$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e2038303735.roa File: 32332e3234372e3133362e302f32322d3234203d3e2038303735.roa (raw, json) Hash identifier: dPTL5vGG/++FmoCrlfHDn2xNFAFW/jsF2f5EsXng7V8= Subject key identifier: 6A:D8:9C:0E:4B:A9:04:40:4D:29:FB:68:AC:01:4A:15:6A:F7:83:B7 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 78FA1413C81C1F2AB23BBF60EC12A5313F04B552 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e2038303735.roa Signing time: Mon 15 Jul 2024 08:50:05 +0000 ROA not before: Mon 15 Jul 2024 08:45:05 +0000 ROA not after: Mon 14 Jul 2025 08:50:05 +0000 asID: 8075 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 14:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:fa:14:13:c8:1c:1f:2a:b2:3b:bf:60:ec:12:a5:31:3f:04:b5:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jul 15 08:45:05 2024 GMT Not After : Jul 14 08:50:05 2025 GMT Subject: CN=6AD89C0E4BA904404D29FB68AC014A156AF783B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9b:17:a9:ed:b9:ef:a3:70:90:e5:73:8e:5f: 52:95:53:0a:50:13:e8:05:1e:01:d5:17:8d:41:bc: a8:b9:e0:f4:79:b5:87:30:8e:90:b7:e4:41:c4:d8: 3d:40:51:16:5b:fe:28:76:89:43:f7:b0:42:0b:21: 16:c2:3b:e5:23:78:33:ee:71:40:d1:71:dd:da:f0: 20:38:08:ca:11:6b:6b:4a:89:63:18:f1:23:bd:02: 38:52:b4:7f:f8:d0:a4:bb:86:3e:d7:18:a2:d8:4a: 6e:f6:24:4d:49:b8:7c:b1:9c:f9:08:5d:e8:fd:44: 72:92:bc:ce:d0:e2:10:2c:0c:1a:c1:fa:f4:62:1e: 75:73:02:6d:a2:ab:da:e0:d6:66:e3:fd:75:e9:9a: 0e:c0:b0:69:be:82:56:27:73:95:4b:83:03:a3:aa: f8:72:52:dc:81:ff:ad:be:d9:4a:13:39:bf:da:be: 07:5c:57:ae:25:09:7e:ee:e5:77:4e:ff:52:f1:7b: 93:05:4b:84:6e:4d:90:60:f5:78:e5:7a:0a:0c:dd: 43:f4:75:30:59:45:31:96:7a:e9:7b:39:83:f9:f3: d2:ee:65:95:ee:f7:90:3b:92:33:71:08:b3:99:94: ca:09:28:50:f3:02:05:0b:4b:03:c2:e1:99:ab:04: 0c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:D8:9C:0E:4B:A9:04:40:4D:29:FB:68:AC:01:4A:15:6A:F7:83:B7 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e2038303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:9a:1a:66:3a:68:05:98:78:be:bb:fb:60:ed:03:5d:9a:ec: 7e:10:2f:b4:4e:65:ba:35:c2:45:41:92:71:36:90:86:19:aa: ca:32:df:06:8a:49:9a:35:16:4f:7b:95:c9:a7:1a:7f:77:ba: d1:22:ea:81:16:3e:7b:f4:a0:35:94:27:54:c3:d9:ea:91:8a: 0f:73:3d:53:77:5b:c5:03:2e:f3:a6:98:46:87:8c:b8:7b:a0: 3f:09:ea:8c:cf:47:5b:ce:2c:ca:6b:f9:f9:8b:60:96:12:64: 46:81:bb:51:a3:90:ed:d3:47:d1:32:24:80:b9:a5:ac:8c:f9: 90:b8:57:49:ff:62:b0:00:a6:b8:83:03:30:9c:23:b6:e4:8a: fe:80:e1:95:d1:f3:d1:55:d3:95:4b:5e:40:35:ad:b4:63:55: 52:93:4c:4b:33:82:6c:d5:6e:43:fd:77:c5:a0:b2:84:7d:0a: 8e:45:1a:51:25:e7:eb:5d:f2:7e:f0:88:37:a2:7a:fc:0b:6e: 62:a1:b9:a9:e1:65:98:b4:af:5d:03:ec:83:cb:31:35:b0:ef: 57:a4:e4:46:32:e7:c9:ad:0b:0f:af:fe:b0:1f:89:da:cf:b8: 6a:a3:a4:9a:15:86:b2:1a:c3:d9:79:f6:7c:e7:69:ef:0f:58: 3b:80:f4:76 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUePoUE8gcHyqyO79g7BKlMT8EtVIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjQwNzE1MDg0NTA1WhcNMjUwNzE0MDg1MDA1 WjAzMTEwLwYDVQQDEyg2QUQ4OUMwRTRCQTkwNDQwNEQyOUZCNjhBQzAxNEExNTZB Rjc4M0I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpsXqe2576Nw kOVzjl9SlVMKUBPoBR4B1ReNQbyoueD0ebWHMI6Qt+RBxNg9QFEWW/4odolD97BC CyEWwjvlI3gz7nFA0XHd2vAgOAjKEWtrSoljGPEjvQI4UrR/+NCku4Y+1xii2Epu 9iRNSbh8sZz5CF3o/URykrzO0OIQLAwawfr0Yh51cwJtoqva4NZm4/116ZoOwLBp voJWJ3OVS4MDo6r4clLcgf+tvtlKEzm/2r4HXFeuJQl+7uV3Tv9S8XuTBUuEbk2Q YPV45XoKDN1D9HUwWUUxlnrpezmD+fPS7mWV7veQO5IzcQizmZTKCShQ8wIFC0sD wuGZqwQMrwIDAQABo4ICXjCCAlowHQYDVR0OBBYEFGrYnA5LqQRATSn7aKwBShVq 94O3MB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzODMwMzczNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhf3iDAN BgkqhkiG9w0BAQsFAAOCAQEATZoaZjpoBZh4vrv7YO0DXZrsfhAvtE5lujXCRUGS cTaQhhmqyjLfBopJmjUWT3uVyacaf3e60SLqgRY+e/SgNZQnVMPZ6pGKD3M9U3db xQMu86aYRoeMuHugPwnqjM9HW84symv5+YtglhJkRoG7UaOQ7dNH0TIkgLmlrIz5 kLhXSf9isACmuIMDMJwjtuSK/oDhldHz0VXTlUteQDWttGNVUpNMSzOCbNVuQ/13 xaCyhH0KjkUaUSXn613yfvCIN6J6/AtuYqG5qeFlmLSvXQPsg8sxNbDvV6TkRjLn ya0LD6/+sB+J2s+4aqOkmhWGshrD2Xn2fOdp7w9YO4D0dg== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:00 2024 by rpki-client on console-fra.rpki-client.org