$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203338303038.roa File: 32332e3234372e3133362e302f32322d3234203d3e203338303038.roa (raw, json) Hash identifier: opUzzWdT7eOUGrl9otbkbjfjojZ36sKKPBp+e5SBMGA= Subject key identifier: BD:F5:DF:82:58:C4:9F:BB:6D:6F:B8:F8:AC:E8:06:24:19:85:61:C6 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 5FA32BFD2232E025C3BD15282838C8579234A206 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203338303038.roa Signing time: Mon 18 May 2026 09:21:41 +0000 ROA not before: Mon 18 May 2026 09:16:41 +0000 ROA not after: Mon 17 May 2027 09:21:41 +0000 asID: 38008 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Jun 2026 08:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a3:2b:fd:22:32:e0:25:c3:bd:15:28:28:38:c8:57:92:34:a2:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: May 18 09:16:41 2026 GMT Not After : May 17 09:21:41 2027 GMT Subject: CN=BDF5DF8258C49FBB6D6FB8F8ACE80624198561C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0f:a4:c3:ff:f4:6f:ea:2d:7a:18:87:04:28: 68:26:18:b4:5f:9c:26:81:f3:9a:b2:30:62:71:d9: 44:1b:aa:d8:d4:f2:50:08:97:26:1a:57:7c:b8:76: ae:38:f5:97:a7:2a:8f:bc:35:cb:a3:e9:37:76:8f: 85:d4:07:50:20:d2:79:0b:1e:71:7d:b5:9b:11:44: b8:0b:74:bb:ac:b8:3f:f9:b0:f6:7c:f3:29:a8:88: 25:c4:13:6a:e3:bd:f4:4a:8e:dc:98:64:9e:29:de: 6f:e7:11:6c:44:02:95:68:3c:c9:75:2c:48:b2:db: 3a:0d:fe:4e:48:96:17:2f:bd:23:a5:72:dd:81:9a: 0e:9e:5f:45:4f:87:a1:c3:ee:5b:9b:1b:45:43:a7: 7e:79:a3:26:cb:c4:ca:45:d6:96:4f:43:98:a9:06: 57:3e:de:22:4e:ef:12:bc:45:c6:08:e7:64:e1:0e: 28:17:3b:e0:75:f2:3a:fc:f3:87:c2:fa:68:bb:5a: 3a:37:da:82:f8:86:7f:94:53:a6:de:0f:9d:98:38: d7:42:f4:1e:bf:61:2e:c8:8d:42:78:c9:c3:49:76: 97:41:a5:e5:27:0d:27:73:d4:3c:06:5f:22:8d:36: f2:fa:a9:07:42:a7:ef:8b:88:33:15:60:80:da:be: 96:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F5:DF:82:58:C4:9F:BB:6D:6F:B8:F8:AC:E8:06:24:19:85:61:C6 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203338303038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption 85:39:b2:8e:26:53:47:f9:a2:4a:17:4e:2f:99:d1:13:31:47: fe:7e:3c:99:bc:aa:2f:5c:27:4e:55:27:af:4b:56:fc:c9:66: 63:47:95:3d:e0:15:fc:3f:08:8c:0c:49:d4:05:5d:25:56:87: 4c:25:1a:53:d5:30:eb:86:4b:16:ba:10:91:d1:0d:10:e7:2e: 1e:e5:94:d1:69:bb:69:a5:8e:5e:bd:75:22:4c:8f:4f:e6:ac: 65:0b:09:be:d0:01:96:2c:bc:40:fd:bd:15:01:4c:b0:7c:1d: f6:46:70:f3:84:92:75:ee:7f:2c:16:d0:14:83:5b:ce:7c:82: 85:a0:ea:cf:0a:7c:9f:87:f6:88:fd:c2:de:65:5c:99:b4:44: 7f:cd:09:8f:c3:11:fe:8e:07:99:8b:20:05:a3:a5:95:19:9f: 1b:8f:33:ca:3c:34:80:ef:9d:3e:45:3b:7d:ea:d9:f9:a2:77: 3c:5c:1a:b0:22:2c:63:50:31:c7:c2:87:df:17:65:09:d9:11: 54:6a:e2:ad:cd:01:8e:2f:80:88:c6:15:d5:9f:d4:84:21:63: 20:b7:99:80:5e:ef:3f:b9:70:21:74:be:be:09:b1:39:a8:89: 4c:53:84:38:a9:e1:55:c8:41:a9:0a:a6:e7:e6:3f:71:f3:91: 3d:d1:d2:a9 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUX6Mr/SIy4CXDvRUoKDjIV5I0ogYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjYwNTE4MDkxNjQxWhcNMjcwNTE3MDkyMTQx WjAzMTEwLwYDVQQDEyhCREY1REY4MjU4QzQ5RkJCNkQ2RkI4RjhBQ0U4MDYyNDE5 ODU2MUM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Q+kw//0b+ot ehiHBChoJhi0X5wmgfOasjBicdlEG6rY1PJQCJcmGld8uHauOPWXpyqPvDXLo+k3 do+F1AdQINJ5Cx5xfbWbEUS4C3S7rLg/+bD2fPMpqIglxBNq4730So7cmGSeKd5v 5xFsRAKVaDzJdSxIsts6Df5OSJYXL70jpXLdgZoOnl9FT4ehw+5bmxtFQ6d+eaMm y8TKRdaWT0OYqQZXPt4iTu8SvEXGCOdk4Q4oFzvgdfI6/POHwvpou1o6N9qC+IZ/ lFOm3g+dmDjXQvQev2EuyI1CeMnDSXaXQaXlJw0nc9Q8Bl8ijTby+qkHQqfvi4gz FWCA2r6WHwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFL3134JYxJ+7bW+4+KzoBiQZ hWHGMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMzM4MzAzMDM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF/eI MA0GCSqGSIb3DQEBCwUAA4IBAQCFObKOJlNH+aJKF04vmdETMUf+fjyZvKovXCdO VSevS1b8yWZjR5U94BX8PwiMDEnUBV0lVodMJRpT1TDrhksWuhCR0Q0Q5y4e5ZTR abtppY5evXUiTI9P5qxlCwm+0AGWLLxA/b0VAUywfB32RnDzhJJ17n8sFtAUg1vO fIKFoOrPCnyfh/aI/cLeZVyZtER/zQmPwxH+jgeZiyAFo6WVGZ8bjzPKPDSA750+ RTt96tn5onc8XBqwIixjUDHHwoffF2UJ2RFUauKtzQGOL4CIxhXVn9SEIWMgt5mA Xu8/uXAhdL6+CbE5qIlMU4Q4qeFVyEGpCqbn5j9x85E90dKp -----END CERTIFICATE-----Generated at Sat Jun 6 08:15:34 2026 by rpki-client