$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203134363138.roa File: 32332e3234372e3133362e302f32322d3234203d3e203134363138.roa (raw, json) Hash identifier: ByEQtGpUwuMh7gFiB6V7MBV7X0e2H957EKyV3oZmoic= Subject key identifier: 37:C0:E6:AD:A3:19:C9:6C:13:45:EF:CE:26:B7:7E:DE:36:0B:67:22 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 32F1C74BC7DBE02D314AFC5AD2570B85313F1003 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203134363138.roa Signing time: Mon 15 Jul 2024 08:50:08 +0000 ROA not before: Mon 15 Jul 2024 08:45:08 +0000 ROA not after: Mon 14 Jul 2025 08:50:08 +0000 asID: 14618 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 16 Feb 2025 22:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:f1:c7:4b:c7:db:e0:2d:31:4a:fc:5a:d2:57:0b:85:31:3f:10:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jul 15 08:45:08 2024 GMT Not After : Jul 14 08:50:08 2025 GMT Subject: CN=37C0E6ADA319C96C1345EFCE26B77EDE360B6722 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:61:91:1a:a6:8e:13:68:21:1e:a9:4b:07:1d: 0a:b5:dd:76:1a:d6:de:48:c8:af:81:50:ba:ea:31: ae:c9:5e:c4:96:6b:d0:5d:8a:15:92:4e:62:aa:ce: 2c:91:df:9c:3f:0c:8e:23:f3:30:a4:0d:ab:3f:f3: 9f:d8:a5:ec:c0:e9:31:74:75:56:db:ad:75:53:b0: fd:33:0d:5a:86:87:e3:d7:f8:77:68:da:89:0a:58: 63:f6:61:46:3e:ab:c9:b0:cf:78:f2:5d:88:bf:09: 42:23:6b:50:75:45:ba:93:9f:ee:f4:13:c8:f0:98: bd:c8:ed:73:f3:bc:19:09:f7:07:63:ee:39:7a:37: f2:16:15:c8:b9:b4:32:9c:0d:8a:03:73:e4:ed:df: 81:ee:2e:42:b8:21:36:27:5c:1c:11:a3:8b:3b:12: e0:81:e3:b5:51:4e:69:33:5c:25:08:c1:17:4a:ed: 13:24:72:c6:ed:2b:b0:b7:2c:5a:88:eb:bd:1d:99: c4:df:ae:f0:2e:3b:f7:60:a6:9d:be:d7:a1:45:97: a1:d1:78:49:00:22:d3:0b:b7:6e:49:7e:47:7c:39: 84:c9:c1:12:0f:a0:44:d5:62:16:81:d7:8b:7b:1f: c2:f7:65:77:37:c0:f6:60:24:90:bc:ae:71:12:24: 4d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C0:E6:AD:A3:19:C9:6C:13:45:EF:CE:26:B7:7E:DE:36:0B:67:22 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203134363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption b3:78:0f:cc:8e:96:09:bc:8b:46:b9:b3:ea:a7:39:c2:39:99: 6b:13:20:49:11:bb:de:7c:8f:88:16:e6:7d:52:3d:12:a2:66: bd:0c:37:30:7b:d5:d2:f8:01:27:79:2c:a1:5e:e5:4f:0a:ef: 94:73:2e:3e:2c:e6:7f:2a:91:63:e4:69:20:18:40:3a:06:09: f6:ae:5d:2f:d5:dc:94:25:a7:7d:e2:ed:6e:e4:02:9a:4e:d3: 1f:ae:b7:0c:60:cb:b8:e5:3e:f3:b9:8a:5d:5f:32:a0:e6:d2: ce:34:f3:60:65:2e:7f:b4:45:4f:36:e7:34:34:e0:fa:f0:71: f0:9a:d5:0b:2e:cb:91:37:f7:4d:b5:66:ed:c3:fb:8d:df:d4: e8:04:da:12:97:76:50:a0:2d:5a:49:63:b9:e2:fd:c3:81:1c: 04:e0:1e:8d:0b:2d:0e:df:ab:1a:28:01:37:38:a1:51:c9:c5: 78:2a:1e:b1:43:37:3d:76:58:01:e8:f5:10:d5:1c:42:e5:e9: 63:a2:74:04:33:bb:cf:8e:a6:e1:fb:0e:ec:21:58:eb:18:38: f4:4d:f1:4f:c6:f7:b6:43:ae:36:a6:06:b0:88:66:3a:2b:cd: a4:02:cd:06:df:78:7b:09:54:d3:3e:df:d7:fb:12:b1:35:b2: ab:d6:50:53 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUMvHHS8fb4C0xSvxa0lcLhTE/EAMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjQwNzE1MDg0NTA4WhcNMjUwNzE0MDg1MDA4 WjAzMTEwLwYDVQQDEygzN0MwRTZBREEzMTlDOTZDMTM0NUVGQ0UyNkI3N0VERTM2 MEI2NzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2GRGqaOE2gh HqlLBx0Ktd12GtbeSMivgVC66jGuyV7ElmvQXYoVkk5iqs4skd+cPwyOI/MwpA2r P/Of2KXswOkxdHVW2611U7D9Mw1ahofj1/h3aNqJClhj9mFGPqvJsM948l2IvwlC I2tQdUW6k5/u9BPI8Ji9yO1z87wZCfcHY+45ejfyFhXIubQynA2KA3Pk7d+B7i5C uCE2J1wcEaOLOxLggeO1UU5pM1wlCMEXSu0TJHLG7SuwtyxaiOu9HZnE367wLjv3 YKadvtehRZeh0XhJACLTC7duSX5HfDmEycESD6BE1WIWgdeLex/C92V3N8D2YCSQ vK5xEiRN8QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDfA5q2jGclsE0Xvzia3ft42 C2ciMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMTM0MzYzMTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF/eI MA0GCSqGSIb3DQEBCwUAA4IBAQCzeA/MjpYJvItGubPqpznCOZlrEyBJEbvefI+I FuZ9Uj0Soma9DDcwe9XS+AEneSyhXuVPCu+Ucy4+LOZ/KpFj5GkgGEA6Bgn2rl0v 1dyUJad94u1u5AKaTtMfrrcMYMu45T7zuYpdXzKg5tLONPNgZS5/tEVPNuc0NOD6 8HHwmtULLsuRN/dNtWbtw/uN39ToBNoSl3ZQoC1aSWO54v3DgRwE4B6NCy0O36sa KAE3OKFRycV4Kh6xQzc9dlgB6PUQ1RxC5eljonQEM7vPjqbh+w7sIVjrGDj0TfFP xve2Q642pgawiGY6K82kAs0G33h7CVTTPt/X+xKxNbKr1lBT -----END CERTIFICATE-----Generated at Sun Feb 16 15:13:13 2025 by rpki-client