$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203338303038.roa File: 32332e3234372e3133362e302f32322d3234203d3e203338303038.roa (raw, json) Hash identifier: EQ+K9VGMvGiV8L6bqjoJl7VUuvuBIfFve8e2dej5QAs= Subject key identifier: 76:7C:DE:BC:5B:86:F4:51:B2:52:18:98:5E:FC:C4:2B:55:9E:B6:48 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 22D31FAE6D7A81E3D8E568C87E4D3C1DA5C773D5 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203338303038.roa Signing time: Mon 14 Aug 2023 07:53:36 +0000 ROA not before: Mon 14 Aug 2023 07:48:36 +0000 ROA not after: Mon 12 Aug 2024 07:53:36 +0000 asID: 38008 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 05 May 2024 07:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:d3:1f:ae:6d:7a:81:e3:d8:e5:68:c8:7e:4d:3c:1d:a5:c7:73:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Aug 14 07:48:36 2023 GMT Not After : Aug 12 07:53:36 2024 GMT Subject: CN=767CDEBC5B86F451B25218985EFCC42B559EB648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ab:79:19:8b:47:0e:e8:4b:68:25:0c:c3:8e: bb:e4:4c:1d:f4:b6:66:07:82:a8:a2:44:c7:d3:71: 12:9e:cb:5a:12:af:0b:49:6b:8a:66:89:5b:7e:39: 36:98:a2:85:29:b4:18:6c:a0:fa:d9:24:83:01:e6: 01:d3:98:7d:be:16:e4:7d:27:7b:24:f2:2e:64:a9: 71:f8:d3:77:5a:1e:ca:b2:10:6f:4e:94:f2:5f:7b: 1f:dc:09:6c:17:93:58:0e:8f:df:be:bb:91:5d:37: 70:f6:ae:5b:1f:6a:93:27:93:da:43:bf:4e:c8:2b: 6c:46:20:c4:de:24:68:dd:02:e6:ac:46:2e:62:2a: d8:d2:d3:f2:06:6a:60:1e:b3:63:13:f6:74:58:f3: bc:d2:4d:ed:0a:42:b8:00:9f:02:4c:7a:d3:3e:d7: 0c:98:88:65:58:64:e8:1a:97:b2:48:49:aa:b2:54: 40:1b:86:31:e5:00:6b:fc:30:d8:7e:5a:ce:e1:33: 15:40:15:03:31:c4:e9:0d:10:51:ac:b0:23:ba:62: 5a:be:35:50:4f:e6:c8:21:42:33:c8:93:8c:1e:c4: 83:0a:3a:3a:de:d0:a7:37:7d:22:fb:6f:39:3f:49: d7:31:cf:00:d8:ee:00:32:19:f4:d6:34:61:03:87: a4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:7C:DE:BC:5B:86:F4:51:B2:52:18:98:5E:FC:C4:2B:55:9E:B6:48 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203338303038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption bc:ed:97:a5:2c:0e:b4:68:f8:db:55:95:cb:a4:d0:23:e6:0b: 6b:0d:d6:c3:21:66:9d:f0:cd:c3:af:cf:36:0c:3d:b6:f3:78: d7:f4:59:78:69:66:b6:2f:61:65:c9:97:ac:32:c4:7f:0c:44: 68:1b:81:66:e8:e9:d9:76:e9:7d:e2:8d:5f:aa:2d:a3:c0:10: 38:d3:f0:d7:a2:39:d0:75:a0:45:29:92:20:6c:b8:ee:6d:ce: 95:37:fc:95:a8:1c:2e:68:25:fb:59:9a:df:a1:a6:c1:89:a4: 9a:f5:02:be:f7:14:10:dc:ab:59:2c:fd:72:c9:9c:b5:df:99: ed:1a:45:b7:20:91:0a:fa:4e:b8:78:e8:e5:6a:f6:ba:c0:79: b7:36:ac:7a:57:07:41:eb:9e:16:bd:09:22:5a:61:e0:70:20: 06:11:5f:cc:e1:0e:12:13:14:70:98:de:fe:85:0f:13:ee:e7: ed:b1:1a:f3:5e:5b:cc:ca:b1:1e:9c:2c:54:6c:fd:04:ec:bf: b4:fd:be:4c:b3:d2:19:12:a0:57:6b:aa:eb:49:ed:a6:e2:60: f7:e1:1b:38:fa:6d:0b:d4:93:c7:fa:62:9a:86:88:4d:3a:ca: c4:cb:c3:53:73:13:9a:24:f5:14:99:61:d9:bf:b5:02:38:af: a9:bf:4b:f1 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUItMfrm16gePY5WjIfk08HaXHc9UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjMwODE0MDc0ODM2WhcNMjQwODEyMDc1MzM2 WjAzMTEwLwYDVQQDEyg3NjdDREVCQzVCODZGNDUxQjI1MjE4OTg1RUZDQzQyQjU1 OUVCNjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5at5GYtHDuhL aCUMw4675Ewd9LZmB4KookTH03ESnstaEq8LSWuKZolbfjk2mKKFKbQYbKD62SSD AeYB05h9vhbkfSd7JPIuZKlx+NN3Wh7KshBvTpTyX3sf3AlsF5NYDo/fvruRXTdw 9q5bH2qTJ5PaQ79OyCtsRiDE3iRo3QLmrEYuYirY0tPyBmpgHrNjE/Z0WPO80k3t CkK4AJ8CTHrTPtcMmIhlWGToGpeySEmqslRAG4Yx5QBr/DDYflrO4TMVQBUDMcTp DRBRrLAjumJavjVQT+bIIUIzyJOMHsSDCjo63tCnN30i+285P0nXMc8A2O4AMhn0 1jRhA4ekmQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHZ83rxbhvRRslIYmF78xCtV nrZIMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMzM4MzAzMDM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF/eI MA0GCSqGSIb3DQEBCwUAA4IBAQC87ZelLA60aPjbVZXLpNAj5gtrDdbDIWad8M3D r882DD2283jX9Fl4aWa2L2FlyZesMsR/DERoG4Fm6OnZdul94o1fqi2jwBA40/DX ojnQdaBFKZIgbLjubc6VN/yVqBwuaCX7WZrfoabBiaSa9QK+9xQQ3KtZLP1yyZy1 35ntGkW3IJEK+k64eOjlava6wHm3Nqx6VwdB654WvQkiWmHgcCAGEV/M4Q4SExRw mN7+hQ8T7uftsRrzXlvMyrEenCxUbP0E7L+0/b5Ms9IZEqBXa6rrSe2m4mD34Rs4 +m0L1JPH+mKahohNOsrEy8NTcxOaJPUUmWHZv7UCOK+pv0vx -----END CERTIFICATE-----Generated at Sat May 4 08:52:00 2024 by rpki-client on console-ams.rpki-client.org