$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6433303a3a2f34382d3438203d3e20323132323932.roa File: 323630323a666564613a6433303a3a2f34382d3438203d3e20323132323932.roa (raw, json) Hash identifier: EPT7fgT9831xAnjpnvOfdupTd3aP2Vo3hdo4vBGA0B0= Subject key identifier: 2B:DC:2F:5A:48:19:D9:93:DE:6B:73:7E:22:34:16:99:74:03:B1:FF Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 40C1328D8B8EBC39E73BB399E8E4BDE016ADB549 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6433303a3a2f34382d3438203d3e20323132323932.roa Signing time: Mon 18 May 2026 09:21:38 +0000 ROA not before: Mon 18 May 2026 09:16:38 +0000 ROA not after: Mon 17 May 2027 09:21:38 +0000 asID: 212292 IP address blocks: 2602:feda:d30::/48 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Jun 2026 08:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:c1:32:8d:8b:8e:bc:39:e7:3b:b3:99:e8:e4:bd:e0:16:ad:b5:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: May 18 09:16:38 2026 GMT Not After : May 17 09:21:38 2027 GMT Subject: CN=2BDC2F5A4819D993DE6B737E223416997403B1FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2e:2f:ac:40:b4:8b:08:76:f5:9a:8b:2f:ef: 63:42:4a:7a:73:f4:fe:16:5f:42:5c:57:0d:86:b9: 48:00:14:58:d4:db:91:28:41:f7:51:dd:e2:de:e8: 45:b9:49:d5:c0:24:77:d1:1a:3a:fb:a2:f0:cd:58: 33:27:c1:7b:f0:7f:48:42:c0:aa:bb:44:19:d8:45: 92:55:24:e3:10:c7:ac:38:5c:1d:10:c3:05:25:09: 58:f5:5c:b1:06:25:9e:a4:c8:54:d2:15:30:72:27: 72:5a:cd:3b:41:6a:04:09:7b:f3:49:45:99:57:b3: e2:5c:83:30:41:32:21:41:ad:3e:f4:9b:27:cb:5a: d5:c7:50:c6:bc:a3:ec:a8:55:92:63:70:1f:6a:56: ac:df:25:c5:e6:13:fa:47:89:21:f2:c8:fd:c0:15: 23:d8:a9:c4:69:8e:fc:ce:38:6a:1f:60:92:64:c0: 13:b4:e7:c5:f7:91:e9:ce:2c:f8:5c:bd:ff:b6:d8: 3c:7b:c0:06:d3:f8:81:c1:b4:80:5f:3d:bc:ca:6f: c6:23:56:67:d7:c2:4a:4c:de:f5:c7:a8:b5:6b:6b: b9:22:54:3d:5f:db:fd:c6:3f:36:94:4b:24:e7:86: 05:65:80:50:ab:ae:76:83:6b:83:9b:4e:61:14:6a: 57:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:DC:2F:5A:48:19:D9:93:DE:6B:73:7E:22:34:16:99:74:03:B1:FF X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6433303a3a2f34382d3438203d3e20323132323932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:d30::/48 Signature Algorithm: sha256WithRSAEncryption 58:af:b6:a2:c9:86:e7:33:50:0a:7c:df:c7:ae:3b:7f:8c:df: 6f:2f:54:05:c5:1a:f0:bd:48:9b:12:97:62:ff:d0:6e:8e:18: a5:ac:30:3a:69:14:98:dd:a5:de:57:2f:3a:7d:d3:30:83:a5: 2b:9e:91:ad:f2:40:ef:20:1a:29:fa:c8:63:8b:05:81:a8:a6: 0c:20:b6:ba:1f:0a:81:ec:1d:52:71:9a:0b:17:99:08:d8:fa: 82:2b:cc:3d:67:30:c7:a2:b1:3a:24:1c:bb:98:32:f8:07:ec: 75:a8:1f:8f:1e:8e:60:d5:89:d7:f4:38:ac:c7:dc:2a:4e:84: 93:a9:b5:14:15:d7:e9:eb:9d:eb:a4:01:55:2a:8e:5f:f5:74: 89:2d:97:01:73:a5:83:6a:6d:b5:70:72:ad:f3:a1:bf:1f:02: ce:f8:ba:e8:fa:d4:9d:7f:58:36:b2:fb:8b:69:68:50:00:f8: 3f:dc:a8:77:5d:31:af:cc:fc:d5:41:2d:72:6f:71:3c:7e:36: c7:fa:83:44:f1:06:2c:8f:4d:e1:06:7c:e9:af:d4:30:a5:e7: ac:e5:c0:05:aa:ed:4b:00:b0:21:07:37:b3:24:23:6a:96:6d: 3c:cd:69:4a:3f:8b:58:b6:98:38:28:1b:ea:1d:86:95:bd:f1: 88:13:27:f4 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUQMEyjYuOvDnnO7OZ6OS94BattUkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjYwNTE4MDkxNjM4WhcNMjcwNTE3MDkyMTM4 WjAzMTEwLwYDVQQDEygyQkRDMkY1QTQ4MTlEOTkzREU2QjczN0UyMjM0MTY5OTc0 MDNCMUZGMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwC4vrEC0iwh2 9ZqLL+9jQkp6c/T+Fl9CXFcNhrlIABRY1NuRKEH3Ud3i3uhFuUnVwCR30Ro6+6Lw zVgzJ8F78H9IQsCqu0QZ2EWSVSTjEMesOFwdEMMFJQlY9VyxBiWepMhU0hUwcidy Ws07QWoECXvzSUWZV7PiXIMwQTIhQa0+9Jsny1rVx1DGvKPsqFWSY3Afalas3yXF 5hP6R4kh8sj9wBUj2KnEaY78zjhqH2CSZMATtOfF95Hpziz4XL3/ttg8e8AG0/iB wbSAXz28ym/GI1Zn18JKTN71x6i1a2u5IlQ9X9v9xj82lEsk54YFZYBQq652g2uD m05hFGpXdQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFCvcL1pIGdmT3mtzfiI0Fpl0 A7H/MB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh NjQzMzMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMTMyMzIzOTMyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAJgL+2g0wMA0GCSqGSIb3DQEBCwUAA4IBAQBYr7aiyYbnM1AKfN/Hrjt/ jN9vL1QFxRrwvUibEpdi/9BujhilrDA6aRSY3aXeVy86fdMwg6UrnpGt8kDvIBop +shjiwWBqKYMILa6HwqB7B1ScZoLF5kI2PqCK8w9ZzDHorE6JBy7mDL4B+x1qB+P Ho5g1YnX9Disx9wqToSTqbUUFdfp653rpAFVKo5f9XSJLZcBc6WDam21cHKt86G/ HwLO+Lro+tSdf1g2svuLaWhQAPg/3Kh3XTGvzPzVQS1yb3E8fjbH+oNE8QYsj03h Bnzpr9Qwpees5cAFqu1LALAhBzezJCNqlm08zWlKP4tYtpg4KBvqHYaVvfGIEyf0 -----END CERTIFICATE-----Generated at Sat Jun 6 08:17:58 2026 by rpki-client