$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6437303a3a2f34342d3438203d3e20313338343335.roa File: 323630323a666564613a6437303a3a2f34342d3438203d3e20313338343335.roa (raw, json) Hash identifier: lGUVZSZ/onruylx6JtQRKrTaCqyrLR6EchECvK+0k6k= Subject key identifier: D6:9C:17:1B:E8:7E:38:CF:9B:B7:E1:8D:F1:18:C9:2B:F0:50:C2:C2 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 20AFA77C72B2FAC3F47A18BF4FC5E3D6DD386E10 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6437303a3a2f34342d3438203d3e20313338343335.roa Signing time: Mon 14 Aug 2023 07:53:30 +0000 ROA not before: Mon 14 Aug 2023 07:48:30 +0000 ROA not after: Mon 12 Aug 2024 07:53:30 +0000 asID: 138435 IP address blocks: 2602:feda:d70::/44 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 05 May 2024 07:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:af:a7:7c:72:b2:fa:c3:f4:7a:18:bf:4f:c5:e3:d6:dd:38:6e:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Aug 14 07:48:30 2023 GMT Not After : Aug 12 07:53:30 2024 GMT Subject: CN=D69C171BE87E38CF9BB7E18DF118C92BF050C2C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8c:1a:a5:f2:03:87:8a:e0:44:b3:02:6c:59: 72:a3:50:00:b4:fb:57:64:41:52:61:46:34:6d:5d: 57:32:fc:2b:54:0f:eb:89:72:fa:65:5c:97:5e:3d: 6c:4f:a2:a8:0a:ee:98:76:c8:20:91:c6:50:9a:96: af:0f:91:94:d5:e4:62:9f:42:80:d0:c0:64:2f:f2: 2c:ed:e9:de:d8:03:13:0f:7d:5b:63:5a:c4:ca:72: 80:15:b3:fe:10:1c:18:9e:9c:91:10:7b:16:bf:1d: 2d:44:28:cc:c4:e6:bd:0c:31:0e:5f:c2:a1:3f:28: 5c:3a:59:cb:d4:84:f1:44:71:fa:16:92:58:92:2f: 32:02:0d:fa:f4:60:08:31:7c:24:11:26:32:df:ba: bc:4f:bb:61:56:2d:6b:a1:f8:0c:2c:a3:3c:e3:c5: 4e:b1:e2:31:a0:10:5a:fc:3a:08:31:9c:05:90:f6: 47:f8:10:c7:a9:b5:e8:e7:25:fc:35:e6:f6:70:cf: e6:01:12:40:29:4e:6a:3f:06:e9:09:ab:fa:5c:22: f9:22:f9:49:04:c6:71:69:dd:41:c8:ec:c9:06:e7: 70:a5:a6:a3:f7:4e:9c:3f:f2:25:90:21:76:18:91: 33:52:59:0f:1d:e7:74:00:af:3e:7e:7c:12:68:88: 19:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:9C:17:1B:E8:7E:38:CF:9B:B7:E1:8D:F1:18:C9:2B:F0:50:C2:C2 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6437303a3a2f34342d3438203d3e20313338343335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:d70::/44 Signature Algorithm: sha256WithRSAEncryption 83:df:30:2b:2c:04:d4:a8:61:6d:fb:08:d9:05:f4:7d:7a:19: 2c:54:70:07:b8:e0:69:74:69:37:d7:2d:67:89:4d:a5:61:4e: a2:21:c7:6e:46:fd:ed:cb:ac:51:9f:bd:db:a2:1e:3c:b6:dc: 10:ba:30:cb:0c:7d:f2:fd:25:91:b7:5f:cd:91:49:ed:fd:b2: 1c:00:fa:1e:68:75:e0:a1:18:ea:23:a4:4d:1a:7f:6d:21:5f: ea:41:0d:fe:f6:13:94:65:13:15:0a:ce:1c:9c:ce:ae:dc:17: c4:73:46:49:66:e2:57:b9:b4:5d:e7:94:c9:d4:71:62:aa:ef: fb:68:d7:8e:05:d2:01:f4:7b:fb:09:25:ba:39:34:78:bd:1e: c7:28:de:a6:c5:1a:01:64:7e:bc:2c:e2:f8:6b:c1:59:e2:74: 88:7d:86:25:1a:ee:03:4d:b1:29:44:4f:d5:29:1f:21:69:64: f2:c0:fc:17:01:b7:bf:05:d2:91:91:34:1f:ac:7b:0a:77:f5: ea:a1:14:27:ef:f4:c0:41:09:bd:94:be:28:2d:7f:d8:7a:4b: bc:2f:82:d4:75:d1:ac:c2:4b:45:24:77:25:d1:2e:a3:d6:0b: 2a:02:cb:c4:8b:cc:5d:6c:07:b6:6f:cd:ad:c4:21:65:55:16: 26:4a:ab:47 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUIK+nfHKy+sP0ehi/T8Xj1t04bhAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjMwODE0MDc0ODMwWhcNMjQwODEyMDc1MzMw WjAzMTEwLwYDVQQDEyhENjlDMTcxQkU4N0UzOENGOUJCN0UxOERGMTE4QzkyQkYw NTBDMkMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsowapfIDh4rg RLMCbFlyo1AAtPtXZEFSYUY0bV1XMvwrVA/riXL6ZVyXXj1sT6KoCu6YdsggkcZQ mpavD5GU1eRin0KA0MBkL/Is7ene2AMTD31bY1rEynKAFbP+EBwYnpyREHsWvx0t RCjMxOa9DDEOX8KhPyhcOlnL1ITxRHH6FpJYki8yAg369GAIMXwkESYy37q8T7th Vi1rofgMLKM848VOseIxoBBa/DoIMZwFkPZH+BDHqbXo5yX8Neb2cM/mARJAKU5q PwbpCav6XCL5IvlJBMZxad1ByOzJBudwpaaj906cP/IlkCF2GJEzUlkPHed0AK8+ fnwSaIgZJwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFNacFxvofjjPm7fhjfEYySvw UMLCMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh NjQzNzMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEzMzM4MzQzMzM1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcEJgL+2g1wMA0GCSqGSIb3DQEBCwUAA4IBAQCD3zArLATUqGFt+wjZBfR9 ehksVHAHuOBpdGk31y1niU2lYU6iIcduRv3ty6xRn73boh48ttwQujDLDH3y/SWR t1/NkUnt/bIcAPoeaHXgoRjqI6RNGn9tIV/qQQ3+9hOUZRMVCs4cnM6u3BfEc0ZJ ZuJXubRd55TJ1HFiqu/7aNeOBdIB9Hv7CSW6OTR4vR7HKN6mxRoBZH68LOL4a8FZ 4nSIfYYlGu4DTbEpRE/VKR8haWTywPwXAbe/BdKRkTQfrHsKd/XqoRQn7/TAQQm9 lL4oLX/Yeku8L4LUddGswktFJHcl0S6j1gsqAsvEi8xdbAe2b82txCFlVRYmSqtH -----END CERTIFICATE-----Generated at Sat May 4 08:52:00 2024 by rpki-client on console-ams.rpki-client.org