This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/E6EB68347F4F11EDBD813D85C4F9AE02.roa File: E6EB68347F4F11EDBD813D85C4F9AE02.roa (raw, json) Hash identifier: alFKlecgy6PVb3JfrodaN6sI8tiiuHQxWGkKu4fffOM= Subject key identifier: CC:4A:61:F7:2F:2E:FD:A1:61:43:38:BB:03:39:A3:68:CE:20:79:12 Certificate issuer: /CN=A91A3E3F/serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Certificate serial: 0256 Authority key identifier: 59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/E6EB68347F4F11EDBD813D85C4F9AE02.roa Signing time: Wed 17 Dec 2025 02:21:21 +0000 ROA not before: Wed 17 Dec 2025 02:21:21 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 8075 IP address blocks: 111.221.16.0/21 maxlen: 21 111.221.24.0/22 maxlen: 22 111.221.29.0/24 maxlen: 24 111.221.30.0/23 maxlen: 23 111.221.64.0/18 maxlen: 24 202.89.224.0/21 maxlen: 24 2001:df0:7::/48 maxlen: 48 2001:df0:d7::/48 maxlen: 48 2001:df0:d8::/48 maxlen: 48 2001:df0:d9::/48 maxlen: 48 2404:f800::/32 maxlen: 32 2404:f801:8030::/48 maxlen: 48 2404:f802::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 02:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 598 (0x256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F, serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Validity Not Before: Dec 17 02:21:21 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=694213a0-ad64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:db:bf:a0:92:3e:33:32:7e:37:3b:84:7d:4c: 09:aa:50:88:02:86:cc:e0:e2:0f:7b:9e:68:d3:27: 89:9d:01:5f:df:7e:e3:d3:9e:11:fb:18:2c:24:86: 66:47:59:35:26:1d:bb:e2:d3:90:df:55:b1:a9:7c: cc:2d:0e:21:a2:66:5f:0f:ad:d0:80:24:90:a7:11: e5:97:28:22:fa:bd:8f:3f:d7:a8:43:d7:30:2e:7c: e6:eb:7d:18:21:62:62:ff:f8:6c:e9:74:6b:e9:26: 86:71:76:c3:c9:78:ed:b0:53:a4:92:17:5a:17:d0: 44:20:94:7b:4f:1a:ec:8a:14:95:f1:9d:e3:31:37: ad:b2:98:7e:6b:e2:ed:03:be:a3:f2:27:11:c3:9e: 3a:d2:3d:de:f7:42:66:c1:7c:bc:ba:9a:88:33:a9: 5f:12:ac:6f:53:e6:2f:2e:85:d2:92:e6:24:0e:62: 3d:a1:da:10:00:be:3f:4a:09:3d:93:c2:35:72:4c: 22:c8:47:fa:38:cd:a4:b6:0f:41:ca:f3:f9:05:fc: d4:c1:6a:1a:95:6b:fc:21:8c:46:f3:90:bf:56:97: b0:43:db:59:f2:34:8e:e9:d8:f1:50:b6:33:5a:f5: 3f:64:ba:1d:9d:75:d4:1b:23:62:4c:2d:1c:95:92: 9f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:4A:61:F7:2F:2E:FD:A1:61:43:38:BB:03:39:A3:68:CE:20:79:12 X509v3 Authority Key Identifier: keyid:59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/E6EB68347F4F11EDBD813D85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.221.16.0-111.221.27.255 111.221.29.0-111.221.31.255 111.221.64.0/18 202.89.224.0/21 IPv6: 2001:df0:7::/48 2001:df0:d7::-2001:df0:d9:ffff:ffff:ffff:ffff:ffff 2404:f800::/32 2404:f801:8030::/48 2404:f802::/31 Signature Algorithm: sha256WithRSAEncryption 38:a8:90:7d:35:fb:f2:52:16:15:2c:ec:7a:d3:66:13:e8:2d: ee:4a:d7:dd:ca:c1:64:95:4e:a3:cf:f4:09:92:a7:7b:d9:00: 34:a6:1d:33:1f:34:44:95:5f:fb:05:c7:cb:ce:63:ac:40:66: 50:65:34:5c:17:25:e9:a0:2e:a8:18:5c:ff:af:d0:d1:8a:b8: ba:2a:f6:d5:85:ec:94:19:64:02:fe:c2:2a:cb:00:84:ac:65: cb:e2:31:2e:6f:74:1d:e5:6d:cf:93:e3:0d:67:e2:e1:73:c6: 0c:3b:1c:36:fd:1f:65:7e:84:d7:26:21:9e:25:99:69:ed:84: b0:1e:f3:8b:db:24:ac:e1:f0:f2:86:14:84:c9:57:da:9a:cf: 56:8a:c6:6c:9d:11:76:a2:d8:71:28:14:84:c4:bc:ba:11:9e: 22:a7:32:73:81:9b:95:ab:0a:de:29:d1:16:9f:2e:20:07:22: 5a:c3:64:02:8b:d7:d4:e5:f2:95:37:99:24:ed:da:54:25:7c: d5:b6:1d:d8:40:88:f3:75:09:c4:bb:dc:7d:b1:94:58:f1:87: cc:5b:9f:5b:18:fb:60:35:c8:7b:f2:d0:6b:22:95:d9:46:47: 17:fe:96:55:32:e1:61:e7:0a:2b:50:13:b8:53:e3:ac:fb:8a: a9:0b:0f:54 -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgICAlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDU5RERDMzk2OUI5ODYzQ0ZCNUExNTUyOEFBNEEzOTFB RjIzMzdGNDMwHhcNMjUxMjE3MDIyMTIxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQyMTNhMC1hZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5du/oJI+MzJ+NzuEfUwJqlCIAobM4OIPe55o0yeJnQFf337j054R+xgsJIZm R1k1Jh274tOQ31WxqXzMLQ4homZfD63QgCSQpxHllygi+r2PP9eoQ9cwLnzm630Y IWJi//hs6XRr6SaGcXbDyXjtsFOkkhdaF9BEIJR7TxrsihSV8Z3jMTetsph+a+Lt A76j8icRw5460j3e90JmwXy8upqIM6lfEqxvU+YvLoXSkuYkDmI9odoQAL4/Sgk9 k8I1ckwiyEf6OM2ktg9ByvP5BfzUwWoalWv8IYxG85C/VpewQ9tZ8jSO6djxULYz WvU/ZLodnXXUGyNiTC0clZKfgQIDAQABo4IC8zCCAu8wHQYDVR0OBBYEFMxKYfcv Lv2hYUM4uwM5o2jOIHkSMB8GA1UdIwQYMBaAFFndw5abmGPPtaFVKKpKORryM39D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi9GQkRGRkVDMDc2 ODYxMUVEQTZDQjNGNDFDNEY5QUUwMi9XZDNEbHB1WVk4LTFvVlVvcWtvNUd2SXpm ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dkM0RscHVZWTgtMW9WVW9xa281R3ZJemYwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvRkJERkZFQzA3Njg2MTFFREE2Q0IzRjQxQzRGOUFFMDIvRTZFQjY4MzQ3 RjRGMTFFREJEODEzRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwfQYIKwYBBQUHAQcBAf8E bjBsMC4EAgABMCgwDAMEBG/dEAMEAm/dGDAMAwQAb90dAwQFb90AAwQGb91AAwQD ylngMDoEAgACMDQDBwAgAQ3wAAcwEgMHACABDfAA1wMHASABDfAA2AMFACQE+AAD BwAkBPgBgDADBQEkBPgCMA0GCSqGSIb3DQEBCwUAA4IBAQA4qJB9NfvyUhYVLOx6 02YT6C3uStfdysFklU6jz/QJkqd72QA0ph0zHzRElV/7BcfLzmOsQGZQZTRcFyXp oC6oGFz/r9DRiri6KvbVheyUGWQC/sIqywCErGXL4jEub3Qd5W3Pk+MNZ+Lhc8YM Oxw2/R9lfoTXJiGeJZlp7YSwHvOL2ySs4fDyhhSEyVfams9WisZsnRF2othxKBSE xLy6EZ4ipzJzgZuVqwreKdEWny4gByJaw2QCi9fU5fKVN5kk7dpUJXzVth3YQIjz dQnEu9x9sZRY8YfMW59bGPtgNch78tBrIpXZRkcX/pZVMuFh5worUBO4U+Os+4qp Cw9U -----END CERTIFICATE-----Generated at Fri Dec 19 00:13:53 2025 by rpki-client