$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203436393937.roa File: 32332e3234372e3133362e302f32322d3234203d3e203436393937.roa (raw, json) Hash identifier: POsXia61MT0C9pV+o5aynBoL7qkESHTK6QdwI2Bxdh4= Subject key identifier: 38:3A:C3:99:C7:47:57:D6:A9:3D:AD:61:F6:D9:E4:54:58:13:CD:BC Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 329F85D65E7B493FA460008B4AA2A629C543B414 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203436393937.roa Signing time: Mon 15 Jul 2024 08:50:07 +0000 ROA not before: Mon 15 Jul 2024 08:45:07 +0000 ROA not after: Mon 14 Jul 2025 08:50:07 +0000 asID: 46997 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 09:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:9f:85:d6:5e:7b:49:3f:a4:60:00:8b:4a:a2:a6:29:c5:43:b4:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jul 15 08:45:07 2024 GMT Not After : Jul 14 08:50:07 2025 GMT Subject: CN=383AC399C74757D6A93DAD61F6D9E4545813CDBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ef:60:7f:a7:9d:4f:cf:ed:6c:2a:4d:a4:02: ce:95:37:cb:4b:84:62:63:14:28:80:3e:c3:df:b0: b7:c8:7c:77:44:b2:37:72:3b:5b:cc:76:60:f4:f9: 5a:01:8a:c1:8e:d8:85:3b:e6:65:af:0a:c7:cf:61: c1:10:c5:6c:d5:18:09:fa:0d:32:74:47:ed:06:74: e0:60:62:bb:40:51:06:b5:bc:e3:26:1b:9a:e6:55: 3c:cc:38:a4:14:cc:9b:27:ae:64:a7:67:d1:3c:8b: eb:9c:68:ed:72:68:e1:bb:15:19:d5:93:ad:e4:96: 3b:b5:f2:5b:10:cd:69:d2:08:72:d2:c7:f4:86:7d: 70:c3:55:9f:f2:57:33:05:2c:07:33:24:79:e4:68: 8c:99:cb:83:4a:3c:9b:8f:82:d9:eb:ea:3f:45:f8: 7f:9e:f6:8c:1a:af:8a:2c:52:fd:66:91:36:3b:32: e5:8f:a6:e1:8f:a4:2b:3b:2e:89:37:24:2c:72:4b: 99:a4:f0:4b:dd:72:ed:12:57:66:f1:fc:07:6e:3a: 55:8b:5a:57:57:3c:82:20:27:96:1f:e6:11:42:e4: 97:43:43:1b:95:3f:4d:85:22:b5:81:f7:9c:b1:7f: b4:82:5e:bd:00:d2:63:50:2a:76:e0:dd:34:d9:20: 41:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:3A:C3:99:C7:47:57:D6:A9:3D:AD:61:F6:D9:E4:54:58:13:CD:BC X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e203436393937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption 00:64:e3:eb:46:11:9c:5e:ed:44:33:b9:53:72:34:10:ed:1d: 82:19:28:d1:16:1c:86:94:e4:c7:1a:fe:2c:9a:8c:e4:8f:cf: a5:ca:a9:db:1d:c8:2c:48:e4:01:a7:ee:7d:e7:5f:79:40:2e: 6c:41:ef:94:54:c0:98:b8:ca:f0:42:80:fb:4d:e3:57:87:a7: ff:70:4c:e0:65:1e:fc:eb:4c:3b:d8:d4:2b:ab:da:40:6a:eb: ef:5b:cf:e7:a2:63:e2:88:2d:42:ad:d5:b3:94:ca:40:9e:5e: f4:8c:83:a2:da:c4:94:c5:aa:65:6c:cb:64:45:58:62:5c:94: 53:98:20:44:81:c7:76:3e:3c:10:a7:aa:6f:ab:23:a1:d9:6e: 15:75:83:ab:c1:f6:b2:07:80:93:67:ba:f1:8a:3e:17:97:1f: 3c:e6:23:f1:6f:79:91:5d:f9:55:6a:42:54:32:ad:fb:1e:5e: cb:9c:77:55:dd:e1:9d:34:29:e2:83:fa:22:d0:ca:45:a0:70: 38:4f:d1:8e:ee:1f:88:fd:13:ee:74:58:8d:12:fe:54:61:59: 6e:19:08:e8:36:77:e4:12:9c:ba:f7:1f:6c:10:0c:a1:56:3c: 3d:9c:4a:68:b8:e6:0c:4f:bf:c5:f9:a0:7b:49:a9:4a:6d:ca: cc:c5:8c:7c -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUMp+F1l57ST+kYACLSqKmKcVDtBQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjQwNzE1MDg0NTA3WhcNMjUwNzE0MDg1MDA3 WjAzMTEwLwYDVQQDEygzODNBQzM5OUM3NDc1N0Q2QTkzREFENjFGNkQ5RTQ1NDU4 MTNDREJDMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxe9gf6edT8/t bCpNpALOlTfLS4RiYxQogD7D37C3yHx3RLI3cjtbzHZg9PlaAYrBjtiFO+ZlrwrH z2HBEMVs1RgJ+g0ydEftBnTgYGK7QFEGtbzjJhua5lU8zDikFMybJ65kp2fRPIvr nGjtcmjhuxUZ1ZOt5JY7tfJbEM1p0ghy0sf0hn1ww1Wf8lczBSwHMyR55GiMmcuD Sjybj4LZ6+o/Rfh/nvaMGq+KLFL9ZpE2OzLlj6bhj6QrOy6JNyQsckuZpPBL3XLt Eldm8fwHbjpVi1pXVzyCICeWH+YRQuSXQ0MblT9NhSK1gfecsX+0gl69ANJjUCp2 4N002SBBFQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDg6w5nHR1fWqT2tYfbZ5FRY E828MB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM2MzkzOTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF/eI MA0GCSqGSIb3DQEBCwUAA4IBAQAAZOPrRhGcXu1EM7lTcjQQ7R2CGSjRFhyGlOTH Gv4smozkj8+lyqnbHcgsSOQBp+595195QC5sQe+UVMCYuMrwQoD7TeNXh6f/cEzg ZR7860w72NQrq9pAauvvW8/nomPiiC1CrdWzlMpAnl70jIOi2sSUxaplbMtkRVhi XJRTmCBEgcd2PjwQp6pvqyOh2W4VdYOrwfayB4CTZ7rxij4Xlx885iPxb3mRXflV akJUMq37Hl7LnHdV3eGdNCnig/oi0MpFoHA4T9GO7h+I/RPudFiNEv5UYVluGQjo NnfkEpy69x9sEAyhVjw9nEpouOYMT7/F+aB7SalKbcrMxYx8 -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:02 2024 by rpki-client on console-fra.rpki-client.org