$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3138323a3a2f34372d3438203d3e20323131383433.roa File: 323630323a666564613a3138323a3a2f34372d3438203d3e20323131383433.roa (raw, json) Hash identifier: sQkc+y3MNnmGKVi3R+rg9sv9vHdH8w4OprjS9UlhVcs= Subject key identifier: 15:04:98:31:70:AB:DD:20:C5:BA:38:D9:D7:AD:0F:EF:94:F6:9A:C9 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 11600A444F50FC59BF880D636BE51663E6914C77 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3138323a3a2f34372d3438203d3e20323131383433.roa Signing time: Mon 16 Jun 2025 08:52:31 +0000 ROA not before: Mon 16 Jun 2025 08:47:31 +0000 ROA not after: Mon 15 Jun 2026 08:52:31 +0000 asID: 211843 IP address blocks: 2602:feda:182::/47 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 26 Oct 2025 22:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:60:0a:44:4f:50:fc:59:bf:88:0d:63:6b:e5:16:63:e6:91:4c:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jun 16 08:47:31 2025 GMT Not After : Jun 15 08:52:31 2026 GMT Subject: CN=1504983170ABDD20C5BA38D9D7AD0FEF94F69AC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:46:ee:75:9e:03:33:24:dd:8f:c6:f8:a3:3a: 95:98:43:55:c7:00:a4:e3:93:82:9e:ed:18:8e:6a: af:f0:49:4f:83:99:2c:fb:f2:bf:70:d8:f5:b4:13: a3:3d:e5:c6:2f:4d:f7:40:bf:5f:36:b4:52:c1:83: 53:05:fd:35:29:98:8b:24:d2:84:a9:5d:86:cc:9c: 74:55:e0:6e:5e:71:00:87:5d:8d:cf:e8:91:64:b0: 84:97:aa:9c:16:99:54:d9:d1:e0:44:41:30:0b:90: ae:58:2e:f4:a0:03:f0:73:17:93:3f:e5:e1:bb:2e: cb:8d:17:2c:37:7a:d4:0b:df:b6:fb:4b:9f:92:58: a4:03:76:da:dd:ec:c9:9e:9e:02:1b:7d:47:78:fa: b4:a2:d9:32:25:80:b5:72:5a:55:d9:5e:25:f6:72: 20:ce:e4:ee:09:ad:64:1c:97:5c:c7:c4:41:8a:a0: 24:88:19:8e:b1:3c:9b:e1:c2:19:33:76:3e:5b:89: b0:f3:96:b2:a3:1e:65:68:1f:7c:61:88:2a:b9:30: 4a:e5:7b:3e:e9:df:a5:94:9f:9a:81:a3:2d:3d:fa: 0c:2c:d8:02:30:a0:a1:66:0c:67:28:17:cc:35:16: b5:98:ec:b6:28:81:22:6d:c1:f5:1d:9f:cd:6e:d8: bd:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:04:98:31:70:AB:DD:20:C5:BA:38:D9:D7:AD:0F:EF:94:F6:9A:C9 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3138323a3a2f34372d3438203d3e20323131383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:182::/47 Signature Algorithm: sha256WithRSAEncryption 02:85:10:79:8b:1a:e3:67:6f:b8:93:cc:78:cf:3c:44:cb:19: 87:7a:6b:47:54:7c:85:62:50:c9:e3:c9:79:10:4d:1d:4e:83: b7:04:53:05:4b:43:d9:45:2a:f2:30:6b:c8:b3:bc:b4:e2:02: b4:c2:07:24:88:45:04:db:aa:3e:9e:c7:83:07:5b:3d:c7:1e: 03:0b:27:7d:90:7a:6f:08:4b:cf:d8:95:e6:df:21:98:6c:f2: 68:ae:47:16:95:8c:72:eb:2a:02:5c:b5:6a:cc:4f:69:d9:eb: 52:d3:dd:e6:da:99:ed:43:d3:e8:9a:8d:e3:23:4e:da:8a:05: b8:48:3f:ef:73:56:89:47:3e:0a:16:9b:c6:29:c4:b7:f2:8d: ea:0e:84:86:11:bc:e5:ea:5f:ca:53:b6:bb:58:6d:56:3d:ca: 11:37:7f:c1:94:a4:ef:c2:63:8d:13:b9:f5:08:79:85:6e:a9: 1f:82:bf:ed:c8:cd:9b:36:f1:ea:8f:1d:7b:19:c7:74:9c:60: ba:22:82:cb:19:8b:0e:14:ab:26:25:56:fc:02:9a:98:f0:2f: 83:f5:5a:59:6e:94:4b:da:06:f2:a3:a4:81:0a:5f:aa:3f:66: f8:c1:37:f3:26:1c:e2:ab:05:51:4a:1c:04:9e:29:ac:5c:0a: bd:e2:c7:1b -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUEWAKRE9Q/Fm/iA1ja+UWY+aRTHcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjUwNjE2MDg0NzMxWhcNMjYwNjE1MDg1MjMx WjAzMTEwLwYDVQQDEygxNTA0OTgzMTcwQUJERDIwQzVCQTM4RDlEN0FEMEZFRjk0 RjY5QUM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0budZ4DMyTd j8b4ozqVmENVxwCk45OCnu0Yjmqv8ElPg5ks+/K/cNj1tBOjPeXGL033QL9fNrRS wYNTBf01KZiLJNKEqV2GzJx0VeBuXnEAh12Nz+iRZLCEl6qcFplU2dHgREEwC5Cu WC70oAPwcxeTP+Xhuy7LjRcsN3rUC9+2+0ufklikA3ba3ezJnp4CG31HePq0otky JYC1clpV2V4l9nIgzuTuCa1kHJdcx8RBiqAkiBmOsTyb4cIZM3Y+W4mw85ayox5l aB98YYgquTBK5Xs+6d+llJ+agaMtPfoMLNgCMKChZgxnKBfMNRa1mOy2KIEibcH1 HZ/Nbti9ZQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFBUEmDFwq90gxbo42detD++U 9prJMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh MzEzODMyM2EzYTJmMzQzNzJkMzQzODIwM2QzZTIwMzIzMTMxMzgzNDMzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcBJgL+2gGCMA0GCSqGSIb3DQEBCwUAA4IBAQAChRB5ixrjZ2+4k8x4zzxE yxmHemtHVHyFYlDJ48l5EE0dToO3BFMFS0PZRSryMGvIs7y04gK0wgckiEUE26o+ nseDB1s9xx4DCyd9kHpvCEvP2JXm3yGYbPJorkcWlYxy6yoCXLVqzE9p2etS093m 2pntQ9Pomo3jI07aigW4SD/vc1aJRz4KFpvGKcS38o3qDoSGEbzl6l/KU7a7WG1W PcoRN3/BlKTvwmONE7n1CHmFbqkfgr/tyM2bNvHqjx17Gcd0nGC6IoLLGYsOFKsm JVb8ApqY8C+D9VpZbpRL2gbyo6SBCl+qP2b4wTfzJhziqwVRShwEnimsXAq94scb -----END CERTIFICATE-----Generated at Sat Oct 25 23:08:23 2025 by rpki-client