$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133382e302f32332d3233203d3e203332353139.roa File: 32332e3234372e3133382e302f32332d3233203d3e203332353139.roa (raw, json) Hash identifier: Fw58bf62xj53GXusPBboqwHJyXuIE2K2yClBHPlQ/HE= Subject key identifier: 8C:A7:C5:2F:D1:C4:CC:DE:64:FC:F2:90:3E:A9:90:4A:57:05:34:11 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 652E4CAE52704F0B91248E23C8AEB34C1B4EF20E Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133382e302f32332d3233203d3e203332353139.roa Signing time: Fri 28 Feb 2025 15:51:46 +0000 ROA not before: Fri 28 Feb 2025 15:46:46 +0000 ROA not after: Fri 27 Feb 2026 15:51:46 +0000 asID: 32519 IP address blocks: 23.247.138.0/23 maxlen: 23 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 13:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:2e:4c:ae:52:70:4f:0b:91:24:8e:23:c8:ae:b3:4c:1b:4e:f2:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Feb 28 15:46:46 2025 GMT Not After : Feb 27 15:51:46 2026 GMT Subject: CN=8CA7C52FD1C4CCDE64FCF2903EA9904A57053411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b4:af:4f:ab:cc:89:a6:3b:3a:5c:27:19:66: d3:8a:26:83:8d:92:7e:ad:57:f9:df:75:02:fb:07: b3:f3:d2:46:fc:6e:75:fb:7d:54:1c:f0:b7:96:9d: cb:20:e1:1a:a2:2a:aa:de:62:7a:ba:08:1f:5e:85: c4:42:39:f5:64:ff:22:ba:a0:cc:15:c2:71:89:2c: c9:98:84:a9:19:61:84:70:db:75:08:79:28:35:c5: c8:be:fc:0f:4f:7a:22:ca:93:ca:ac:b0:5b:8f:15: 4c:b0:25:b5:b0:22:24:b3:45:77:67:03:16:cf:c0: 5b:99:9d:bc:6d:aa:c3:30:7d:09:a9:4c:c3:db:a6: c0:35:1e:c2:3f:2c:88:a4:21:8d:fb:04:e0:04:79: 7c:28:cb:94:6b:71:78:df:ae:e1:9e:e3:ad:33:3a: dd:38:cb:85:89:d8:8b:2a:1a:a6:fc:c8:3b:f9:75: 60:31:3e:ab:20:e1:7b:1e:7f:48:c5:e9:28:52:76: 9c:bd:ff:85:d0:4a:76:34:a0:34:24:22:37:64:19: 26:29:25:ae:cf:6d:46:3a:8a:f9:23:00:9d:22:6c: 75:44:ae:0c:86:8c:60:a8:0f:e7:ea:12:67:b4:86: ea:ea:a9:fc:9a:23:ba:c2:61:00:fa:6b:c2:e6:a4: 65:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A7:C5:2F:D1:C4:CC:DE:64:FC:F2:90:3E:A9:90:4A:57:05:34:11 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133382e302f32332d3233203d3e203332353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.138.0/23 Signature Algorithm: sha256WithRSAEncryption 15:9f:0a:aa:b7:0b:01:8c:3f:84:3e:1f:3d:dc:d5:94:b9:5b: d5:f1:ca:fb:31:e3:0e:5c:ba:22:f1:fe:0c:e8:30:cb:a4:e7: fd:83:83:28:f3:46:d4:c1:34:8c:cb:5a:47:ab:7e:8d:ae:19: 32:af:72:47:b9:a5:87:c2:48:3e:d6:3d:6a:c3:6c:f4:64:83: b9:4c:8c:88:15:2a:0b:f5:ee:54:14:49:73:93:bb:7c:83:7e: 12:08:7e:81:c8:15:61:34:0c:97:c7:0c:41:96:18:ae:1e:be: 19:1a:f8:e0:b3:d3:d6:32:77:c9:f5:99:3b:f6:80:cb:96:92: 5e:b6:66:4f:c1:c3:84:1b:6a:bd:bd:38:e9:eb:e0:a9:ff:75: 4f:29:09:02:08:95:db:1c:e7:ce:a7:2d:8b:b1:05:fb:5e:06: c3:af:31:f4:f9:e8:9d:1b:c3:f0:68:f6:ec:4a:6f:3e:1c:4b: 67:a8:ce:ec:d2:a9:8b:db:e2:cf:a8:67:55:7d:20:66:e2:f8: 1b:b1:98:52:f2:26:47:de:b1:83:22:6c:39:12:40:8c:1c:af: 1c:8c:db:c3:f4:8c:26:15:36:4d:ac:88:54:5f:e1:37:60:a3: 03:89:f6:3c:15:54:ce:12:fa:a1:4b:a2:c0:e4:56:d9:f4:b6: fc:8b:f2:56 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUZS5MrlJwTwuRJI4jyK6zTBtO8g4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjUwMjI4MTU0NjQ2WhcNMjYwMjI3MTU1MTQ2 WjAzMTEwLwYDVQQDEyg4Q0E3QzUyRkQxQzRDQ0RFNjRGQ0YyOTAzRUE5OTA0QTU3 MDUzNDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7SvT6vMiaY7 OlwnGWbTiiaDjZJ+rVf533UC+wez89JG/G51+31UHPC3lp3LIOEaoiqq3mJ6uggf XoXEQjn1ZP8iuqDMFcJxiSzJmISpGWGEcNt1CHkoNcXIvvwPT3oiypPKrLBbjxVM sCW1sCIks0V3ZwMWz8BbmZ28barDMH0JqUzD26bANR7CPyyIpCGN+wTgBHl8KMuU a3F4367hnuOtMzrdOMuFidiLKhqm/Mg7+XVgMT6rIOF7Hn9IxekoUnacvf+F0Ep2 NKA0JCI3ZBkmKSWuz21GOor5IwCdImx1RK4MhoxgqA/n6hJntIbq6qn8miO6wmEA +mvC5qRl8QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIynxS/RxMzeZPzykD6pkEpX BTQRMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzgy ZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzMzMyMzUzMTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBF/eK MA0GCSqGSIb3DQEBCwUAA4IBAQAVnwqqtwsBjD+EPh893NWUuVvV8cr7MeMOXLoi 8f4M6DDLpOf9g4Mo80bUwTSMy1pHq36Nrhkyr3JHuaWHwkg+1j1qw2z0ZIO5TIyI FSoL9e5UFElzk7t8g34SCH6ByBVhNAyXxwxBlhiuHr4ZGvjgs9PWMnfJ9Zk79oDL lpJetmZPwcOEG2q9vTjp6+Cp/3VPKQkCCJXbHOfOpy2LsQX7XgbDrzH0+eidG8Pw aPbsSm8+HEtnqM7s0qmL2+LPqGdVfSBm4vgbsZhS8iZH3rGDImw5EkCMHK8cjNvD 9IwmFTZNrIhUX+E3YKMDifY8FVTOEvqhS6LA5FbZ9Lb8i/JW -----END CERTIFICATE-----Generated at Wed Apr 16 16:21:23 2025 by rpki-client