$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6339303a3a2f34342d3634203d3e20323132333630.roa File: 323630323a666564613a6339303a3a2f34342d3634203d3e20323132333630.roa (raw, json) Hash identifier: jyeHZSTCcrlx5ub9Oz46WS6mFBaPniezOMEsrZkeDDg= Subject key identifier: BA:AA:2F:6E:3B:2E:7F:8D:A5:C4:82:EC:12:EC:F3:60:EB:22:D8:C3 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 29086672F9EA9F2D140A257B43058964C3038481 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6339303a3a2f34342d3634203d3e20323132333630.roa Signing time: Mon 16 Jun 2025 08:52:29 +0000 ROA not before: Mon 16 Jun 2025 08:47:29 +0000 ROA not after: Mon 15 Jun 2026 08:52:29 +0000 asID: 212360 IP address blocks: 2602:feda:c90::/44 maxlen: 64 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 01:34:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:08:66:72:f9:ea:9f:2d:14:0a:25:7b:43:05:89:64:c3:03:84:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jun 16 08:47:29 2025 GMT Not After : Jun 15 08:52:29 2026 GMT Subject: CN=BAAA2F6E3B2E7F8DA5C482EC12ECF360EB22D8C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e4:fd:68:f1:c2:92:f2:ce:3b:77:fb:16:00: 43:e8:9f:97:32:e5:4e:d1:2c:e7:33:58:b7:c1:4b: 8f:2b:fc:af:d5:fd:cc:3c:c0:84:aa:5a:22:4d:30: a7:4d:1b:d6:50:aa:88:18:3b:d7:9c:5a:91:d3:de: 2e:b1:88:47:32:04:6f:48:2f:ea:b6:eb:94:0f:73: 3b:22:0b:fb:73:eb:70:65:f1:c2:7e:e7:d6:81:b9: 8c:36:6b:74:36:10:64:b1:e5:94:2e:8a:af:9e:e2: d0:a7:bc:ac:51:2a:9f:84:d0:c0:5d:5b:02:54:35: ec:82:00:ad:e1:e7:d6:ac:37:bb:2f:b3:76:5d:b0: 7d:c3:22:ef:a8:a6:68:62:20:a2:7a:0d:5a:bf:bc: 44:c6:ca:9c:47:ce:2a:56:33:1a:52:fe:ef:80:51: b9:24:42:ed:50:fb:3d:2a:7d:22:df:dc:a0:43:4f: 7b:82:3f:e5:94:11:3f:62:f1:ad:1d:03:41:09:ed: e8:e8:d0:07:58:ce:22:63:32:3d:0a:b3:44:d3:d7: 36:0b:df:eb:32:29:23:78:71:af:27:5b:cb:d6:f6: ae:7b:cd:c1:7d:c1:e5:93:da:9e:03:94:5d:7a:c3: ef:e5:4b:f5:fd:53:57:75:8e:c0:71:19:39:75:42: 04:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:AA:2F:6E:3B:2E:7F:8D:A5:C4:82:EC:12:EC:F3:60:EB:22:D8:C3 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6339303a3a2f34342d3634203d3e20323132333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:c90::/44 Signature Algorithm: sha256WithRSAEncryption 29:94:19:ed:a6:db:66:43:df:a2:55:cc:af:22:02:59:8c:0c: da:c8:dc:57:96:d5:d7:11:6a:ec:53:f7:1a:c7:4d:5d:41:2c: 76:99:8f:7f:6d:6d:54:b5:12:07:c0:20:ce:ab:88:47:02:f3: ea:9f:3a:02:e3:3a:6c:e3:bd:ff:fc:c1:74:4b:52:55:e6:6f: ab:00:f9:11:58:32:d8:0d:bb:d7:76:74:81:c4:01:12:0f:0f: d6:9b:e0:68:23:ec:75:b1:a6:71:54:37:52:19:64:35:64:2e: 72:b2:bc:aa:d3:f5:c5:1f:c8:66:ec:c8:39:43:59:9b:d4:0a: 78:3a:d3:38:b7:aa:fd:b1:be:74:c4:6e:a9:95:35:7a:e9:e4: 89:68:07:b4:c2:14:e6:00:ed:2b:82:95:10:07:19:de:dc:4f: 9e:75:9c:01:2f:da:eb:f5:38:2a:f7:d4:0d:b0:04:1c:c9:f2: ee:b7:13:68:e6:ff:87:e3:45:c4:05:5a:51:1d:9b:1a:66:ca: f2:b3:b8:d6:fe:c2:01:dd:78:c1:81:f4:8d:65:91:2a:87:b0: 3f:b9:f4:3c:83:fc:df:97:50:49:93:68:29:06:f0:3d:8e:e2: 38:51:9e:13:70:97:c6:e2:f7:54:fd:f6:bc:51:03:0c:da:03: 0c:bb:3c:76 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUKQhmcvnqny0UCiV7QwWJZMMDhIEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjUwNjE2MDg0NzI5WhcNMjYwNjE1MDg1MjI5 WjAzMTEwLwYDVQQDEyhCQUFBMkY2RTNCMkU3RjhEQTVDNDgyRUMxMkVDRjM2MEVC MjJEOEMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0eT9aPHCkvLO O3f7FgBD6J+XMuVO0SznM1i3wUuPK/yv1f3MPMCEqloiTTCnTRvWUKqIGDvXnFqR 094usYhHMgRvSC/qtuuUD3M7Igv7c+twZfHCfufWgbmMNmt0NhBkseWULoqvnuLQ p7ysUSqfhNDAXVsCVDXsggCt4efWrDe7L7N2XbB9wyLvqKZoYiCieg1av7xExsqc R84qVjMaUv7vgFG5JELtUPs9Kn0i39ygQ097gj/llBE/YvGtHQNBCe3o6NAHWM4i YzI9CrNE09c2C9/rMikjeHGvJ1vL1vaue83BfcHlk9qeA5RdesPv5Uv1/VNXdY7A cRk5dUIErwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFLqqL247Ln+NpcSC7BLs82Dr ItjDMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh NjMzOTMwM2EzYTJmMzQzNDJkMzYzNDIwM2QzZTIwMzIzMTMyMzMzNjMwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcEJgL+2gyQMA0GCSqGSIb3DQEBCwUAA4IBAQAplBntpttmQ9+iVcyvIgJZ jAzayNxXltXXEWrsU/cax01dQSx2mY9/bW1UtRIHwCDOq4hHAvPqnzoC4zps473/ /MF0S1JV5m+rAPkRWDLYDbvXdnSBxAESDw/Wm+BoI+x1saZxVDdSGWQ1ZC5ysryq 0/XFH8hm7Mg5Q1mb1Ap4OtM4t6r9sb50xG6plTV66eSJaAe0whTmAO0rgpUQBxne 3E+edZwBL9rr9Tgq99QNsAQcyfLutxNo5v+H40XEBVpRHZsaZsrys7jW/sIB3XjB gfSNZZEqh7A/ufQ8g/zfl1BJk2gpBvA9juI4UZ4TcJfG4vdU/fa8UQMM2gMMuzx2 -----END CERTIFICATE-----Generated at Mon Jun 30 17:45:06 2025 by rpki-client