$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203136353039.roa File: 32332e3234372e3133362e302f32322d3234203d3e203136353039.roa (raw, json) Hash identifier: cvctd0RxaYAU2Lp1YAMIeJ1Z4/0mxWiAb8nLs7Kbil0= Subject key identifier: E8:C4:74:B5:6E:FD:35:F2:75:57:B5:80:CB:0C:33:08:10:E7:1B:8C Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 4F65E79A0C0A43EC90279E1FB3A89CD2FA5AC880 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203136353039.roa Signing time: Mon 14 Aug 2023 07:53:32 +0000 ROA not before: Mon 14 Aug 2023 07:48:32 +0000 ROA not after: Mon 12 Aug 2024 07:53:32 +0000 asID: 16509 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 22:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:65:e7:9a:0c:0a:43:ec:90:27:9e:1f:b3:a8:9c:d2:fa:5a:c8:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Aug 14 07:48:32 2023 GMT Not After : Aug 12 07:53:32 2024 GMT Subject: CN=E8C474B56EFD35F27557B580CB0C330810E71B8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d9:06:07:76:2c:af:a0:8e:ae:41:11:3e:4e: 3d:b2:e9:b7:96:b2:c4:71:5b:2e:f3:69:32:a4:63: 87:0d:7c:6c:62:85:73:d9:a9:59:fb:61:3d:38:ee: 32:a6:c1:a3:16:cc:6e:96:78:b0:d2:ab:7d:c7:30: a5:d5:63:81:1f:40:eb:ff:f9:07:ac:bd:1e:c2:c9: 03:19:b1:93:3d:c7:7a:3c:eb:96:95:90:c9:a4:04: 58:e2:4f:e7:5c:38:e0:79:11:b9:9d:7d:19:f9:a1: 26:a4:30:41:22:d2:f0:63:21:f6:9d:f2:ee:4f:fd: cc:f3:36:2f:f4:4b:f4:1c:fc:49:46:e7:2a:1d:74: 22:a5:e2:b0:01:89:97:b0:d2:32:15:f6:a2:12:33: c1:f8:5b:81:e9:2d:47:93:f8:f0:73:f5:43:fb:66: 26:0c:cf:37:e6:7b:5c:99:9c:41:c3:7d:4c:eb:63: 79:fe:96:d9:d6:1c:ff:76:96:7e:55:97:16:4c:70: 30:63:0d:1a:70:d4:37:09:51:1d:e8:a9:bf:17:72: ef:81:c6:92:06:42:4e:b5:7f:9c:94:d7:27:27:29: 09:a7:40:5e:9e:ab:4a:ae:74:df:f5:47:61:9b:35: 6f:fe:de:7c:05:08:42:ba:58:de:95:43:26:c6:f5: 3c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C4:74:B5:6E:FD:35:F2:75:57:B5:80:CB:0C:33:08:10:E7:1B:8C X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption 46:78:44:78:12:ca:b9:fb:4d:98:89:38:b0:50:b7:44:bc:63: a1:7a:b0:c7:f6:ef:cc:4d:cd:a1:69:d0:90:4f:60:c0:00:6b: f7:04:f6:da:82:92:26:2e:25:46:dc:2a:50:23:59:08:8f:37: 17:fb:1b:38:01:d1:3a:4d:34:1f:16:9e:8e:e3:7e:45:57:b8: 00:1d:0a:c1:a1:0e:c8:f9:56:74:cf:fa:15:b3:d0:b2:92:40: 88:03:22:23:ba:82:34:af:23:28:91:43:df:1e:0f:a5:01:9a: 93:cd:09:15:d2:40:19:7b:1a:1d:42:52:ed:70:df:0d:3d:87: 99:f7:e2:e9:96:4c:5a:3f:3f:7f:ad:37:fc:c3:58:6a:45:35: 04:b2:78:55:77:c3:21:d2:47:8a:94:26:7f:43:b1:5f:c4:06: 6b:d8:49:65:55:59:1f:09:d9:29:2b:6a:ee:77:4c:ac:7e:93: 14:ab:78:29:fa:68:49:ba:9e:58:9f:3f:b1:db:d4:52:bf:87: 2c:74:2e:95:68:38:4b:3b:3f:0f:dc:b3:5b:12:92:2e:9c:3f: a3:0b:5b:98:87:2f:7d:50:ee:83:89:78:7d:d0:93:27:14:bc: ba:be:ea:83:c6:6a:b1:18:87:4d:e9:c9:09:50:01:0f:f9:56: 93:2f:2a:ec -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUT2XnmgwKQ+yQJ54fs6ic0vpayIAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjMwODE0MDc0ODMyWhcNMjQwODEyMDc1MzMy WjAzMTEwLwYDVQQDEyhFOEM0NzRCNTZFRkQzNUYyNzU1N0I1ODBDQjBDMzMwODEw RTcxQjhDMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzdkGB3Ysr6CO rkERPk49sum3lrLEcVsu82kypGOHDXxsYoVz2alZ+2E9OO4ypsGjFsxulniw0qt9 xzCl1WOBH0Dr//kHrL0ewskDGbGTPcd6POuWlZDJpARY4k/nXDjgeRG5nX0Z+aEm pDBBItLwYyH2nfLuT/3M8zYv9Ev0HPxJRucqHXQipeKwAYmXsNIyFfaiEjPB+FuB 6S1Hk/jwc/VD+2YmDM835ntcmZxBw31M62N5/pbZ1hz/dpZ+VZcWTHAwYw0acNQ3 CVEd6Km/F3LvgcaSBkJOtX+clNcnJykJp0BenqtKrnTf9UdhmzVv/t58BQhCulje lUMmxvU8SwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOjEdLVu/TXydVe1gMsMMwgQ 5xuMMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMTM2MzUzMDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF/eI MA0GCSqGSIb3DQEBCwUAA4IBAQBGeER4Esq5+02YiTiwULdEvGOherDH9u/MTc2h adCQT2DAAGv3BPbagpImLiVG3CpQI1kIjzcX+xs4AdE6TTQfFp6O435FV7gAHQrB oQ7I+VZ0z/oVs9CykkCIAyIjuoI0ryMokUPfHg+lAZqTzQkV0kAZexodQlLtcN8N PYeZ9+LplkxaPz9/rTf8w1hqRTUEsnhVd8Mh0keKlCZ/Q7FfxAZr2EllVVkfCdkp K2rud0ysfpMUq3gp+mhJup5Ynz+x29RSv4csdC6VaDhLOz8P3LNbEpIunD+jC1uY hy99UO6DiXh90JMnFLy6vuqDxmqxGIdN6ckJUAEP+VaTLyrs -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:47 2024 by rpki-client on console-fra.rpki-client.org