This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2038383838.roa File: 3130332e35362e35322e302f32322d3234203d3e2038383838.roa (raw, json) Hash identifier: KnEr2JcfCkm4uZHEYfVkl5NJrbwbnNPS/S5USzcSlMA= Subject key identifier: E8:CB:8D:D1:6F:FB:5D:CA:AF:8C:55:A7:EA:E8:49:D2:77:FB:C1:94 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 6190F8DC2D0A1D637E1D689408C71A8C41B0B214 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2038383838.roa Signing time: Thu 13 Nov 2025 06:53:00 +0000 ROA not before: Thu 13 Nov 2025 06:48:00 +0000 ROA not after: Thu 12 Nov 2026 06:53:00 +0000 asID: 8888 IP address blocks: 103.56.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 11:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:90:f8:dc:2d:0a:1d:63:7e:1d:68:94:08:c7:1a:8c:41:b0:b2:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Nov 13 06:48:00 2025 GMT Not After : Nov 12 06:53:00 2026 GMT Subject: CN=E8CB8DD16FFB5DCAAF8C55A7EAE849D277FBC194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f1:7a:0a:11:ba:56:25:17:72:8b:2a:fc:27: 2a:6d:8e:be:d5:38:18:25:a9:15:83:2d:77:02:f4: bc:b2:e3:b3:e9:cc:80:d0:a6:6e:da:57:47:86:d3: 0f:8e:87:7f:29:da:0c:06:5b:59:2c:6d:a3:14:6f: 07:a2:25:5d:ac:02:e2:31:0d:f6:0b:a8:e9:d2:be: 47:87:b9:8b:56:cf:86:50:f9:5c:63:23:66:64:65: 26:21:14:2e:9f:34:34:38:a6:94:8b:cb:3d:5b:c2: a0:31:c1:a8:2a:58:4f:14:30:1d:5c:16:c1:4a:5f: cb:77:9e:42:03:9f:42:dc:73:d3:de:3b:e4:7a:d6: 3d:23:be:26:2b:16:4d:68:b4:c8:26:04:0e:50:8e: e4:bb:1a:d0:8e:6c:34:21:60:cc:91:9c:fe:93:b4: 88:db:76:a3:ae:14:4d:c0:f3:98:32:db:4a:82:c8: c6:d7:5a:74:82:29:d5:38:07:51:7c:74:c7:89:98: 38:31:b4:dc:3e:cf:3c:15:0f:90:bf:f1:ce:c5:cf: 5a:ca:30:d4:62:26:f4:2a:f5:26:cc:4a:cf:0f:f1: 3f:c2:90:20:44:45:04:5a:02:a5:3d:79:68:09:96: bc:97:3b:4e:04:c8:cc:a9:74:32:52:67:39:8c:22: a3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:CB:8D:D1:6F:FB:5D:CA:AF:8C:55:A7:EA:E8:49:D2:77:FB:C1:94 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.56.52.0/22 Signature Algorithm: sha256WithRSAEncryption 91:42:81:c4:c7:a8:2f:8f:3b:40:e4:0e:cb:f4:15:c9:ac:c0: 77:21:e9:a7:ea:92:97:5f:88:7f:04:06:33:c6:b7:29:e3:a8: 30:e7:c6:39:a5:e9:22:7a:52:21:1a:b4:a1:ae:46:31:dd:e2: 68:97:6a:7a:5c:d3:1d:96:39:ae:db:b0:e8:06:12:fb:9f:ce: be:64:5d:46:24:e0:87:a1:c2:0d:f8:d9:cd:8d:93:42:de:94: c7:68:a4:3d:6b:64:b5:11:87:90:2c:88:bf:95:d6:97:7c:c4: 2e:81:ad:eb:db:9a:5a:1f:7b:3a:1c:35:07:f6:54:81:81:0f: 1a:55:e9:fb:ab:ea:11:a6:ad:51:a4:9a:2e:0f:7a:bf:4c:17: 2e:5a:0e:2f:91:2a:3f:1b:16:43:7f:37:c4:2e:68:86:cf:df: 41:d8:04:dd:56:c3:f3:51:05:d0:9b:e2:a4:d3:bc:97:56:1d: f6:e3:56:36:16:9c:d1:36:3f:da:38:be:84:81:6a:f2:8a:f8: ae:bf:a1:0c:75:28:2b:46:c5:8d:72:3c:d9:be:45:49:9d:3c: b6:e9:e3:f2:fb:7d:83:83:9f:23:e0:44:ac:22:e9:8c:34:53: 2c:4b:8c:69:de:b3:3c:f1:1f:40:68:03:35:3c:ae:27:cf:e8: c1:42:59:04 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUYZD43C0KHWN+HWiUCMcajEGwshQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI1MTExMzA2NDgwMFoX DTI2MTExMjA2NTMwMFowMzExMC8GA1UEAxMoRThDQjhERDE2RkZCNURDQUFGOEM1 NUE3RUFFODQ5RDI3N0ZCQzE5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMXxegoRulYlF3KLKvwnKm2OvtU4GCWpFYMtdwL0vLLjs+nMgNCmbtpXR4bT D46HfynaDAZbWSxtoxRvB6IlXawC4jEN9guo6dK+R4e5i1bPhlD5XGMjZmRlJiEU Lp80NDimlIvLPVvCoDHBqCpYTxQwHVwWwUpfy3eeQgOfQtxz09475HrWPSO+JisW TWi0yCYEDlCO5Lsa0I5sNCFgzJGc/pO0iNt2o64UTcDzmDLbSoLIxtdadIIp1TgH UXx0x4mYODG03D7PPBUPkL/xzsXPWsow1GIm9Cr1JsxKzw/xP8KQIERFBFoCpT15 aAmWvJc7TgTIzKl0MlJnOYwio80CAwEAAaOCAeYwggHiMB0GA1UdDgQWBBToy43R b/tdyq+MVafq6EnSd/vBlDAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzNTM2MmUzNTMyMmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzgzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnODQwDQYJKoZIhvcNAQEL BQADggEBAJFCgcTHqC+PO0DkDsv0FcmswHch6afqkpdfiH8EBjPGtynjqDDnxjml 6SJ6UiEatKGuRjHd4miXanpc0x2WOa7bsOgGEvufzr5kXUYk4Iehwg342c2Nk0Le lMdopD1rZLURh5AsiL+V1pd8xC6BrevbmlofezocNQf2VIGBDxpV6fur6hGmrVGk mi4Per9MFy5aDi+RKj8bFkN/N8QuaIbP30HYBN1Ww/NRBdCb4qTTvJdWHfbjVjYW nNE2P9o4voSBavKK+K6/oQx1KCtGxY1yPNm+RUmdPLbp4/L7fYODnyPgRKwi6Yw0 UyxLjGneszzxH0BoAzU8rifP6MFCWQQ= -----END CERTIFICATE-----Generated at Sun Dec 7 00:35:47 2025 by rpki-client