This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/75D91256B2F311EBB8A53526C4F9AE02.roa File: 75D91256B2F311EBB8A53526C4F9AE02.roa (raw, json) Hash identifier: jIPkDEf13TMiFg2C0rBtFKVkCQXwsHcdNzopb74LLvA= Subject key identifier: 1B:2F:3C:EC:0B:B9:7A:49:ED:8F:CD:DB:E6:A8:6F:94:04:9D:4E:11 Certificate issuer: /CN=A9118D0F/serialNumber=43E1E8C4261CE07D4F8E4CFB7A3F833FBB46B88C Certificate serial: 0998 Authority key identifier: 43:E1:E8:C4:26:1C:E0:7D:4F:8E:4C:FB:7A:3F:83:3F:BB:46:B8:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/75D91256B2F311EBB8A53526C4F9AE02.roa Signing time: Sun 16 Nov 2025 19:39:41 +0000 ROA not before: Sun 16 Nov 2025 19:39:41 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139750 IP address blocks: 49.128.64.0/24 maxlen: 24 49.128.66.0/24 maxlen: 24 49.128.68.0/24 maxlen: 24 49.128.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.crl rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2456 (0x998) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118D0F, serialNumber=43E1E8C4261CE07D4F8E4CFB7A3F833FBB46B88C Validity Not Before: Nov 16 19:39:41 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=691a287d-9764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:60:dc:7b:3a:3d:c1:31:df:5b:ee:19:f0:a9: b0:dd:8e:8a:fa:91:2e:83:98:e1:75:ce:7a:f5:b0: fc:24:c0:c0:70:9a:50:a8:71:37:22:d2:19:fc:7f: ca:80:5e:67:0a:b3:2c:99:82:8b:31:3c:53:66:b3: 48:80:2a:90:2c:fc:d6:de:e2:d3:76:91:ce:f2:28: 39:e1:7a:29:89:8b:f7:d4:c1:fe:7e:49:0d:3f:2b: 3a:b4:6e:b5:03:73:4c:5d:b5:ab:d5:d5:86:d6:0a: 93:bb:f6:fb:1a:29:6e:d6:c5:70:b4:2d:28:70:bf: 79:b3:4e:dd:b4:3c:a5:14:10:e9:fb:a4:de:99:d8: 89:48:9d:4d:db:0f:8d:2d:01:8e:b5:7d:a5:1a:31: ca:67:23:53:eb:e1:44:55:b3:b6:dc:fb:2d:29:11: 0d:b9:35:29:b8:c7:48:55:de:06:bf:fa:c6:48:54: 69:d3:cd:ec:46:6a:34:62:c9:d3:a5:27:f8:50:4a: f2:45:29:5d:e2:05:a3:51:c2:15:43:84:71:20:e4: b9:84:9b:61:e4:16:b0:d6:d8:5f:80:c4:86:a8:ab: c3:7f:39:fc:fa:e6:c6:f6:aa:44:65:d6:dd:47:6a: 3b:1a:76:f8:a0:eb:79:1e:17:c5:fe:62:95:e4:2a: 3c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:2F:3C:EC:0B:B9:7A:49:ED:8F:CD:DB:E6:A8:6F:94:04:9D:4E:11 X509v3 Authority Key Identifier: keyid:43:E1:E8:C4:26:1C:E0:7D:4F:8E:4C:FB:7A:3F:83:3F:BB:46:B8:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/75D91256B2F311EBB8A53526C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.128.64.0/24 49.128.66.0/24 49.128.68.0/24 49.128.81.0/24 Signature Algorithm: sha256WithRSAEncryption 90:7e:42:6c:8b:9d:2e:bb:5e:2f:fc:ac:e5:13:e7:23:ce:75: e4:50:33:f3:34:b0:19:bb:cb:d4:a4:6e:0c:b0:bb:af:09:6b: 19:82:52:3c:b1:3d:b1:5a:e0:f2:db:14:d1:8a:8d:a9:82:de: 9f:1d:7b:f8:a3:fe:2c:1b:1f:f4:40:06:a4:7f:06:10:7b:c8: 66:1b:da:0a:1f:9b:79:ff:bc:f5:03:d5:08:6b:ae:63:b7:72: 04:81:60:c9:e6:5f:66:58:44:ef:bc:f1:7d:56:7a:dc:66:ae: 88:ca:5d:01:27:95:19:56:29:2e:75:5c:bc:30:e1:5b:12:1b: 9c:ef:66:07:fc:25:5e:45:4b:ff:bc:59:84:29:52:5e:0f:3c: b0:2c:02:38:0c:76:cc:50:6a:e4:63:7d:05:da:69:a4:43:86: e6:59:79:c0:96:e7:06:2d:bb:4d:0b:9d:eb:31:9f:b7:64:49: 55:3d:04:a9:f3:90:19:e1:13:fe:ca:d4:f9:86:e8:30:46:89: 63:79:cd:04:86:10:14:8c:f9:78:1e:d0:d4:63:3e:b2:87:ab: c4:6d:82:b3:91:6a:02:e2:fa:0b:9a:6f:27:d8:d8:ac:f0:fc: 72:e8:c0:5e:38:43:c9:97:34:6a:e2:65:c2:2f:4b:c5:f9:7a: 1a:aa:ce:d4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThEMEYxMTAvBgNVBAUTKDQzRTFFOEM0MjYxQ0UwN0Q0RjhFNENGQjdBM0Y4MzNG QkI0NkI4OEMwHhcNMjUxMTE2MTkzOTQxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFhMjg3ZC05NzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGDcezo9wTHfW+4Z8Kmw3Y6K+pEug5jhdc569bD8JMDAcJpQqHE3ItIZ/H/K gF5nCrMsmYKLMTxTZrNIgCqQLPzW3uLTdpHO8ig54XopiYv31MH+fkkNPys6tG61 A3NMXbWr1dWG1gqTu/b7Gilu1sVwtC0ocL95s07dtDylFBDp+6TemdiJSJ1N2w+N LQGOtX2lGjHKZyNT6+FEVbO23PstKRENuTUpuMdIVd4Gv/rGSFRp083sRmo0YsnT pSf4UEryRSld4gWjUcIVQ4RxIOS5hJth5Baw1thfgMSGqKvDfzn8+ubG9qpEZdbd R2o7Gnb4oOt5HhfF/mKV5Co8NQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFBsvPOwL uXpJ7Y/N2+aob5QEnU4RMB8GA1UdIwQYMBaAFEPh6MQmHOB9T45M+3o/gz+7RriM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEQwRi83RDIyNzNCNEE2 NDYxMUVBQUY5RTkxNjJDNEY5QUUwMi9RLUhveENZYzRIMVBqa3o3ZWotRFA3dEd1 SXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EtSG94Q1ljNEgxUGprejdlai1EUDd0R3VJdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MThEMEYvN0QyMjczQjRBNjQ2MTFFQUFGOUU5MTYyQzRGOUFFMDIvNzVEOTEyNTZC MkYzMTFFQkI4QTUzNTI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAxgEADBAAxgEIDBAAxgEQDBAAxgFEwDQYJKoZIhvcNAQEL BQADggEBAJB+QmyLnS67Xi/8rOUT5yPOdeRQM/M0sBm7y9Skbgywu68JaxmCUjyx PbFa4PLbFNGKjamC3p8de/ij/iwbH/RABqR/BhB7yGYb2gofm3n/vPUD1QhrrmO3 cgSBYMnmX2ZYRO+88X1WetxmrojKXQEnlRlWKS51XLww4VsSG5zvZgf8JV5FS/+8 WYQpUl4PPLAsAjgMdsxQauRjfQXaaaRDhuZZecCW5wYtu00Lnesxn7dkSVU9BKnz kBnhE/7K1PmG6DBGiWN5zQSGEBSM+Xge0NRjPrKHq8RtgrORagLi+guabyfY2Kzw /HLowF44Q8mXNGriZcIvS8X5ehqqztQ= -----END CERTIFICATE-----Generated at Sun Dec 7 06:59:48 2025 by rpki-client