This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/9ADB02A27F4E11EDB22F3582C4F9AE02.roa File: 9ADB02A27F4E11EDB22F3582C4F9AE02.roa (raw, json) Hash identifier: q5K3slMKgP++7PtYpHOExE35HrkE08dbRFYVLUwTZjk= Subject key identifier: 46:A6:95:B0:1B:4E:50:EA:5C:B2:4D:D5:D5:34:72:31:8A:90:4C:DB Certificate issuer: /CN=A91A3E3F/serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Certificate serial: 024C Authority key identifier: 94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/9ADB02A27F4E11EDB22F3582C4F9AE02.roa Signing time: Wed 17 Dec 2025 02:21:21 +0000 ROA not before: Wed 17 Dec 2025 02:21:21 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 3598 IP address blocks: 167.220.224.0/20 maxlen: 20 167.220.236.0/22 maxlen: 24 167.220.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 00:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 588 (0x24c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F, serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Validity Not Before: Dec 17 02:21:21 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=694213a1-3a95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:36:a8:65:5f:c4:4a:d4:46:7a:7c:d3:79:47: 85:3a:d4:0d:d3:bd:5b:93:23:71:c4:d6:a4:ca:79: c8:01:4b:67:33:4d:2b:04:47:c0:4d:bc:b4:2f:2a: 23:f3:3f:24:d5:14:33:ab:20:2f:7d:1c:3f:d2:25: c4:75:9e:c7:7f:05:91:3d:aa:e0:57:34:62:f0:5c: 20:46:9a:4c:73:87:3e:98:53:a1:52:b1:2b:d4:03: 88:b7:cd:5b:ae:e2:0e:3d:cf:16:80:a6:3e:b9:29: dc:f2:a4:a4:64:73:5c:3b:f0:99:6a:50:60:02:bd: 24:c7:67:9f:c1:fb:d4:69:97:61:19:20:70:8f:21: 44:d8:b1:dc:09:54:12:53:92:50:43:a1:48:f6:20: 45:fa:be:6c:cf:6c:fc:d5:fd:58:1d:06:b4:56:19: c1:b7:c6:a5:79:20:36:82:24:a6:9e:55:ee:70:02: 79:b0:93:1b:84:95:2d:aa:d3:0f:a4:d3:18:53:a4: 0b:40:9e:c1:cc:7c:0f:50:64:f1:cd:3d:02:74:31: e3:47:b0:e2:e8:c1:91:bc:bf:7d:a7:da:c0:8a:62: 04:e1:0a:02:b9:93:42:59:63:04:79:5c:cd:4c:df: 04:06:62:61:10:36:53:39:64:9e:48:f5:8e:14:d1: f2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:A6:95:B0:1B:4E:50:EA:5C:B2:4D:D5:D5:34:72:31:8A:90:4C:DB X509v3 Authority Key Identifier: keyid:94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/9ADB02A27F4E11EDB22F3582C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.220.224.0/20 167.220.248.0/21 Signature Algorithm: sha256WithRSAEncryption 7b:5c:95:71:d3:99:f3:49:8c:b4:72:a9:b8:18:df:09:c5:80: bb:af:3c:70:03:d7:3d:f9:8e:19:f5:cd:59:bb:f4:ed:3a:96: 59:28:dd:ab:63:2f:08:ac:6a:ff:e8:47:39:8f:7b:e7:e7:67: b8:c6:1b:bf:1a:39:e4:8a:c7:eb:93:ed:bd:f4:3e:8f:e1:83: d6:f4:44:17:54:60:1b:52:5e:d9:c7:fd:05:69:3f:38:0c:f0: 50:aa:4d:2a:09:84:80:31:73:de:28:4e:2b:d8:95:18:05:ff: 03:82:1e:c6:b0:f2:26:a0:9e:34:69:7f:9d:78:55:61:36:47: 16:a6:30:ff:8e:41:41:c9:b8:d3:0b:6e:d9:9e:e0:2a:47:cd: 79:51:54:a6:66:ea:19:19:62:95:db:19:7b:8a:b9:a0:e1:50: a0:3a:a1:79:b2:9e:41:09:bc:c0:d4:67:af:9a:b5:24:4b:18: 65:fe:93:3a:65:37:04:ba:de:d4:49:a3:91:93:91:d0:60:03: 7d:6c:74:05:7b:75:36:02:f8:eb:17:af:a1:fa:72:34:6e:24: 9c:42:e8:e5:45:9d:0d:95:c9:14:36:d9:44:14:a5:82:9d:14: e7:10:b8:43:b6:d7:d0:28:b1:9a:26:83:c7:cd:79:70:57:1c: 0a:5f:12:53 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDk0M0QzRTEwQjhCQkUxMzhCNDc3MzQ1NTRCNjkwNTMx MTBENDVCRTMwHhcNMjUxMjE3MDIyMTIxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQyMTNhMS0zYTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTaoZV/EStRGenzTeUeFOtQN071bkyNxxNakynnIAUtnM00rBEfATby0Lyoj 8z8k1RQzqyAvfRw/0iXEdZ7HfwWRPargVzRi8FwgRppMc4c+mFOhUrEr1AOIt81b ruIOPc8WgKY+uSnc8qSkZHNcO/CZalBgAr0kx2efwfvUaZdhGSBwjyFE2LHcCVQS U5JQQ6FI9iBF+r5sz2z81f1YHQa0VhnBt8aleSA2giSmnlXucAJ5sJMbhJUtqtMP pNMYU6QLQJ7BzHwPUGTxzT0CdDHjR7Di6MGRvL99p9rAimIE4QoCuZNCWWMEeVzN TN8EBmJhEDZTOWSeSPWOFNHyxwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEamlbAb TlDqXLJN1dU0cjGKkEzbMB8GA1UdIwQYMBaAFJQ9PhC4u+E4tHc0VUtpBTEQ1Fvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi8zMDVFQjg3NjdD REIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRUaTBkelJWUzJrRk1SRFVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xEMC1FTGk3NFRpMGR6UlZTMmtGTVJEVVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvMzA1RUI4NzY3Q0RCMTFFREFCODQ0QzE5QzRGOUFFMDIvOUFEQjAyQTI3 RjRFMTFFREIyMkYzNTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBASn3OADBAOn3PgwDQYJKoZIhvcNAQELBQADggEBAHtclXHT mfNJjLRyqbgY3wnFgLuvPHAD1z35jhn1zVm79O06llko3atjLwisav/oRzmPe+fn Z7jGG78aOeSKx+uT7b30Po/hg9b0RBdUYBtSXtnH/QVpPzgM8FCqTSoJhIAxc94o TivYlRgF/wOCHsaw8iagnjRpf514VWE2RxamMP+OQUHJuNMLbtme4CpHzXlRVKZm 6hkZYpXbGXuKuaDhUKA6oXmynkEJvMDUZ6+atSRLGGX+kzplNwS63tRJo5GTkdBg A31sdAV7dTYC+OsXr6H6cjRuJJxC6OVFnQ2VyRQ22UQUpYKdFOcQuEO219AosZom g8fNeXBXHApfElM= -----END CERTIFICATE-----Generated at Sun Jan 18 17:58:15 2026 by rpki-client