$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6437303a3a2f34342d3438203d3e20313338343335.roa File: 323630323a666564613a6437303a3a2f34342d3438203d3e20313338343335.roa (raw, json) Hash identifier: Gh9Jrj6FsK8zgERZp9QV78FRTZvQPXONaaYkl6bkU0o= Subject key identifier: 4A:34:6C:20:95:DD:40:17:5D:CB:AE:06:E8:AB:D4:61:00:DA:4F:EF Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 1ECB886347F52A29062BF844582AC7565AA10CD6 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6437303a3a2f34342d3438203d3e20313338343335.roa Signing time: Mon 15 Jul 2024 08:50:11 +0000 ROA not before: Mon 15 Jul 2024 08:45:11 +0000 ROA not after: Mon 14 Jul 2025 08:50:11 +0000 asID: 138435 IP address blocks: 2602:feda:d70::/44 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 09:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:cb:88:63:47:f5:2a:29:06:2b:f8:44:58:2a:c7:56:5a:a1:0c:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jul 15 08:45:11 2024 GMT Not After : Jul 14 08:50:11 2025 GMT Subject: CN=4A346C2095DD40175DCBAE06E8ABD46100DA4FEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:03:7b:20:af:0f:82:0a:d0:bf:42:50:47:a2: 19:a4:80:c0:bf:ed:a9:f1:0a:da:8f:8a:f3:bb:b3: dc:81:1d:87:0f:89:3f:ea:f9:55:52:98:b0:97:e4: b9:73:4e:5c:26:8d:fa:77:05:72:cc:70:31:d9:fe: d7:83:07:09:30:36:c9:a1:94:08:f4:2d:a8:a4:0f: d9:94:0b:f8:b3:db:92:dc:b3:69:79:63:44:fa:2d: ee:ef:3e:b3:53:3f:8a:b9:7f:ed:c2:f2:78:eb:7d: 35:5a:5b:19:5f:c9:97:d9:4e:d7:c5:9a:b1:ec:f1: 85:fb:1b:f8:f5:09:77:34:cc:bb:5d:e8:6f:14:f4: 54:5c:9d:76:24:06:6c:6f:70:5c:06:9d:93:7b:e0: 3a:38:96:4b:5e:b3:0b:31:57:37:0d:df:87:fe:6e: 06:ed:06:9b:c2:cd:4b:69:fc:66:9c:3e:40:ab:e8: 34:7a:4b:90:0a:83:fc:51:28:fe:89:ed:5a:e0:74: 45:1e:70:45:90:a2:b1:29:17:65:48:08:80:fe:c6: 47:5c:06:09:c5:c3:10:77:16:69:e0:a7:e8:43:5d: d3:4e:34:6b:25:71:4e:94:a3:f5:34:55:fd:9b:0c: 99:6f:a2:83:70:75:70:8f:ab:96:7a:d6:81:ef:1a: 25:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:34:6C:20:95:DD:40:17:5D:CB:AE:06:E8:AB:D4:61:00:DA:4F:EF X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6437303a3a2f34342d3438203d3e20313338343335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:d70::/44 Signature Algorithm: sha256WithRSAEncryption 61:a2:fc:f6:7a:7c:a3:44:dd:d8:e3:cb:67:1c:60:e5:21:6d: 4b:5e:84:cb:46:92:b9:37:8a:8b:9a:25:4c:ea:b9:3f:25:2c: ad:e4:2f:6a:fc:25:a9:13:58:49:fa:4c:2b:b9:37:9c:b8:1d: 40:9a:01:98:e7:2a:e9:e7:87:48:67:5c:0a:97:73:ca:d0:15: c1:9b:b5:72:de:69:07:5f:a1:93:b7:66:1b:54:9c:8f:1b:d6: 64:bf:67:11:ae:13:fa:43:42:e3:ca:f9:b7:5c:aa:89:26:06: e2:99:d2:f9:3a:77:c7:0c:aa:77:be:82:89:07:78:6d:55:35: d0:36:09:45:18:d6:46:14:1d:1d:bc:76:de:80:03:4f:01:bf: 90:6a:30:5d:9a:7c:67:6d:b0:46:d1:d6:bf:30:e9:de:61:4c: 66:c6:e2:bc:57:43:4a:0d:0d:3a:d9:bf:a3:48:a1:7a:ff:5a: 88:29:06:3d:a0:f7:fe:bc:16:4a:f3:65:18:e6:29:64:83:ee: 3e:d5:01:52:72:85:d2:61:fa:71:85:4b:1b:fb:42:74:82:ca: 0c:60:7a:75:48:e2:90:5a:bd:b7:47:a4:c8:10:fb:20:23:73: 24:87:e9:dc:f3:90:39:a6:10:2a:0f:95:24:f5:9b:2f:76:13: d5:e4:24:fb -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUHsuIY0f1KikGK/hEWCrHVlqhDNYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjQwNzE1MDg0NTExWhcNMjUwNzE0MDg1MDEx WjAzMTEwLwYDVQQDEyg0QTM0NkMyMDk1REQ0MDE3NURDQkFFMDZFOEFCRDQ2MTAw REE0RkVGMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsAN7IK8PggrQ v0JQR6IZpIDAv+2p8Qraj4rzu7PcgR2HD4k/6vlVUpiwl+S5c05cJo36dwVyzHAx 2f7XgwcJMDbJoZQI9C2opA/ZlAv4s9uS3LNpeWNE+i3u7z6zUz+KuX/twvJ46301 WlsZX8mX2U7XxZqx7PGF+xv49Ql3NMy7XehvFPRUXJ12JAZsb3BcBp2Te+A6OJZL XrMLMVc3Dd+H/m4G7Qabws1LafxmnD5Aq+g0ekuQCoP8USj+ie1a4HRFHnBFkKKx KRdlSAiA/sZHXAYJxcMQdxZp4KfoQ13TTjRrJXFOlKP1NFX9mwyZb6KDcHVwj6uW etaB7xolxQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFEo0bCCV3UAXXcuuBuir1GEA 2k/vMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh NjQzNzMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEzMzM4MzQzMzM1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcEJgL+2g1wMA0GCSqGSIb3DQEBCwUAA4IBAQBhovz2enyjRN3Y48tnHGDl IW1LXoTLRpK5N4qLmiVM6rk/JSyt5C9q/CWpE1hJ+kwruTecuB1AmgGY5yrp54dI Z1wKl3PK0BXBm7Vy3mkHX6GTt2YbVJyPG9Zkv2cRrhP6Q0Ljyvm3XKqJJgbimdL5 OnfHDKp3voKJB3htVTXQNglFGNZGFB0dvHbegANPAb+QajBdmnxnbbBG0da/MOne YUxmxuK8V0NKDQ062b+jSKF6/1qIKQY9oPf+vBZK82UY5ilkg+4+1QFScoXSYfpx hUsb+0J0gsoMYHp1SOKQWr23R6TIEPsgI3Mkh+nc85A5phAqD5Uk9ZsvdhPV5CT7 -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:02 2024 by rpki-client on console-fra.rpki-client.org