$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e2038303735.roa File: 32332e3234372e3133362e302f32322d3234203d3e2038303735.roa (raw, json) Hash identifier: w6jCFRXGDe+FTGVMeZETWQtfon1J2dNPmqkZevtvB1s= Subject key identifier: 4E:21:A7:C4:8F:96:DC:CA:C2:D3:82:C8:E7:64:43:D3:52:2B:5C:87 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 050427E5B188D46D8EC9B17AB51911357A86C4C9 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e2038303735.roa Signing time: Mon 18 May 2026 09:21:35 +0000 ROA not before: Mon 18 May 2026 09:16:35 +0000 ROA not after: Mon 17 May 2027 09:21:35 +0000 asID: 8075 IP address blocks: 23.247.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Jun 2026 08:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:04:27:e5:b1:88:d4:6d:8e:c9:b1:7a:b5:19:11:35:7a:86:c4:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: May 18 09:16:35 2026 GMT Not After : May 17 09:21:35 2027 GMT Subject: CN=4E21A7C48F96DCCAC2D382C8E76443D3522B5C87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5e:48:45:07:f6:40:cb:fe:6c:09:97:f8:06: 7f:42:4b:16:02:51:3f:f6:4d:ed:02:0e:34:ee:3e: 2a:61:03:ae:5c:1e:a0:30:40:6b:59:c4:5b:38:31: e5:a8:6d:18:50:7a:f9:c8:46:6e:1b:1c:a4:95:b6: cc:70:99:b0:04:8f:f4:cc:9a:b8:87:a2:82:a7:ff: b1:14:78:d6:1a:42:da:54:96:e4:58:66:a9:f4:fd: d4:8f:b4:ca:fd:23:a7:26:53:3d:90:92:87:5f:ca: 30:94:61:35:10:1b:eb:fb:fe:c6:99:98:94:e7:e9: 77:c6:86:0a:93:eb:9d:29:1c:c7:c5:5d:89:dd:d2: eb:14:c7:ae:3e:33:44:f3:6a:cd:3d:40:bd:30:bc: 41:7a:d8:71:a2:c7:72:e6:08:aa:28:5d:9d:3a:13: e2:c3:9f:1d:db:d4:f7:07:a6:47:e2:d9:8c:37:c5: 0f:2b:d9:98:c3:5a:57:9b:57:8a:a2:05:d2:98:f9: 85:9c:62:ad:76:b0:85:02:61:b8:80:b5:11:9b:40: c0:92:50:a7:85:22:3e:44:51:ac:f0:a2:25:60:bb: 69:0a:c5:39:5d:b8:99:07:f9:c2:4c:9a:4f:4b:a3: 89:92:a6:d5:af:75:76:ff:01:82:2c:49:b6:3c:5d: 66:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:21:A7:C4:8F:96:DC:CA:C2:D3:82:C8:E7:64:43:D3:52:2B:5C:87 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3234203d3e2038303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:90:97:17:32:42:9d:40:63:0b:43:1c:de:81:cb:39:ef:9a: 53:b3:d7:53:00:ec:d4:f3:17:ca:c9:01:dc:8d:42:5f:63:47: d4:51:31:d8:bc:f9:2f:08:12:80:63:42:62:1a:0e:db:a0:45: 6e:5d:25:74:09:98:c1:c5:d4:67:0d:37:63:26:06:49:d7:49: 10:dd:25:26:ac:49:80:6e:a2:46:e7:11:26:1d:fe:81:e0:56: e9:5c:4f:87:a3:7b:69:09:33:25:a4:3b:ec:3e:9d:a9:77:78: c2:46:c1:53:02:a1:87:16:20:e5:d2:a7:cd:74:e9:ff:48:e8: 9f:63:70:13:52:14:e2:36:75:3f:4a:a3:f6:e2:5f:c2:ee:26: a6:cb:30:82:48:bd:51:57:65:b4:68:83:cd:c0:a6:29:d9:4f: a9:00:a6:2e:5f:d7:88:b1:c1:a1:6e:3d:ef:3f:f7:46:66:b0: 81:06:e4:1c:60:96:b6:af:47:e6:63:d2:79:66:00:5a:9b:d0: 75:ab:22:bb:4b:cc:e4:76:10:96:8f:b2:20:92:33:ac:aa:6b: 89:6d:5c:ce:d0:bb:08:da:57:fa:9f:8c:b8:b9:b3:c1:f5:08: b8:6f:02:02:3e:4a:26:16:ff:7e:19:b9:68:30:c4:b5:9b:42: e4:31:6f:df -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUBQQn5bGI1G2OybF6tRkRNXqGxMkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjYwNTE4MDkxNjM1WhcNMjcwNTE3MDkyMTM1 WjAzMTEwLwYDVQQDEyg0RTIxQTdDNDhGOTZEQ0NBQzJEMzgyQzhFNzY0NDNEMzUy MkI1Qzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwV5IRQf2QMv+ bAmX+AZ/QksWAlE/9k3tAg407j4qYQOuXB6gMEBrWcRbODHlqG0YUHr5yEZuGxyk lbbMcJmwBI/0zJq4h6KCp/+xFHjWGkLaVJbkWGap9P3Uj7TK/SOnJlM9kJKHX8ow lGE1EBvr+/7GmZiU5+l3xoYKk+udKRzHxV2J3dLrFMeuPjNE82rNPUC9MLxBethx osdy5giqKF2dOhPiw58d29T3B6ZH4tmMN8UPK9mYw1pXm1eKogXSmPmFnGKtdrCF AmG4gLURm0DAklCnhSI+RFGs8KIlYLtpCsU5XbiZB/nCTJpPS6OJkqbVr3V2/wGC LEm2PF1mcQIDAQABo4ICXjCCAlowHQYDVR0OBBYEFE4hp8SPltzKwtOCyOdkQ9NS K1yHMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzODMwMzczNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhf3iDAN BgkqhkiG9w0BAQsFAAOCAQEATpCXFzJCnUBjC0Mc3oHLOe+aU7PXUwDs1PMXyskB 3I1CX2NH1FEx2Lz5LwgSgGNCYhoO26BFbl0ldAmYwcXUZw03YyYGSddJEN0lJqxJ gG6iRucRJh3+geBW6VxPh6N7aQkzJaQ77D6dqXd4wkbBUwKhhxYg5dKnzXTp/0jo n2NwE1IU4jZ1P0qj9uJfwu4mpsswgki9UVdltGiDzcCmKdlPqQCmLl/XiLHBoW49 7z/3RmawgQbkHGCWtq9H5mPSeWYAWpvQdasiu0vM5HYQlo+yIJIzrKpriW1cztC7 CNpX+p+MuLmzwfUIuG8CAj5KJhb/fhm5aDDEtZtC5DFv3w== -----END CERTIFICATE-----Generated at Sat Jun 6 08:15:34 2026 by rpki-client