This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/25D2B94CDECD11EFA79E4065C4F9AE02.roa File: 25D2B94CDECD11EFA79E4065C4F9AE02.roa (raw, json) Hash identifier: GGtGV78DXnx+758QjjUFzDYEJZn1i4ItJjSZC8rC92A= Subject key identifier: 10:05:E5:B1:F8:D8:8B:4F:6C:7B:6B:3F:7B:63:1D:47:1C:8C:9A:67 Certificate issuer: /CN=A91EC225/serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859 Certificate serial: BD Authority key identifier: 22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/25D2B94CDECD11EFA79E4065C4F9AE02.roa Signing time: Sun 14 Dec 2025 17:34:58 +0000 ROA not before: Sun 14 Dec 2025 17:34:58 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 59339 IP address blocks: 160.250.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225, serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859 Validity Not Before: Dec 14 17:34:58 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=693ef542-2d4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:23:73:1f:e6:68:45:42:a6:b6:5a:d2:6b:d5: 01:f9:6b:56:4a:96:74:e2:d3:e0:f5:37:d2:86:44: f7:4a:28:01:ee:2a:98:5b:01:40:f9:cb:35:75:aa: cc:1e:8e:4b:ec:93:37:f1:49:37:99:da:32:79:99: 66:a0:b7:a8:54:3e:15:ba:cb:2e:bb:5a:ae:2b:54: 90:31:14:23:7c:2e:c3:65:2a:73:09:48:d9:c8:83: a8:0d:55:0b:3b:9d:a8:41:fd:41:42:5a:56:83:c4: 4f:b8:7d:aa:c4:e3:ed:a1:10:55:e9:2c:17:3e:64: ba:bf:c1:d6:5f:48:b0:7d:56:92:2d:f3:ad:f5:18: 3b:4b:85:b3:c2:e3:0b:b1:ae:89:a0:01:63:71:ce: 19:a5:51:84:0c:de:11:dd:15:36:f7:3a:18:2d:aa: b0:11:00:b0:ac:e9:79:0b:ca:ea:e0:07:e1:52:cf: a3:b2:2b:42:ff:3b:78:e4:c2:df:5c:cb:95:95:3e: 8c:79:1f:8a:18:13:c5:1c:cd:68:a3:a7:85:44:8e: ee:b1:a9:f4:50:84:2f:61:45:86:3a:43:07:fc:70: 3e:ee:36:c0:83:d1:af:bc:41:72:47:38:be:ad:86: 27:b5:ae:d2:b5:e4:49:b3:41:fd:f8:06:77:8d:59: c7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:05:E5:B1:F8:D8:8B:4F:6C:7B:6B:3F:7B:63:1D:47:1C:8C:9A:67 X509v3 Authority Key Identifier: keyid:22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/25D2B94CDECD11EFA79E4065C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.244.0/23 Signature Algorithm: sha256WithRSAEncryption 03:5a:c9:94:94:b0:b7:c6:5a:c4:90:46:35:a2:ce:8a:33:cb: e7:b4:c7:a2:5b:e9:1b:c4:7d:f7:8e:a5:17:79:b8:c6:06:7c: ce:b4:1f:5f:7f:56:61:e6:a7:9e:a7:ae:62:37:24:10:48:08: 4e:ae:a6:43:2a:d4:b9:64:78:20:51:a0:a8:9e:48:99:eb:5f: 6f:c7:06:c4:3a:e1:5a:d1:77:b1:55:cf:92:11:38:4e:5b:7c: b8:7b:78:9a:50:e9:10:ee:4d:fa:d2:7e:ec:f1:6b:d1:68:fb: 00:db:07:d6:1e:ad:70:e5:52:53:20:02:ab:86:28:cd:55:9f: 4b:62:de:3f:21:00:26:09:a4:fb:df:53:f2:a0:1e:9c:f4:c7: 66:a2:35:75:36:90:68:77:2c:c9:38:c4:ac:95:b0:12:1c:92: fb:bc:7c:39:70:9c:58:19:16:9d:5c:96:3c:2c:62:7b:90:e9: 58:42:c7:e2:ed:f6:b9:68:54:eb:17:73:a6:8d:30:3f:84:2e: 21:5f:15:36:9c:98:85:11:50:19:9c:94:ee:d5:2b:3d:d9:e0: 37:95:c5:2d:d7:8c:69:c0:da:8b:f5:00:ab:69:ef:c1:bc:71: 9f:9f:6e:68:9a:f4:5e:bd:85:2b:ee:f3:30:7d:fb:f4:5a:b7: 97:21:3c:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMyMjUxMTAvBgNVBAUTKDIyQzdFQzNDRDlFRDRDNTBFODk0QTExQkNENzBEMDMx MENENUY4NTkwHhcNMjUxMjE0MTczNDU4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNlZjU0Mi0yZDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiiNzH+ZoRUKmtlrSa9UB+WtWSpZ04tPg9TfShkT3SigB7iqYWwFA+cs1darM Ho5L7JM38Uk3mdoyeZlmoLeoVD4Vussuu1quK1SQMRQjfC7DZSpzCUjZyIOoDVUL O52oQf1BQlpWg8RPuH2qxOPtoRBV6SwXPmS6v8HWX0iwfVaSLfOt9Rg7S4WzwuML sa6JoAFjcc4ZpVGEDN4R3RU29zoYLaqwEQCwrOl5C8rq4AfhUs+jsitC/zt45MLf XMuVlT6MeR+KGBPFHM1oo6eFRI7usan0UIQvYUWGOkMH/HA+7jbAg9GvvEFyRzi+ rYYnta7SteRJs0H9+AZ3jVnHBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBAF5bH4 2ItPbHtrP3tjHUccjJpnMB8GA1UdIwQYMBaAFCLH7DzZ7UxQ6JShG81w0DEM1fhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS9DOTQ0N0ZGMEJF RjkxMUVGQkNGNjg5NDRDNEY5QUUwMi9Jc2ZzUE5udFRGRG9sS0VielhEUU1RelYt RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lzZnNQTm50VEZEb2xLRWJ6WERRTVF6Vi1Gay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUMyMjUvQzk0NDdGRjBCRUY5MTFFRkJDRjY4OTQ0QzRGOUFFMDIvMjVEMkI5NENE RUNEMTFFRkE3OUU0MDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGg+vQwDQYJKoZIhvcNAQELBQADggEBAANayZSUsLfGWsSQ RjWizoozy+e0x6Jb6RvEffeOpRd5uMYGfM60H19/VmHmp56nrmI3JBBICE6upkMq 1LlkeCBRoKieSJnrX2/HBsQ64VrRd7FVz5IROE5bfLh7eJpQ6RDuTfrSfuzxa9Fo +wDbB9YerXDlUlMgAquGKM1Vn0ti3j8hACYJpPvfU/KgHpz0x2aiNXU2kGh3LMk4 xKyVsBIckvu8fDlwnFgZFp1cljwsYnuQ6VhCx+Lt9rloVOsXc6aNMD+ELiFfFTac mIURUBmclO7VKz3Z4DeVxS3XjGnA2ov1AKtp78G8cZ+fbmia9F69hSvu8zB9+/Ra t5chPO0= -----END CERTIFICATE-----Generated at Tue Dec 23 21:54:31 2025 by rpki-client