$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203134363138.roa File: 32332e3234372e3133362e302f32322d3234203d3e203134363138.roa (raw, json) Hash identifier: hxBczSMJFL3zQcs5W80JLZU+3yUjVwSNsSIzxzOHWJ4= Subject key identifier: AD:DA:64:A6:9F:8F:13:49:56:33:40:F6:07:C3:92:16:22:36:0C:A2 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 0500BA4C577D17599D8A807E493F666456998627 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203134363138.roa Signing time: Mon 18 May 2026 09:21:38 +0000 ROA not before: Mon 18 May 2026 09:16:38 +0000 ROA not after: Mon 17 May 2027 09:21:38 +0000 asID: 14618 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Jun 2026 08:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:00:ba:4c:57:7d:17:59:9d:8a:80:7e:49:3f:66:64:56:99:86:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: May 18 09:16:38 2026 GMT Not After : May 17 09:21:38 2027 GMT Subject: CN=ADDA64A69F8F1349563340F607C3921622360CA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c5:90:5f:a8:20:bb:41:a4:d8:86:9e:a1:42: 1e:ed:ca:a1:31:aa:ae:bc:58:7a:a2:19:e4:a5:e8: 22:6f:d9:f5:90:df:58:55:ff:7e:f9:c9:55:b2:19: 93:e9:65:8b:3b:0b:2d:11:a5:bf:c7:8e:fd:6c:d8: 7e:e6:71:6e:a9:01:16:3f:6d:cd:c9:2b:5b:4e:ee: f2:82:bd:5d:8d:5c:d5:dd:48:69:24:69:e5:55:d3: 6e:32:36:77:d8:09:b9:bc:cf:42:07:83:94:4d:69: 54:6a:18:2a:10:3f:bb:fa:b6:7a:8d:8e:61:b4:09: 8f:48:df:4d:bc:b8:61:ee:37:2f:56:57:c7:10:ad: 15:9c:5e:f0:49:e4:0e:46:e6:78:31:96:97:9d:b6: 70:ee:f3:20:ee:1d:c5:0c:9a:17:e6:69:d0:f7:bf: b2:47:3a:9e:67:37:2b:45:ee:c5:99:56:00:38:54: b8:fd:5f:bd:08:5b:fc:dc:96:59:ab:0f:ae:58:6b: b4:f4:ad:c8:6d:19:bb:6f:b5:1b:4d:4e:d9:c6:2a: ad:bc:6b:20:6b:e6:63:a4:59:f3:9d:28:3b:f1:bd: 19:52:cf:6a:99:2d:c6:0e:67:21:56:27:06:0d:ac: cb:1c:6f:27:83:02:f2:15:15:47:09:a0:47:04:93: 5a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:DA:64:A6:9F:8F:13:49:56:33:40:F6:07:C3:92:16:22:36:0C:A2 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203134363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption a6:d6:e8:da:fc:87:53:ea:e7:d4:03:c0:bd:61:e3:95:34:93: b1:8e:3b:48:2c:73:f2:98:07:6a:84:a0:b0:e8:44:f5:93:a1: 5d:18:a3:80:f4:d5:2c:c9:e5:65:40:9b:c1:86:1f:7f:1e:b8: 41:74:84:7c:1e:18:c9:9d:2e:42:ac:1f:5c:20:0c:1f:e0:3b: 72:81:6a:6b:03:fa:63:0f:10:5f:8a:72:18:fb:c3:4b:c6:10: 81:96:c6:f1:f8:ca:15:af:58:27:87:b3:05:b0:e9:1d:b3:8b: 81:e5:9e:f1:a4:d8:bf:14:56:fa:cd:b8:54:7a:9e:20:04:5b: 86:51:08:39:61:5e:b9:d2:b5:e2:c4:16:87:76:73:a6:5a:1c: 73:6b:9c:87:a3:0e:98:b0:97:31:36:4f:c3:11:71:46:6d:af: 73:d6:9a:1a:a3:ea:7f:f1:26:0c:9a:00:84:14:1f:17:a7:8a: ac:17:ce:bd:67:5e:53:63:fc:09:32:f9:0d:b1:27:24:4e:1a: c4:61:b1:cf:29:9f:ee:52:85:6f:58:77:2c:91:f6:30:0f:e0: 2f:08:10:bc:9a:b4:b0:8e:2c:85:ad:37:68:1e:ef:8f:34:2e: cd:a7:f2:5a:c1:d5:ee:c6:23:4c:c5:0f:86:52:c0:4d:2c:0d: a7:bd:94:e7 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUBQC6TFd9F1mdioB+ST9mZFaZhicwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjYwNTE4MDkxNjM4WhcNMjcwNTE3MDkyMTM4 WjAzMTEwLwYDVQQDEyhBRERBNjRBNjlGOEYxMzQ5NTYzMzQwRjYwN0MzOTIxNjIy MzYwQ0EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucWQX6ggu0Gk 2IaeoUIe7cqhMaquvFh6ohnkpegib9n1kN9YVf9++clVshmT6WWLOwstEaW/x479 bNh+5nFuqQEWP23NyStbTu7ygr1djVzV3UhpJGnlVdNuMjZ32Am5vM9CB4OUTWlU ahgqED+7+rZ6jY5htAmPSN9NvLhh7jcvVlfHEK0VnF7wSeQORuZ4MZaXnbZw7vMg 7h3FDJoX5mnQ97+yRzqeZzcrRe7FmVYAOFS4/V+9CFv83JZZqw+uWGu09K3IbRm7 b7UbTU7ZxiqtvGsga+ZjpFnznSg78b0ZUs9qmS3GDmchVicGDazLHG8ngwLyFRVH CaBHBJNaAQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFK3aZKafjxNJVjNA9gfDkhYi NgyiMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMTM0MzYzMTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF/eI MA0GCSqGSIb3DQEBCwUAA4IBAQCm1uja/IdT6ufUA8C9YeOVNJOxjjtILHPymAdq hKCw6ET1k6FdGKOA9NUsyeVlQJvBhh9/HrhBdIR8HhjJnS5CrB9cIAwf4DtygWpr A/pjDxBfinIY+8NLxhCBlsbx+MoVr1gnh7MFsOkds4uB5Z7xpNi/FFb6zbhUep4g BFuGUQg5YV650rXixBaHdnOmWhxza5yHow6YsJcxNk/DEXFGba9z1poao+p/8SYM mgCEFB8Xp4qsF869Z15TY/wJMvkNsSckThrEYbHPKZ/uUoVvWHcskfYwD+AvCBC8 mrSwjiyFrTdoHu+PNC7Np/JawdXuxiNMxQ+GUsBNLA2nvZTn -----END CERTIFICATE-----Generated at Sat Jun 6 08:15:45 2026 by rpki-client