This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2039333132.roa File: 3130332e35362e35322e302f32322d3234203d3e2039333132.roa (raw, json) Hash identifier: YXS9uSsZ37ptPQHrpRAGjTeBmE6KquFAv1WCPOj6Ew8= Subject key identifier: D9:FA:EC:75:94:02:79:DC:F6:C1:EB:81:C5:FE:D9:33:FA:F4:21:69 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 72B57018B50E7D8AC38C3F55E8DEA918350BB6DF Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2039333132.roa Signing time: Thu 13 Nov 2025 06:53:00 +0000 ROA not before: Thu 13 Nov 2025 06:48:00 +0000 ROA not after: Thu 12 Nov 2026 06:53:00 +0000 asID: 9312 IP address blocks: 103.56.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 11:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:b5:70:18:b5:0e:7d:8a:c3:8c:3f:55:e8:de:a9:18:35:0b:b6:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Nov 13 06:48:00 2025 GMT Not After : Nov 12 06:53:00 2026 GMT Subject: CN=D9FAEC75940279DCF6C1EB81C5FED933FAF42169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5b:91:56:ed:68:57:01:0c:3e:5f:8a:a0:df: 56:b2:61:f3:63:8b:fc:85:ab:0c:10:46:ff:5a:80: a9:42:23:f9:2a:87:00:ad:d1:0e:1a:e3:8b:55:14: 30:43:a5:f0:58:37:69:12:f7:97:54:a7:f6:57:4e: 3c:e6:92:70:b3:b4:96:3e:73:73:70:39:59:14:ee: 99:8b:21:8e:64:d1:8c:fd:23:89:1a:54:ca:6a:a7: b5:b7:6e:7e:43:a5:30:08:88:e2:37:47:6b:b2:0d: 31:44:54:d7:62:4d:ba:d8:c3:f7:f8:bc:02:c6:8a: fe:30:4e:b1:2e:cc:69:14:6e:b5:7c:ea:8f:31:fc: 13:73:7a:ba:ad:ef:ac:e0:58:ea:18:69:77:f7:0d: e0:fa:2b:2a:57:f0:3c:a0:6c:07:42:ca:99:4a:ab: 9a:4c:34:cc:57:86:15:bf:69:f4:f6:2e:6d:71:b2: 57:ba:41:e1:dd:dd:ba:2a:60:b7:41:e1:9a:43:b9: 6d:e6:28:4e:a1:f0:49:c1:75:73:cf:90:77:c5:53: 6c:38:34:7c:c4:4d:9e:b4:9f:0d:b6:b5:aa:85:7b: 0a:32:37:74:cf:df:d0:9f:17:83:5c:d9:29:db:59: 82:24:f9:c3:33:8c:84:4a:1a:a3:86:5d:98:42:82: fa:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:FA:EC:75:94:02:79:DC:F6:C1:EB:81:C5:FE:D9:33:FA:F4:21:69 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.56.52.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:d8:05:6b:6f:ef:f5:33:28:c0:c0:59:a7:16:c4:7c:39:f3: 4a:66:73:c8:82:af:34:1a:08:d4:fa:e5:3e:0c:e3:0d:b0:4a: bf:49:77:7d:08:ff:06:b1:da:b5:e5:95:83:cc:94:49:63:f6: a6:f3:57:1f:4d:97:25:07:9b:49:cf:9f:1b:51:31:fe:bb:e3: 52:86:d7:b0:00:33:ab:60:91:22:97:fb:99:1a:10:7e:7a:11: 6f:de:9d:93:f0:5c:f5:bc:8f:69:95:cc:cf:ab:73:9f:cd:d5: a9:39:e3:9d:37:5c:35:61:8c:17:fd:39:6b:ed:37:7a:1e:98: 51:10:48:5f:87:b2:c0:2e:21:45:50:16:28:d5:5c:9c:f3:73: 8e:b0:30:1c:54:cb:b4:a6:d3:90:f7:8c:07:d0:af:dd:4b:5d: 01:b8:69:a0:7c:ba:61:a4:f3:ac:bd:e0:f5:f3:a6:f9:97:c1: f1:f8:0b:a9:76:98:7a:ce:eb:b0:36:3d:6d:60:4c:38:f1:6c: 2c:9e:3b:00:1c:a7:c7:a0:1c:9b:1a:4b:c4:34:89:0f:11:30: dc:92:12:09:a1:18:2a:45:e3:8a:68:b6:f5:7d:66:1b:f6:fe: a9:50:9e:20:8e:65:d6:6d:64:ee:3f:32:0f:07:ce:63:fd:5a: 56:ce:b9:af -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUcrVwGLUOfYrDjD9V6N6pGDULtt8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI1MTExMzA2NDgwMFoX DTI2MTExMjA2NTMwMFowMzExMC8GA1UEAxMoRDlGQUVDNzU5NDAyNzlEQ0Y2QzFF QjgxQzVGRUQ5MzNGQUY0MjE2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZbkVbtaFcBDD5fiqDfVrJh82OL/IWrDBBG/1qAqUIj+SqHAK3RDhrji1UU MEOl8Fg3aRL3l1Sn9ldOPOaScLO0lj5zc3A5WRTumYshjmTRjP0jiRpUymqntbdu fkOlMAiI4jdHa7INMURU12JNutjD9/i8AsaK/jBOsS7MaRRutXzqjzH8E3N6uq3v rOBY6hhpd/cN4PorKlfwPKBsB0LKmUqrmkw0zFeGFb9p9PYubXGyV7pB4d3duipg t0HhmkO5beYoTqHwScF1c8+Qd8VTbDg0fMRNnrSfDba1qoV7CjI3dM/f0J8Xg1zZ KdtZgiT5wzOMhEoao4ZdmEKC+jkCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBTZ+ux1 lAJ53PbB64HF/tkz+vQhaTAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzNTM2MmUzNTMyMmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzkzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnODQwDQYJKoZIhvcNAQEL BQADggEBAEvYBWtv7/UzKMDAWacWxHw580pmc8iCrzQaCNT65T4M4w2wSr9Jd30I /wax2rXllYPMlElj9qbzVx9NlyUHm0nPnxtRMf6741KG17AAM6tgkSKX+5kaEH56 EW/enZPwXPW8j2mVzM+rc5/N1ak54503XDVhjBf9OWvtN3oemFEQSF+HssAuIUVQ FijVXJzzc46wMBxUy7Sm05D3jAfQr91LXQG4aaB8umGk86y94PXzpvmXwfH4C6l2 mHrO67A2PW1gTDjxbCyeOwAcp8egHJsaS8Q0iQ8RMNySEgmhGCpF44potvV9Zhv2 /qlQniCOZdZtZO4/Mg8HzmP9WlbOua8= -----END CERTIFICATE-----Generated at Sat Dec 6 19:27:18 2025 by rpki-client