$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3138323a3a2f34372d3438203d3e20323131383433.roa File: 323630323a666564613a3138323a3a2f34372d3438203d3e20323131383433.roa (raw, json) Hash identifier: xlb/9p1iHqQ+kNN3Or7qwog/L8Lf8XY/LITRMcSHs9g= Subject key identifier: 23:33:FC:A4:0C:E6:C0:97:20:85:F8:2E:41:E3:D7:C2:53:2F:C3:34 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 2476D9173517B59D0DC9811DDCA7383AB72C40A3 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3138323a3a2f34372d3438203d3e20323131383433.roa Signing time: Mon 18 May 2026 09:21:37 +0000 ROA not before: Mon 18 May 2026 09:16:37 +0000 ROA not after: Mon 17 May 2027 09:21:37 +0000 asID: 211843 IP address blocks: 2602:feda:182::/47 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Jun 2026 08:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:76:d9:17:35:17:b5:9d:0d:c9:81:1d:dc:a7:38:3a:b7:2c:40:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: May 18 09:16:37 2026 GMT Not After : May 17 09:21:37 2027 GMT Subject: CN=2333FCA40CE6C0972085F82E41E3D7C2532FC334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:36:59:2d:d2:71:d1:cc:2c:9e:f5:4d:1c:5a: 16:04:6b:0a:2c:b4:4f:47:50:1f:9e:e7:d2:22:d7: 88:d8:f0:0a:71:e7:75:1c:28:02:3f:9e:62:28:d2: 5f:1c:10:a7:3d:d3:6f:6b:87:82:85:4c:4f:c4:8e: fa:4e:80:66:5f:71:4a:35:7d:62:cb:f7:2f:9e:f1: 77:f0:31:0a:3d:0a:2f:c8:59:fc:34:a1:91:3b:95: ea:69:e2:fa:de:2f:7b:50:e7:8f:bd:b5:ac:bb:ed: 40:51:e3:4d:a0:60:83:89:56:ee:da:81:f0:f4:4d: 26:c8:bc:94:cf:0d:aa:b7:ad:01:22:46:85:32:50: 27:a2:62:4f:50:4a:78:5f:b2:ad:05:99:9e:0f:1c: 87:06:22:5c:63:ef:a3:a0:08:76:54:25:b6:b1:1e: cc:8b:83:bc:68:60:8f:ce:c8:fd:e8:98:71:45:ec: 57:1b:0a:b9:4b:d0:92:ff:5c:62:59:0a:66:3d:29: 34:2c:b5:02:ba:d8:ce:4f:f6:9b:cd:7c:9d:ec:15: 36:58:4c:c9:84:38:d7:58:07:3d:4b:ae:9d:60:75: bd:fb:1d:f6:e8:f7:e1:9d:ea:9e:28:14:85:b0:b9: 53:4f:40:55:23:82:ed:30:d3:bd:b5:0e:f7:fd:87: 46:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:33:FC:A4:0C:E6:C0:97:20:85:F8:2E:41:E3:D7:C2:53:2F:C3:34 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3138323a3a2f34372d3438203d3e20323131383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:182::/47 Signature Algorithm: sha256WithRSAEncryption 81:02:76:02:4d:4b:ba:bb:3f:b5:0c:70:52:62:76:85:5b:2c: db:ec:51:c1:46:1e:9c:37:a6:d5:d6:c0:3e:5b:5d:5f:0c:25: f2:a8:3c:d7:d0:34:91:1a:e1:a3:df:63:75:ab:df:28:83:21: 23:d4:9f:14:72:c7:6f:c8:99:35:a2:83:34:6c:6f:da:1c:6d: cb:6a:7f:92:f9:d4:3a:b2:02:61:b6:e3:6d:55:44:11:91:2d: 97:23:1b:93:c5:ca:99:2f:bd:9d:69:d7:8b:e9:1b:bf:43:79: 8b:47:5c:1f:58:f1:c1:a3:39:c5:59:90:f4:04:d9:c1:ef:90: f3:76:b9:45:6c:70:14:e0:56:eb:70:76:01:5d:fa:07:48:a4: 00:3d:ec:dd:4d:69:37:24:20:a7:ef:ab:8d:84:34:83:63:8e: 8a:71:13:17:07:30:fa:08:bd:02:61:6a:e0:ab:22:19:8f:8c: 50:d2:53:f3:5f:8e:e6:ef:30:19:17:be:75:51:d0:f7:75:f4: 90:34:39:e7:6c:41:0e:c7:e7:ce:92:00:74:24:a9:ac:df:70: 5f:c0:4d:3d:68:c5:4e:9f:19:1a:79:cc:10:ef:73:ee:65:cd: c1:57:5c:05:79:9f:25:1a:4f:11:c6:94:a4:6e:b4:40:d6:db: fb:28:04:64 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUJHbZFzUXtZ0NyYEd3Kc4OrcsQKMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjYwNTE4MDkxNjM3WhcNMjcwNTE3MDkyMTM3 WjAzMTEwLwYDVQQDEygyMzMzRkNBNDBDRTZDMDk3MjA4NUY4MkU0MUUzRDdDMjUz MkZDMzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDZZLdJx0cws nvVNHFoWBGsKLLRPR1AfnufSIteI2PAKced1HCgCP55iKNJfHBCnPdNva4eChUxP xI76ToBmX3FKNX1iy/cvnvF38DEKPQovyFn8NKGRO5XqaeL63i97UOePvbWsu+1A UeNNoGCDiVbu2oHw9E0myLyUzw2qt60BIkaFMlAnomJPUEp4X7KtBZmeDxyHBiJc Y++joAh2VCW2sR7Mi4O8aGCPzsj96JhxRexXGwq5S9CS/1xiWQpmPSk0LLUCutjO T/abzXyd7BU2WEzJhDjXWAc9S66dYHW9+x326PfhneqeKBSFsLlTT0BVI4LtMNO9 tQ73/YdGpQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFCMz/KQM5sCXIIX4LkHj18JT L8M0MB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh MzEzODMyM2EzYTJmMzQzNzJkMzQzODIwM2QzZTIwMzIzMTMxMzgzNDMzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcBJgL+2gGCMA0GCSqGSIb3DQEBCwUAA4IBAQCBAnYCTUu6uz+1DHBSYnaF Wyzb7FHBRh6cN6bV1sA+W11fDCXyqDzX0DSRGuGj32N1q98ogyEj1J8UcsdvyJk1 ooM0bG/aHG3Lan+S+dQ6sgJhtuNtVUQRkS2XIxuTxcqZL72dadeL6Ru/Q3mLR1wf WPHBoznFWZD0BNnB75DzdrlFbHAU4FbrcHYBXfoHSKQAPezdTWk3JCCn76uNhDSD Y46KcRMXBzD6CL0CYWrgqyIZj4xQ0lPzX47m7zAZF751UdD3dfSQNDnnbEEOx+fO kgB0JKms33BfwE09aMVOnxkaecwQ73PuZc3BV1wFeZ8lGk8RxpSkbrRA1tv7KARk -----END CERTIFICATE-----Generated at Sat Jun 6 08:17:49 2026 by rpki-client