This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2033323538.roa File: 3130332e35362e35322e302f32322d3234203d3e2033323538.roa (raw, json) Hash identifier: O443KDcBXPbDRxuG6PuLO3bSH9BQahWXO18dF+ya0U0= Subject key identifier: 90:61:2F:2E:71:82:97:28:93:2E:D2:14:17:C7:27:0B:75:55:6D:98 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 37E6A502A38FBC493044B7506E01EFAD2C8DD71C Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2033323538.roa Signing time: Thu 13 Nov 2025 06:53:00 +0000 ROA not before: Thu 13 Nov 2025 06:48:00 +0000 ROA not after: Thu 12 Nov 2026 06:53:00 +0000 asID: 3258 IP address blocks: 103.56.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 05:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:e6:a5:02:a3:8f:bc:49:30:44:b7:50:6e:01:ef:ad:2c:8d:d7:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Nov 13 06:48:00 2025 GMT Not After : Nov 12 06:53:00 2026 GMT Subject: CN=90612F2E71829728932ED21417C7270B75556D98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:de:0a:6d:2a:38:4a:8c:37:3d:e0:9c:d9:31: 5c:ca:3a:7f:01:cb:89:50:37:a3:99:29:11:ab:68: 6d:4c:45:32:cc:a9:b9:6c:f9:1b:03:e2:94:4b:95: f8:fb:47:63:e8:8c:ef:13:51:0e:a8:42:20:6d:a4: 45:76:f8:e8:77:e5:37:40:ed:94:4e:61:f1:fa:49: b2:e2:9b:b5:8b:bb:af:8b:c6:27:41:c7:21:72:fb: cf:45:c2:a1:71:4e:e5:cf:df:4e:61:f2:81:4c:b8: 58:ac:5a:55:5b:f2:03:b3:5c:ab:f9:35:a4:68:c9: 94:b2:fd:dd:3e:3d:76:9f:1d:0d:c3:39:b1:4b:bb: 69:4b:8f:68:42:71:0f:f4:c8:31:4d:f8:42:93:17: d2:bd:c0:90:15:5f:af:69:f4:19:53:c1:ee:25:98: fe:5a:80:c3:38:24:b8:4a:95:97:f0:10:70:90:a0: 65:c7:1d:6c:25:dd:c8:95:9a:62:8b:8b:92:f3:9c: 8f:82:d1:8c:c1:ed:1b:0e:0f:82:15:a5:57:45:ad: e5:e5:d5:0a:4d:49:1c:1f:68:31:f5:b9:60:cc:b1: 5b:7e:4d:e4:04:23:6f:52:f0:0c:d5:6a:c5:c4:71: f2:60:54:3a:e4:f2:79:37:93:62:27:31:e9:e4:c1: 1d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:61:2F:2E:71:82:97:28:93:2E:D2:14:17:C7:27:0B:75:55:6D:98 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.56.52.0/22 Signature Algorithm: sha256WithRSAEncryption 15:41:d5:53:73:4b:64:3e:65:5e:22:8e:1a:29:b4:f3:be:e1: 19:a9:27:58:7f:99:52:db:16:10:bd:d4:64:d9:0d:21:c9:dc: ae:49:0f:df:53:ef:c1:7d:2a:29:08:ce:a7:3d:42:5a:e0:4c: d6:b1:ef:9c:6f:6d:69:37:93:a0:55:70:2c:66:2f:0d:83:1b: 77:25:c3:40:e7:1d:bd:d5:b8:f1:d0:39:23:4f:16:e5:6c:36: 40:56:79:a2:fd:22:d1:e8:78:5d:10:10:b8:74:bd:d4:9c:16: 8e:88:70:8b:ac:d8:4a:95:e6:02:27:d9:96:18:0f:a6:26:b7: ca:b0:f9:11:04:76:48:be:e9:2e:d3:80:82:31:cf:82:7a:f1: 09:bd:7f:d8:63:62:b4:80:d3:c6:f7:b1:b7:4c:4b:e4:34:d4: b8:47:0f:ce:f9:35:5f:f6:23:ce:e5:aa:47:d2:4f:5c:dc:77: 48:4f:ab:f7:ca:5f:b4:88:60:e3:2c:ab:79:52:d9:30:34:f1: 70:75:f7:a5:51:37:a3:48:75:a0:8d:90:0a:62:f6:aa:04:0f: 5c:cc:97:0a:c7:18:a6:17:28:ba:96:c0:1c:80:3c:ec:a0:85: 9b:04:62:78:58:ca:7e:80:c3:14:ca:e5:38:fe:21:6a:82:54: 15:c9:b7:9a -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUN+alAqOPvEkwRLdQbgHvrSyN1xwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI1MTExMzA2NDgwMFoX DTI2MTExMjA2NTMwMFowMzExMC8GA1UEAxMoOTA2MTJGMkU3MTgyOTcyODkzMkVE MjE0MTdDNzI3MEI3NTU1NkQ5ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALPeCm0qOEqMNz3gnNkxXMo6fwHLiVA3o5kpEatobUxFMsypuWz5GwPilEuV +PtHY+iM7xNRDqhCIG2kRXb46HflN0DtlE5h8fpJsuKbtYu7r4vGJ0HHIXL7z0XC oXFO5c/fTmHygUy4WKxaVVvyA7Ncq/k1pGjJlLL93T49dp8dDcM5sUu7aUuPaEJx D/TIMU34QpMX0r3AkBVfr2n0GVPB7iWY/lqAwzgkuEqVl/AQcJCgZccdbCXdyJWa YouLkvOcj4LRjMHtGw4PghWlV0Wt5eXVCk1JHB9oMfW5YMyxW35N5AQjb1LwDNVq xcRx8mBUOuTyeTeTYicx6eTBHdUCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBSQYS8u cYKXKJMu0hQXxycLdVVtmDAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzNTM2MmUzNTMyMmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzMzMjM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnODQwDQYJKoZIhvcNAQEL BQADggEBABVB1VNzS2Q+ZV4ijhoptPO+4RmpJ1h/mVLbFhC91GTZDSHJ3K5JD99T 78F9KikIzqc9QlrgTNax75xvbWk3k6BVcCxmLw2DG3clw0DnHb3VuPHQOSNPFuVs NkBWeaL9ItHoeF0QELh0vdScFo6IcIus2EqV5gIn2ZYYD6Ymt8qw+REEdki+6S7T gIIxz4J68Qm9f9hjYrSA08b3sbdMS+Q01LhHD875NV/2I87lqkfST1zcd0hPq/fK X7SIYOMsq3lS2TA08XB196VRN6NIdaCNkApi9qoED1zMlwrHGKYXKLqWwByAPOyg hZsEYnhYyn6AwxTK5Tj+IWqCVBXJt5o= -----END CERTIFICATE-----Generated at Sun Dec 7 05:41:03 2025 by rpki-client