This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/3230322e352e3232302e302f32322d3234203d3e2033323538.roa File: 3230322e352e3232302e302f32322d3234203d3e2033323538.roa (raw, json) Hash identifier: RSC0gS7HCZeuxKb2QI8cI8b8M+MPUL5V2oXXelhZ2i4= Subject key identifier: CD:50:6B:D2:6F:77:4B:E2:BB:BB:46:A3:DD:D7:76:6D:B3:E0:B7:95 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 238BF7CEC6187C932D7EAF47E7C873DBDA112027 Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/3230322e352e3232302e302f32322d3234203d3e2033323538.roa Signing time: Tue 02 Dec 2025 20:34:51 +0000 ROA not before: Tue 02 Dec 2025 20:29:51 +0000 ROA not after: Tue 01 Dec 2026 20:34:51 +0000 asID: 3258 IP address blocks: 202.5.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 22:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:8b:f7:ce:c6:18:7c:93:2d:7e:af:47:e7:c8:73:db:da:11:20:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Dec 2 20:29:51 2025 GMT Not After : Dec 1 20:34:51 2026 GMT Subject: CN=CD506BD26F774BE2BBBB46A3DDD7766DB3E0B795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:79:80:1c:8c:24:07:3f:05:70:e4:95:50:de: 7a:27:db:7b:36:39:a7:e4:a8:4d:aa:06:fa:6f:00: 2a:0e:12:89:9d:c5:48:01:46:1a:14:a3:e9:5f:7d: 96:eb:91:1b:c1:2e:68:69:4c:df:77:ef:9a:30:56: cb:f7:ab:5a:52:b1:c9:2a:cd:3e:df:a8:a7:ec:57: 8c:bd:d4:af:17:17:07:a5:83:4a:ae:24:b9:65:34: e8:7d:a9:23:94:63:f6:85:1b:5f:b7:55:13:0d:0e: 73:2b:89:4f:5e:0c:cc:ec:7c:57:6f:0f:f1:36:d5: e4:c1:19:27:64:b1:db:3b:b5:68:c1:11:bb:4b:b2: 63:27:41:2b:53:44:8a:28:99:96:f7:4a:d7:80:40: e1:cc:24:a8:95:ab:8a:a4:4d:6f:5f:82:1f:ec:13: f2:de:98:0f:5c:4d:bc:15:2d:90:37:46:3c:4d:74: ba:16:c0:8d:19:b5:f1:bc:22:7a:1f:35:62:88:61: 82:ff:c5:86:7e:1a:a5:c8:00:b5:d0:ba:84:bd:fe: 27:ce:ef:84:dd:49:fc:2d:e4:62:70:5e:5a:b3:e1: 1a:a7:bc:66:b7:e5:52:47:9c:0a:97:3f:d6:18:a3: 94:ba:b5:df:02:f8:20:e1:c8:6f:80:dd:f9:ed:42: 1e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:50:6B:D2:6F:77:4B:E2:BB:BB:46:A3:DD:D7:76:6D:B3:E0:B7:95 X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/3230322e352e3232302e302f32322d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.220.0/22 Signature Algorithm: sha256WithRSAEncryption 16:eb:38:1c:b5:64:ce:4a:a0:cf:23:14:19:77:21:1f:54:5f: f1:ff:5e:24:88:d0:bb:a0:43:d1:46:b0:c3:2a:b8:d2:b5:da: 10:73:63:0d:e0:68:d6:a7:6a:69:1c:4b:ed:95:bb:50:18:28: d9:f7:94:f8:59:72:60:0c:bf:b5:b1:84:18:18:e7:14:d2:87: a1:eb:00:a3:a3:40:70:bf:7f:86:5c:b9:71:ae:dd:9b:55:0d: 9f:6d:06:b5:c5:38:29:bc:64:7f:87:b6:50:d0:a4:32:15:0f: bc:fa:86:cf:bb:a6:16:b4:82:d2:a9:ea:4c:b8:b2:e6:e4:4f: c3:71:48:2d:db:f4:65:a7:f0:b0:ef:36:0e:11:cd:9e:0e:5f: 53:42:09:6d:12:63:8b:8c:5b:58:e6:42:09:15:6f:db:ea:92: 2e:d0:79:d3:d5:4e:8f:a9:d8:97:4f:ba:f2:cc:57:2e:81:80: 14:bb:10:2b:e4:03:be:34:d0:56:39:d7:ac:5a:69:0a:d1:f4: 29:7b:4f:04:b2:79:21:b6:be:57:e4:94:ae:02:53:6a:85:39: 76:7e:0e:f7:58:3f:4a:43:d5:2d:a6:61:c9:5f:89:cd:9e:95: 3f:4d:69:77:fb:75:7a:11:5e:df:e6:6e:f9:a2:95:90:c9:4a: 3c:e7:f1:c5 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUI4v3zsYYfJMtfq9H58hz29oRICcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI1MTIwMjIwMjk1MVoX DTI2MTIwMTIwMzQ1MVowMzExMC8GA1UEAxMoQ0Q1MDZCRDI2Rjc3NEJFMkJCQkI0 NkEzRERENzc2NkRCM0UwQjc5NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALB5gByMJAc/BXDklVDeeifbezY5p+SoTaoG+m8AKg4SiZ3FSAFGGhSj6V99 luuRG8EuaGlM33fvmjBWy/erWlKxySrNPt+op+xXjL3UrxcXB6WDSq4kuWU06H2p I5Rj9oUbX7dVEw0OcyuJT14MzOx8V28P8TbV5MEZJ2Sx2zu1aMERu0uyYydBK1NE iiiZlvdK14BA4cwkqJWriqRNb1+CH+wT8t6YD1xNvBUtkDdGPE10uhbAjRm18bwi eh81Yohhgv/Fhn4apcgAtdC6hL3+J87vhN1J/C3kYnBeWrPhGqe8ZrflUkecCpc/ 1hijlLq13wL4IOHIb4Dd+e1CHkECAwEAAaOCAeYwggHiMB0GA1UdDgQWBBTNUGvS b3dL4ru7RqPd13Zts+C3lTAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvMzIzMDMyMmUzNTJlMzIzMjMwMmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzMzMjM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKBdwwDQYJKoZIhvcNAQEL BQADggEBABbrOBy1ZM5KoM8jFBl3IR9UX/H/XiSI0LugQ9FGsMMquNK12hBzYw3g aNanamkcS+2Vu1AYKNn3lPhZcmAMv7WxhBgY5xTSh6HrAKOjQHC/f4ZcuXGu3ZtV DZ9tBrXFOCm8ZH+HtlDQpDIVD7z6hs+7pha0gtKp6ky4subkT8NxSC3b9GWn8LDv Ng4RzZ4OX1NCCW0SY4uMW1jmQgkVb9vqki7QedPVTo+p2JdPuvLMVy6BgBS7ECvk A7400FY516xaaQrR9Cl7TwSyeSG2vlfklK4CU2qFOXZ+DvdYP0pD1S2mYclfic2e lT9NaXf7dXoRXt/mbvmilZDJSjzn8cU= -----END CERTIFICATE-----Generated at Sat Dec 6 06:48:05 2025 by rpki-client