This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133382e302f32332d3233203d3e203332353139.roa File: 32332e3234372e3133382e302f32332d3233203d3e203332353139.roa (raw, json) Hash identifier: 8ipRut4HyElmPFGPdi3mMxLEtI/J266nb9GjyJE7lsA= Subject key identifier: A8:71:4F:B4:96:21:D9:A7:3B:57:B2:67:32:CD:81:1B:0E:D5:AC:A5 Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 6CBDF93C1036F0B8241646EC1E3EEB6F9219024E Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133382e302f32332d3233203d3e203332353139.roa Signing time: Fri 30 Jan 2026 16:21:30 +0000 ROA not before: Fri 30 Jan 2026 16:16:30 +0000 ROA not after: Fri 29 Jan 2027 16:21:30 +0000 asID: 32519 IP address blocks: 23.247.138.0/23 maxlen: 23 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Feb 2026 11:57:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:bd:f9:3c:10:36:f0:b8:24:16:46:ec:1e:3e:eb:6f:92:19:02:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jan 30 16:16:30 2026 GMT Not After : Jan 29 16:21:30 2027 GMT Subject: CN=A8714FB49621D9A73B57B26732CD811B0ED5ACA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:28:ee:49:d5:47:2c:06:52:ce:f8:bc:ed:31: e9:7a:00:c4:ca:5d:04:07:76:32:64:29:0b:85:af: e8:21:54:3d:84:83:20:0f:21:e2:e8:58:51:7d:02: 19:86:87:d8:93:18:43:8b:d5:c3:76:93:6a:7a:ab: 74:ca:11:5c:f2:ae:7e:33:52:a6:c0:4a:ad:9b:11: 6e:53:a4:c1:d0:e9:c5:c2:7a:00:9d:76:c7:32:76: 36:63:56:0d:55:f9:47:ca:08:80:a6:18:db:2c:59: ef:8b:f7:ad:7f:70:84:62:d9:95:e1:7b:52:e6:0d: 58:8f:f0:3d:58:ef:d1:d2:4e:08:bd:03:32:a7:4a: 92:d6:2b:79:92:a9:c3:37:01:93:ac:bb:9b:e3:c8: 11:ae:81:29:6c:52:c7:e0:f8:ef:b2:ff:1c:0a:8a: 00:4d:92:f4:bf:5b:41:51:7e:bd:f0:1f:5d:af:a0: ef:3b:a2:c7:dd:cd:67:92:6f:92:af:9d:09:d0:0d: 91:39:81:ac:63:ea:32:a5:6d:45:5d:59:cd:13:ec: fc:ca:27:58:9a:9e:04:0e:06:02:4b:2c:a6:62:35: 62:f0:6a:59:16:c6:e8:41:91:93:a1:c9:9c:1a:72: 44:44:16:54:be:a6:04:10:33:60:fd:fc:56:86:df: 5f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:71:4F:B4:96:21:D9:A7:3B:57:B2:67:32:CD:81:1B:0E:D5:AC:A5 X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/32332e3234372e3133382e302f32332d3233203d3e203332353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.247.138.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:68:4c:c5:59:cd:7e:bf:98:69:f7:46:0e:87:86:83:79:74: e7:30:fe:39:33:61:fc:52:46:db:a8:9b:f3:0d:05:23:da:6c: ad:10:e8:b7:df:73:76:a7:04:80:f3:76:90:f1:2d:df:23:f4: 25:45:43:34:6f:c4:61:6f:72:db:22:f8:e4:69:41:7b:2d:d0: 10:96:ba:91:8e:e6:1d:35:7b:14:63:7e:00:06:ba:63:a2:41: 29:69:40:a4:00:60:90:96:b1:44:60:a7:8c:00:f9:ef:99:13: 2f:1f:56:59:06:c1:5c:c3:50:54:40:b9:a7:79:c7:82:c9:1c: d0:b7:37:8d:82:32:b7:ae:45:54:b2:49:87:73:fe:b2:9f:a6: 45:b7:ea:b5:af:34:79:fe:50:33:45:d3:99:f1:40:cc:c9:83: 19:45:77:62:82:b5:76:95:0b:0f:80:7d:ca:e8:e6:d4:3e:b7: 1f:e2:f4:01:3a:ab:1d:fe:09:8a:4e:a3:7e:02:dc:4a:38:e5: 5e:ea:35:69:f8:3b:d9:d4:a4:37:4f:21:9a:2a:9c:35:e7:94: fa:e4:da:64:75:ae:95:a9:5d:a6:91:35:7d:2c:8b:ec:2f:9c: 2b:bd:5c:8f:67:1a:38:ad:9d:be:1c:6a:57:74:de:da:d3:9b: c4:b1:30:d3 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUbL35PBA28LgkFkbsHj7rb5IZAk4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjYwMTMwMTYxNjMwWhcNMjcwMTI5MTYyMTMw WjAzMTEwLwYDVQQDEyhBODcxNEZCNDk2MjFEOUE3M0I1N0IyNjczMkNEODExQjBF RDVBQ0E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCjuSdVHLAZS zvi87THpegDEyl0EB3YyZCkLha/oIVQ9hIMgDyHi6FhRfQIZhofYkxhDi9XDdpNq eqt0yhFc8q5+M1KmwEqtmxFuU6TB0OnFwnoAnXbHMnY2Y1YNVflHygiAphjbLFnv i/etf3CEYtmV4XtS5g1Yj/A9WO/R0k4IvQMyp0qS1it5kqnDNwGTrLub48gRroEp bFLH4Pjvsv8cCooATZL0v1tBUX698B9dr6DvO6LH3c1nkm+Sr50J0A2ROYGsY+oy pW1FXVnNE+z8yidYmp4EDgYCSyymYjVi8GpZFsboQZGTocmcGnJERBZUvqYEEDNg /fxWht9ffwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKhxT7SWIdmnO1eyZzLNgRsO 1aylMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzIzMzJlMzIzNDM3MmUzMTMzMzgy ZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzMzMyMzUzMTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBF/eK MA0GCSqGSIb3DQEBCwUAA4IBAQAqaEzFWc1+v5hp90YOh4aDeXTnMP45M2H8Ukbb qJvzDQUj2mytEOi333N2pwSA83aQ8S3fI/QlRUM0b8Rhb3LbIvjkaUF7LdAQlrqR juYdNXsUY34ABrpjokEpaUCkAGCQlrFEYKeMAPnvmRMvH1ZZBsFcw1BUQLmneceC yRzQtzeNgjK3rkVUskmHc/6yn6ZFt+q1rzR5/lAzRdOZ8UDMyYMZRXdigrV2lQsP gH3K6ObUPrcf4vQBOqsd/gmKTqN+AtxKOOVe6jVp+DvZ1KQ3TyGaKpw155T65Npk da6VqV2mkTV9LIvsL5wrvVyPZxo4rZ2+HGpXdN7a05vEsTDT -----END CERTIFICATE-----Generated at Thu Feb 5 02:37:54 2026 by rpki-client