$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3165303a3a2f34342d3438203d3e20313430393236.roa File: 323630323a666564613a3165303a3a2f34342d3438203d3e20313430393236.roa (raw, json) Hash identifier: 0Z6Ph25UKBkbgJJJ06Nl3yfAMu9fzSekXheHF5QBzwY= Subject key identifier: BC:46:1A:EC:B2:05:E4:4E:BB:A5:35:B2:BB:AA:3C:D9:DF:D7:C3:4D Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 0709E982B3A620E7A81F53BCA2796CD9C3883ACD Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3165303a3a2f34342d3438203d3e20313430393236.roa Signing time: Mon 18 May 2026 09:21:41 +0000 ROA not before: Mon 18 May 2026 09:16:41 +0000 ROA not after: Mon 17 May 2027 09:21:41 +0000 asID: 140926 IP address blocks: 2602:feda:1e0::/44 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Jun 2026 08:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:09:e9:82:b3:a6:20:e7:a8:1f:53:bc:a2:79:6c:d9:c3:88:3a:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: May 18 09:16:41 2026 GMT Not After : May 17 09:21:41 2027 GMT Subject: CN=BC461AECB205E44EBBA535B2BBAA3CD9DFD7C34D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:82:d7:82:70:0d:64:d6:81:e1:6c:bc:b2:bc: e6:93:c6:dd:67:db:07:d3:4c:b5:26:14:e5:f2:89: 06:c3:c4:99:9f:e8:c2:26:89:4e:87:3f:c4:7b:91: 6c:ff:bb:21:33:f8:48:f4:9b:a1:fa:ca:29:29:6c: 1f:5f:f1:cc:bb:74:07:d1:d4:90:61:5d:13:de:29: a7:a1:36:c8:0d:0c:ab:8b:ab:57:9c:39:3b:4c:c1: e4:77:1d:fb:29:ff:8b:e3:44:d1:0e:74:12:b1:ce: ea:98:03:b7:70:cc:01:3c:0d:ca:45:b8:f4:07:d7: 92:48:0d:8d:03:6b:c6:05:02:85:9e:b6:55:d3:4c: ed:a4:bb:a6:e2:ee:bc:22:42:f3:c8:e1:c2:c9:6a: 7a:3e:89:d9:ce:d3:be:ae:43:aa:10:be:05:2c:57: 5b:25:ea:13:38:ba:97:8f:29:4b:5f:e4:9a:42:43: bf:b8:4b:42:03:d4:83:0e:1f:1c:42:28:d1:d2:18: 5e:54:08:00:ac:7f:4d:6c:10:83:5e:e3:0d:ed:2d: be:8b:98:47:05:1a:ad:a6:1e:c8:b6:27:0c:45:5a: f7:09:e9:9a:f0:ba:de:a7:fb:2b:32:9d:50:86:83: 04:b9:91:b0:da:f3:bd:27:1b:e2:a4:e8:c7:41:73: ef:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:46:1A:EC:B2:05:E4:4E:BB:A5:35:B2:BB:AA:3C:D9:DF:D7:C3:4D X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3165303a3a2f34342d3438203d3e20313430393236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:1e0::/44 Signature Algorithm: sha256WithRSAEncryption 70:7d:f4:43:8f:e5:74:3e:9b:ea:23:de:22:81:51:22:bc:40: ab:77:40:de:1d:35:89:e4:0f:d9:0c:14:a8:b2:3a:34:48:1d: 8d:4b:7f:4f:b6:c1:f8:60:09:42:70:ab:be:38:85:97:55:84: 98:a5:4a:46:7b:ea:f8:92:13:38:d0:ab:2d:16:1a:89:54:06: dd:17:ed:8e:8c:4b:c6:e0:81:2a:9a:7f:41:e0:25:78:6b:66: f5:5d:30:2c:9d:d7:63:dd:a1:8e:0b:3a:5b:b4:17:46:b3:42: 3a:dd:9f:8d:d3:34:c9:d3:bd:2d:39:f3:41:04:d7:19:e8:63: c0:6a:05:eb:87:26:32:2c:7a:00:3b:16:c5:54:32:81:15:78: b0:fa:7e:cf:32:b3:1f:aa:4c:a2:5e:2c:32:b1:c5:95:de:82: 06:05:d7:4a:73:bc:56:43:ec:63:98:bf:37:62:ca:06:be:e8: 8f:a6:aa:ba:6f:02:da:f5:92:95:2f:b8:a9:67:8b:fd:c3:ef: 59:98:94:c7:94:1d:ea:89:66:fa:01:d0:8a:4e:05:25:24:04: e7:0d:a2:dc:ea:e7:03:54:79:2c:13:45:e4:2c:02:44:db:9e: b9:b3:aa:e1:8e:c8:c5:1d:1d:f9:90:95:a2:c6:70:01:9e:f0: 84:2f:b6:28 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUBwnpgrOmIOeoH1O8onls2cOIOs0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjYwNTE4MDkxNjQxWhcNMjcwNTE3MDkyMTQx WjAzMTEwLwYDVQQDEyhCQzQ2MUFFQ0IyMDVFNDRFQkJBNTM1QjJCQkFBM0NEOURG RDdDMzREMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYLXgnANZNaB 4Wy8srzmk8bdZ9sH00y1JhTl8okGw8SZn+jCJolOhz/Ee5Fs/7shM/hI9Juh+sop KWwfX/HMu3QH0dSQYV0T3imnoTbIDQyri6tXnDk7TMHkdx37Kf+L40TRDnQSsc7q mAO3cMwBPA3KRbj0B9eSSA2NA2vGBQKFnrZV00ztpLum4u68IkLzyOHCyWp6PonZ ztO+rkOqEL4FLFdbJeoTOLqXjylLX+SaQkO/uEtCA9SDDh8cQijR0hheVAgArH9N bBCDXuMN7S2+i5hHBRqtph7IticMRVr3Cema8Lrep/srMp1QhoMEuZGw2vO9Jxvi pOjHQXPvxwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFLxGGuyyBeROu6U1sruqPNnf 18NNMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh MzE2NTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEzNDMwMzkzMjM2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcEJgL+2gHgMA0GCSqGSIb3DQEBCwUAA4IBAQBwffRDj+V0PpvqI94igVEi vECrd0DeHTWJ5A/ZDBSosjo0SB2NS39PtsH4YAlCcKu+OIWXVYSYpUpGe+r4khM4 0KstFhqJVAbdF+2OjEvG4IEqmn9B4CV4a2b1XTAsnddj3aGOCzpbtBdGs0I63Z+N 0zTJ070tOfNBBNcZ6GPAagXrhyYyLHoAOxbFVDKBFXiw+n7PMrMfqkyiXiwyscWV 3oIGBddKc7xWQ+xjmL83YsoGvuiPpqq6bwLa9ZKVL7ipZ4v9w+9ZmJTHlB3qiWb6 AdCKTgUlJATnDaLc6ucDVHksE0XkLAJE2565s6rhjsjFHR35kJWixnABnvCEL7Yo -----END CERTIFICATE-----Generated at Sat Jun 6 08:17:49 2026 by rpki-client