$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6433303a3a2f34382d3438203d3e20323132323932.roa File: 323630323a666564613a6433303a3a2f34382d3438203d3e20323132323932.roa (raw, json) Hash identifier: B3tUOIUt3jZmrYQvGrAa6eA/9h+tkHHSnwXUkTZlpFY= Subject key identifier: 66:86:8D:A1:FC:68:E3:8B:1F:35:A1:9E:FF:3C:DF:E9:D3:4A:53:8A Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 5FC3A81CD91C5725FF1D4C6F86441366F1003668 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6433303a3a2f34382d3438203d3e20323132323932.roa Signing time: Mon 15 Jul 2024 08:50:12 +0000 ROA not before: Mon 15 Jul 2024 08:45:12 +0000 ROA not after: Mon 14 Jul 2025 08:50:12 +0000 asID: 212292 IP address blocks: 2602:feda:d30::/48 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 16:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:c3:a8:1c:d9:1c:57:25:ff:1d:4c:6f:86:44:13:66:f1:00:36:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jul 15 08:45:12 2024 GMT Not After : Jul 14 08:50:12 2025 GMT Subject: CN=66868DA1FC68E38B1F35A19EFF3CDFE9D34A538A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c5:81:59:97:97:f6:55:1e:ca:6b:ed:d4:5d: 2c:01:f2:c0:02:12:c8:86:c0:7a:e9:5b:7d:00:b1: 9f:1e:a4:58:7d:62:fe:07:ca:ce:ac:22:da:a0:59: 3e:b0:5c:f9:59:1a:52:8b:70:7b:95:36:0e:d6:f9: 81:6f:7c:2d:91:85:ee:d1:d1:86:9d:0f:16:17:36: bc:2d:60:2e:d5:00:70:ed:10:44:39:6b:b9:de:5f: 0c:f9:23:b8:c7:9d:f0:1d:3a:2b:f6:4f:6b:4e:69: 3d:ad:5d:6c:42:5b:f4:53:11:cd:9c:79:7f:f0:8c: 2f:e7:c2:f7:1f:e0:51:ac:a8:b3:9b:07:60:f5:3b: 20:47:a0:e5:fd:cd:99:39:54:c1:4d:00:eb:35:57: d2:e6:c2:4e:7e:83:8a:9f:02:b9:d9:a6:b3:c4:bc: 5e:89:6b:77:b5:8e:f4:fd:ee:50:d6:d0:95:b3:e5: 91:5d:0a:23:71:c7:fc:1a:5b:5e:f3:bf:4f:6d:71: 77:2b:ea:f5:45:66:42:58:ce:d6:54:1b:f3:5e:e9: e6:c1:d2:80:e6:21:0e:db:a0:6d:35:23:09:9e:54: ca:b3:a1:42:af:97:0c:ff:71:60:8f:69:88:f5:65: e8:7b:de:45:2b:ff:8b:b8:c2:fe:7d:d4:9a:f6:ff: 6d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:86:8D:A1:FC:68:E3:8B:1F:35:A1:9E:FF:3C:DF:E9:D3:4A:53:8A X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6433303a3a2f34382d3438203d3e20323132323932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:d30::/48 Signature Algorithm: sha256WithRSAEncryption 32:99:c1:59:06:63:0d:41:76:d6:c6:88:d2:8d:87:c8:82:9f: 48:df:91:d9:c6:fb:3d:71:a9:20:b2:68:46:05:f9:e8:f3:51: 2c:e1:38:b4:fb:ef:25:61:44:f0:41:c2:87:96:70:f3:df:e4: cd:ce:43:9a:33:2b:ce:98:7a:29:c7:59:66:92:3d:28:8c:1e: cc:86:f8:69:e6:1d:ba:48:b3:0b:3c:bd:7f:13:48:c0:14:86: 2b:f1:62:4b:ed:40:49:75:91:9d:e4:a7:30:e1:cf:01:b6:52: 4a:bd:8e:e1:3a:86:ae:3a:ca:7d:e0:26:42:80:3d:55:4c:c6: 64:96:5a:40:83:0d:89:48:f1:a1:7b:08:40:2c:ca:47:97:a9: 7c:3b:3b:ba:45:e3:3f:16:0d:5b:0b:cd:5c:80:4f:fe:10:94: 99:6b:9e:86:77:a4:81:96:f1:c8:88:f3:14:bd:a0:40:7c:b2: 81:1b:d0:45:eb:e5:34:30:20:21:39:6b:d3:bc:e0:52:6a:17: 01:ba:a1:b8:95:90:38:9d:5f:7e:1f:1c:0a:4f:db:1b:6f:23: 9d:2c:aa:eb:c0:34:c0:01:66:3d:cc:d6:c0:14:1e:46:3f:55: 03:92:e3:2b:70:e1:23:fe:4e:6f:01:68:87:ed:87:a6:48:18: 8b:ed:27:60 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUX8OoHNkcVyX/HUxvhkQTZvEANmgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjQwNzE1MDg0NTEyWhcNMjUwNzE0MDg1MDEy WjAzMTEwLwYDVQQDEyg2Njg2OERBMUZDNjhFMzhCMUYzNUExOUVGRjNDREZFOUQz NEE1MzhBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApMWBWZeX9lUe ymvt1F0sAfLAAhLIhsB66Vt9ALGfHqRYfWL+B8rOrCLaoFk+sFz5WRpSi3B7lTYO 1vmBb3wtkYXu0dGGnQ8WFza8LWAu1QBw7RBEOWu53l8M+SO4x53wHTor9k9rTmk9 rV1sQlv0UxHNnHl/8Iwv58L3H+BRrKizmwdg9TsgR6Dl/c2ZOVTBTQDrNVfS5sJO foOKnwK52aazxLxeiWt3tY70/e5Q1tCVs+WRXQojccf8Glte879PbXF3K+r1RWZC WM7WVBvzXunmwdKA5iEO26BtNSMJnlTKs6FCr5cM/3Fgj2mI9WXoe95FK/+LuML+ fdSa9v9tvQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFGaGjaH8aOOLHzWhnv883+nT SlOKMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh NjQzMzMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMTMyMzIzOTMyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAJgL+2g0wMA0GCSqGSIb3DQEBCwUAA4IBAQAymcFZBmMNQXbWxojSjYfI gp9I35HZxvs9cakgsmhGBfno81Es4Ti0++8lYUTwQcKHlnDz3+TNzkOaMyvOmHop x1lmkj0ojB7Mhvhp5h26SLMLPL1/E0jAFIYr8WJL7UBJdZGd5Kcw4c8BtlJKvY7h OoauOsp94CZCgD1VTMZkllpAgw2JSPGhewhALMpHl6l8Ozu6ReM/Fg1bC81cgE/+ EJSZa56Gd6SBlvHIiPMUvaBAfLKBG9BF6+U0MCAhOWvTvOBSahcBuqG4lZA4nV9+ HxwKT9sbbyOdLKrrwDTAAWY9zNbAFB5GP1UDkuMrcOEj/k5vAWiH7YemSBiL7Sdg -----END CERTIFICATE-----Generated at Sun Feb 16 21:41:42 2025 by rpki-client