This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/34352e3131362e31322e302f32322d3234203d3e2038383838.roa File: 34352e3131362e31322e302f32322d3234203d3e2038383838.roa (raw, json) Hash identifier: VUC+Vpp5QxVEFVXx+JAdTcylpbuvPwxoxQKzOe38Z/U= Subject key identifier: BF:1B:62:4B:A2:A3:E4:5F:A7:DA:76:9F:DC:EA:E1:8E:99:99:95:F0 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 59B08482AB6251272F65A138B2053BAC599E8A38 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/34352e3131362e31322e302f32322d3234203d3e2038383838.roa Signing time: Thu 13 Nov 2025 06:53:00 +0000 ROA not before: Thu 13 Nov 2025 06:48:00 +0000 ROA not after: Thu 12 Nov 2026 06:53:00 +0000 asID: 8888 IP address blocks: 45.116.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 11:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:b0:84:82:ab:62:51:27:2f:65:a1:38:b2:05:3b:ac:59:9e:8a:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Nov 13 06:48:00 2025 GMT Not After : Nov 12 06:53:00 2026 GMT Subject: CN=BF1B624BA2A3E45FA7DA769FDCEAE18E999995F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:95:e5:0b:b7:d9:4f:54:33:d5:6e:2e:79:3f: 9e:67:7c:d7:4b:58:86:ea:3d:6d:73:82:b9:ee:36: 72:15:b9:a2:72:76:63:3f:c5:2e:81:f3:46:0b:56: 23:aa:97:f0:df:01:a7:34:e7:1d:9e:0d:7b:bf:04: 92:f2:b6:97:74:b8:0e:09:ea:ab:da:62:67:12:0c: 88:dd:7e:e1:e9:be:97:c4:12:3d:3e:29:21:ed:23: 8e:a6:df:d6:7f:cb:97:67:c6:16:79:f8:ba:15:20: 46:e5:6b:fa:4f:7d:5b:06:64:2d:e0:a6:41:f0:7b: c9:37:f4:94:b7:e9:e0:f7:bd:22:e1:ef:c2:73:e7: 40:1e:e3:90:49:58:48:8a:84:af:f1:3e:3b:f4:7f: c1:9e:b3:6a:f7:14:ed:80:0e:52:b2:85:d1:8d:b8: ff:83:5a:d0:4f:13:05:4b:b7:d0:39:a1:34:a0:f2: 2e:86:08:be:b6:0b:a3:44:cf:da:6a:e3:92:07:f1: c9:c0:dd:6b:19:7c:4d:0c:33:eb:78:b8:22:d4:39: bf:1a:5d:c0:1f:37:62:af:cf:70:3a:0d:fc:f7:cb: 48:26:f2:5e:85:8e:4e:f9:19:5f:6a:84:cc:06:96: 21:12:01:d1:fc:ff:96:95:70:47:d3:32:96:63:ac: dc:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:1B:62:4B:A2:A3:E4:5F:A7:DA:76:9F:DC:EA:E1:8E:99:99:95:F0 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/34352e3131362e31322e302f32322d3234203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.116.12.0/22 Signature Algorithm: sha256WithRSAEncryption b8:e7:4c:a2:b4:fd:b5:b0:67:9e:1a:a0:ed:b3:cb:26:fc:70: f5:40:06:b3:88:51:ca:4c:b8:2c:aa:5a:2b:45:b8:24:86:3e: 8f:51:f0:d8:91:67:d0:ca:35:ec:f1:31:c2:88:99:8f:5d:ec: b7:95:1d:99:68:8c:36:ef:ba:69:0a:6e:71:5b:45:f6:2b:d9: 5f:c0:60:c0:1f:d3:ff:12:4c:be:d6:aa:1b:e9:83:70:d3:f0: 17:29:89:12:cf:c5:20:6e:54:e1:ab:b3:6d:b6:d9:72:8d:c6: 3d:25:b1:66:9c:4b:aa:28:de:b3:8b:cf:29:16:c1:32:54:20: f1:b2:97:53:61:dd:11:31:f8:83:31:d6:54:10:4a:8b:f7:ca: 31:f4:d1:47:46:41:31:a8:ff:27:98:35:72:16:6c:77:05:09: e2:8d:16:3c:4d:06:6a:67:d3:f6:76:88:48:9a:48:b2:b1:e5: fb:6c:ca:1b:8e:85:67:94:4e:0c:dd:d6:76:ba:70:bd:5b:79: 50:69:bb:5f:cd:e6:a3:c2:9f:02:f4:f9:8f:fa:19:79:f5:59: 6f:cc:71:3c:b1:6e:eb:f7:9c:99:dc:3a:7a:4a:86:7f:5c:14: a0:c9:d4:8c:4c:9a:6d:b4:a0:f4:5d:7f:46:73:79:01:5a:f5: 0d:79:ce:a4 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUWbCEgqtiUScvZaE4sgU7rFmeijgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI1MTExMzA2NDgwMFoX DTI2MTExMjA2NTMwMFowMzExMC8GA1UEAxMoQkYxQjYyNEJBMkEzRTQ1RkE3REE3 NjlGRENFQUUxOEU5OTk5OTVGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPGV5Qu32U9UM9VuLnk/nmd810tYhuo9bXOCue42chW5onJ2Yz/FLoHzRgtW I6qX8N8BpzTnHZ4Ne78EkvK2l3S4Dgnqq9piZxIMiN1+4em+l8QSPT4pIe0jjqbf 1n/Ll2fGFnn4uhUgRuVr+k99WwZkLeCmQfB7yTf0lLfp4Pe9IuHvwnPnQB7jkElY SIqEr/E+O/R/wZ6zavcU7YAOUrKF0Y24/4Na0E8TBUu30DmhNKDyLoYIvrYLo0TP 2mrjkgfxycDdaxl8TQwz63i4ItQ5vxpdwB83Yq/PcDoN/PfLSCbyXoWOTvkZX2qE zAaWIRIB0fz/lpVwR9MylmOs3DMCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBS/G2JL oqPkX6fadp/c6uGOmZmV8DAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzQzNTJlMzEzMTM2MmUzMTMyMmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzgzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAItdAwwDQYJKoZIhvcNAQEL BQADggEBALjnTKK0/bWwZ54aoO2zyyb8cPVABrOIUcpMuCyqWitFuCSGPo9R8NiR Z9DKNezxMcKImY9d7LeVHZlojDbvumkKbnFbRfYr2V/AYMAf0/8STL7Wqhvpg3DT 8BcpiRLPxSBuVOGrs2222XKNxj0lsWacS6oo3rOLzykWwTJUIPGyl1Nh3REx+IMx 1lQQSov3yjH00UdGQTGo/yeYNXIWbHcFCeKNFjxNBmpn0/Z2iEiaSLKx5ftsyhuO hWeUTgzd1na6cL1beVBpu1/N5qPCnwL0+Y/6GXn1WW/McTyxbuv3nJncOnpKhn9c FKDJ1IxMmm20oPRdf0ZzeQFa9Q15zqQ= -----END CERTIFICATE-----Generated at Sat Dec 6 12:38:59 2025 by rpki-client