This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133362e302f32322d3234203d3e2033323538.roa File: 3138302e3233352e3133362e302f32322d3234203d3e2033323538.roa (raw, json) Hash identifier: l2YrDgY8N3dny/S0BRZTi5eLQfrERU+8yu8b0yBs2EA= Subject key identifier: 9D:3D:AD:FA:28:D9:CD:12:7D:B0:76:B8:C0:B5:52:E4:14:DF:17:E3 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 1601F30878B18AA5FEAC7E8972169BCBA950C73F Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133362e302f32322d3234203d3e2033323538.roa Signing time: Thu 13 Nov 2025 06:53:00 +0000 ROA not before: Thu 13 Nov 2025 06:48:00 +0000 ROA not after: Thu 12 Nov 2026 06:53:00 +0000 asID: 3258 IP address blocks: 180.235.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 11:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:01:f3:08:78:b1:8a:a5:fe:ac:7e:89:72:16:9b:cb:a9:50:c7:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Nov 13 06:48:00 2025 GMT Not After : Nov 12 06:53:00 2026 GMT Subject: CN=9D3DADFA28D9CD127DB076B8C0B552E414DF17E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f9:29:01:b9:91:e0:3c:c4:f1:f5:d6:28:e7: d1:bb:23:c2:60:2f:8f:2c:90:11:9a:9f:31:70:e8: e1:b5:7d:aa:7f:68:cd:31:b1:27:1b:7c:24:32:8d: 98:76:0e:61:34:82:94:21:17:70:68:ee:6f:0b:ce: 98:e3:ec:cc:f5:99:4c:5b:17:80:00:90:6a:38:da: f0:8d:7b:71:e6:d5:4e:99:d4:7d:13:98:34:46:f7: ef:e6:28:20:7a:a6:13:bc:2a:b3:d6:e5:cb:2f:b6: 53:cf:a3:45:14:04:27:2f:70:bc:8e:e4:45:81:bc: 17:cc:bf:ed:65:e9:89:0c:35:94:c9:14:fe:29:fa: d3:b6:75:fc:bc:74:88:59:eb:59:1a:39:23:0b:e3: 55:4e:63:11:7e:1b:3b:b6:18:57:b3:c8:56:67:9c: df:7d:23:1f:d7:59:c2:70:e7:d1:6d:54:eb:7d:7c: cd:3b:3a:8b:fd:b6:f6:10:ac:df:03:d9:15:fd:93: b4:8f:b8:aa:24:52:75:2c:5f:59:e8:8a:a0:7f:82: 99:40:f3:b7:7c:fb:16:27:f5:38:48:6a:33:33:55: d1:3c:a3:66:48:04:49:49:b2:30:14:de:6d:59:28: 46:02:0f:47:d5:56:50:82:3b:80:e2:14:53:dd:50: cc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:3D:AD:FA:28:D9:CD:12:7D:B0:76:B8:C0:B5:52:E4:14:DF:17:E3 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133362e302f32322d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.235.136.0/22 Signature Algorithm: sha256WithRSAEncryption b5:80:1f:08:a1:d8:93:a5:4a:bf:f8:48:6e:b9:fb:99:a5:bd: 1c:85:26:38:93:fb:41:aa:32:3b:4f:68:f0:51:b4:3e:39:c5: 9a:ea:e1:b8:9d:16:f0:15:57:82:a5:b2:75:9c:d3:f3:e2:9d: d0:2f:cd:d8:96:cc:76:15:df:c1:ac:79:87:2b:4d:93:02:bf: bc:a1:a6:b4:f4:f5:77:ae:3a:73:37:06:ba:9a:bb:50:11:d3: f2:54:2a:98:7d:5f:09:70:79:f7:f2:fd:7c:cb:d7:5f:ee:4d: 87:7c:63:df:6c:d8:6f:08:bb:a6:0b:d5:3c:0c:2c:51:e9:c4: 76:6c:89:8b:bb:b8:13:b5:a2:a0:7a:b3:5e:43:18:31:67:ca: cc:d7:0b:62:75:99:c6:be:93:49:b0:5c:2e:14:02:ce:1f:51: 54:fb:ca:f1:64:b0:36:78:17:0f:43:cf:b7:ef:ba:5c:73:e0: 7a:b2:80:81:d9:8b:06:21:7d:ff:b0:46:3c:cd:81:01:da:08: 37:e3:a3:90:a0:5c:c6:21:56:46:8e:af:77:6b:cb:32:a4:39: 4b:2c:c8:43:42:c1:bc:59:88:11:d9:4f:47:51:61:88:ee:0c: 0c:eb:ce:a3:ae:55:c9:f3:81:51:d9:98:68:5c:83:5d:bd:e1: 6d:ea:5e:02 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUFgHzCHixiqX+rH6Jchaby6lQxz8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI1MTExMzA2NDgwMFoX DTI2MTExMjA2NTMwMFowMzExMC8GA1UEAxMoOUQzREFERkEyOEQ5Q0QxMjdEQjA3 NkI4QzBCNTUyRTQxNERGMTdFMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM75KQG5keA8xPH11ijn0bsjwmAvjyyQEZqfMXDo4bV9qn9ozTGxJxt8JDKN mHYOYTSClCEXcGjubwvOmOPszPWZTFsXgACQajja8I17cebVTpnUfROYNEb37+Yo IHqmE7wqs9blyy+2U8+jRRQEJy9wvI7kRYG8F8y/7WXpiQw1lMkU/in607Z1/Lx0 iFnrWRo5IwvjVU5jEX4bO7YYV7PIVmec330jH9dZwnDn0W1U6318zTs6i/229hCs 3wPZFf2TtI+4qiRSdSxfWeiKoH+CmUDzt3z7Fif1OEhqMzNV0TyjZkgESUmyMBTe bVkoRgIPR9VWUII7gOIUU91QzNMCAwEAAaOCAeowggHmMB0GA1UdDgQWBBSdPa36 KNnNEn2wdrjAtVLkFN8X4zAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzODMwMmUzMjMzMzUyZTMxMzMzNjJlMzAyZjMy MzIyZDMyMzQyMDNkM2UyMDMzMzIzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCtOuIMA0GCSqGSIb3 DQEBCwUAA4IBAQC1gB8IodiTpUq/+EhuufuZpb0chSY4k/tBqjI7T2jwUbQ+OcWa 6uG4nRbwFVeCpbJ1nNPz4p3QL83Ylsx2Fd/BrHmHK02TAr+8oaa09PV3rjpzNwa6 mrtQEdPyVCqYfV8JcHn38v18y9df7k2HfGPfbNhvCLumC9U8DCxR6cR2bImLu7gT taKgerNeQxgxZ8rM1wtidZnGvpNJsFwuFALOH1FU+8rxZLA2eBcPQ8+377pcc+B6 soCB2YsGIX3/sEY8zYEB2gg346OQoFzGIVZGjq93a8sypDlLLMhDQsG8WYgR2U9H UWGI7gwM686jrlXJ84FR2ZhoXINdveFt6l4C -----END CERTIFICATE-----Generated at Sat Dec 6 22:03:48 2025 by rpki-client