$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3165303a3a2f34342d3438203d3e20313430393236.roa File: 323630323a666564613a3165303a3a2f34342d3438203d3e20313430393236.roa (raw, json) Hash identifier: XLswxeKevmcMKv0eGiNZ+hsGHHlx0H2X5/fm8Ixl38I= Subject key identifier: F7:E2:DB:3A:E5:38:F6:F3:A8:94:B4:00:26:1B:F9:E0:7F:DE:36:1F Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 4DA68F0459B2BC8DFF136C5769E48CFB5A925CF3 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3165303a3a2f34342d3438203d3e20313430393236.roa Signing time: Mon 15 Jul 2024 08:50:10 +0000 ROA not before: Mon 15 Jul 2024 08:45:10 +0000 ROA not after: Mon 14 Jul 2025 08:50:10 +0000 asID: 140926 IP address blocks: 2602:feda:1e0::/44 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 08:23:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:a6:8f:04:59:b2:bc:8d:ff:13:6c:57:69:e4:8c:fb:5a:92:5c:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jul 15 08:45:10 2024 GMT Not After : Jul 14 08:50:10 2025 GMT Subject: CN=F7E2DB3AE538F6F3A894B400261BF9E07FDE361F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d9:b8:5c:91:35:19:3e:be:c2:74:c3:d4:ae: 97:b3:05:c8:bb:12:11:75:01:f3:4a:91:c7:cc:fd: 1d:22:16:9f:5c:b9:35:31:1a:da:9e:48:e7:a0:56: c1:fa:df:ce:99:f3:27:bd:db:3d:56:33:b3:78:31: b8:55:84:39:01:6a:a2:82:b6:1e:0b:3c:c8:78:23: c4:97:40:f8:8d:d7:7e:19:0f:31:bc:aa:a9:0a:3d: 5f:1e:a4:e0:b4:be:9d:7a:34:4f:51:50:26:f0:68: 00:dd:e8:af:c4:ed:fd:0f:8d:83:db:da:5e:a2:54: b2:3d:e9:63:fe:71:3a:9f:c6:4f:60:f2:8d:50:fb: 6b:bd:ee:dc:c3:0e:7d:b1:74:29:37:d0:e4:14:19: 1e:6c:66:8f:79:98:9b:e5:e4:07:27:a6:19:c5:25: 55:3b:c9:b9:a1:1f:49:2b:c4:2e:c8:f7:d9:20:70: 6d:1c:e8:b2:4b:54:94:d2:e2:41:b8:33:f7:9d:bf: cc:97:1f:9d:fa:35:fb:81:4a:45:09:c9:ba:57:7c: f2:d2:16:0b:0f:41:7f:02:fa:d4:22:a9:fd:1f:04: 1f:78:9a:aa:f3:db:03:e6:29:f7:9f:1d:38:5d:2b: 93:fa:29:63:61:d3:9a:65:84:5a:37:6d:fc:9c:6d: 49:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E2:DB:3A:E5:38:F6:F3:A8:94:B4:00:26:1B:F9:E0:7F:DE:36:1F X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a3165303a3a2f34342d3438203d3e20313430393236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:1e0::/44 Signature Algorithm: sha256WithRSAEncryption 71:3c:e8:fe:ca:33:9c:f4:9a:cb:bc:bb:c8:49:e6:19:bf:c0: 23:5b:4e:c6:b9:99:5e:33:74:da:43:50:0a:32:4b:c9:6a:d2: 2f:4d:39:2b:f6:e4:f2:13:7b:57:f9:c2:78:e8:a9:9d:e6:7c: 6f:e1:79:73:08:a0:3a:db:1f:94:c0:29:51:58:2a:aa:53:59: fd:0e:d8:76:59:d6:d6:31:70:78:4e:3b:0c:75:e0:3d:bb:d6: 9c:77:b0:f2:cf:e8:fc:74:6e:18:b4:a8:74:2e:c3:b2:aa:70: 90:9f:2c:2f:72:d2:d6:80:a3:6d:03:71:56:fe:ea:08:fd:e8: ad:aa:d1:05:ef:18:4c:53:3d:99:64:18:7b:ee:41:19:e0:56: 3c:6f:3d:c5:bd:47:6b:18:38:65:a5:91:cd:be:14:d3:d5:58: cb:34:2a:b7:e6:3f:8e:2b:91:13:57:2b:dd:f1:c1:3a:f1:02: c7:09:f6:ab:4a:b5:c1:7f:f9:ef:f6:a8:a7:63:c6:ea:34:87: 55:bd:4b:43:27:ba:52:c3:4a:66:25:ab:16:20:90:b5:21:aa: 83:22:55:cd:9d:19:11:08:5b:49:22:61:ae:08:25:61:b5:52: 17:03:b2:f1:b7:22:73:d5:31:b1:55:71:e5:b6:42:cb:ef:cc: e7:24:06:c0 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUTaaPBFmyvI3/E2xXaeSM+1qSXPMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjQwNzE1MDg0NTEwWhcNMjUwNzE0MDg1MDEw WjAzMTEwLwYDVQQDEyhGN0UyREIzQUU1MzhGNkYzQTg5NEI0MDAyNjFCRjlFMDdG REUzNjFGMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy9m4XJE1GT6+ wnTD1K6XswXIuxIRdQHzSpHHzP0dIhafXLk1MRrankjnoFbB+t/OmfMnvds9VjOz eDG4VYQ5AWqigrYeCzzIeCPEl0D4jdd+GQ8xvKqpCj1fHqTgtL6dejRPUVAm8GgA 3eivxO39D42D29peolSyPelj/nE6n8ZPYPKNUPtrve7cww59sXQpN9DkFBkebGaP eZib5eQHJ6YZxSVVO8m5oR9JK8QuyPfZIHBtHOiyS1SU0uJBuDP3nb/Mlx+d+jX7 gUpFCcm6V3zy0hYLD0F/AvrUIqn9HwQfeJqq89sD5in3nx04XSuT+iljYdOaZYRa N238nG1JoQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFPfi2zrlOPbzqJS0ACYb+eB/ 3jYfMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh MzE2NTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEzNDMwMzkzMjM2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcEJgL+2gHgMA0GCSqGSIb3DQEBCwUAA4IBAQBxPOj+yjOc9JrLvLvISeYZ v8AjW07GuZleM3TaQ1AKMkvJatIvTTkr9uTyE3tX+cJ46Kmd5nxv4XlzCKA62x+U wClRWCqqU1n9Dth2WdbWMXB4TjsMdeA9u9acd7Dyz+j8dG4YtKh0LsOyqnCQnywv ctLWgKNtA3FW/uoI/eitqtEF7xhMUz2ZZBh77kEZ4FY8bz3FvUdrGDhlpZHNvhTT 1VjLNCq35j+OK5ETVyvd8cE68QLHCfarSrXBf/nv9qinY8bqNIdVvUtDJ7pSw0pm JasWIJC1IaqDIlXNnRkRCFtJImGuCCVhtVIXA7LxtyJz1TGxVXHltkLL78znJAbA -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:48 2024 by rpki-client on console-ams.rpki-client.org