This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/3230322e352e3232302e302f32322d3234203d3e2034373835.roa File: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (raw, json) Hash identifier: gMRDa6tXlNXXN9n511PW1vIGUannRwNsBy5I5ncCCYE= Subject key identifier: 1F:F3:68:C5:7C:07:F2:60:FE:88:26:73:E1:44:5A:DB:CD:27:21:4A Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 409924CD7D5A8BAF792FEF411CF36029EE757F1C Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/3230322e352e3232302e302f32322d3234203d3e2034373835.roa Signing time: Tue 02 Dec 2025 20:34:29 +0000 ROA not before: Tue 02 Dec 2025 20:29:29 +0000 ROA not after: Tue 01 Dec 2026 20:34:29 +0000 asID: 4785 IP address blocks: 202.5.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 22:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:99:24:cd:7d:5a:8b:af:79:2f:ef:41:1c:f3:60:29:ee:75:7f:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Dec 2 20:29:29 2025 GMT Not After : Dec 1 20:34:29 2026 GMT Subject: CN=1FF368C57C07F260FE882673E1445ADBCD27214A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e1:91:2d:e4:3f:4d:8c:01:8d:39:e1:97:9f: 24:54:d6:17:fe:73:ba:4a:83:50:26:3f:85:ff:dd: e9:91:45:6f:00:b1:f2:68:c5:d1:e3:73:47:73:1d: c2:57:a8:b6:19:0c:8e:6e:ea:05:ed:5d:48:61:92: bf:e2:af:d3:14:81:18:88:59:ef:69:5b:3a:69:79: f2:98:11:9b:fd:84:d2:f8:22:4b:23:f9:a1:fd:c1: 3c:2d:1d:72:cf:fa:3b:a0:79:b8:c3:89:df:fc:ad: 5b:fe:62:eb:d6:86:49:14:e8:94:e9:1b:4e:58:a3: be:e5:7c:f7:15:8d:2b:ff:99:20:16:dd:e2:f3:9d: 80:c5:86:34:74:25:26:24:25:50:0f:d5:38:fe:da: 9c:e3:39:f6:aa:2a:31:fc:6d:e2:d2:a6:b8:69:b2: 6e:68:b8:49:af:b3:63:b4:3b:ac:61:32:46:90:2f: cd:1e:96:38:ef:46:72:61:14:1d:20:32:54:61:67: d2:d7:a3:27:4b:c7:35:f5:ef:33:6d:75:4d:63:1f: 97:88:c3:be:fe:7d:15:8e:9b:c4:17:32:79:fe:ec: f1:21:4c:19:ef:5a:7a:85:00:fa:b1:6d:67:71:73: c1:e0:16:68:75:65:d6:58:33:b4:1f:0f:01:1c:5e: 5c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F3:68:C5:7C:07:F2:60:FE:88:26:73:E1:44:5A:DB:CD:27:21:4A X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/3230322e352e3232302e302f32322d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.220.0/22 Signature Algorithm: sha256WithRSAEncryption 85:f1:e9:70:e8:5c:f8:50:a9:b8:af:e7:28:ad:47:45:10:94: 94:37:23:e0:22:b1:64:d0:08:2c:c8:29:76:b0:9b:ab:fd:43: 9a:76:67:e4:18:1c:d4:9b:72:99:45:90:73:98:33:60:e6:29: 1c:0d:e6:aa:3c:ac:33:7d:9e:1a:d5:cf:d0:36:5e:31:29:6d: 4c:88:a1:3b:f6:fe:0b:e9:3a:fb:0f:4c:67:3b:a5:7c:ac:e8: 60:fe:30:70:b7:f1:b0:2f:7f:1d:af:40:07:3f:34:af:0f:c7: c5:c7:70:1f:1c:96:dd:52:35:41:40:d0:18:72:f7:d3:df:41: a4:af:08:2f:40:d8:b6:49:ce:e4:ac:32:2c:3c:3d:0f:09:90: 56:7e:0f:e5:c7:84:2d:52:41:61:80:ea:9f:b6:6c:37:f4:82: f8:eb:e1:cb:a2:fa:f5:f2:97:99:46:88:b5:ab:e5:c5:8c:67: aa:ae:77:07:f2:d3:31:81:5c:22:39:ab:ee:6e:7f:26:8a:6e: 2a:d7:53:27:1c:f1:fb:90:14:5a:33:45:d0:0c:b4:f2:24:e3: 28:88:7d:b1:59:e1:5f:48:f8:85:f2:fe:51:f3:81:da:31:94: 70:9a:df:4d:a3:e8:34:f3:0b:39:77:e4:a6:e6:48:1e:9f:f7: 7b:ca:bd:0a -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUQJkkzX1ai695L+9BHPNgKe51fxwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI1MTIwMjIwMjkyOVoX DTI2MTIwMTIwMzQyOVowMzExMC8GA1UEAxMoMUZGMzY4QzU3QzA3RjI2MEZFODgy NjczRTE0NDVBREJDRDI3MjE0QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANLhkS3kP02MAY054ZefJFTWF/5zukqDUCY/hf/d6ZFFbwCx8mjF0eNzR3Md wleothkMjm7qBe1dSGGSv+Kv0xSBGIhZ72lbOml58pgRm/2E0vgiSyP5of3BPC0d cs/6O6B5uMOJ3/ytW/5i69aGSRTolOkbTlijvuV89xWNK/+ZIBbd4vOdgMWGNHQl JiQlUA/VOP7anOM59qoqMfxt4tKmuGmybmi4Sa+zY7Q7rGEyRpAvzR6WOO9GcmEU HSAyVGFn0tejJ0vHNfXvM211TWMfl4jDvv59FY6bxBcyef7s8SFMGe9aeoUA+rFt Z3FzweAWaHVl1lgztB8PARxeXBsCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBQf82jF fAfyYP6IJnPhRFrbzSchSjAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvMzIzMDMyMmUzNTJlMzIzMjMwMmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzQzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKBdwwDQYJKoZIhvcNAQEL BQADggEBAIXx6XDoXPhQqbiv5yitR0UQlJQ3I+AisWTQCCzIKXawm6v9Q5p2Z+QY HNSbcplFkHOYM2DmKRwN5qo8rDN9nhrVz9A2XjEpbUyIoTv2/gvpOvsPTGc7pXys 6GD+MHC38bAvfx2vQAc/NK8Px8XHcB8clt1SNUFA0Bhy99PfQaSvCC9A2LZJzuSs Miw8PQ8JkFZ+D+XHhC1SQWGA6p+2bDf0gvjr4cui+vXyl5lGiLWr5cWMZ6qudwfy 0zGBXCI5q+5ufyaKbirXUycc8fuQFFozRdAMtPIk4yiIfbFZ4V9I+IXy/lHzgdox lHCa302j6DTzCzl35KbmSB6f93vKvQo= -----END CERTIFICATE-----Generated at Sat Dec 6 06:48:06 2025 by rpki-client