$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6437303a3a2f34342d3438203d3e20313338343335.roa File: 323630323a666564613a6437303a3a2f34342d3438203d3e20313338343335.roa (raw, json) Hash identifier: 1b717TpmIlvPH8ZpfMfUxYpxumAaN+RpqXNOc64CcrA= Subject key identifier: C0:9C:6F:06:DE:A4:36:0A:4E:FB:C6:2D:17:E0:FD:79:47:EC:5F:A6 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 3B88AFBF9756CE168A50B90F91B04936441F673D Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6437303a3a2f34342d3438203d3e20313338343335.roa Signing time: Mon 18 May 2026 09:21:32 +0000 ROA not before: Mon 18 May 2026 09:16:32 +0000 ROA not after: Mon 17 May 2027 09:21:32 +0000 asID: 138435 IP address blocks: 2602:feda:d70::/44 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Jun 2026 08:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:88:af:bf:97:56:ce:16:8a:50:b9:0f:91:b0:49:36:44:1f:67:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: May 18 09:16:32 2026 GMT Not After : May 17 09:21:32 2027 GMT Subject: CN=C09C6F06DEA4360A4EFBC62D17E0FD7947EC5FA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:17:f5:72:32:7c:9d:ce:d6:5b:db:73:db:f0: 1d:b9:10:12:a4:cd:af:ad:ce:21:c9:ea:fb:70:f5: 2c:77:42:ff:86:52:38:d0:ca:78:43:3d:86:40:a2: 27:9d:0b:88:f4:a9:c3:4e:30:e4:f0:9f:03:7e:c7: e4:86:21:fc:fe:b2:12:11:f2:79:f5:5b:f9:7c:da: b1:cc:f9:2a:c5:8d:1c:41:fb:34:76:3d:69:95:fc: ac:04:f0:1e:92:f4:e5:68:91:82:8c:c7:fa:cc:8e: 07:37:90:00:87:f2:e4:82:b8:d4:55:6f:a7:5f:9a: 31:09:be:bc:39:37:7b:6d:9d:68:7f:f3:de:33:76: 3c:d2:d1:d1:3b:e9:a2:37:27:f7:51:9d:86:41:b1: 1a:74:b0:6a:b0:6f:d6:bc:43:e8:61:ff:84:a9:06: da:8f:29:a5:d3:38:71:50:92:1f:0b:1e:33:6e:e5: b7:72:81:70:2e:d5:40:a2:03:f3:8f:9d:62:7d:2d: 72:46:0f:87:4a:e8:cd:f1:6e:99:52:a4:80:dd:bb: 0c:ee:a9:38:ab:97:35:4d:e6:4f:f4:1c:3f:18:fe: 30:76:ba:4d:d0:3a:2b:87:d7:52:ad:8c:2b:44:6a: 81:1a:b3:11:90:2e:ab:22:ce:e0:7b:66:88:6a:4d: df:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:9C:6F:06:DE:A4:36:0A:4E:FB:C6:2D:17:E0:FD:79:47:EC:5F:A6 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6437303a3a2f34342d3438203d3e20313338343335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:d70::/44 Signature Algorithm: sha256WithRSAEncryption 8b:b7:ec:ff:92:26:82:73:29:51:3b:4f:03:f7:92:b0:7e:65: 65:1d:ec:fe:f2:9a:c8:36:6c:d1:f9:e0:ca:90:82:a7:85:de: d6:e2:d0:8c:26:48:70:9f:99:f8:ff:3c:ad:10:57:ce:f6:95: 82:70:4c:c3:69:4c:c4:e2:ff:88:5a:a3:5d:1b:c2:47:f7:a5: 75:86:40:b1:82:b3:7a:46:d9:8f:8e:25:42:a1:9d:1d:1e:90: 15:ee:46:ef:0e:78:75:43:19:55:90:74:15:43:a2:c1:6f:ff: f0:8b:18:9c:cf:4e:a9:21:8f:aa:74:59:b2:1d:91:24:38:c6: 4a:73:1c:87:49:a2:4a:14:d3:de:dc:ee:dc:23:41:03:9a:0b: c3:fe:92:1f:d3:85:13:37:8d:4b:8f:a3:ad:0f:4e:b3:6a:22: f7:26:2c:47:cb:0a:c7:a1:2b:ff:6e:24:2b:d7:af:72:02:c5: cf:5d:ad:f3:96:24:19:8b:a9:3d:c2:4a:cb:62:3f:f0:84:ce: ae:49:eb:61:44:84:ce:37:79:4f:34:8c:1b:84:20:05:1d:c9: 05:4f:f3:70:f6:18:d0:4c:c9:56:79:bd:23:31:2a:de:4e:b9: ff:c8:26:30:e7:42:74:6a:a6:3a:53:c6:58:9b:82:13:41:e9: 2a:ed:f5:64 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUO4ivv5dWzhaKULkPkbBJNkQfZz0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjYwNTE4MDkxNjMyWhcNMjcwNTE3MDkyMTMy WjAzMTEwLwYDVQQDEyhDMDlDNkYwNkRFQTQzNjBBNEVGQkM2MkQxN0UwRkQ3OTQ3 RUM1RkE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhf1cjJ8nc7W W9tz2/AduRASpM2vrc4hyer7cPUsd0L/hlI40Mp4Qz2GQKInnQuI9KnDTjDk8J8D fsfkhiH8/rISEfJ59Vv5fNqxzPkqxY0cQfs0dj1plfysBPAekvTlaJGCjMf6zI4H N5AAh/LkgrjUVW+nX5oxCb68OTd7bZ1of/PeM3Y80tHRO+miNyf3UZ2GQbEadLBq sG/WvEPoYf+EqQbajyml0zhxUJIfCx4zbuW3coFwLtVAogPzj51ifS1yRg+HSujN 8W6ZUqSA3bsM7qk4q5c1TeZP9Bw/GP4wdrpN0Dorh9dSrYwrRGqBGrMRkC6rIs7g e2aIak3feQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFMCcbwbepDYKTvvGLRfg/XlH 7F+mMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh NjQzNzMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEzMzM4MzQzMzM1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcEJgL+2g1wMA0GCSqGSIb3DQEBCwUAA4IBAQCLt+z/kiaCcylRO08D95Kw fmVlHez+8prINmzR+eDKkIKnhd7W4tCMJkhwn5n4/zytEFfO9pWCcEzDaUzE4v+I WqNdG8JH96V1hkCxgrN6RtmPjiVCoZ0dHpAV7kbvDnh1QxlVkHQVQ6LBb//wixic z06pIY+qdFmyHZEkOMZKcxyHSaJKFNPe3O7cI0EDmgvD/pIf04UTN41Lj6OtD06z aiL3JixHywrHoSv/biQr169yAsXPXa3zliQZi6k9wkrLYj/whM6uSethRITON3lP NIwbhCAFHckFT/Nw9hjQTMlWeb0jMSreTrn/yCYw50J0aqY6U8ZYm4ITQekq7fVk -----END CERTIFICATE-----Generated at Sat Jun 6 08:17:10 2026 by rpki-client