This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/B36EA83C70B111E98CFFF710C4F9AE02.roa File: B36EA83C70B111E98CFFF710C4F9AE02.roa (raw, json) Hash identifier: qWS2YsTv3ATJx54bvIhfmpS6+fPeS68Gwxs9XSnTsY4= Subject key identifier: 2F:14:A3:8C:9B:00:06:22:21:0F:18:B4:17:B8:AD:55:47:F0:B0:41 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 37B7 Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/B36EA83C70B111E98CFFF710C4F9AE02.roa Signing time: Tue 30 Dec 2025 15:10:37 +0000 ROA not before: Tue 30 Dec 2025 15:10:37 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 132215 IP address blocks: 59.144.191.0/24 maxlen: 24 61.246.118.0/24 maxlen: 24 125.16.228.0/24 maxlen: 24 125.22.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 14:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14263 (0x37b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Dec 30 15:10:37 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6953eb6d-f60d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8e:e2:8d:0e:b7:77:f9:51:51:bd:03:84:40: 1a:25:0f:49:b9:f9:52:55:4f:bd:2e:57:97:78:e4: e4:e1:be:29:95:7e:b7:60:7f:63:09:98:5f:fa:49: 48:9b:5a:1b:5c:37:b0:be:a4:6c:0b:08:cd:41:c2: 2c:9f:9a:32:da:e7:f6:12:87:83:1c:2f:8f:15:bf: 3b:c5:20:2a:99:25:80:dc:60:f2:a3:2d:5a:e6:89: 8a:a9:d6:65:b3:5c:d2:1f:36:4f:dd:87:f2:e4:b2: ad:03:91:76:64:9a:90:3b:1a:5e:76:5c:3f:4d:e7: 55:9a:f2:60:4b:ed:05:3c:ce:7e:1e:96:1d:a4:30: 96:11:e2:88:fe:cc:df:eb:4c:fb:f1:ae:5e:d8:c8: 11:07:62:82:c2:a5:9f:eb:1f:fe:be:aa:94:80:2c: d2:08:80:38:6c:7c:59:9e:32:ec:e8:32:01:67:9a: 44:ed:58:31:ca:41:b7:c6:25:05:89:f2:27:ff:4f: f5:e9:ea:b8:db:c9:de:fd:c9:7c:60:2e:83:6c:dc: 7a:f6:f6:c1:46:ba:01:af:47:28:9f:7f:f8:2f:80: e8:09:59:26:08:72:ee:6c:37:52:46:c1:35:db:79: 12:5a:ce:4e:3c:fc:79:48:3d:b9:63:ea:9d:cf:f7: 26:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:14:A3:8C:9B:00:06:22:21:0F:18:B4:17:B8:AD:55:47:F0:B0:41 X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/B36EA83C70B111E98CFFF710C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.144.191.0/24 61.246.118.0/24 125.16.228.0/24 125.22.50.0/24 Signature Algorithm: sha256WithRSAEncryption 85:a0:70:ec:8a:d0:21:d1:9b:a7:ab:37:a0:89:eb:92:18:5b: 1f:2f:06:49:52:f7:ae:f0:a5:f0:ba:df:5b:c8:e5:16:53:27: 99:fb:fc:91:5c:6f:d3:13:04:1a:0f:4d:c4:5e:41:9d:d1:3d: e8:d8:8b:8e:92:75:c1:2a:95:9a:98:ac:e5:8b:f0:08:a8:7b: c5:d5:15:3f:5b:4a:0c:e6:36:7a:9e:23:30:44:d0:8e:53:61: 2b:2d:19:e9:a4:5a:f1:3d:57:0c:34:c4:f6:8c:65:b6:2e:01: 68:df:0d:d4:a2:39:b0:3b:8c:ec:5f:5b:d7:b8:2b:ee:6e:cf: 61:b7:96:76:37:fb:cd:f2:d5:0e:aa:03:ad:04:3a:ec:ea:e0: cc:db:02:3a:9f:e6:58:99:3a:cd:85:ac:aa:37:d6:c9:b0:a4: 64:d8:09:f7:69:dc:a5:f3:01:0d:cb:0a:73:eb:62:61:ef:c9: da:d5:64:8f:5a:61:bd:67:10:0a:ba:56:b5:86:d4:1e:52:08: 0d:4f:03:74:fa:cb:92:92:ef:11:bb:c1:71:3e:40:9e:a3:b5: 00:d8:35:30:08:69:0b:b1:3a:92:57:c8:e6:ab:55:25:b5:e8: 5c:7a:6a:7a:d8:c0:c1:f9:43:81:2d:2f:96:73:2a:ff:ee:1b: 26:ea:91:4f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICN7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjUxMjMwMTUxMDM3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTUzZWI2ZC1mNjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA147ijQ63d/lRUb0DhEAaJQ9JuflSVU+9LleXeOTk4b4plX63YH9jCZhf+klI m1obXDewvqRsCwjNQcIsn5oy2uf2EoeDHC+PFb87xSAqmSWA3GDyoy1a5omKqdZl s1zSHzZP3Yfy5LKtA5F2ZJqQOxpedlw/TedVmvJgS+0FPM5+HpYdpDCWEeKI/szf 60z78a5e2MgRB2KCwqWf6x/+vqqUgCzSCIA4bHxZnjLs6DIBZ5pE7VgxykG3xiUF ifIn/0/16eq428ne/cl8YC6DbNx69vbBRroBr0con3/4L4DoCVkmCHLubDdSRsE1 23kSWs5OPPx5SD25Y+qdz/cmdQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFC8Uo4yb AAYiIQ8YtBe4rVVH8LBBMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvRTY1ODUxMTIxRDg0MTFFMkExQkEzMERCMDhCMDJDRDIvQjM2RUE4M0M3 MEIxMTFFOThDRkZGNzEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAA7kL8DBAA99nYDBAB9EOQDBAB9FjIwDQYJKoZIhvcNAQEL BQADggEBAIWgcOyK0CHRm6erN6CJ65IYWx8vBklS967wpfC631vI5RZTJ5n7/JFc b9MTBBoPTcReQZ3RPejYi46SdcEqlZqYrOWL8Aioe8XVFT9bSgzmNnqeIzBE0I5T YSstGemkWvE9Vww0xPaMZbYuAWjfDdSiObA7jOxfW9e4K+5uz2G3lnY3+83y1Q6q A60EOuzq4MzbAjqf5liZOs2FrKo31smwpGTYCfdp3KXzAQ3LCnPrYmHvydrVZI9a Yb1nEAq6VrWG1B5SCA1PA3T6y5KS7xG7wXE+QJ6jtQDYNTAIaQuxOpJXyOarVSW1 6Fx6anrYwMH5Q4EtL5ZzKv/uGybqkU8= -----END CERTIFICATE-----Generated at Wed Jan 28 20:13:54 2026 by rpki-client