This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/1201EAF6083911F0B43D9172C4F9AE02.roa File: 1201EAF6083911F0B43D9172C4F9AE02.roa (raw, json) Hash identifier: J+SOazezAnnNxrhHdeWBnb2C7IQYkYVgwLiko+keJWM= Subject key identifier: DD:DF:D8:DC:FD:69:AA:39:2F:09:15:12:8F:4B:D0:94:75:1C:5F:67 Certificate issuer: /CN=A91847A4/serialNumber=4CDF99E707F902338E14D510249A9625BCA0FF9D Certificate serial: 79 Authority key identifier: 4C:DF:99:E7:07:F9:02:33:8E:14:D5:10:24:9A:96:25:BC:A0:FF:9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/1201EAF6083911F0B43D9172C4F9AE02.roa Signing time: Sat 01 Nov 2025 07:20:48 +0000 ROA not before: Sat 01 Nov 2025 07:20:48 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 142631 IP address blocks: 160.191.18.0/23 maxlen: 23 160.191.18.0/24 maxlen: 24 160.191.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A4, serialNumber=4CDF99E707F902338E14D510249A9625BCA0FF9D Validity Not Before: Nov 1 07:20:48 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6905b4d0-a404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f6:5e:a5:68:7e:00:b9:78:1b:a8:6d:eb:b2: 0a:41:08:92:c5:6e:e8:8d:c8:25:49:ef:dc:3d:dd: ec:18:dc:1d:0a:ad:41:6c:c5:07:e3:83:f0:7f:fc: ef:35:c6:63:c6:87:58:5b:aa:06:f0:a5:3c:d3:56: 31:8e:e2:23:76:2a:10:9d:ff:ba:3d:5e:34:01:57: 4e:f7:38:d7:8d:5d:7e:4a:4a:b4:ba:5a:f9:eb:0e: 33:58:ea:4f:b4:20:f0:da:12:d3:59:1f:89:cd:03: bd:fb:bc:6a:ac:04:16:bd:85:e1:38:6e:a1:4e:cf: e4:18:37:a0:64:3f:74:1e:03:33:99:3b:ac:5d:b9: 6a:32:87:d8:16:bd:d9:ac:f8:2c:f3:93:71:de:3d: cd:20:9b:e1:8c:0c:c4:ed:3b:98:30:d2:2c:9a:b2: 6c:3d:8d:11:88:9f:07:de:41:7e:92:10:8b:57:b0: 2a:b4:aa:79:4b:6d:f0:da:06:16:d8:0c:6b:36:ff: 45:58:fb:f6:12:5e:13:b0:3d:24:8d:03:43:c4:cd: e3:e7:21:05:1b:fc:70:ed:32:32:b1:f6:39:6e:26: 19:0e:c4:25:66:93:46:ec:36:86:b5:11:e6:2a:51: 33:9e:a9:bf:65:06:7b:32:96:ed:c1:43:80:02:a8: d9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:DF:D8:DC:FD:69:AA:39:2F:09:15:12:8F:4B:D0:94:75:1C:5F:67 X509v3 Authority Key Identifier: keyid:4C:DF:99:E7:07:F9:02:33:8E:14:D5:10:24:9A:96:25:BC:A0:FF:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/1201EAF6083911F0B43D9172C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.18.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:c4:c8:9c:5e:41:b5:98:7d:7a:95:a2:0c:4f:78:d3:92:80: cd:9e:cf:ec:d2:62:83:a7:95:6b:cf:d9:25:aa:35:d5:bd:c1: c8:54:4a:fa:be:aa:23:86:65:73:dd:2e:c3:79:c4:b9:fc:5e: c8:96:85:7c:1d:15:f4:7f:76:2c:1a:e8:a8:ac:c3:20:73:8b: 1e:b1:34:42:f1:f5:06:63:14:45:64:c3:67:28:81:19:0a:ae: 9e:3d:4f:e1:e3:ed:75:0a:93:dc:26:68:d4:72:51:32:2d:1a: c1:c6:cf:18:60:b4:70:cf:7f:f6:53:47:aa:68:fd:f8:9c:6f: aa:33:19:f2:ea:6e:b8:8f:d0:28:57:a6:8f:30:c3:de:ed:db: fb:34:2b:b2:24:65:16:75:48:e7:61:a3:b1:9d:c4:26:5e:42: 57:87:55:26:2c:06:bb:0f:e6:6b:98:c3:7a:71:23:8e:81:12: 9f:4e:08:f2:20:c0:fc:14:03:c3:0b:2d:12:c3:eb:62:e8:24: cc:2b:f5:f2:86:97:b4:29:44:84:34:0e:45:6a:52:91:53:66: 99:8e:cd:e2:57:12:75:e2:c1:32:cb:50:72:e0:aa:ef:c7:bc: 5a:af:1e:fa:05:0e:4d:a2:ac:75:0d:b9:e6:17:55:ea:cc:db: 3a:28:02:88 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDdBNDExMC8GA1UEBRMoNENERjk5RTcwN0Y5MDIzMzhFMTRENTEwMjQ5QTk2MjVC Q0EwRkY5RDAeFw0yNTExMDEwNzIwNDhaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDViNGQwLWE0MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG9l6laH4AuXgbqG3rsgpBCJLFbuiNyCVJ79w93ewY3B0KrUFsxQfjg/B//O81 xmPGh1hbqgbwpTzTVjGO4iN2KhCd/7o9XjQBV073ONeNXX5KSrS6WvnrDjNY6k+0 IPDaEtNZH4nNA737vGqsBBa9heE4bqFOz+QYN6BkP3QeAzOZO6xduWoyh9gWvdms +Czzk3HePc0gm+GMDMTtO5gw0iyasmw9jRGInwfeQX6SEItXsCq0qnlLbfDaBhbY DGs2/0VY+/YSXhOwPSSNA0PEzePnIQUb/HDtMjKx9jluJhkOxCVmk0bsNoa1EeYq UTOeqb9lBnsylu3BQ4ACqNnXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3d/Y3P1p qjkvCRUSj0vQlHUcX2cwHwYDVR0jBBgwFoAUTN+Z5wf5AjOOFNUQJJqWJbyg/50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0N0E0L0YyOUVCMjBBMDdF MDExRjBCNjE4NTE2MkM0RjlBRTAyL1ROLVo1d2Y1QWpPT0ZOVVFKSnFXSmJ5Z181 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVE4tWjV3ZjVBak9PRk5VUUpKcVdKYnlnXzUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBNC9GMjlFQjIwQTA3RTAxMUYwQjYxODUxNjJDNEY5QUUwMi8xMjAxRUFGNjA4 MzkxMUYwQjQzRDkxNzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/EjANBgkqhkiG9w0BAQsFAAOCAQEAHsTInF5BtZh9epWi DE9405KAzZ7P7NJig6eVa8/ZJao11b3ByFRK+r6qI4Zlc90uw3nEufxeyJaFfB0V 9H92LBroqKzDIHOLHrE0QvH1BmMURWTDZyiBGQqunj1P4ePtdQqT3CZo1HJRMi0a wcbPGGC0cM9/9lNHqmj9+JxvqjMZ8upuuI/QKFemjzDD3u3b+zQrsiRlFnVI52Gj sZ3EJl5CV4dVJiwGuw/ma5jDenEjjoESn04I8iDA/BQDwwstEsPrYugkzCv18oaX tClEhDQORWpSkVNmmY7N4lcSdeLBMstQcuCq78e8Wq8e+gUOTaKsdQ255hdV6szb OigCiA== -----END CERTIFICATE-----Generated at Wed Dec 3 15:50:53 2025 by rpki-client