$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6265303a3a2f34342d3438203d3e203338313733.roa File: 323630323a666564613a6265303a3a2f34342d3438203d3e203338313733.roa (raw, json) Hash identifier: Nnm3d1953K2FjMF5gjEFN6zVlASoUXBFocfuEqLdeHo= Subject key identifier: 95:BF:E5:83:A9:96:3A:F1:4B:C8:30:C8:A7:3D:9F:96:97:30:C4:0E Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 23D50A0BD47CEADF240C0DFFE72E40D853E2045E Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6265303a3a2f34342d3438203d3e203338313733.roa Signing time: Mon 15 Jul 2024 08:50:04 +0000 ROA not before: Mon 15 Jul 2024 08:45:04 +0000 ROA not after: Mon 14 Jul 2025 08:50:04 +0000 asID: 38173 IP address blocks: 2602:feda:be0::/44 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 08:23:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:d5:0a:0b:d4:7c:ea:df:24:0c:0d:ff:e7:2e:40:d8:53:e2:04:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jul 15 08:45:04 2024 GMT Not After : Jul 14 08:50:04 2025 GMT Subject: CN=95BFE583A9963AF14BC830C8A73D9F969730C40E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:14:09:30:5b:ef:5e:e9:6d:46:b6:ef:12:f0: 1d:b4:b0:27:da:42:30:56:f9:59:9c:cf:1e:38:22: 8a:9d:83:3a:97:11:0a:c5:4e:53:f7:d7:dc:00:e6: 7e:cf:26:9a:37:37:ae:23:94:f3:3e:ee:37:ea:e1: f8:c0:62:65:70:a1:81:4e:42:85:f6:c4:96:cb:ae: 2c:98:f0:e7:74:1f:12:c7:01:1f:be:02:45:b0:fc: 34:91:73:42:87:ac:bb:89:fc:24:3f:0a:c6:4e:54: 24:b3:47:95:9c:1c:9e:19:6e:c1:c3:c9:7e:46:51: fe:0f:c7:7a:f8:fd:37:40:2d:ed:2a:8e:37:93:66: 32:25:4a:97:f5:7e:44:0b:6f:a7:a5:90:a2:04:56: 2f:a2:ab:9e:a5:06:ef:16:86:9c:24:92:8f:cc:c4: b6:58:4e:76:84:01:e9:3a:42:3b:26:d1:6e:84:47: 1b:61:48:6c:a8:62:d9:73:d1:fe:f1:9e:6f:34:1f: b5:e3:29:4f:0e:cf:b8:46:1c:eb:df:89:05:5c:dd: 21:3a:c8:11:5c:d6:fa:b1:73:e7:cd:89:59:78:c9: af:c6:29:f9:ec:bd:7d:12:1e:a7:1c:2f:e8:e3:07: 4d:04:96:6f:52:d3:f8:ac:63:3f:33:9e:d9:c1:ac: e4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:BF:E5:83:A9:96:3A:F1:4B:C8:30:C8:A7:3D:9F:96:97:30:C4:0E X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6265303a3a2f34342d3438203d3e203338313733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:be0::/44 Signature Algorithm: sha256WithRSAEncryption 0b:37:b9:c3:7e:b8:db:f1:db:27:44:9e:5e:02:d2:b9:99:d7: 57:05:56:31:a3:37:98:40:c2:3b:d4:1b:cd:07:42:4f:87:e3: d8:e4:e9:7f:62:bd:27:22:3c:d2:79:19:6e:1a:5e:61:6d:c6: d6:97:16:53:ea:3b:b9:97:76:a7:6c:77:0f:08:0c:f1:21:c1: ea:79:e4:5a:bf:d6:8e:ed:4a:38:6a:f3:b0:75:99:76:34:e2: 0b:79:e8:b4:e2:ab:74:ce:75:c8:84:82:70:d4:91:c0:98:ef: 86:d2:4e:b8:ad:20:20:4a:bf:bc:fd:04:cc:b0:cf:b3:0e:e1: 84:8f:01:87:4c:f6:6e:72:5d:cd:66:5b:34:82:5c:c7:09:ac: ad:3a:96:63:bc:27:61:ca:9b:f4:16:21:fa:26:32:10:a3:ab: b5:58:d2:99:8e:a9:b2:67:c0:ef:5d:78:bd:e3:fb:12:12:4e: c2:d2:ed:66:0d:51:09:ec:4d:80:f4:f8:de:e7:86:27:cb:37: 62:80:94:4b:db:65:3e:4d:01:8b:1f:df:f7:3b:a8:ee:ae:f4: 5e:40:4c:3f:b5:45:7b:0e:85:71:7c:7f:b0:80:9f:bf:80:cb: a0:33:a4:94:8a:23:93:28:a3:5f:dd:36:91:e9:d2:66:41:0b: 33:bc:6c:64 -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIUI9UKC9R86t8kDA3/5y5A2FPiBF4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjQwNzE1MDg0NTA0WhcNMjUwNzE0MDg1MDA0 WjAzMTEwLwYDVQQDEyg5NUJGRTU4M0E5OTYzQUYxNEJDODMwQzhBNzNEOUY5Njk3 MzBDNDBFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxQJMFvvXult RrbvEvAdtLAn2kIwVvlZnM8eOCKKnYM6lxEKxU5T99fcAOZ+zyaaNzeuI5TzPu43 6uH4wGJlcKGBTkKF9sSWy64smPDndB8SxwEfvgJFsPw0kXNCh6y7ifwkPwrGTlQk s0eVnByeGW7Bw8l+RlH+D8d6+P03QC3tKo43k2YyJUqX9X5EC2+npZCiBFYvoque pQbvFoacJJKPzMS2WE52hAHpOkI7JtFuhEcbYUhsqGLZc9H+8Z5vNB+14ylPDs+4 Rhzr34kFXN0hOsgRXNb6sXPnzYlZeMmvxin57L19Eh6nHC/o4wdNBJZvUtP4rGM/ M57ZwazkZQIDAQABo4ICaTCCAmUwHQYDVR0OBBYEFJW/5YOpljrxS8gwyKc9n5aX MMQOMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwfgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzNjMwMzIzYTY2NjU2NDYxM2E2 MjY1MzAzYTNhMmYzNDM0MmQzNDM4MjAzZDNlMjAzMzM4MzEzNzMzLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcEJgL+2gvgMA0GCSqGSIb3DQEBCwUAA4IBAQALN7nDfrjb8dsnRJ5eAtK5mddX BVYxozeYQMI71BvNB0JPh+PY5Ol/Yr0nIjzSeRluGl5hbcbWlxZT6ju5l3anbHcP CAzxIcHqeeRav9aO7Uo4avOwdZl2NOILeei04qt0znXIhIJw1JHAmO+G0k64rSAg Sr+8/QTMsM+zDuGEjwGHTPZucl3NZls0glzHCaytOpZjvCdhypv0FiH6JjIQo6u1 WNKZjqmyZ8DvXXi94/sSEk7C0u1mDVEJ7E2A9Pje54YnyzdigJRL22U+TQGLH9/3 O6jurvReQEw/tUV7DoVxfH+wgJ+/gMugM6SUiiOTKKNf3TaR6dJmQQszvGxk -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:48 2024 by rpki-client on console-ams.rpki-client.org