$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a61333a3a2f34382d3438203d3e203436393937.roa File: 323630323a666564613a61333a3a2f34382d3438203d3e203436393937.roa (raw, json) Hash identifier: 1tLqbOOkg7u8l+Z8x4d01WnK3LHRCFe89VcD9SFQQkY= Subject key identifier: 0A:85:23:FC:32:8A:DE:25:5D:94:50:E3:9A:BE:DA:26:50:3F:E3:DD Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 1B7AC6B2E858E80E1DC56A3AD1A24EE074BD91E6 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a61333a3a2f34382d3438203d3e203436393937.roa Signing time: Mon 15 Jul 2024 08:50:06 +0000 ROA not before: Mon 15 Jul 2024 08:45:06 +0000 ROA not after: Mon 14 Jul 2025 08:50:06 +0000 asID: 46997 IP address blocks: 2602:feda:a3::/48 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 16:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:7a:c6:b2:e8:58:e8:0e:1d:c5:6a:3a:d1:a2:4e:e0:74:bd:91:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jul 15 08:45:06 2024 GMT Not After : Jul 14 08:50:06 2025 GMT Subject: CN=0A8523FC328ADE255D9450E39ABEDA26503FE3DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:18:77:42:9e:f6:67:04:6e:6a:f5:ab:0b:52: 38:c4:33:9f:5b:a2:df:ee:01:8c:18:a9:18:23:02: d2:fd:0a:a2:1b:aa:ae:9a:49:db:7e:4d:ed:e5:3d: 3e:9e:d6:45:9c:f5:42:22:e8:bf:e4:f8:ff:00:ff: 76:fd:25:b4:60:b3:bc:68:ad:65:16:83:03:73:a8: 0c:81:94:04:d9:7d:da:60:ea:42:7f:fd:3b:2a:6f: cb:e5:ee:7a:db:d8:e9:8c:7c:07:9d:a1:1b:16:a3: a6:a6:8e:96:18:88:bd:99:9a:f3:8c:e0:21:e5:79: fc:bc:a2:c1:16:19:9e:1e:f7:73:5c:d5:48:0e:b5: 2a:72:52:ec:1d:9e:4f:03:54:9e:62:ab:5c:33:0c: ff:70:e8:46:ba:f8:e8:a9:b8:93:43:5f:58:12:c4: 88:f9:04:e7:4f:9e:f4:52:14:64:8a:ce:33:3f:16: cd:1f:b7:36:5f:ab:3c:90:b6:8a:f6:f0:97:48:e8: 12:28:89:0b:ee:39:8d:5b:fe:c6:1a:d3:39:7a:bf: 09:f6:ca:e0:e6:87:01:43:0c:e7:56:08:31:7c:da: 1b:ed:25:a3:dc:ac:ab:90:13:e7:f9:99:d9:71:cd: f4:b8:d4:a0:b6:7b:a9:8e:03:6d:3e:07:15:f1:11: c5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:85:23:FC:32:8A:DE:25:5D:94:50:E3:9A:BE:DA:26:50:3F:E3:DD X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a61333a3a2f34382d3438203d3e203436393937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:a3::/48 Signature Algorithm: sha256WithRSAEncryption 0f:eb:c8:f8:fe:39:e2:e0:66:d6:33:fc:00:39:4f:f9:56:31: 22:0c:43:11:8a:c6:01:7e:9a:95:c7:67:ed:e3:d1:13:3d:5a: 17:ab:6d:0c:2a:26:c6:f0:cd:00:63:6b:ee:c9:23:b9:f9:4e: 6d:31:20:54:3d:ca:1d:d3:30:75:a7:fc:cd:e8:3a:b3:14:70: ed:b2:ad:8b:e6:b0:58:4b:dc:49:90:29:5f:ca:53:da:42:4e: 09:f8:4f:f6:4e:89:80:cf:50:12:b9:f3:c0:35:41:e1:fb:a8: 75:98:d5:f8:f5:81:0d:5d:64:06:aa:25:b4:72:7f:cf:4d:4e: bf:89:df:e6:fa:b2:f0:ba:93:7a:4e:ae:2f:41:f8:e0:29:53: 34:1e:85:36:20:84:4b:53:2f:52:5e:29:b9:e6:f7:ae:95:fa: 1a:49:04:d0:88:15:5d:5c:6d:72:bd:ec:de:e5:3b:20:70:c2: 0e:64:26:77:01:ba:ec:d9:0c:7b:a0:20:f9:1c:32:d0:06:20: 1f:51:66:66:0f:b0:9b:d9:b6:22:8d:47:26:52:24:4c:41:65: 69:f8:c6:a7:f0:30:e6:ac:1b:ce:d5:00:4f:fc:4e:10:b6:1e: d0:3c:de:81:57:b0:6b:dd:6a:22:0d:e1:5c:c9:b0:ef:39:77: 68:cf:db:8d -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgIUG3rGsuhY6A4dxWo60aJO4HS9keYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjQwNzE1MDg0NTA2WhcNMjUwNzE0MDg1MDA2 WjAzMTEwLwYDVQQDEygwQTg1MjNGQzMyOEFERTI1NUQ5NDUwRTM5QUJFREEyNjUw M0ZFM0REMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRh3Qp72ZwRu avWrC1I4xDOfW6Lf7gGMGKkYIwLS/QqiG6qumknbfk3t5T0+ntZFnPVCIui/5Pj/ AP92/SW0YLO8aK1lFoMDc6gMgZQE2X3aYOpCf/07Km/L5e5629jpjHwHnaEbFqOm po6WGIi9mZrzjOAh5Xn8vKLBFhmeHvdzXNVIDrUqclLsHZ5PA1SeYqtcMwz/cOhG uvjoqbiTQ19YEsSI+QTnT570UhRkis4zPxbNH7c2X6s8kLaK9vCXSOgSKIkL7jmN W/7GGtM5er8J9srg5ocBQwznVggxfNob7SWj3KyrkBPn+ZnZcc30uNSgtnupjgNt PgcV8RHFWwIDAQABo4ICZzCCAmMwHQYDVR0OBBYEFAqFI/wyit4lXZRQ45q+2iZQ P+PdMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzNjMwMzIzYTY2NjU2NDYxM2E2 MTMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzQzNjM5MzkzNy5yb2EwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMH ACYC/toAozANBgkqhkiG9w0BAQsFAAOCAQEAD+vI+P454uBm1jP8ADlP+VYxIgxD EYrGAX6alcdn7ePREz1aF6ttDComxvDNAGNr7skjuflObTEgVD3KHdMwdaf8zeg6 sxRw7bKti+awWEvcSZApX8pT2kJOCfhP9k6JgM9QErnzwDVB4fuodZjV+PWBDV1k BqoltHJ/z01Ov4nf5vqy8LqTek6uL0H44ClTNB6FNiCES1MvUl4pueb3rpX6GkkE 0IgVXVxtcr3s3uU7IHDCDmQmdwG67NkMe6Ag+Rwy0AYgH1FmZg+wm9m2Io1HJlIk TEFlafjGp/Aw5qwbztUAT/xOELYe0DzegVewa91qIg3hXMmw7zl3aM/bjQ== -----END CERTIFICATE-----Generated at Sun Feb 16 21:47:15 2025 by rpki-client