This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/323430333a616338303a3a2f33322d3438203d3e2034373835.roa File: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (raw, json) Hash identifier: LFwJ6OFasHUXdxn7Pjd2blvuD4fgYwkNxMcSghbaXHE= Subject key identifier: 52:6B:D3:83:D2:C1:42:BE:25:7A:D5:F4:94:9E:77:1A:83:FF:6B:44 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 377E44632D7F04F9FEA9FB71AA55B778FD4554A5 Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/323430333a616338303a3a2f33322d3438203d3e2034373835.roa Signing time: Tue 02 Dec 2025 20:34:59 +0000 ROA not before: Tue 02 Dec 2025 20:29:59 +0000 ROA not after: Tue 01 Dec 2026 20:34:59 +0000 asID: 4785 IP address blocks: 2403:ac80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 22:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:7e:44:63:2d:7f:04:f9:fe:a9:fb:71:aa:55:b7:78:fd:45:54:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Dec 2 20:29:59 2025 GMT Not After : Dec 1 20:34:59 2026 GMT Subject: CN=526BD383D2C142BE257AD5F4949E771A83FF6B44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:38:14:af:2b:44:8b:64:58:f0:f1:85:01:6e: aa:f5:a3:6b:5f:e9:95:d8:a2:96:c6:d7:53:8a:0d: 67:37:36:e4:dd:ce:e2:0d:3a:39:87:c5:15:8e:fd: f8:e9:f0:b5:ff:ae:37:9f:ab:d0:35:24:ea:b0:9f: a9:05:c4:12:b8:e1:14:18:07:af:b9:3d:3b:24:c2: b0:b9:f7:49:ba:98:36:28:db:40:05:20:ff:75:e8: f2:d6:54:a5:b4:00:a3:10:32:67:1a:ed:93:b1:a5: 23:e7:24:46:e4:a6:c6:74:68:12:b7:12:f0:81:0c: 71:60:6b:6f:59:2b:54:0c:c3:cd:c7:fc:07:fb:12: 36:41:87:32:60:94:9f:76:ea:16:52:f9:4c:80:c0: eb:9b:f2:18:e6:45:a0:8d:27:b2:25:d3:17:86:ed: 81:c5:79:a4:80:54:f4:0f:eb:c8:4a:f7:33:06:d1: c9:a6:48:e0:b7:7e:f4:6d:b6:02:b8:86:9f:52:d7: c7:13:37:9f:06:e9:c2:e5:24:25:0e:ff:50:b8:4a: f0:22:a6:62:c9:6d:b7:a4:bd:ed:f6:89:2c:ef:df: 6f:53:7b:27:31:19:ca:3e:0b:db:66:7d:ba:7b:96: 02:a0:e4:1b:a8:4f:8c:7e:22:14:6a:33:6e:6e:c2: 92:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:6B:D3:83:D2:C1:42:BE:25:7A:D5:F4:94:9E:77:1A:83:FF:6B:44 X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/323430333a616338303a3a2f33322d3438203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:ac80::/32 Signature Algorithm: sha256WithRSAEncryption 8e:26:91:09:81:28:b7:62:4a:7c:f7:54:43:25:0b:0b:7d:14: c7:b3:a2:67:df:54:01:58:29:5d:fc:65:b8:e2:f0:12:25:07: 58:01:46:80:c6:d0:4f:85:74:fa:fe:74:84:bd:2f:e7:03:36: 02:10:bf:22:b1:46:6e:77:f5:30:3d:6f:7e:88:92:b1:d7:d4: db:df:dc:21:26:a4:7a:6f:02:52:44:31:ff:42:4d:58:be:f9: cc:17:3e:ce:65:74:f3:67:01:8f:02:31:bd:1d:9b:72:0c:01: cc:9f:19:06:a0:06:12:10:a5:be:4c:b4:b8:18:9c:a5:ab:e9: df:88:ab:67:e2:3e:c8:15:4c:5f:16:39:df:93:94:f0:bd:37: 1d:87:a6:b1:da:f6:63:3b:f5:91:9e:bd:fc:5a:bb:f1:34:2d: ba:ee:32:e4:36:10:76:cb:ca:55:dc:f6:0d:e6:5f:8b:e8:5d: 9f:30:c2:56:22:3d:eb:ec:5a:90:7a:11:25:72:16:a4:88:ed: 3e:77:fe:49:99:e8:8c:5f:5e:84:cc:dc:b1:67:70:ee:b9:44: 58:47:08:45:d0:b7:c5:5d:cc:0f:b3:87:68:f4:82:78:08:ef: d6:c1:d7:13:76:e7:fa:a3:98:74:a4:a1:69:f2:2d:e3:8b:71: 17:1d:b7:ec -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUN35EYy1/BPn+qftxqlW3eP1FVKUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI1MTIwMjIwMjk1OVoX DTI2MTIwMTIwMzQ1OVowMzExMC8GA1UEAxMoNTI2QkQzODNEMkMxNDJCRTI1N0FE NUY0OTQ5RTc3MUE4M0ZGNkI0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIg4FK8rRItkWPDxhQFuqvWja1/pldiilsbXU4oNZzc25N3O4g06OYfFFY79 +Onwtf+uN5+r0DUk6rCfqQXEErjhFBgHr7k9OyTCsLn3SbqYNijbQAUg/3Xo8tZU pbQAoxAyZxrtk7GlI+ckRuSmxnRoErcS8IEMcWBrb1krVAzDzcf8B/sSNkGHMmCU n3bqFlL5TIDA65vyGOZFoI0nsiXTF4btgcV5pIBU9A/ryEr3MwbRyaZI4Ld+9G22 AriGn1LXxxM3nwbpwuUkJQ7/ULhK8CKmYsltt6S97faJLO/fb1N7JzEZyj4L22Z9 unuWAqDkG6hPjH4iFGozbm7CkoECAwEAAaOCAecwggHjMB0GA1UdDgQWBBRSa9OD 0sFCviV61fSUnncag/9rRDAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvMzIzNDMwMzMzYTYxNjMzODMwM2EzYTJmMzMzMjJk MzQzODIwM2QzZTIwMzQzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA6yAMA0GCSqGSIb3DQEB CwUAA4IBAQCOJpEJgSi3Ykp891RDJQsLfRTHs6Jn31QBWCld/GW44vASJQdYAUaA xtBPhXT6/nSEvS/nAzYCEL8isUZud/UwPW9+iJKx19Tb39whJqR6bwJSRDH/Qk1Y vvnMFz7OZXTzZwGPAjG9HZtyDAHMnxkGoAYSEKW+TLS4GJylq+nfiKtn4j7IFUxf Fjnfk5TwvTcdh6ax2vZjO/WRnr38WrvxNC267jLkNhB2y8pV3PYN5l+L6F2fMMJW Ij3r7FqQehElchakiO0+d/5JmeiMX16EzNyxZ3DuuURYRwhF0LfFXcwPs4do9IJ4 CO/WwdcTduf6o5h0pKFp8i3ji3EXHbfs -----END CERTIFICATE-----Generated at Sat Dec 6 06:48:06 2025 by rpki-client