This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/986FA3843F8F11EBA86B1F11C4F9AE02.roa File: 986FA3843F8F11EBA86B1F11C4F9AE02.roa (raw, json) Hash identifier: 3qsyI1RYdC4IxoOEtj35JjtCqUJZACqFj6a64FAn/R4= Subject key identifier: 25:9B:AB:C8:54:C7:E2:87:64:01:E8:67:A8:54:E4:7C:FF:22:D3:3A Certificate issuer: /CN=A916B18B/serialNumber=368F3C938B601412521A3A819009978FCFE91E7E Certificate serial: 17B7 Authority key identifier: 36:8F:3C:93:8B:60:14:12:52:1A:3A:81:90:09:97:8F:CF:E9:1E:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/No88k4tgFBJSGjqBkAmXj8_pHn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/986FA3843F8F11EBA86B1F11C4F9AE02.roa Signing time: Thu 04 Dec 2025 16:16:02 +0000 ROA not before: Thu 04 Dec 2025 16:16:02 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 18190 IP address blocks: 136.158.132.0/24 maxlen: 24 136.158.133.0/24 maxlen: 24 136.158.134.0/24 maxlen: 24 136.158.135.0/24 maxlen: 24 136.158.136.0/24 maxlen: 24 136.158.137.0/24 maxlen: 24 136.158.138.0/24 maxlen: 24 136.158.161.0/24 maxlen: 24 136.158.169.0/24 maxlen: 24 136.158.170.0/24 maxlen: 24 136.158.171.0/24 maxlen: 24 161.49.148.0/24 maxlen: 24 161.49.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/No88k4tgFBJSGjqBkAmXj8_pHn4.crl rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/No88k4tgFBJSGjqBkAmXj8_pHn4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/No88k4tgFBJSGjqBkAmXj8_pHn4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:10:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6071 (0x17b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B18B, serialNumber=368F3C938B601412521A3A819009978FCFE91E7E Validity Not Before: Dec 4 16:16:02 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6931b3c1-52b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:73:41:1c:a6:e1:b5:9a:2c:2b:ad:0e:55:b1: bd:3a:24:98:8d:95:be:49:70:32:ce:38:40:06:54: 03:9f:08:6a:e1:6d:50:46:9d:99:e8:f9:1d:63:54: 14:cb:cf:43:0b:99:5a:be:3f:a5:11:32:04:4d:13: 01:57:a3:6d:a9:eb:01:61:7e:5c:e9:b8:9a:ed:81: 5f:4a:62:a9:72:7b:fc:e1:84:e3:c1:bf:29:db:34: 4e:e7:a7:c8:85:39:e8:cd:3c:a4:ef:18:8e:70:25: b5:51:19:2b:48:b2:b8:82:89:bc:e0:6b:54:a6:f5: 8b:14:2c:cb:a9:ba:a1:e7:34:a2:80:ab:f5:8d:6c: 01:62:80:45:d3:43:33:5d:26:a3:c7:ab:02:4f:92: 23:e1:b9:4b:82:28:ba:14:d0:6b:98:5f:7b:be:56: c0:0a:db:0b:e0:74:9c:a4:4e:af:1f:74:e0:b7:72: bc:d5:04:01:87:f3:8a:10:97:6b:49:e2:5b:ea:d0: 3e:d7:b0:43:47:df:4a:e8:32:0b:7e:7a:e9:21:bb: 4b:76:36:2e:fa:53:0c:0c:6a:34:bc:1a:5c:69:49: ae:f9:bf:ef:ac:05:39:0e:45:22:61:97:d1:dc:d4: 01:84:6b:8a:6f:6f:6b:60:6a:22:43:aa:a9:bd:98: be:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:9B:AB:C8:54:C7:E2:87:64:01:E8:67:A8:54:E4:7C:FF:22:D3:3A X509v3 Authority Key Identifier: keyid:36:8F:3C:93:8B:60:14:12:52:1A:3A:81:90:09:97:8F:CF:E9:1E:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/No88k4tgFBJSGjqBkAmXj8_pHn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/No88k4tgFBJSGjqBkAmXj8_pHn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B18B/F98B5F0C21F911E896C1DD23C4F9AE02/986FA3843F8F11EBA86B1F11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 136.158.132.0-136.158.138.255 136.158.161.0/24 136.158.169.0-136.158.171.255 161.49.148.0/24 161.49.178.0/24 Signature Algorithm: sha256WithRSAEncryption a4:c3:71:97:c1:f1:3a:a5:2d:8f:8e:6d:53:55:af:f8:e8:87: 73:c5:49:23:72:20:cb:75:bc:76:88:2e:61:79:cb:f4:aa:65: 7b:70:70:32:2a:73:f7:54:03:42:28:a3:7c:96:73:cb:b8:21: 3b:30:ac:1b:b4:2a:f8:fa:3d:65:8b:0b:83:05:53:60:86:15: 3e:59:df:ce:b4:bc:27:79:95:de:62:db:ec:84:6a:e2:8b:b1: 2e:90:17:c8:b5:44:fd:a2:46:0f:51:20:b5:af:a8:40:71:91: 73:52:7f:16:cd:ea:b0:4c:03:9c:e9:ce:ff:1a:4f:d7:f1:3c: a6:24:7a:be:b5:62:37:f8:e9:af:08:8d:b3:01:f0:85:0d:59: b8:5e:70:24:69:2a:87:01:65:8f:82:3d:6c:63:c2:8c:8b:1a: e3:42:3b:7a:09:0d:f0:76:ab:d4:f0:68:3a:a2:63:e5:1f:cc: e1:f9:5a:a1:99:f9:f0:ca:f6:76:2d:5a:8c:2b:81:af:54:3f: fb:af:a9:d5:2b:e5:48:31:aa:57:15:7c:59:d3:b5:28:f8:16: 20:81:48:6c:06:06:b7:e9:20:cf:51:39:af:62:ae:da:5e:2f: 7b:f7:d5:60:b7:f9:c5:58:52:6e:30:77:7e:88:d8:05:08:d0: a4:a2:00:54 -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgICF7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOEIxMTAvBgNVBAUTKDM2OEYzQzkzOEI2MDE0MTI1MjFBM0E4MTkwMDk5NzhG Q0ZFOTFFN0UwHhcNMjUxMjA0MTYxNjAyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMxYjNjMS01MmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnNBHKbhtZosK60OVbG9OiSYjZW+SXAyzjhABlQDnwhq4W1QRp2Z6PkdY1QU y89DC5lavj+lETIETRMBV6NtqesBYX5c6bia7YFfSmKpcnv84YTjwb8p2zRO56fI hTnozTyk7xiOcCW1URkrSLK4gom84GtUpvWLFCzLqbqh5zSigKv1jWwBYoBF00Mz XSajx6sCT5Ij4blLgii6FNBrmF97vlbACtsL4HScpE6vH3Tgt3K81QQBh/OKEJdr SeJb6tA+17BDR99K6DILfnrpIbtLdjYu+lMMDGo0vBpcaUmu+b/vrAU5DkUiYZfR 3NQBhGuKb29rYGoiQ6qpvZi+pwIDAQABo4ICvTCCArkwHQYDVR0OBBYEFCWbq8hU x+KHZAHoZ6hU5Hz/ItM6MB8GA1UdIwQYMBaAFDaPPJOLYBQSUho6gZAJl4/P6R5+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE4Qi9GOThCNUYwQzIx RjkxMUU4OTZDMUREMjNDNEY5QUUwMi9Obzg4azR0Z0ZCSlNHanFCa0FtWGo4X3BI bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05vODhrNHRnRkJKU0dqcUJrQW1YajhfcEhuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIxOEIvRjk4QjVGMEMyMUY5MTFFODk2QzFERDIzQzRGOUFFMDIvOTg2RkEzODQz RjhGMTFFQkE4NkIxRjExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRwYIKwYBBQUHAQcBAf8E ODA2MDQEAgABMC4wDAMEAoiehAMEAIieigMEAIieoTAMAwQAiJ6pAwQCiJ6oAwQA oTGUAwQAoTGyMA0GCSqGSIb3DQEBCwUAA4IBAQCkw3GXwfE6pS2Pjm1TVa/46Idz xUkjciDLdbx2iC5hecv0qmV7cHAyKnP3VANCKKN8lnPLuCE7MKwbtCr4+j1liwuD BVNghhU+Wd/OtLwneZXeYtvshGrii7EukBfItUT9okYPUSC1r6hAcZFzUn8Wzeqw TAOc6c7/Gk/X8TymJHq+tWI3+OmvCI2zAfCFDVm4XnAkaSqHAWWPgj1sY8KMixrj Qjt6CQ3wdqvU8Gg6omPlH8zh+VqhmfnwyvZ2LVqMK4GvVD/7r6nVK+VIMapXFXxZ 07Uo+BYggUhsBga36SDPUTmvYq7aXi9799Vgt/nFWFJuMHd+iNgFCNCkogBU -----END CERTIFICATE-----Generated at Sun Dec 7 13:10:05 2025 by rpki-client