$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3332203d3e2031303239.roa File: 32332e3234372e3133362e302f32322d3332203d3e2031303239.roa (raw, json) Hash identifier: /IH6VyDtqB8OyjzBumhsUuNeupZfNnSjKgAyjNkUiDU= Subject key identifier: 29:B1:E3:69:4B:FC:EC:9C:1D:05:03:81:54:32:43:4E:39:1B:BF:83 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 3211F6BE3FA7D0535BF79C242ABB480185B79660 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3332203d3e2031303239.roa Signing time: Sat 13 Apr 2024 16:49:51 +0000 ROA not before: Sat 13 Apr 2024 16:44:51 +0000 ROA not after: Sat 12 Apr 2025 16:49:51 +0000 asID: 1029 IP address blocks: 23.247.136.0/22 maxlen: 32 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 09:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:11:f6:be:3f:a7:d0:53:5b:f7:9c:24:2a:bb:48:01:85:b7:96:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Apr 13 16:44:51 2024 GMT Not After : Apr 12 16:49:51 2025 GMT Subject: CN=29B1E3694BFCEC9C1D0503815432434E391BBF83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:98:ce:aa:dc:a9:82:93:c7:0d:2a:b1:b1:c4: 53:99:e0:0e:ad:d9:15:4d:51:fa:dc:6e:3c:87:29: 32:a1:6d:8c:39:80:02:4c:d7:d4:2e:bb:73:39:3c: 5a:b5:0d:ce:57:46:bc:44:87:66:7b:8d:4e:ee:97: 6c:77:12:70:1a:8d:c3:7f:e7:49:c5:f7:aa:b4:c8: 5b:be:8b:32:ba:05:16:b1:73:34:9c:08:5e:ae:8d: c1:1c:02:fc:d4:09:a8:e0:75:8a:a2:7a:ba:09:03: 6a:ad:27:37:f2:b2:12:e9:5c:89:8f:64:36:f3:88: 99:c7:ca:ea:fd:f7:94:1c:e4:56:5c:2f:83:83:23: d2:e0:e7:a8:4b:9d:5d:73:81:8a:41:fb:4e:d7:6b: d7:27:7b:f2:a5:6b:e5:68:8a:a8:47:f4:1f:15:c4: eb:06:db:2b:5e:5e:d2:c8:3f:03:90:36:b7:a9:8e: ee:36:38:12:68:5d:86:c4:31:73:7c:a3:ca:83:1e: 7d:bd:b6:b0:05:ed:5c:df:45:13:1b:38:f9:47:8b: 9b:fd:97:01:21:9c:13:45:62:2c:4d:82:dd:29:da: 46:b4:62:a7:d3:eb:f2:ea:b7:fc:43:37:ba:78:8b: af:d3:11:10:14:34:9a:f5:ce:82:0b:49:94:74:c6: 9c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B1:E3:69:4B:FC:EC:9C:1D:05:03:81:54:32:43:4E:39:1B:BF:83 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133362e302f32322d3332203d3e2031303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.136.0/22 Signature Algorithm: sha256WithRSAEncryption cb:74:ea:b1:aa:0c:a7:c5:f3:cb:a9:21:c9:b1:22:b3:e4:b3: c5:83:18:01:92:1d:7f:40:77:72:b7:c8:b6:aa:ab:55:74:9f: 85:a5:47:e2:95:cc:06:6b:31:90:d9:db:ce:3f:11:5c:5e:37: ce:ea:6c:a7:cf:e7:c6:a3:2d:6b:73:bb:26:fc:ef:d6:8f:39: b5:90:05:f8:95:fc:cb:e0:f9:1b:50:01:0c:24:8f:86:d2:5f: 22:fd:98:12:28:27:dc:aa:e8:e5:a5:3a:99:5c:b8:b6:75:a6: 81:08:c4:e2:ac:0b:d8:d6:5a:d8:13:97:fa:7e:7f:50:99:76: e3:e9:fb:6a:8c:a4:b5:cb:1b:2a:4c:0a:b2:90:d7:7e:2e:93: 9c:0c:ca:b1:0e:ef:c8:fa:4d:c6:ac:e8:25:78:53:7a:71:43: 76:a7:f6:81:72:21:70:6c:d0:c1:8b:08:3e:7a:df:79:a0:bc: aa:0f:60:0a:95:7a:19:f2:c0:e9:0a:21:d5:16:cd:86:13:19: 54:c4:5d:06:e4:33:1a:0f:48:e5:d7:10:cb:24:af:76:70:cf: 3c:0c:5c:ff:86:bd:7e:d7:26:a5:ac:0d:67:f5:16:d6:bb:e7: 69:f6:ac:6f:3a:04:9b:c9:8f:e5:f2:7a:04:89:2f:52:5c:d9: a3:43:37:39 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUMhH2vj+n0FNb95wkKrtIAYW3lmAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjQwNDEzMTY0NDUxWhcNMjUwNDEyMTY0OTUx WjAzMTEwLwYDVQQDEygyOUIxRTM2OTRCRkNFQzlDMUQwNTAzODE1NDMyNDM0RTM5 MUJCRjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5jOqtypgpPH DSqxscRTmeAOrdkVTVH63G48hykyoW2MOYACTNfULrtzOTxatQ3OV0a8RIdme41O 7pdsdxJwGo3Df+dJxfeqtMhbvosyugUWsXM0nAhero3BHAL81Amo4HWKonq6CQNq rSc38rIS6VyJj2Q284iZx8rq/feUHORWXC+DgyPS4OeoS51dc4GKQftO12vXJ3vy pWvlaIqoR/QfFcTrBtsrXl7SyD8DkDa3qY7uNjgSaF2GxDFzfKPKgx59vbawBe1c 30UTGzj5R4ub/ZcBIZwTRWIsTYLdKdpGtGKn0+vy6rf8Qze6eIuv0xEQFDSa9c6C C0mUdMacrwIDAQABo4ICXjCCAlowHQYDVR0OBBYEFCmx42lL/OycHQUDgVQyQ045 G7+DMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzYy ZTMwMmYzMjMyMmQzMzMyMjAzZDNlMjAzMTMwMzIzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhf3iDAN BgkqhkiG9w0BAQsFAAOCAQEAy3TqsaoMp8Xzy6khybEis+SzxYMYAZIdf0B3crfI tqqrVXSfhaVH4pXMBmsxkNnbzj8RXF43zupsp8/nxqMta3O7Jvzv1o85tZAF+JX8 y+D5G1ABDCSPhtJfIv2YEign3Kro5aU6mVy4tnWmgQjE4qwL2NZa2BOX+n5/UJl2 4+n7aoyktcsbKkwKspDXfi6TnAzKsQ7vyPpNxqzoJXhTenFDdqf2gXIhcGzQwYsI PnrfeaC8qg9gCpV6GfLA6Qoh1RbNhhMZVMRdBuQzGg9I5dcQyySvdnDPPAxc/4a9 ftcmpawNZ/UW1rvnafasbzoEm8mP5fJ6BIkvUlzZo0M3OQ== -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:07 2024 by rpki-client on console-ams.rpki-client.org