$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6335303a3a2f34342d3438203d3e20323132343235.roa File: 323630323a666564613a6335303a3a2f34342d3438203d3e20323132343235.roa (raw, json) Hash identifier: 8Seei/PYPM6J0QSLt6EKY08Lw+0qJBC0jwTssyNIzEk= Subject key identifier: C8:D1:0A:04:30:64:34:0B:46:68:F7:B2:EF:9B:CF:0B:72:6C:A1:58 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 72A82E5F4C9AE5E714144D39D042925B5CA305FE Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6335303a3a2f34342d3438203d3e20323132343235.roa Signing time: Mon 18 May 2026 09:21:33 +0000 ROA not before: Mon 18 May 2026 09:16:33 +0000 ROA not after: Mon 17 May 2027 09:21:33 +0000 asID: 212425 IP address blocks: 2602:feda:c50::/44 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Jun 2026 08:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a8:2e:5f:4c:9a:e5:e7:14:14:4d:39:d0:42:92:5b:5c:a3:05:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: May 18 09:16:33 2026 GMT Not After : May 17 09:21:33 2027 GMT Subject: CN=C8D10A043064340B4668F7B2EF9BCF0B726CA158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3d:11:ae:fa:30:05:77:07:61:81:50:77:68: bd:e4:26:c9:48:8b:0f:b6:cf:8e:b1:ff:28:0c:ba: 2a:35:9a:83:8b:67:56:aa:09:b2:88:c4:fe:64:e8: 77:db:24:19:b2:1f:77:fb:6e:f4:f9:4d:4c:d5:33: 6b:c2:32:31:b5:2c:d6:23:7d:7a:95:e7:0c:fb:08: 01:2b:02:98:e4:55:4f:10:98:4f:60:41:f9:35:b5: da:de:39:dd:3d:2d:15:86:69:e3:a6:61:11:d8:29: 0d:c1:a9:c2:42:f6:29:48:2d:4b:f3:71:af:3d:c1: f6:b9:c1:87:e1:c2:73:d2:a8:33:07:6f:7c:f0:ce: 07:00:9e:43:56:d4:ac:ef:d2:89:03:52:cc:33:06: 92:9c:d2:ed:d6:fb:99:db:22:8f:af:23:7d:83:6b: 82:82:6f:54:fd:6c:1c:4b:b3:30:d0:b2:14:8f:b6: 46:75:75:f4:f3:3e:b4:79:d8:55:10:6b:1d:82:62: d4:e7:b8:45:c1:d3:83:cd:fc:6c:cb:b4:d5:37:ae: 67:64:a8:b3:2d:10:58:47:8b:e0:d9:25:80:70:0e: c0:3a:e3:32:92:f2:9c:cd:00:1c:bb:1f:97:11:b4: 68:c4:25:be:70:7e:92:94:bc:65:ba:45:a6:5c:45: 70:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D1:0A:04:30:64:34:0B:46:68:F7:B2:EF:9B:CF:0B:72:6C:A1:58 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6335303a3a2f34342d3438203d3e20323132343235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:c50::/44 Signature Algorithm: sha256WithRSAEncryption 71:86:5b:15:d0:f3:7a:d5:14:a3:b8:dd:07:1e:bb:3a:07:f0: 03:45:c2:0d:98:97:5c:5b:0b:d0:10:0d:4d:2a:17:e9:ba:02: 2c:9d:48:bf:e2:31:86:7b:9b:fc:4a:44:60:15:91:ee:cd:17: f5:ac:12:31:c3:a2:ff:3c:7d:20:c1:9f:18:df:69:37:df:33: 09:5c:61:6c:fe:04:6c:8e:ab:44:a1:44:d0:24:96:24:8d:c9: 40:43:fb:18:2c:8c:c7:dd:46:51:ce:b1:b1:2e:7e:91:06:d8: e6:4a:0c:3f:89:d4:5a:1d:43:c5:d9:46:d1:30:6a:35:b0:63: c7:5f:f3:d3:bd:90:aa:38:1d:87:23:28:02:a1:49:db:ba:6c: 5f:4b:82:a3:20:c0:57:48:20:cd:66:e4:cd:9a:4f:bd:b6:1a: 85:7f:f9:51:f7:34:1a:d8:19:1b:d0:14:c3:f9:cd:35:8e:54: aa:94:00:59:c9:9a:6c:4d:65:07:80:92:64:f3:2f:cf:28:61: 37:1e:7c:12:15:6a:e2:42:30:4c:d0:99:2e:97:4e:c6:3e:ea: 06:a0:28:79:17:45:2b:47:d9:c8:64:80:98:a7:aa:d6:e4:d5: d9:f9:23:fe:d2:48:fd:db:61:7d:b0:26:53:35:e7:e3:47:aa: b8:f2:3b:b3 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUcqguX0ya5ecUFE050EKSW1yjBf4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjYwNTE4MDkxNjMzWhcNMjcwNTE3MDkyMTMz WjAzMTEwLwYDVQQDEyhDOEQxMEEwNDMwNjQzNDBCNDY2OEY3QjJFRjlCQ0YwQjcy NkNBMTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqz0RrvowBXcH YYFQd2i95CbJSIsPts+Osf8oDLoqNZqDi2dWqgmyiMT+ZOh32yQZsh93+270+U1M 1TNrwjIxtSzWI316lecM+wgBKwKY5FVPEJhPYEH5NbXa3jndPS0VhmnjpmER2CkN wanCQvYpSC1L83GvPcH2ucGH4cJz0qgzB2988M4HAJ5DVtSs79KJA1LMMwaSnNLt 1vuZ2yKPryN9g2uCgm9U/WwcS7Mw0LIUj7ZGdXX08z60edhVEGsdgmLU57hFwdOD zfxsy7TVN65nZKizLRBYR4vg2SWAcA7AOuMykvKczQAcux+XEbRoxCW+cH6SlLxl ukWmXEVwjQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFMjRCgQwZDQLRmj3su+bzwty bKFYMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh NjMzNTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIzMTMyMzQzMjM1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcEJgL+2gxQMA0GCSqGSIb3DQEBCwUAA4IBAQBxhlsV0PN61RSjuN0HHrs6 B/ADRcINmJdcWwvQEA1NKhfpugIsnUi/4jGGe5v8SkRgFZHuzRf1rBIxw6L/PH0g wZ8Y32k33zMJXGFs/gRsjqtEoUTQJJYkjclAQ/sYLIzH3UZRzrGxLn6RBtjmSgw/ idRaHUPF2UbRMGo1sGPHX/PTvZCqOB2HIygCoUnbumxfS4KjIMBXSCDNZuTNmk+9 thqFf/lR9zQa2Bkb0BTD+c01jlSqlABZyZpsTWUHgJJk8y/PKGE3HnwSFWriQjBM 0Jkul07GPuoGoCh5F0UrR9nIZICYp6rW5NXZ+SP+0kj922F9sCZTNefjR6q48juz -----END CERTIFICATE-----Generated at Sat Jun 6 06:25:56 2026 by rpki-client