This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919AFBE/BA018DB4BA1E11F0B987393BC4F9AE02/4F172076BA1F11F08DD0CE3CC4F9AE02.roa File: 4F172076BA1F11F08DD0CE3CC4F9AE02.roa (raw, json) Hash identifier: 2SVHk8cIQzgO3XRGu4uq00WRCc3uLMHlAw81vpBUV8U= Subject key identifier: 66:7A:14:74:28:FD:1B:96:DE:39:87:F8:8F:F9:12:86:17:E8:FC:5D Certificate issuer: /CN=A919AFBE/serialNumber=062D313B099AE86B3F4FE2E20BB45F8E86536273 Certificate serial: 02 Authority key identifier: 06:2D:31:3B:09:9A:E8:6B:3F:4F:E2:E2:0B:B4:5F:8E:86:53:62:73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bi0xOwma6Gs_T-LiC7RfjoZTYnM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AFBE/BA018DB4BA1E11F0B987393BC4F9AE02/4F172076BA1F11F08DD0CE3CC4F9AE02.roa Signing time: Wed 05 Nov 2025 08:13:28 +0000 ROA not before: Wed 05 Nov 2025 08:13:28 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 140849 IP address blocks: 138.252.144.0/24 maxlen: 24 138.252.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AFBE/BA018DB4BA1E11F0B987393BC4F9AE02/Bi0xOwma6Gs_T-LiC7RfjoZTYnM.crl rsync://rpki.apnic.net/member_repository/A919AFBE/BA018DB4BA1E11F0B987393BC4F9AE02/Bi0xOwma6Gs_T-LiC7RfjoZTYnM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bi0xOwma6Gs_T-LiC7RfjoZTYnM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 06:06:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AFBE, serialNumber=062D313B099AE86B3F4FE2E20BB45F8E86536273 Validity Not Before: Nov 5 08:13:28 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=690b0728-a670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9b:0e:d7:8e:4c:80:74:5e:79:57:a5:4a:8a: 04:c5:29:4a:d6:2d:31:2b:cb:2c:ce:d8:51:67:5f: 05:7b:67:0f:8e:c0:41:23:e2:ae:dc:a1:f2:f9:0d: c6:8b:a8:56:cc:f8:da:5d:65:38:7f:ff:1a:f7:83: f5:68:f5:88:00:19:a2:04:8d:58:4a:ad:80:22:82: e5:e9:b1:4c:3f:93:77:36:c2:c5:44:da:5f:5f:72: be:c8:9d:1c:db:3d:18:73:ba:f6:d5:11:f8:98:9a: 96:67:ca:83:a1:5b:df:7a:6f:04:75:1f:26:0a:03: 56:c8:32:87:76:a7:39:99:9e:4e:88:bf:e6:1e:4f: d4:04:ac:d4:8a:0b:c8:8d:de:3e:a4:ca:dd:e8:d1: f6:d1:9a:6c:a7:00:77:73:05:d4:fe:ea:b0:95:97: 38:fe:f3:bd:79:bd:c6:ca:b6:76:8b:e9:d7:f7:d3: 7c:61:37:09:f6:22:e4:82:89:fd:44:b5:bf:d6:3c: 7d:6d:6e:c5:81:82:18:a8:7a:3e:39:60:79:5a:e7: 14:69:b9:cd:cb:09:1b:e4:ac:50:c1:3b:59:99:71: a2:19:c0:bb:a2:6b:fd:eb:08:ed:2f:c6:65:0e:cd: a6:a1:35:1d:0d:2f:64:1c:4a:c7:ba:1b:d8:77:63: b0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:7A:14:74:28:FD:1B:96:DE:39:87:F8:8F:F9:12:86:17:E8:FC:5D X509v3 Authority Key Identifier: keyid:06:2D:31:3B:09:9A:E8:6B:3F:4F:E2:E2:0B:B4:5F:8E:86:53:62:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AFBE/BA018DB4BA1E11F0B987393BC4F9AE02/Bi0xOwma6Gs_T-LiC7RfjoZTYnM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bi0xOwma6Gs_T-LiC7RfjoZTYnM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AFBE/BA018DB4BA1E11F0B987393BC4F9AE02/4F172076BA1F11F08DD0CE3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.144.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:ff:24:b0:e9:86:7d:9a:a4:f1:d5:03:36:0b:19:d5:35:e9: 1a:53:fc:cd:db:8d:37:a7:07:df:02:4a:3b:3f:37:cb:aa:79: 0e:d8:46:09:7c:36:ed:1a:56:9e:f2:a2:aa:f6:01:37:01:cf: e2:18:a6:d6:51:89:58:94:03:28:12:6b:4a:d7:b6:4c:42:d7: ee:99:5d:65:0b:ad:cf:5d:10:b0:12:cd:1d:4d:b0:62:79:a7: f6:ed:09:98:4b:9a:2e:c9:6e:27:b8:3d:48:57:82:01:89:d5: 23:c6:e7:6f:71:68:71:05:5c:10:0d:3e:69:c7:57:9a:55:7e: 37:32:5e:98:cb:f1:c8:e3:89:e2:7e:87:5c:c0:b3:0c:fe:89: 21:c5:e5:9a:8b:15:cb:c1:3d:05:7f:8a:93:07:64:47:9e:a5: 0e:8b:2d:d5:5d:77:35:32:e2:12:23:26:01:28:0c:63:40:3e: 55:10:e9:69:16:86:a4:1a:c5:83:d1:72:85:dd:98:b1:b9:a0: 2d:22:7e:86:7e:ec:03:68:00:a2:41:d3:19:b4:f6:a2:8a:c4: 1d:fb:90:bb:6b:04:de:4a:74:30:56:9f:f8:18:2d:0b:ed:f7: 22:b5:2f:b5:68:eb:c0:1b:78:4e:5c:d8:37:af:62:86:96:bc: 4b:98:35:84 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QUZCRTExMC8GA1UEBRMoMDYyRDMxM0IwOTlBRTg2QjNGNEZFMkUyMEJCNDVGOEU4 NjUzNjI3MzAeFw0yNTExMDUwODEzMjhaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MGIwNzI4LWE2NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+mw7XjkyAdF55V6VKigTFKUrWLTEryyzO2FFnXwV7Zw+OwEEj4q7cofL5DcaL qFbM+NpdZTh//xr3g/Vo9YgAGaIEjVhKrYAiguXpsUw/k3c2wsVE2l9fcr7InRzb PRhzuvbVEfiYmpZnyoOhW996bwR1HyYKA1bIMod2pzmZnk6Iv+YeT9QErNSKC8iN 3j6kyt3o0fbRmmynAHdzBdT+6rCVlzj+8715vcbKtnaL6df303xhNwn2IuSCif1E tb/WPH1tbsWBghioej45YHla5xRpuc3LCRvkrFDBO1mZcaIZwLuia/3rCO0vxmUO zaahNR0NL2QcSse6G9h3Y7AnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUZnoUdCj9 G5beOYf4j/kShhfo/F0wHwYDVR0jBBgwFoAUBi0xOwma6Gs/T+LiC7RfjoZTYnMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBRkJFL0JBMDE4REI0QkEx RTExRjBCOTg3MzkzQkM0RjlBRTAyL0JpMHhPd21hNkdzX1QtTGlDN1Jmam9aVFlu TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQmkweE93bWE2R3NfVC1MaUM3UmZqb1pUWW5NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUZCRS9CQTAxOERCNEJBMUUxMUYwQjk4NzM5M0JDNEY5QUUwMi80RjE3MjA3NkJB MUYxMUYwOEREMENFM0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8kDANBgkqhkiG9w0BAQsFAAOCAQEAbv8ksOmGfZqk8dUD NgsZ1TXpGlP8zduNN6cH3wJKOz83y6p5DthGCXw27RpWnvKiqvYBNwHP4him1lGJ WJQDKBJrSte2TELX7pldZQutz10QsBLNHU2wYnmn9u0JmEuaLsluJ7g9SFeCAYnV I8bnb3FocQVcEA0+acdXmlV+NzJemMvxyOOJ4n6HXMCzDP6JIcXlmosVy8E9BX+K kwdkR56lDost1V13NTLiEiMmASgMY0A+VRDpaRaGpBrFg9Fyhd2YsbmgLSJ+hn7s A2gAokHTGbT2oorEHfuQu2sE3kp0MFaf+BgtC+33IrUvtWjrwBt4TlzYN69ihpa8 S5g1hA== -----END CERTIFICATE-----Generated at Wed Dec 3 14:52:24 2025 by rpki-client