$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6536303a3a2f34342d3438203d3e20313439383335.roa File: 323630323a666564613a6536303a3a2f34342d3438203d3e20313439383335.roa (raw, json) Hash identifier: ixexwMZvO4fI2yJ2gaIM+Qgs7bxDmK/Z6If1CLAG2Nw= Subject key identifier: 4A:25:27:DE:D4:8A:C1:D4:DF:72:6A:79:22:D5:38:31:32:24:2D:15 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 47AE37EDBB1CD039DF3417D5FF6D5713CD42B281 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6536303a3a2f34342d3438203d3e20313439383335.roa Signing time: Mon 18 May 2026 09:21:30 +0000 ROA not before: Mon 18 May 2026 09:16:30 +0000 ROA not after: Mon 17 May 2027 09:21:30 +0000 asID: 149835 IP address blocks: 2602:feda:e60::/44 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Jun 2026 08:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:ae:37:ed:bb:1c:d0:39:df:34:17:d5:ff:6d:57:13:cd:42:b2:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: May 18 09:16:30 2026 GMT Not After : May 17 09:21:30 2027 GMT Subject: CN=4A2527DED48AC1D4DF726A7922D5383132242D15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ab:47:83:e5:02:42:9d:ab:94:1f:19:01:53: f9:57:52:b6:e2:fc:f3:bb:f9:3e:ea:82:04:f5:94: e3:08:58:d4:06:a2:5d:ec:d4:b3:bf:95:32:17:a4: f9:eb:e3:eb:24:a8:fb:52:e5:a6:7b:33:9d:ed:16: 5d:7a:c9:ce:a4:42:e0:72:55:f2:3d:d0:8f:4a:c1: 4e:e2:52:e5:22:19:d8:3a:ea:78:a3:6c:18:46:6d: f1:3c:23:09:08:2e:71:35:2e:8d:c6:1c:16:3f:f8: 7a:eb:d6:bc:e2:ff:0e:98:20:8a:03:bf:bd:32:ec: b3:4e:24:2b:4d:a5:81:95:fc:48:4a:fa:ae:16:d2: 5f:19:cf:30:bd:62:7e:ef:8c:c9:59:e4:5c:3b:f5: 5f:88:f7:f0:5e:3f:f2:34:4e:e7:0e:87:3f:47:a6: 3f:46:b4:ac:b0:b9:c1:eb:76:c3:f4:4a:68:7f:1b: 61:3b:ce:15:8a:64:e7:06:81:bc:81:01:98:b3:de: 84:1f:b6:27:6c:02:a8:68:21:00:e9:34:72:9a:42: 44:24:4a:e0:50:d4:ad:fb:9c:a7:6e:6e:8c:e1:9d: dc:54:70:b6:2d:e3:8b:b8:02:01:99:30:e8:da:2c: 38:01:55:12:9a:07:98:8d:f1:47:1d:66:29:c6:f9: 06:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:25:27:DE:D4:8A:C1:D4:DF:72:6A:79:22:D5:38:31:32:24:2D:15 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a6536303a3a2f34342d3438203d3e20313439383335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:e60::/44 Signature Algorithm: sha256WithRSAEncryption b1:a7:ce:df:04:14:f5:63:64:bd:69:af:1b:92:a4:ee:0a:54: 7e:1b:15:de:d2:45:e9:95:ce:42:9d:6f:2d:02:de:f3:41:38: b7:33:43:0f:4b:03:19:8d:89:79:e3:51:cf:e5:e0:d8:eb:3a: bf:70:f7:08:7c:1a:e9:a0:a8:e1:24:d4:e0:f8:97:77:4c:7e: a4:cb:58:2c:de:7a:d5:cf:5a:c1:ef:67:9e:1c:6f:95:8c:ef: d2:33:4b:f0:d3:bc:6c:87:9b:8b:ab:b5:e0:c2:18:f1:a8:a0: a1:c3:98:c2:fd:62:5d:62:d8:87:07:53:b5:a3:0b:76:bd:e9: e3:11:d1:d6:9b:97:ff:15:a8:11:05:54:1a:4b:56:ac:0c:90: ff:15:cb:4a:b7:f9:61:1f:cd:fa:ec:ee:26:99:ab:19:27:8e: a7:d4:d7:01:50:dc:e6:25:7b:01:15:74:b9:bf:6b:62:d5:93: 09:9d:cd:80:d0:c1:5c:92:16:8c:9e:13:d5:c3:38:e8:5a:e3: 6e:c8:b0:b4:2f:b6:88:98:b6:73:f8:31:c8:79:88:da:31:1c: ad:2b:df:1e:99:f5:fc:7e:98:5a:71:6c:4c:5c:df:cd:9d:98: b1:fd:8a:bf:53:02:6c:f8:c7:ba:6f:02:d0:33:3c:4a:7b:c0: 1a:4c:32:79 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUR6437bsc0DnfNBfV/21XE81CsoEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjYwNTE4MDkxNjMwWhcNMjcwNTE3MDkyMTMw WjAzMTEwLwYDVQQDEyg0QTI1MjdERUQ0OEFDMUQ0REY3MjZBNzkyMkQ1MzgzMTMy MjQyRDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwKtHg+UCQp2r lB8ZAVP5V1K24vzzu/k+6oIE9ZTjCFjUBqJd7NSzv5UyF6T56+PrJKj7UuWmezOd 7RZdesnOpELgclXyPdCPSsFO4lLlIhnYOup4o2wYRm3xPCMJCC5xNS6NxhwWP/h6 69a84v8OmCCKA7+9MuyzTiQrTaWBlfxISvquFtJfGc8wvWJ+74zJWeRcO/VfiPfw Xj/yNE7nDoc/R6Y/RrSssLnB63bD9EpofxthO84VimTnBoG8gQGYs96EH7YnbAKo aCEA6TRymkJEJErgUNSt+5ynbm6M4Z3cVHC2LeOLuAIBmTDo2iw4AVUSmgeYjfFH HWYpxvkGAQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFEolJ97UisHU33JqeSLVODEy JC0VMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh NjUzNjMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEzNDM5MzgzMzM1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcEJgL+2g5gMA0GCSqGSIb3DQEBCwUAA4IBAQCxp87fBBT1Y2S9aa8bkqTu ClR+GxXe0kXplc5CnW8tAt7zQTi3M0MPSwMZjYl541HP5eDY6zq/cPcIfBrpoKjh JNTg+Jd3TH6ky1gs3nrVz1rB72eeHG+VjO/SM0vw07xsh5uLq7XgwhjxqKChw5jC /WJdYtiHB1O1owt2venjEdHWm5f/FagRBVQaS1asDJD/FctKt/lhH8367O4mmasZ J46n1NcBUNzmJXsBFXS5v2ti1ZMJnc2A0MFckhaMnhPVwzjoWuNuyLC0L7aImLZz +DHIeYjaMRytK98emfX8fphacWxMXN/NnZix/Yq/UwJs+Me6bwLQMzxKe8AaTDJ5 -----END CERTIFICATE-----Generated at Sat Jun 6 08:17:48 2026 by rpki-client