$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/323630323a666564613a663032303a3a2f34342d3438203d3e20313437313733.roa File: 323630323a666564613a663032303a3a2f34342d3438203d3e20313437313733.roa (raw, json) Hash identifier: E9+5qO/8k7JGtDgauPczELsX5QAcjAWHnMBbOhoiOpY= Subject key identifier: 2F:9D:E2:97:CD:16:EA:4E:EF:F4:17:B8:89:CC:6F:7F:01:A4:71:A1 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 211E9487F9836B09D64E0B2FBA0EB778D0471079 Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a663032303a3a2f34342d3438203d3e20313437313733.roa Signing time: Mon 18 May 2026 09:21:40 +0000 ROA not before: Mon 18 May 2026 09:16:40 +0000 ROA not after: Mon 17 May 2027 09:21:40 +0000 asID: 147173 IP address blocks: 2602:feda:f020::/44 maxlen: 48 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Jun 2026 08:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:1e:94:87:f9:83:6b:09:d6:4e:0b:2f:ba:0e:b7:78:d0:47:10:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: May 18 09:16:40 2026 GMT Not After : May 17 09:21:40 2027 GMT Subject: CN=2F9DE297CD16EA4EEFF417B889CC6F7F01A471A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e3:2c:d3:ac:42:96:ca:7a:91:10:86:05:1d: 1d:22:47:30:ee:84:c5:c1:df:52:38:cd:fb:c5:d5: 0f:ca:fb:d6:61:a5:15:eb:77:87:67:8c:51:7b:4b: b9:c0:f6:7b:79:e3:0b:de:dd:33:b8:10:d0:af:a6: 79:bf:75:a3:36:b9:ea:87:0e:8c:f4:98:42:2c:21: 2f:5b:5d:b6:92:1e:23:e8:e8:a4:b0:b5:71:7b:0c: a3:d8:05:a4:b2:62:a0:6e:ac:b5:ea:00:39:c9:cd: 55:3c:e9:ed:3d:a8:74:76:a8:2d:5b:a6:1c:1e:dd: 48:1a:d6:7f:71:27:45:09:8a:c7:bb:fc:0f:cd:6c: d0:a5:80:42:dc:49:cf:80:60:cc:40:89:1a:ae:3a: 2b:f6:4a:b3:86:a9:e6:93:57:85:30:81:14:3c:5d: 49:d8:0b:35:a6:0c:f5:42:68:83:b6:05:96:63:af: e6:89:aa:31:fa:fa:0f:f3:42:d0:f0:85:33:dc:83: a3:df:f7:91:70:33:51:6d:cb:b6:3e:c3:1e:04:5f: 86:b3:a3:b1:03:d6:45:30:ef:f6:ec:80:f1:3e:9a: fd:7a:79:90:56:7e:8f:75:b6:02:34:32:74:90:d7: 07:eb:1b:b8:1d:30:b2:16:2c:7f:f7:d5:87:7e:c5: b1:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:9D:E2:97:CD:16:EA:4E:EF:F4:17:B8:89:CC:6F:7F:01:A4:71:A1 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/323630323a666564613a663032303a3a2f34342d3438203d3e20313437313733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:feda:f020::/44 Signature Algorithm: sha256WithRSAEncryption 5e:e7:6f:42:2c:b3:ac:4c:20:05:79:48:f8:f7:cf:d7:36:ce: a5:f8:ef:ae:2f:f9:1c:b4:bf:4c:44:8b:fd:a5:5b:71:06:56: b1:50:87:f3:1b:4a:46:4e:df:11:8f:c6:66:c8:22:cc:8e:da: db:7d:16:3c:38:0f:cb:45:c5:91:29:93:3a:f1:74:f4:06:97: 66:48:87:6f:c3:c4:6e:b1:4f:fe:2c:62:a4:56:34:86:6f:87: 49:b4:13:a2:18:9a:d7:15:42:64:c5:b5:26:d8:58:53:e8:34: 39:f3:4b:b1:8f:93:a6:b5:3b:f6:bd:6f:87:f1:4f:05:d3:74: a9:70:c7:30:df:b9:26:d9:18:91:a6:32:76:43:a6:a7:75:74: 7f:3c:5e:62:24:25:76:62:58:0a:69:1f:c3:9b:15:ac:03:c7: 52:a2:41:54:b2:f8:d3:1d:dd:04:dc:a0:d3:70:f3:ce:a1:a4: a2:e3:c6:e7:48:5d:b1:03:ac:3d:92:91:20:47:82:ab:87:02: 71:11:3d:18:8b:74:fa:28:45:69:21:31:cd:93:98:b6:a0:32: a4:e0:34:45:b5:8f:09:06:e6:c4:af:84:e9:b8:63:0b:5c:5b: 80:04:ee:4d:ea:8d:9e:48:7b:c1:96:58:98:30:d6:61:00:68: 5b:c1:25:8c -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUIR6Uh/mDawnWTgsvug63eNBHEHkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjYwNTE4MDkxNjQwWhcNMjcwNTE3MDkyMTQw WjAzMTEwLwYDVQQDEygyRjlERTI5N0NEMTZFQTRFRUZGNDE3Qjg4OUNDNkY3RjAx QTQ3MUExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAreMs06xClsp6 kRCGBR0dIkcw7oTFwd9SOM37xdUPyvvWYaUV63eHZ4xRe0u5wPZ7eeML3t0zuBDQ r6Z5v3WjNrnqhw6M9JhCLCEvW122kh4j6OiksLVxewyj2AWksmKgbqy16gA5yc1V POntPah0dqgtW6YcHt1IGtZ/cSdFCYrHu/wPzWzQpYBC3EnPgGDMQIkarjor9kqz hqnmk1eFMIEUPF1J2As1pgz1QmiDtgWWY6/miaox+voP80LQ8IUz3IOj3/eRcDNR bcu2PsMeBF+Gs6OxA9ZFMO/27IDxPpr9enmQVn6PdbYCNDJ0kNcH6xu4HTCyFix/ 99WHfsWx3wIDAQABo4ICbjCCAmowHQYDVR0OBBYEFC+d4pfNFupO7/QXuInMb38B pHGhMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwgYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6 Ly9jYS5uYXQubW9lL3JlcG8vTkFUT0xBQi8yLzMyMzYzMDMyM2E2NjY1NjQ2MTNh NjYzMDMyMzAzYTNhMmYzNDM0MmQzNDM4MjAzZDNlMjAzMTM0MzczMTM3MzMucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwQmAv7a8CAwDQYJKoZIhvcNAQELBQADggEBAF7nb0Iss6xMIAV5SPj3 z9c2zqX4764v+Ry0v0xEi/2lW3EGVrFQh/MbSkZO3xGPxmbIIsyO2tt9Fjw4D8tF xZEpkzrxdPQGl2ZIh2/DxG6xT/4sYqRWNIZvh0m0E6IYmtcVQmTFtSbYWFPoNDnz S7GPk6a1O/a9b4fxTwXTdKlwxzDfuSbZGJGmMnZDpqd1dH88XmIkJXZiWAppH8Ob FawDx1KiQVSy+NMd3QTcoNNw886hpKLjxudIXbEDrD2SkSBHgquHAnERPRiLdPoo RWkhMc2TmLagMqTgNEW1jwkG5sSvhOm4YwtcW4AE7k3qjZ5Ie8GWWJgw1mEAaFvB JYw= -----END CERTIFICATE-----Generated at Sat Jun 6 08:18:19 2026 by rpki-client