYVblGQTXriWa2BcPTQQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjUwNjE2MDg0NzIxWhcNMjYwNjE1MDg1MjIx WjAzMTEwLwYDVQQDEyhCM0E2NTZGRDI3REYxRUFGNTgwMzc3RjI0MzcwRDc4NjNB QjZGRjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2oiJtToFD0eW V6fVuZzL5k+NYL2nsvIeTPh951Jx62G7ieXmrt3FkOuU7Yo59M0EA9oPjZkjv/cj 4qfQ5jA7WaSEA29wPGVeHf5VYGabtkl0Zt4f3LkFtFRSKh5qRzOnfJF0vjPH7Wrr zqJdp0k1UGNMnpx7vcEcisOIClnoWM9P1dl+MX+mWgU/DB6G4ZtS1hyMqHCSBJy8 3XL4J5YWp88OzHb/4JJ7JsCzqKph2Ond23z1XVuvQC13ovQa/J9xvbPEHjK5dUqy tFEw61YqH8GIyPKNaFqaIBwRNrQTPzFUznMfLzwkHkhfSrmfLxyhgN53L+yMOKSR QW3vhJBCiQIDAQABo4ICaTCCAmUwHQYDVR0OBBYEFLOmVv0n3x6vWAN38kNw14Y6 tv91MB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwfgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzNjMwMzIzYTY2NjU2NDYxM2E2 MjY1MzAzYTNhMmYzNDM0MmQzNDM4MjAzZDNlMjAzMzM4MzEzNzMzLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcEJgL+2gvgMA0GCSqGSIb3DQEBCwUAA4IBAQC2Q/GZwymvpumyEMCEukaOhpy6 0Kfx44KzP9dlUzeIzzrGP1fWDKU6Tv65kbbr/b9Tk11WUXqLJwN4O0HOkscQzCSo pvlYsTy91GsjAQk+Kda8yXA+SUls6V+XKCz+QSc0lbH3u8GjIQ4E87J5KxpzmDRe Ksv9FjjJ25IH85ENsb5qLLuA87Ziu1cr63gJp/zFO9EDKd9RTTMFsnvDmB69ddIJ 3UFEl1Tm10QxbOJq8288J/3FTTVgBaMbxsvTkKboVApMbJmuMNPxOEKxysbbakmx MX3DMU9UBPJHjmxXB73pj2ho5ABrevpdAzVcUJIl/BGkf+WZsWK1r0/zEJ2a -----END CERTIFICATE-----Generated at Tue Jul 1 01:09:01 2025 by rpki-client