This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/45322DB8BF9111F0B4CD4C4FC4F9AE02.roa File: 45322DB8BF9111F0B4CD4C4FC4F9AE02.roa (raw, json) Hash identifier: ud1mE3zDUyJoUD45JUyLpu4ly9UG6jF4f8pk2Ff/D/Y= Subject key identifier: FA:F9:3A:92:22:73:E5:A0:F1:37:21:D5:15:08:4D:BF:9A:8F:1C:81 Certificate issuer: /CN=A915FDD9/serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Certificate serial: D9 Authority key identifier: 96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/45322DB8BF9111F0B4CD4C4FC4F9AE02.roa Signing time: Wed 12 Nov 2025 06:31:50 +0000 ROA not before: Wed 12 Nov 2025 06:31:50 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 153531 IP address blocks: 161.248.218.0/24 maxlen: 24 161.248.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Dec 2025 04:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Validity Not Before: Nov 12 06:31:50 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=691429d6-d27d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b1:96:60:e0:7e:52:ad:29:03:ca:3c:74:02: 57:05:65:e7:3e:3d:a2:e5:2a:36:92:94:4f:2f:f2: 28:91:e8:1d:44:f9:c3:ce:dd:90:2b:09:25:ae:6b: 2a:ca:a3:21:11:56:32:0e:55:b6:ad:ee:67:a8:15: ed:8b:81:be:48:ac:32:ea:2c:1b:73:75:41:0b:1f: a3:30:75:9c:1f:9f:87:ee:69:65:88:3f:61:e6:c8: f6:d8:03:b2:41:4a:06:49:15:c9:48:c6:2b:2d:96: e7:ed:bc:fa:43:ac:ab:71:b4:90:97:63:6b:77:25: 41:2e:0a:70:b0:f8:61:f2:ef:76:a4:16:21:28:a0: e4:e4:71:3e:a2:45:db:f5:38:16:45:bb:21:72:f7: 34:9b:cb:c8:08:f5:e7:43:6d:7d:22:a2:ff:da:6f: fc:d0:66:0d:d7:3f:2f:8d:0d:d6:a3:68:d1:d5:c6: 91:cc:b7:a7:bd:d3:46:d8:ba:7b:03:ee:2e:45:79: 4f:a0:68:53:76:53:9a:55:2d:9d:b7:55:c8:59:c7: bf:25:29:4e:c5:2d:52:e1:64:7e:c8:af:a1:85:77: 35:d7:ed:06:22:85:2c:ba:24:30:1e:0a:c6:c6:d6: fd:d9:d1:9d:fa:7d:ab:dd:ed:a7:77:7b:e5:8a:a0: 59:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:F9:3A:92:22:73:E5:A0:F1:37:21:D5:15:08:4D:BF:9A:8F:1C:81 X509v3 Authority Key Identifier: keyid:96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/45322DB8BF9111F0B4CD4C4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.218.0/23 Signature Algorithm: sha256WithRSAEncryption 89:d2:c7:23:ab:a5:85:2c:9d:c9:30:88:a8:3e:02:df:94:74: dc:a8:9d:62:d4:9f:be:58:93:34:02:07:e8:0f:1e:a2:c4:08: 66:12:38:50:aa:95:44:86:e9:43:12:1d:94:fc:df:0c:c8:c3: 4c:62:08:e5:65:79:a1:63:23:b7:79:f2:cd:a6:7c:ed:9a:f9: 64:f0:0e:ed:24:b0:4f:5a:c0:2c:a4:42:ea:96:67:88:4f:a2: 71:dc:0e:a3:59:b9:75:1f:c5:ad:b5:c0:da:87:a1:ce:65:79: 65:c3:64:60:a0:35:af:c0:0f:a8:62:3b:5c:bf:14:78:1e:fa: bf:fe:44:1d:0c:23:d8:cc:01:b9:0d:fe:0d:97:60:58:c6:df: 9c:7c:6b:e9:32:3c:34:38:eb:da:6a:eb:04:f5:0c:5f:c9:1c: 54:0e:98:88:f3:b8:bb:3d:3d:de:1c:ca:f7:ab:85:da:b6:77: ad:14:c3:6a:6d:42:65:21:4d:d2:6c:a8:c2:a7:88:88:5e:fb: 0c:af:24:27:a0:ed:ab:88:64:f3:5b:65:6a:58:3d:b1:1b:c3: 96:74:df:3e:95:0c:1b:f4:7f:a5:b2:ad:76:78:91:3f:3e:74: 47:5b:94:f2:05:8c:92:ba:75:e2:4d:42:ef:c4:1f:1d:cc:23: db:d6:1a:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZERDkxMTAvBgNVBAUTKDk2N0I5N0Q5RTMxMTI1MEQ4Mjk0MkQyN0U0QzVGOTBE OTgxMzgwNTgwHhcNMjUxMTEyMDYzMTUwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTE0MjlkNi1kMjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurGWYOB+Uq0pA8o8dAJXBWXnPj2i5So2kpRPL/IokegdRPnDzt2QKwklrmsq yqMhEVYyDlW2re5nqBXti4G+SKwy6iwbc3VBCx+jMHWcH5+H7mlliD9h5sj22AOy QUoGSRXJSMYrLZbn7bz6Q6yrcbSQl2NrdyVBLgpwsPhh8u92pBYhKKDk5HE+okXb 9TgWRbshcvc0m8vICPXnQ219IqL/2m/80GYN1z8vjQ3Wo2jR1caRzLenvdNG2Lp7 A+4uRXlPoGhTdlOaVS2dt1XIWce/JSlOxS1S4WR+yK+hhXc11+0GIoUsuiQwHgrG xtb92dGd+n2r3e2nd3vliqBZxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPr5OpIi c+Wg8Tch1RUITb+ajxyBMB8GA1UdIwQYMBaAFJZ7l9njESUNgpQtJ+TF+Q2YE4BY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkREOS9CNjIyRkE4QUQ2 REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9sbnVYMmVNUkpRMkNsQzBuNU1YNURaZ1Rn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xudVgyZU1SSlEyQ2xDMG41TVg1RFpnVGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUZERDkvQjYyMkZBOEFENkRFMTFFRkIwNDc0RTFCQzRGOUFFMDIvNDUzMjJEQjhC RjkxMTFGMEI0Q0Q0QzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+NowDQYJKoZIhvcNAQELBQADggEBAInSxyOrpYUsnckw iKg+At+UdNyonWLUn75YkzQCB+gPHqLECGYSOFCqlUSG6UMSHZT83wzIw0xiCOVl eaFjI7d58s2mfO2a+WTwDu0ksE9awCykQuqWZ4hPonHcDqNZuXUfxa21wNqHoc5l eWXDZGCgNa/AD6hiO1y/FHge+r/+RB0MI9jMAbkN/g2XYFjG35x8a+kyPDQ469pq 6wT1DF/JHFQOmIjzuLs9Pd4cyverhdq2d60Uw2ptQmUhTdJsqMKniIhe+wyvJCeg 7auIZPNbZWpYPbEbw5Z03z6VDBv0f6WyrXZ4kT8+dEdblPIFjJK6deJNQu/EHx3M I9vWGvY= -----END CERTIFICATE-----Generated at Tue Nov 25 18:40:34 2025 by rpki-client