$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203338303038.roa File: 32332e3234372e3133362e302f32322d3234203d3e203338303038.roa (raw, json) Hash identifier: gx55QbjxqcrGiy2hdWiCVVzlgT6wJYeqEBmEJAb8LZk= Subject key identifier: C6:D9:4D:17:A9:CA:2D:A2:C1:03:B1:08:B2:D0:3E:8A:7B:2F:F9:86 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 715D03907BCB9053C5EB6581FB1F6EBFFE474F04 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203338303038.roa Signing time: Mon 15 Jul 2024 08:50:11 +0000 ROA not before: Mon 15 Jul 2024 08:45:11 +0000 ROA not after: Mon 14 Jul 2025 08:50:11 +0000 asID: 38008 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 09:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:5d:03:90:7b:cb:90:53:c5:eb:65:81:fb:1f:6e:bf:fe:47:4f:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jul 15 08:45:11 2024 GMT Not After : Jul 14 08:50:11 2025 GMT Subject: CN=C6D94D17A9CA2DA2C103B108B2D03E8A7B2FF986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d7:54:60:e0:58:95:14:bd:8e:2c:54:27:8a: 2c:c1:df:72:a0:3d:59:39:48:b6:31:e6:51:de:16: 6a:ca:ed:b8:25:d4:36:d2:e5:78:70:a2:08:da:d1: b1:38:c5:c2:db:0b:67:da:6b:69:36:b0:ed:e7:7f: 11:b9:de:1f:9b:2a:11:56:fe:32:67:62:8e:36:1f: de:80:0f:01:8a:13:0a:72:83:d5:23:71:d3:a2:35: a2:16:04:2f:13:6a:f6:0b:a5:29:39:15:5b:92:bd: 22:6b:0b:a7:4e:ec:91:96:bd:00:d0:eb:e0:0e:66: dd:c5:0d:7c:0b:f9:4f:8a:91:43:d5:0d:77:0f:87: 7d:b6:4e:6f:8c:ba:42:0d:8c:2c:fc:87:4d:b3:e3: bf:be:e1:32:5b:f0:20:7a:4e:c5:fe:b0:2c:1b:29: 56:e5:f7:2e:d5:9f:63:71:cd:e7:3a:2a:18:ff:70: 96:54:8b:4a:61:a2:4a:d5:01:bd:9e:1e:67:30:c3: c3:d3:d4:c6:55:1e:4a:d9:2d:fd:9f:31:6c:db:a0: fe:8f:df:ec:3a:d8:33:43:e4:6d:9f:c4:e9:e4:23: 30:fb:cf:1f:ba:0a:44:54:3c:4f:39:8d:ac:28:78: 59:cb:f1:0d:81:30:3e:be:16:81:33:c6:91:0b:1c: 3a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:D9:4D:17:A9:CA:2D:A2:C1:03:B1:08:B2:D0:3E:8A:7B:2F:F9:86 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203338303038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption 24:cb:8d:2e:00:07:71:37:26:15:49:e9:e6:72:fe:33:65:ac: 28:34:18:20:c7:22:03:06:44:7b:a1:42:bc:9b:45:d5:d4:c1: e5:fa:5f:36:d3:20:52:9c:f6:e0:6d:48:6b:a5:30:41:61:b8: b9:6d:6e:70:e9:29:a5:26:c8:2b:9f:9e:e1:05:47:2d:a9:50: 64:88:2d:d8:1f:17:a2:ee:db:34:02:44:f8:d9:c7:24:9e:1b: 70:e8:76:94:f3:0b:94:80:43:a3:9f:87:a3:f4:47:e9:4e:04: f4:47:e2:c5:14:26:89:d1:6b:a0:af:03:03:0b:2f:0a:45:a4: 22:eb:d5:b1:b3:2e:89:da:82:c5:34:7d:b6:f5:bd:08:7c:fa: 78:8e:ba:b2:9b:59:ea:86:8b:46:6c:82:63:86:8b:24:3c:72: 68:0b:95:13:8f:95:b0:ff:83:5c:8b:97:5c:01:97:44:f0:88: 81:bc:54:ed:83:e0:ff:5c:2f:84:ba:5c:ba:2f:d4:2a:6d:66: f8:92:f3:92:5d:e3:5f:b4:ab:93:0e:85:15:89:b3:0b:9f:62: 77:d2:77:17:24:fc:d5:27:7f:41:cc:60:9d:f2:ea:53:7d:e2: 08:f7:f8:03:82:ba:93:f2:c6:e1:4a:f2:18:62:2b:ea:d8:20: 10:4e:ca:17 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUcV0DkHvLkFPF62WB+x9uv/5HTwQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjQwNzE1MDg0NTExWhcNMjUwNzE0MDg1MDEx WjAzMTEwLwYDVQQDEyhDNkQ5NEQxN0E5Q0EyREEyQzEwM0IxMDhCMkQwM0U4QTdC MkZGOTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtdUYOBYlRS9 jixUJ4oswd9yoD1ZOUi2MeZR3hZqyu24JdQ20uV4cKII2tGxOMXC2wtn2mtpNrDt 538Rud4fmyoRVv4yZ2KONh/egA8BihMKcoPVI3HTojWiFgQvE2r2C6UpORVbkr0i awunTuyRlr0A0OvgDmbdxQ18C/lPipFD1Q13D4d9tk5vjLpCDYws/IdNs+O/vuEy W/Agek7F/rAsGylW5fcu1Z9jcc3nOioY/3CWVItKYaJK1QG9nh5nMMPD09TGVR5K 2S39nzFs26D+j9/sOtgzQ+Rtn8Tp5CMw+88fugpEVDxPOY2sKHhZy/ENgTA+vhaB M8aRCxw6kwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMbZTRepyi2iwQOxCLLQPop7 L/mGMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMzM4MzAzMDM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF/eI MA0GCSqGSIb3DQEBCwUAA4IBAQAky40uAAdxNyYVSenmcv4zZawoNBggxyIDBkR7 oUK8m0XV1MHl+l820yBSnPbgbUhrpTBBYbi5bW5w6SmlJsgrn57hBUctqVBkiC3Y Hxei7ts0AkT42ccknhtw6HaU8wuUgEOjn4ej9EfpTgT0R+LFFCaJ0WugrwMDCy8K RaQi69Wxsy6J2oLFNH229b0IfPp4jrqym1nqhotGbIJjhoskPHJoC5UTj5Ww/4Nc i5dcAZdE8IiBvFTtg+D/XC+Euly6L9QqbWb4kvOSXeNftKuTDoUVibMLn2J30ncX JPzVJ39BzGCd8upTfeII9/gDgrqT8sbhSvIYYivq2CAQTsoX -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:02 2024 by rpki-client on console-fra.rpki-client.org