$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e2038303735.roa File: 32332e3234372e3133362e302f32322d3234203d3e2038303735.roa (raw, json) Hash identifier: 3OhCoLM8Gh1EnLpw6DocSanyPLYvxSV27ELwyIuURr0= Subject key identifier: 73:35:20:BE:8D:F6:84:FC:E4:57:25:DD:AB:16:D9:E7:41:0F:E6:29 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 112955E3945FC7C0D18B33405C5CE42A9B0DB7F7 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e2038303735.roa Signing time: Mon 14 Aug 2023 07:53:31 +0000 ROA not before: Mon 14 Aug 2023 07:48:31 +0000 ROA not after: Mon 12 Aug 2024 07:53:31 +0000 asID: 8075 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 06 May 2024 00:57:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:29:55:e3:94:5f:c7:c0:d1:8b:33:40:5c:5c:e4:2a:9b:0d:b7:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Aug 14 07:48:31 2023 GMT Not After : Aug 12 07:53:31 2024 GMT Subject: CN=733520BE8DF684FCE45725DDAB16D9E7410FE629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ff:47:54:3b:8d:0e:d2:6d:66:46:9f:49:c5: 79:81:dd:6a:5c:0c:82:e2:21:88:2d:8f:5f:cf:0a: 96:85:18:57:fd:ee:ee:84:48:2f:0e:2f:36:70:5d: 39:5f:24:30:ed:47:50:11:29:95:06:a7:50:30:74: 56:3e:12:df:ed:3c:d6:45:84:19:1c:e4:36:27:9b: 23:ad:2d:4b:9a:2a:1e:56:46:e6:92:fa:de:41:cd: 2c:ea:e1:57:8d:0e:5d:05:74:42:8b:67:24:0c:9c: c1:72:60:24:7a:13:f9:70:0b:0d:bd:40:b8:29:95: 83:e9:f4:15:cd:09:50:f3:64:76:49:15:c0:db:01: 40:18:f2:fd:4c:85:48:40:4c:42:42:06:04:ac:5d: 89:12:05:1d:ef:98:63:b4:2b:4c:0a:f8:c0:29:3b: 15:f9:71:c2:cb:12:e0:2f:d5:2e:06:ec:b0:90:05: 63:14:09:03:39:1a:d2:3a:ab:ac:2d:a9:6d:c3:73: 51:20:dc:39:19:27:63:7c:17:ff:2d:4f:e3:85:c1: 67:ec:37:08:c7:12:d9:a3:f7:ba:7b:7a:ef:50:fd: c4:bf:c0:85:c0:64:6e:b8:95:ec:95:60:7e:6f:4d: 0a:16:fa:8b:3f:5c:29:54:93:31:93:b7:68:99:47: f4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:35:20:BE:8D:F6:84:FC:E4:57:25:DD:AB:16:D9:E7:41:0F:E6:29 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e2038303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:50:97:1f:75:4b:04:00:e0:9b:c7:1e:5d:29:5e:d5:41:68: f3:eb:cd:bb:01:57:b3:e0:fe:25:6b:f1:3e:04:35:1d:82:93: fe:a1:ad:ad:0d:7e:e9:07:cb:86:25:7b:8a:77:7b:0b:25:9d: 85:54:86:3a:80:0c:e1:5e:36:96:23:1a:a2:cc:23:dc:3b:a7: 49:5e:1f:78:86:c5:7c:68:39:93:15:1e:a9:fc:ea:84:00:9e: 9e:e3:2b:a0:67:15:73:f8:42:74:46:31:75:2a:a3:3e:f7:3e: 7f:2c:ec:e2:f5:de:4e:1c:b1:c6:65:76:fd:9e:5a:e7:92:df: 7f:76:eb:7e:4a:a4:45:bf:cd:64:98:f8:f2:1c:d0:de:4c:a4: d5:f1:e0:dd:9f:9b:69:2d:85:9e:24:20:62:22:b5:1b:e6:3c: 90:61:0c:e2:b1:c2:f8:65:20:3a:72:2d:a6:b8:79:6b:3e:21: 9d:32:77:26:a5:6f:0f:70:fe:e2:a7:0d:20:1a:1d:43:49:d2: ed:15:d8:82:00:88:52:5c:9c:5b:f6:e3:3a:a8:76:d5:e0:51: 04:cf:81:c1:9a:56:ef:f1:c4:76:34:8b:cb:db:7f:98:15:35: 3f:62:76:2f:51:2f:ae:79:a7:b3:a0:4b:eb:0c:5f:6b:62:e0: 73:60:68:5e -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUESlV45Rfx8DRizNAXFzkKpsNt/cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjMwODE0MDc0ODMxWhcNMjQwODEyMDc1MzMx WjAzMTEwLwYDVQQDEyg3MzM1MjBCRThERjY4NEZDRTQ1NzI1RERBQjE2RDlFNzQx MEZFNjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx/9HVDuNDtJt ZkafScV5gd1qXAyC4iGILY9fzwqWhRhX/e7uhEgvDi82cF05XyQw7UdQESmVBqdQ MHRWPhLf7TzWRYQZHOQ2J5sjrS1LmioeVkbmkvreQc0s6uFXjQ5dBXRCi2ckDJzB cmAkehP5cAsNvUC4KZWD6fQVzQlQ82R2SRXA2wFAGPL9TIVIQExCQgYErF2JEgUd 75hjtCtMCvjAKTsV+XHCyxLgL9UuBuywkAVjFAkDORrSOqusLaltw3NRINw5GSdj fBf/LU/jhcFn7DcIxxLZo/e6e3rvUP3Ev8CFwGRuuJXslWB+b00KFvqLP1wpVJMx k7domUf0pwIDAQABo4ICXjCCAlowHQYDVR0OBBYEFHM1IL6N9oT85Fcl3asW2edB D+YpMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzODMwMzczNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhf3iDAN BgkqhkiG9w0BAQsFAAOCAQEATlCXH3VLBADgm8ceXSle1UFo8+vNuwFXs+D+JWvx PgQ1HYKT/qGtrQ1+6QfLhiV7ind7CyWdhVSGOoAM4V42liMaoswj3DunSV4feIbF fGg5kxUeqfzqhACenuMroGcVc/hCdEYxdSqjPvc+fyzs4vXeThyxxmV2/Z5a55Lf f3brfkqkRb/NZJj48hzQ3kyk1fHg3Z+baS2FniQgYiK1G+Y8kGEM4rHC+GUgOnIt prh5az4hnTJ3JqVvD3D+4qcNIBodQ0nS7RXYggCIUlycW/bjOqh21eBRBM+BwZpW 7/HEdjSLy9t/mBU1P2J2L1Evrnmns6BL6wxfa2Lgc2BoXg== -----END CERTIFICATE-----Generated at Sun May 5 01:19:52 2024 by rpki-client on console-fra.rpki-client.org