$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a61333a3a2f34382d3438203d3e203436393937.roa File: 323630323a666564613a61333a3a2f34382d3438203d3e203436393937.roa (raw, json) Hash identifier: aFeuYs76b7dqQcqch+Mp2Q80UrJ2HJZYY7itpXOzxFM= Subject key identifier: 6E:B2:6F:D7:CD:8D:B0:95:13:EC:9F:7E:00:F0:7E:3E:E6:83:01:2A Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 1E757806414B4268D647D3B8CE9BB71306E4D7FF Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a61333a3a2f34382d3438203d3e203436393937.roa Signing time: Mon 16 Jun 2025 08:52:23 +0000 ROA not before: Mon 16 Jun 2025 08:47:23 +0000 ROA not after: Mon 15 Jun 2026 08:52:23 +0000 asID: 46997 IP address blocks: 2602:feda:a3::/48 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 28 Oct 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:75:78:06:41:4b:42:68:d6:47:d3:b8:ce:9b:b7:13:06:e4:d7:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jun 16 08:47:23 2025 GMT Not After : Jun 15 08:52:23 2026 GMT Subject: CN=6EB26FD7CD8DB09513EC9F7E00F07E3EE683012A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:05:06:61:4c:58:2b:b6:51:8a:76:46:22:3d: be:76:bf:a4:8f:be:68:0f:6c:3b:99:fa:8c:f3:a6: 0b:c0:9c:8e:d6:b8:5e:ed:a2:af:9a:a0:3b:e6:cd: 01:6f:cd:64:5c:90:4f:ff:de:ab:81:ea:ec:74:7a: 6b:ba:f9:61:35:9a:57:fa:7b:ed:ab:ec:74:d3:7a: ca:77:ce:64:ee:6b:2e:ca:5e:08:f2:8f:4a:03:e7: a7:63:7a:61:16:26:fa:97:cc:1e:f2:89:cc:22:63: 26:c1:19:07:3a:68:c7:bc:fc:da:1d:39:c8:5d:c3: dd:30:e4:3d:ec:6b:07:9b:7f:90:a8:ef:82:bc:03: 99:fa:eb:d8:61:24:dd:74:1a:3a:72:a8:20:06:0c: 6e:25:9f:60:75:12:af:3c:c9:f9:4e:29:54:be:c3: 6b:cd:76:e6:37:4b:e7:90:04:78:29:2f:d0:9a:b0: c2:5a:2f:dc:cb:cd:61:7c:67:18:99:59:f9:5f:d5: 65:f5:d1:00:65:93:57:25:8f:26:b9:2d:b4:d5:1b: 94:44:22:bf:78:07:1a:2a:dc:00:20:8d:0a:1c:6d: be:4c:0b:8a:f3:fd:0f:59:bd:60:b0:98:95:c3:61: 10:30:a9:c0:e3:86:16:82:40:ac:17:0f:0d:ab:c8: 23:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B2:6F:D7:CD:8D:B0:95:13:EC:9F:7E:00:F0:7E:3E:E6:83:01:2A X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a61333a3a2f34382d3438203d3e203436393937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:a3::/48 Signature Algorithm: sha256WithRSAEncryption bc:55:5c:e9:c9:08:56:a4:1c:7d:d5:c0:c5:15:20:92:37:2c: 28:64:83:77:58:77:3a:fd:03:51:f6:d7:71:55:76:b0:80:23: 30:9b:a5:75:fc:a8:d6:f9:3a:35:80:13:2f:a5:ee:93:b7:38: a8:05:7e:04:ae:52:1a:4f:5a:dd:25:d5:d5:67:75:94:90:e2: c0:ac:c5:33:df:c5:cc:c2:84:4c:09:4b:14:cf:47:5d:e5:ba: c2:03:0c:fd:fa:1a:74:8e:d3:a0:21:e6:a3:1f:52:89:32:7d: f0:13:31:21:5d:41:bc:aa:d5:bb:61:80:b3:8a:e7:37:73:2f: d0:22:d5:86:38:88:85:c3:1b:c3:8e:cd:8e:fb:ce:c5:49:fe: fe:b5:95:00:44:54:51:88:0b:76:b2:c4:08:fe:e4:fa:19:4a: e8:d3:ad:14:85:c3:38:c0:a0:0c:2a:3c:bc:ac:7f:95:7d:c1: bb:4e:08:62:07:b4:6d:90:1e:81:ae:f9:3d:e5:f1:79:68:f3: 85:46:63:bb:0b:d6:9c:d0:8b:22:16:40:05:a6:fb:27:0b:cf: 92:55:7d:63:cf:fd:12:fc:cc:c9:ee:48:14:99:32:b2:13:1a: 97:b4:32:d1:c3:86:a8:b9:31:1b:f4:62:bc:3f:ca:c5:81:5f: 18:64:90:44 -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgIUHnV4BkFLQmjWR9O4zpu3Ewbk1/8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjUwNjE2MDg0NzIzWhcNMjYwNjE1MDg1MjIz WjAzMTEwLwYDVQQDEyg2RUIyNkZEN0NEOERCMDk1MTNFQzlGN0UwMEYwN0UzRUU2 ODMwMTJBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgUGYUxYK7ZR inZGIj2+dr+kj75oD2w7mfqM86YLwJyO1rhe7aKvmqA75s0Bb81kXJBP/96rgers dHpruvlhNZpX+nvtq+x003rKd85k7msuyl4I8o9KA+enY3phFib6l8we8onMImMm wRkHOmjHvPzaHTnIXcPdMOQ97GsHm3+QqO+CvAOZ+uvYYSTddBo6cqggBgxuJZ9g dRKvPMn5TilUvsNrzXbmN0vnkAR4KS/QmrDCWi/cy81hfGcYmVn5X9Vl9dEAZZNX JY8muS201RuURCK/eAcaKtwAII0KHG2+TAuK8/0PWb1gsJiVw2EQMKnA44YWgkCs Fw8Nq8gjqwIDAQABo4ICZzCCAmMwHQYDVR0OBBYEFG6yb9fNjbCVE+yffgDwfj7m gwEqMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzNjMwMzIzYTY2NjU2NDYxM2E2 MTMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzQzNjM5MzkzNy5yb2EwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMH ACYC/toAozANBgkqhkiG9w0BAQsFAAOCAQEAvFVc6ckIVqQcfdXAxRUgkjcsKGSD d1h3Ov0DUfbXcVV2sIAjMJuldfyo1vk6NYATL6Xuk7c4qAV+BK5SGk9a3SXV1Wd1 lJDiwKzFM9/FzMKETAlLFM9HXeW6wgMM/foadI7ToCHmox9SiTJ98BMxIV1BvKrV u2GAs4rnN3Mv0CLVhjiIhcMbw47NjvvOxUn+/rWVAERUUYgLdrLECP7k+hlK6NOt FIXDOMCgDCo8vKx/lX3Bu04IYge0bZAega75PeXxeWjzhUZjuwvWnNCLIhZABab7 JwvPklV9Y8/9EvzMye5IFJkyshMal7Qy0cOGqLkxG/RivD/KxYFfGGSQRA== -----END CERTIFICATE-----Generated at Mon Oct 27 12:24:26 2025 by rpki-client