$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203136353039.roa File: 32332e3234372e3133362e302f32322d3234203d3e203136353039.roa (raw, json) Hash identifier: TFiwDtC3oE4JKrL4xoVqfV9u1a6lNb2YYc+YnBOrQIk= Subject key identifier: F1:4D:A5:CB:83:28:44:74:11:8B:B4:09:2A:29:1B:2C:D3:60:B7:7E Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 6E51ECBCCBBA82CEF7E188F5D3F2C9D64A21406D Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203136353039.roa Signing time: Mon 15 Jul 2024 08:50:09 +0000 ROA not before: Mon 15 Jul 2024 08:45:09 +0000 ROA not after: Mon 14 Jul 2025 08:50:09 +0000 asID: 16509 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 16 Feb 2025 22:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:51:ec:bc:cb:ba:82:ce:f7:e1:88:f5:d3:f2:c9:d6:4a:21:40:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jul 15 08:45:09 2024 GMT Not After : Jul 14 08:50:09 2025 GMT Subject: CN=F14DA5CB83284474118BB4092A291B2CD360B77E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:1f:39:df:63:cd:8a:1c:7f:6f:31:17:87:47: 43:70:8a:71:71:36:52:3e:7a:ee:ca:3a:ee:a7:c4: 6f:5d:62:36:5c:69:1e:c1:22:86:b5:44:5c:d0:18: e5:c9:36:bc:b4:ca:39:9e:d6:6c:4c:f1:c5:ac:aa: 15:83:d9:92:9a:b2:7b:b8:d2:71:7d:79:1b:5e:6f: 13:f2:d1:5d:dc:61:29:8e:9f:01:16:60:58:ec:60: b3:b6:eb:a6:05:0c:36:ac:f8:1a:ea:52:ed:c6:f8: ca:fd:c3:ea:ab:38:bd:70:b7:28:e4:fc:a1:d7:75: 12:d0:2e:be:d3:10:d9:52:52:ed:da:f1:db:ef:79: 4e:2c:f0:e6:2b:0a:7f:14:13:1f:e5:f5:0e:e9:7c: 9a:0b:57:b0:0e:bb:95:8b:6f:24:dc:c7:e0:b5:85: 3a:52:2f:8d:aa:d0:53:e6:67:76:44:27:0a:79:03: 6f:26:c3:6e:fc:dd:46:17:fe:cb:5f:d0:65:0e:fc: d9:27:fe:b9:66:9d:ff:76:ea:18:4d:44:f4:75:90: e8:eb:1d:80:bb:4c:75:35:cc:14:cd:6c:2d:69:f5: 88:29:38:85:fc:fa:07:93:72:8c:b9:0e:98:08:51: fd:11:12:99:19:12:ec:01:4b:8a:45:11:a0:86:85: 74:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:4D:A5:CB:83:28:44:74:11:8B:B4:09:2A:29:1B:2C:D3:60:B7:7E X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption a5:6b:cc:82:b1:7d:7e:f8:ac:20:4c:29:79:0f:93:bf:e6:4c: 1e:be:f7:89:ae:e9:96:17:d8:90:4b:d2:65:3c:38:51:d1:29: 86:58:4e:51:83:80:9b:f1:ba:4f:32:55:36:03:2f:e2:86:7e: 9a:b5:b0:75:38:c0:6f:af:0d:1a:ba:56:48:c1:97:c6:ab:ce: 8d:91:e0:09:f7:69:ef:cc:fd:e4:e3:45:ba:e8:3c:ed:bb:06: 6b:7c:b1:23:ca:33:fa:9e:50:e6:2d:23:83:94:fb:b6:64:a5: ab:70:40:7f:cb:86:b5:f0:76:96:0f:15:76:71:2f:55:4f:d7: ba:c4:b8:f3:0f:e2:38:23:63:b0:37:b5:a7:c4:d4:d3:2f:23: e9:10:2e:17:e7:0c:23:81:f9:3c:0f:3e:f2:21:03:1f:89:bb: b1:67:fd:c7:16:b0:ba:18:0d:8b:96:32:d3:07:d1:8b:79:8b: c6:76:a5:6b:f4:0b:a3:a1:ef:a5:9d:95:4c:07:0e:b4:8f:ca: 46:d2:2e:f5:8a:4e:56:05:a5:61:2f:c5:4d:cb:6a:fd:b0:d4: 48:61:98:eb:0f:0b:c6:0f:9b:a1:36:e6:83:3a:05:de:2d:6a: 75:e6:e0:9a:28:50:dd:6b:8d:47:43:82:1b:57:83:1d:1b:c0: d7:20:66:84 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUblHsvMu6gs734Yj10/LJ1kohQG0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjQwNzE1MDg0NTA5WhcNMjUwNzE0MDg1MDA5 WjAzMTEwLwYDVQQDEyhGMTREQTVDQjgzMjg0NDc0MTE4QkI0MDkyQTI5MUIyQ0Qz NjBCNzdFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/R8532PNihx/ bzEXh0dDcIpxcTZSPnruyjrup8RvXWI2XGkewSKGtURc0BjlyTa8tMo5ntZsTPHF rKoVg9mSmrJ7uNJxfXkbXm8T8tFd3GEpjp8BFmBY7GCztuumBQw2rPga6lLtxvjK /cPqqzi9cLco5Pyh13US0C6+0xDZUlLt2vHb73lOLPDmKwp/FBMf5fUO6XyaC1ew DruVi28k3MfgtYU6Ui+NqtBT5md2RCcKeQNvJsNu/N1GF/7LX9BlDvzZJ/65Zp3/ duoYTUT0dZDo6x2Au0x1NcwUzWwtafWIKTiF/PoHk3KMuQ6YCFH9ERKZGRLsAUuK RRGghoV0NwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPFNpcuDKER0EYu0CSopGyzT YLd+MB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMTM2MzUzMDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF/eI MA0GCSqGSIb3DQEBCwUAA4IBAQCla8yCsX1++KwgTCl5D5O/5kwevveJrumWF9iQ S9JlPDhR0SmGWE5Rg4Cb8bpPMlU2Ay/ihn6atbB1OMBvrw0aulZIwZfGq86NkeAJ 92nvzP3k40W66DztuwZrfLEjyjP6nlDmLSODlPu2ZKWrcEB/y4a18HaWDxV2cS9V T9e6xLjzD+I4I2OwN7WnxNTTLyPpEC4X5wwjgfk8Dz7yIQMfibuxZ/3HFrC6GA2L ljLTB9GLeYvGdqVr9Aujoe+lnZVMBw60j8pG0i71ik5WBaVhL8VNy2r9sNRIYZjr DwvGD5uhNuaDOgXeLWp15uCaKFDda41HQ4IbV4MdG8DXIGaE -----END CERTIFICATE-----Generated at Sun Feb 16 15:38:02 2025 by rpki-client