This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/CD9B554E58DF11F0A0F08D09C4F9AE02.roa File: CD9B554E58DF11F0A0F08D09C4F9AE02.roa (raw, json) Hash identifier: RjBz7DM9PWj4EYARJmqJIScM3PQCM6ck/UDuntxMtmQ= Subject key identifier: FD:2E:D1:47:E9:05:5F:6D:B4:AE:52:4E:4B:73:11:33:AD:24:34:76 Certificate issuer: /CN=A912434D/serialNumber=30D719F9C6D37E2AC9F4D6D4B1F7D978EC2A3289 Certificate serial: 4B Authority key identifier: 30:D7:19:F9:C6:D3:7E:2A:C9:F4:D6:D4:B1:F7:D9:78:EC:2A:32:89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/CD9B554E58DF11F0A0F08D09C4F9AE02.roa Signing time: Wed 19 Nov 2025 05:23:04 +0000 ROA not before: Wed 19 Nov 2025 05:23:04 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150161 IP address blocks: 160.191.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.crl rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:28:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912434D, serialNumber=30D719F9C6D37E2AC9F4D6D4B1F7D978EC2A3289 Validity Not Before: Nov 19 05:23:04 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=691d5438-58d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c0:b0:2a:47:2f:a2:0c:c7:b7:a2:85:2b:b3: 29:40:f3:7c:04:fa:10:d2:8b:a6:6b:1f:28:88:30: be:09:9d:e4:52:c5:12:27:77:55:7d:f9:97:3f:0c: c2:27:18:68:94:8a:58:be:68:65:90:03:a5:12:34: 6d:4b:d5:05:9c:62:ea:8a:71:9a:b5:ac:fd:a4:8d: c9:70:a8:51:f6:eb:95:b7:87:f7:2f:54:e7:4d:35: 50:3d:b0:b0:0b:17:f4:b2:21:98:55:62:ed:e9:a0: fc:00:a4:a9:f0:cb:56:69:08:30:3a:1a:77:7d:19: 2d:74:41:1b:88:03:55:b6:c4:4c:e3:7d:1e:2d:18: 6b:46:59:1e:7a:a2:01:18:3a:9a:3b:8d:27:52:4e: d8:29:e8:a3:35:2c:10:b8:0e:42:f7:48:b8:4a:12: b2:4b:ef:ec:dd:3b:cd:38:ac:26:0f:1e:43:16:d4: 34:5b:ec:03:0c:11:81:7c:86:1b:9b:3c:94:30:b6: 30:ed:a7:95:8f:0a:91:02:38:de:c8:7f:8a:47:c2: 25:9e:33:84:47:68:e9:b2:26:3c:32:cb:8f:d7:8c: 2e:3d:37:43:cd:77:e5:bf:a6:70:f2:db:4d:98:24: ff:74:dc:9e:89:6f:e6:a7:57:fb:7b:8c:e7:a0:15: 4c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:2E:D1:47:E9:05:5F:6D:B4:AE:52:4E:4B:73:11:33:AD:24:34:76 X509v3 Authority Key Identifier: keyid:30:D7:19:F9:C6:D3:7E:2A:C9:F4:D6:D4:B1:F7:D9:78:EC:2A:32:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/CD9B554E58DF11F0A0F08D09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.24.0/23 Signature Algorithm: sha256WithRSAEncryption 89:3b:55:8c:33:b3:d4:ed:71:19:fa:17:6b:e9:71:ce:48:7b: 42:2e:ad:c7:11:1f:85:02:14:3a:01:13:19:6a:04:11:ea:b8: 8b:80:ac:72:cc:ba:00:ef:99:5c:68:eb:09:01:39:8f:cb:46: 71:eb:76:77:90:a2:bb:d5:6c:6a:14:c3:85:55:5b:62:47:0a: c0:91:9e:76:ec:6d:c0:e8:9f:da:32:ff:ad:ac:d6:f2:25:2b: 86:eb:73:f7:15:4d:e2:fd:48:4c:73:96:49:97:83:d1:db:ef: 67:8a:72:65:6c:92:53:57:a0:6c:d3:02:6c:6f:44:0a:d0:c8: aa:7f:28:33:a3:97:9f:c5:1f:ce:62:31:c4:1d:24:48:97:30: cb:46:0a:27:8d:da:46:7c:6c:68:b0:f8:c8:62:01:2c:bd:85: 47:63:a8:f4:f8:20:cb:c8:19:4b:37:e0:f6:eb:3e:27:db:13: a1:df:cd:9d:a5:1d:33:89:e7:d5:cf:03:ad:8f:e4:9e:b5:75: 49:9f:59:0f:d8:c8:b6:f1:1b:f1:57:5d:7c:bd:43:b6:b4:f2: c4:28:6a:dc:62:ec:2a:80:00:6f:76:ba:d0:8c:b3:3f:ba:6d: 6a:81:e9:8d:a6:09:4b:d2:d6:75:50:81:72:e3:82:b2:fa:a1: a1:1b:16:6a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDM0RDExMC8GA1UEBRMoMzBENzE5RjlDNkQzN0UyQUM5RjRENkQ0QjFGN0Q5NzhF QzJBMzI4OTAeFw0yNTExMTkwNTIzMDRaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MWQ1NDM4LTU4ZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzwLAqRy+iDMe3ooUrsylA83wE+hDSi6ZrHyiIML4JneRSxRInd1V9+Zc/DMIn GGiUili+aGWQA6USNG1L1QWcYuqKcZq1rP2kjclwqFH265W3h/cvVOdNNVA9sLAL F/SyIZhVYu3poPwApKnwy1ZpCDA6Gnd9GS10QRuIA1W2xEzjfR4tGGtGWR56ogEY Opo7jSdSTtgp6KM1LBC4DkL3SLhKErJL7+zdO804rCYPHkMW1DRb7AMMEYF8hhub PJQwtjDtp5WPCpECON7If4pHwiWeM4RHaOmyJjwyy4/XjC49N0PNd+W/pnDy202Y JP903J6Jb+anV/t7jOegFUyRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/S7RR+kF X220rlJOS3MRM60kNHYwHwYDVR0jBBgwFoAUMNcZ+cbTfirJ9NbUsffZeOwqMokw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0MzREL0ZDMjA5MTM4NThE RDExRjA4RkFBREU2NkM0RjlBRTAyL01OY1otY2JUZmlySjlOYlVzZmZaZU93cU1v ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTU5jWi1jYlRmaXJKOU5iVXNmZlplT3dxTW9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDM0RC9GQzIwOTEzODU4REQxMUYwOEZBQURFNjZDNEY5QUUwMi9DRDlCNTU0RTU4 REYxMUYwQTBGMDhEMDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/GDANBgkqhkiG9w0BAQsFAAOCAQEAiTtVjDOz1O1xGfoX a+lxzkh7Qi6txxEfhQIUOgETGWoEEeq4i4Cscsy6AO+ZXGjrCQE5j8tGcet2d5Ci u9VsahTDhVVbYkcKwJGeduxtwOif2jL/razW8iUrhutz9xVN4v1ITHOWSZeD0dvv Z4pyZWySU1egbNMCbG9ECtDIqn8oM6OXn8UfzmIxxB0kSJcwy0YKJ43aRnxsaLD4 yGIBLL2FR2Oo9Pggy8gZSzfg9us+J9sTod/NnaUdM4nn1c8DrY/knrV1SZ9ZD9jI tvEb8VddfL1DtrTyxChq3GLsKoAAb3a60IyzP7ptaoHpjaYJS9LWdVCBcuOCsvqh oRsWag== -----END CERTIFICATE-----Generated at Wed Dec 3 15:49:40 2025 by rpki-client