This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/FBDFC922CB6B11F0B7DCE06BC4F9AE02.roa File: FBDFC922CB6B11F0B7DCE06BC4F9AE02.roa (raw, json) Hash identifier: ArS5AGPHgEHvdQtpL/879+l26sBrIJGIKuKFDkTzfqw= Subject key identifier: 29:2B:02:97:39:C0:D3:9A:D1:0D:F2:01:D5:EC:9B:D3:B5:64:F3:0B Certificate issuer: /CN=A9168494/serialNumber=B13EA4934F41FC4834CD2A6FF8218D40F7A97789 Certificate serial: 02F0 Authority key identifier: B1:3E:A4:93:4F:41:FC:48:34:CD:2A:6F:F8:21:8D:40:F7:A9:77:89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sT6kk09B_Eg0zSpv-CGNQPepd4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/FBDFC922CB6B11F0B7DCE06BC4F9AE02.roa Signing time: Thu 27 Nov 2025 08:35:10 +0000 ROA not before: Thu 27 Nov 2025 08:35:10 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 3550 IP address blocks: 165.220.0.0/21 maxlen: 21 165.220.32.0/19 maxlen: 19 165.220.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/sT6kk09B_Eg0zSpv-CGNQPepd4k.crl rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/sT6kk09B_Eg0zSpv-CGNQPepd4k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sT6kk09B_Eg0zSpv-CGNQPepd4k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 23:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 752 (0x2f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168494, serialNumber=B13EA4934F41FC4834CD2A6FF8218D40F7A97789 Validity Not Before: Nov 27 08:35:10 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69280d3d-be21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d5:bf:1c:90:ac:5b:63:ca:9c:ef:89:45:c8: 3b:f5:6b:e8:08:2d:06:d4:18:07:41:24:5f:82:0a: 0a:95:04:19:59:2a:3f:d5:af:de:f6:8c:b2:d2:0f: c9:4f:6a:2e:38:f6:93:d2:83:b2:75:99:4f:ef:cd: 79:10:8b:73:70:98:69:a0:f1:93:b4:87:eb:a6:1b: 55:90:85:5d:e8:8e:e1:0e:20:1d:60:4e:1c:6d:1d: 68:a4:14:76:7f:fb:cb:a5:de:0d:60:b4:48:2e:fd: ba:cb:e0:c8:ee:c3:ce:66:c2:3b:17:db:51:ea:b5: 53:78:80:22:61:b9:57:ab:e4:be:58:7a:6d:b4:72: ee:3f:69:df:d4:1e:5a:12:9c:83:93:b1:a7:7b:3f: 28:19:51:8e:e2:90:de:21:52:1d:1e:e1:19:1b:ba: 62:a4:68:74:8e:f3:0f:ea:fe:dd:3d:1a:b2:99:fb: 72:64:29:16:a5:f0:55:73:05:15:85:db:90:5e:db: bc:f1:c5:c9:77:44:14:61:53:43:be:d8:07:52:a6: ea:08:fd:1d:70:14:4d:72:0a:43:3f:a6:a5:1c:27: f2:26:46:4e:1d:9a:ad:a2:ec:2c:4e:9f:7f:a5:59: 45:17:67:4d:04:6f:28:f3:8b:8c:48:86:7b:f5:be: 9e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:2B:02:97:39:C0:D3:9A:D1:0D:F2:01:D5:EC:9B:D3:B5:64:F3:0B X509v3 Authority Key Identifier: keyid:B1:3E:A4:93:4F:41:FC:48:34:CD:2A:6F:F8:21:8D:40:F7:A9:77:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/sT6kk09B_Eg0zSpv-CGNQPepd4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sT6kk09B_Eg0zSpv-CGNQPepd4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/FBDFC922CB6B11F0B7DCE06BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.220.0.0/21 165.220.32.0-165.220.127.255 Signature Algorithm: sha256WithRSAEncryption ab:60:5a:dc:17:f6:1a:42:c8:85:d5:48:72:13:13:73:ea:75: 73:25:d1:35:b9:8b:90:7b:0b:fa:57:bd:20:44:11:f7:c8:32: 3f:28:74:13:00:49:f4:a9:de:fd:6b:f8:36:31:5f:a8:47:ee: 11:13:0a:3c:89:62:43:56:11:33:dd:7e:f1:ee:e5:66:91:e9: 58:db:86:6f:6d:3c:d6:36:b9:3a:2f:a5:38:0f:ce:c1:21:93: b1:60:db:12:38:e1:fd:67:47:ca:a3:cc:68:01:89:7f:38:c6: f9:28:9a:a9:28:72:1f:bb:b2:57:14:cd:71:d8:86:3b:cb:d7: 4e:ee:6d:b4:20:2f:9d:da:c6:d7:1b:63:58:f7:f8:b2:1c:4c: 99:ab:d1:b9:56:e5:03:0e:71:74:1c:0e:2c:29:f1:1c:61:c5: 7c:34:d3:e0:ba:88:3b:7a:8e:14:68:85:2e:5d:1b:e1:e4:5b: 1d:12:5b:4a:92:59:53:4e:cb:9b:2f:db:50:d6:27:65:29:2f: 92:50:33:8f:f4:2f:87:b2:ff:e4:e5:fb:b3:89:ea:f1:77:94: d8:dd:31:68:d1:ac:1a:ae:19:e2:27:0b:1b:13:de:35:ac:0b: 5e:85:40:ce:99:2d:e7:6a:64:96:38:3f:39:34:20:53:6e:72: 00:3b:f1:fe -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg0OTQxMTAvBgNVBAUTKEIxM0VBNDkzNEY0MUZDNDgzNENEMkE2RkY4MjE4RDQw RjdBOTc3ODkwHhcNMjUxMTI3MDgzNTEwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI4MGQzZC1iZTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9W/HJCsW2PKnO+JRcg79WvoCC0G1BgHQSRfggoKlQQZWSo/1a/e9oyy0g/J T2ouOPaT0oOydZlP7815EItzcJhpoPGTtIfrphtVkIVd6I7hDiAdYE4cbR1opBR2 f/vLpd4NYLRILv26y+DI7sPOZsI7F9tR6rVTeIAiYblXq+S+WHpttHLuP2nf1B5a EpyDk7Gnez8oGVGO4pDeIVIdHuEZG7pipGh0jvMP6v7dPRqymftyZCkWpfBVcwUV hduQXtu88cXJd0QUYVNDvtgHUqbqCP0dcBRNcgpDP6alHCfyJkZOHZqtouwsTp9/ pVlFF2dNBG8o84uMSIZ79b6eFQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFCkrApc5 wNOa0Q3yAdXsm9O1ZPMLMB8GA1UdIwQYMBaAFLE+pJNPQfxINM0qb/ghjUD3qXeJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODQ5NC8zMUI4MjYzQzA5 OTMxMUVEQjIxQzlCNEJDNEY5QUUwMi9zVDZrazA5Ql9FZzB6U3B2LUNHTlFQZXBk NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NUNmtrMDlCX0VnMHpTcHYtQ0dOUVBlcGQ0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg0OTQvMzFCODI2M0MwOTkzMTFFREIyMUM5QjRCQzRGOUFFMDIvRkJERkM5MjJD QjZCMTFGMEI3RENFMDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAOl3AAwDAMEBaXcIAMEB6XcADANBgkqhkiG9w0BAQsFAAOC AQEAq2Ba3Bf2GkLIhdVIchMTc+p1cyXRNbmLkHsL+le9IEQR98gyPyh0EwBJ9Kne /Wv4NjFfqEfuERMKPIliQ1YRM91+8e7lZpHpWNuGb2081ja5Oi+lOA/OwSGTsWDb Ejjh/WdHyqPMaAGJfzjG+SiaqShyH7uyVxTNcdiGO8vXTu5ttCAvndrG1xtjWPf4 shxMmavRuVblAw5xdBwOLCnxHGHFfDTT4LqIO3qOFGiFLl0b4eRbHRJbSpJZU07L my/bUNYnZSkvklAzj/Qvh7L/5OX7s4nq8XeU2N0xaNGsGq4Z4icLGxPeNawLXoVA zpkt52pkljg/OTQgU25yADvx/g== -----END CERTIFICATE-----Generated at Wed Dec 3 15:26:48 2025 by rpki-client