This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B6D8/56948B32BEBA11F096A62784C4F9AE02/551B0760BEBD11F0AD50D23AC4F9AE02.roa File: 551B0760BEBD11F0AD50D23AC4F9AE02.roa (raw, json) Hash identifier: k/Bj5MFr5woGzZDRB9XxOYqM9e19oHws7ME7lRNdfok= Subject key identifier: 3B:AD:81:AA:8A:12:61:20:6C:48:C7:2D:A3:64:D5:DF:F1:3C:3D:5D Certificate issuer: /CN=A914B6D8/serialNumber=E76F70E16BD797F1470FD1E095466ED9FFD70BDE Certificate serial: 02 Authority key identifier: E7:6F:70:E1:6B:D7:97:F1:47:0F:D1:E0:95:46:6E:D9:FF:D7:0B:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/529w4WvXl_FHD9HglUZu2f_XC94.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B6D8/56948B32BEBA11F096A62784C4F9AE02/551B0760BEBD11F0AD50D23AC4F9AE02.roa Signing time: Tue 11 Nov 2025 05:14:44 +0000 ROA not before: Tue 11 Nov 2025 05:14:44 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137013 IP address blocks: 138.252.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B6D8/56948B32BEBA11F096A62784C4F9AE02/529w4WvXl_FHD9HglUZu2f_XC94.crl rsync://rpki.apnic.net/member_repository/A914B6D8/56948B32BEBA11F096A62784C4F9AE02/529w4WvXl_FHD9HglUZu2f_XC94.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/529w4WvXl_FHD9HglUZu2f_XC94.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 17:47:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B6D8, serialNumber=E76F70E16BD797F1470FD1E095466ED9FFD70BDE Validity Not Before: Nov 11 05:14:44 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6912c643-ef73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:55:cc:3c:06:37:3a:1a:27:3c:44:24:48:2a: 7d:ed:5c:ef:36:d0:84:f0:ec:1f:4f:bf:17:67:19: 8b:9c:95:2e:b7:65:cf:84:4a:81:f6:29:56:88:f3: 5b:33:4e:24:2c:e9:d2:e4:d2:73:9f:6c:f3:45:6e: c2:f9:05:2e:f5:4c:77:3f:04:a5:70:3f:05:e2:c2: 3c:97:68:0d:55:75:84:f9:8f:c5:b9:e6:39:53:ee: 1a:ed:79:f4:fd:0c:71:8a:4f:9e:d3:97:76:55:3a: e6:4a:37:a5:41:c2:2d:b6:e8:98:f2:4e:80:59:6a: da:50:0a:7f:df:6f:95:61:a2:86:74:58:03:dc:1d: 0f:0b:97:f2:6f:2a:f1:e6:d3:f4:1c:21:4f:4b:72: 82:62:2a:c6:34:de:09:f4:9c:f0:14:3f:81:dc:80: 41:10:f5:3b:23:62:67:14:77:e2:8d:c7:e4:08:53: 32:54:c5:82:39:62:13:02:2f:50:ce:33:82:3f:71: a3:98:9b:15:9d:a9:67:92:2d:6b:04:7a:74:b5:b6: 25:7c:cd:bc:73:d5:b9:f9:a4:48:8a:da:d5:c8:28: 8b:65:3b:dd:a6:4b:7a:07:54:0e:e9:66:e1:0b:6d: 33:b3:55:6a:9c:ce:bf:b2:4a:4b:f0:7d:7b:b8:e0: 24:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:AD:81:AA:8A:12:61:20:6C:48:C7:2D:A3:64:D5:DF:F1:3C:3D:5D X509v3 Authority Key Identifier: keyid:E7:6F:70:E1:6B:D7:97:F1:47:0F:D1:E0:95:46:6E:D9:FF:D7:0B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B6D8/56948B32BEBA11F096A62784C4F9AE02/529w4WvXl_FHD9HglUZu2f_XC94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/529w4WvXl_FHD9HglUZu2f_XC94.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B6D8/56948B32BEBA11F096A62784C4F9AE02/551B0760BEBD11F0AD50D23AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.177.0/24 Signature Algorithm: sha256WithRSAEncryption 53:64:e1:15:8e:61:3f:7c:1d:ff:d6:0f:da:66:5a:fd:45:c3: 79:ef:19:8f:1e:9e:06:0a:e0:9c:91:76:67:fd:0c:8e:b0:c7: 32:2a:3a:98:7f:86:6e:b8:d9:4e:ea:94:27:66:8b:1e:ac:54: c5:26:a5:2a:13:89:be:3f:0c:b0:0a:8b:53:08:9a:40:23:c9: ab:b1:ae:38:1a:6f:da:61:87:a5:55:44:13:5e:a2:92:59:43: 2b:03:3c:10:1d:78:e0:28:86:f5:04:76:f9:16:db:7c:5b:70: 2c:b5:3b:3c:8e:cd:94:0a:e4:0e:3c:85:84:5d:cf:da:f6:d1: 7e:67:6e:2c:11:72:64:e3:33:1f:73:5c:33:25:62:e7:99:0f: 3d:a9:b7:dc:65:42:81:0c:b6:61:1f:bb:54:73:b0:1b:c0:b6: 8c:e4:fb:3d:60:f7:f8:54:53:7c:15:7b:f6:a7:9f:c0:a8:3b: b4:0d:f5:07:31:9d:76:13:dd:a9:9b:d9:e0:ca:9b:3c:8f:93: 32:6c:e8:18:d2:16:06:66:e2:08:8c:f7:b3:61:73:68:9e:9c: a3:8a:4e:ab:dd:74:28:53:6e:74:78:1f:36:4f:c0:51:10:e0: d6:96:57:65:1e:e4:8c:9c:7c:a3:15:a5:c3:d1:c5:76:9d:e4: 86:8a:89:1a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QjZEODExMC8GA1UEBRMoRTc2RjcwRTE2QkQ3OTdGMTQ3MEZEMUUwOTU0NjZFRDlG RkQ3MEJERTAeFw0yNTExMTEwNTE0NDRaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MTJjNjQzLWVmNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzVcw8Bjc6Gic8RCRIKn3tXO820ITw7B9PvxdnGYuclS63Zc+ESoH2KVaI81sz TiQs6dLk0nOfbPNFbsL5BS71THc/BKVwPwXiwjyXaA1VdYT5j8W55jlT7hrtefT9 DHGKT57Tl3ZVOuZKN6VBwi226JjyToBZatpQCn/fb5VhooZ0WAPcHQ8Ll/JvKvHm 0/QcIU9LcoJiKsY03gn0nPAUP4HcgEEQ9TsjYmcUd+KNx+QIUzJUxYI5YhMCL1DO M4I/caOYmxWdqWeSLWsEenS1tiV8zbxz1bn5pEiK2tXIKItlO92mS3oHVA7pZuEL bTOzVWqczr+ySkvwfXu44CSbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUO62BqooS YSBsSMcto2TV3/E8PV0wHwYDVR0jBBgwFoAU529w4WvXl/FHD9HglUZu2f/XC94w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRCNkQ4LzU2OTQ4QjMyQkVC QTExRjA5NkE2Mjc4NEM0RjlBRTAyLzUyOXc0V3ZYbF9GSEQ5SGdsVVp1MmZfWEM5 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNTI5dzRXdlhsX0ZIRDlIZ2xVWnUyZl9YQzk0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjZEOC81Njk0OEIzMkJFQkExMUYwOTZBNjI3ODRDNEY5QUUwMi81NTFCMDc2MEJF QkQxMUYwQUQ1MEQyM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIr8sTANBgkqhkiG9w0BAQsFAAOCAQEAU2ThFY5hP3wd/9YP 2mZa/UXDee8Zjx6eBgrgnJF2Z/0MjrDHMio6mH+GbrjZTuqUJ2aLHqxUxSalKhOJ vj8MsAqLUwiaQCPJq7GuOBpv2mGHpVVEE16ikllDKwM8EB144CiG9QR2+RbbfFtw LLU7PI7NlArkDjyFhF3P2vbRfmduLBFyZOMzH3NcMyVi55kPPam33GVCgQy2YR+7 VHOwG8C2jOT7PWD3+FRTfBV79qefwKg7tA31BzGddhPdqZvZ4MqbPI+TMmzoGNIW BmbiCIz3s2FzaJ6co4pOq910KFNudHgfNk/AURDg1pZXZR7kjJx8oxWlw9HFdp3k hoqJGg== -----END CERTIFICATE-----Generated at Wed Dec 3 14:53:46 2025 by rpki-client