This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/B10F5E8E557511EF9F54A83AC4F9AE02.roa File: B10F5E8E557511EF9F54A83AC4F9AE02.roa (raw, json) Hash identifier: cWtLrccebSxpyGuvOMmfPGRFMw7ycg8jp/DP6q8X4z0= Subject key identifier: 87:36:C5:5F:ED:33:FC:90:1A:FC:AE:88:4D:40:F7:60:6E:4D:86:DA Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0717 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/B10F5E8E557511EF9F54A83AC4F9AE02.roa Signing time: Thu 13 Nov 2025 13:56:33 +0000 ROA not before: Thu 13 Nov 2025 13:56:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135918 IP address blocks: 157.10.198.0/23 maxlen: 23 157.66.80.0/24 maxlen: 24 157.66.81.0/24 maxlen: 24 157.66.100.0/23 maxlen: 23 157.66.218.0/23 maxlen: 23 160.22.122.0/23 maxlen: 23 160.25.232.0/23 maxlen: 23 160.30.44.0/23 maxlen: 23 160.30.112.0/23 maxlen: 23 160.191.48.0/23 maxlen: 23 160.191.50.0/23 maxlen: 23 160.191.236.0/23 maxlen: 23 160.250.130.0/23 maxlen: 23 160.250.134.0/23 maxlen: 23 160.250.136.0/23 maxlen: 23 160.250.246.0/23 maxlen: 23 161.248.146.0/23 maxlen: 23 165.99.130.0/24 maxlen: 24 165.101.92.0/23 maxlen: 23 165.101.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1815 (0x717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Nov 13 13:56:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6915e390-8f90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c2:b9:9f:0c:6f:df:9f:74:78:25:56:e9:3c: ec:29:02:8d:8c:0b:3a:55:4f:52:9c:b4:db:de:8d: a9:ea:81:32:96:f7:d7:e8:b9:6c:83:48:39:d9:07: c9:f1:31:76:36:62:25:f7:3e:9d:f6:04:da:5c:63: aa:83:6a:a2:8b:f4:05:86:ff:b9:a3:d0:97:f4:18: c3:fb:7c:9b:be:69:66:43:e5:1f:58:ad:8d:de:a2: ac:cc:19:a6:94:f6:97:55:9e:a1:8a:01:11:f9:7e: a9:23:63:e8:45:a0:72:41:b0:a4:10:69:32:75:2d: e7:16:6d:89:1d:6b:6e:fd:ed:82:b4:32:2c:c7:a8: 4f:d5:84:e4:7c:e2:a5:c1:b2:51:83:dc:85:50:18: 21:d6:b7:60:33:f4:e1:5a:05:ef:b0:24:db:71:9d: ff:1f:2f:9f:68:b6:41:47:8b:a2:af:7f:af:a9:2e: 0f:1f:31:f9:4c:79:10:c3:b4:9b:4b:37:2e:e0:de: ce:0b:08:00:db:1b:73:0e:80:48:40:30:d9:b8:f6: ed:e0:a7:da:10:a7:d3:d6:89:ed:5a:69:32:1f:a5: c3:61:bc:d3:5b:a7:69:70:c0:38:e4:07:9d:b6:8f: 1f:34:7a:59:cf:52:57:2c:4c:5d:51:29:0e:fe:a2: 5a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:36:C5:5F:ED:33:FC:90:1A:FC:AE:88:4D:40:F7:60:6E:4D:86:DA X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/B10F5E8E557511EF9F54A83AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.198.0/23 157.66.80.0/23 157.66.100.0/23 157.66.218.0/23 160.22.122.0/23 160.25.232.0/23 160.30.44.0/23 160.30.112.0/23 160.191.48.0/22 160.191.236.0/23 160.250.130.0/23 160.250.134.0-160.250.137.255 160.250.246.0/23 161.248.146.0/23 165.99.130.0/24 165.101.92.0/23 165.101.252.0/23 Signature Algorithm: sha256WithRSAEncryption 43:da:4b:0d:04:26:75:a7:81:53:49:6e:be:41:90:10:6b:a2: 09:71:93:59:48:73:e4:9d:e4:45:87:f6:68:81:d0:8c:3d:c0: b8:7a:b8:d5:27:0b:6e:07:c8:af:cb:91:31:b0:0f:e2:33:38: 17:ad:09:f5:0d:02:90:34:8a:0f:4e:87:6a:05:ba:22:94:14: 6a:44:35:c9:53:c8:a0:b1:4a:ba:1b:cc:1c:bf:b3:4a:20:7d: e6:f2:a7:0b:dc:12:a1:d7:de:46:2b:f5:d2:43:09:80:04:7e: 9f:09:2d:2e:7d:59:b9:72:54:b9:17:34:56:f8:3f:0d:40:61: 08:d6:86:78:44:67:78:1c:bf:d2:27:9d:4d:1b:16:ee:7c:bf: 05:44:d7:54:7a:3d:3d:1f:a8:e1:71:af:7b:15:30:31:3a:a4: 5f:65:02:6d:b2:82:7c:c2:b5:70:4d:9a:2f:f9:24:ed:8c:d2: 34:cf:bd:17:b1:9a:cb:bf:d2:a7:dd:a4:1c:59:d1:9c:eb:d2: ac:8e:a1:aa:15:74:9f:c9:8d:38:72:d7:1c:86:24:63:46:28: c1:8a:a1:bc:19:49:9c:fc:7f:40:ec:89:c5:a8:c4:44:2f:ea: 0f:2f:79:f8:f5:6f:04:e3:bf:0f:2e:14:e3:06:5e:36:67:96: 04:8f:53:17 -----BEGIN CERTIFICATE----- MIIF2jCCBMKgAwIBAgICBxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUxMTEzMTM1NjMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTE1ZTM5MC04ZjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcK5nwxv3590eCVW6TzsKQKNjAs6VU9SnLTb3o2p6oEylvfX6Llsg0g52QfJ 8TF2NmIl9z6d9gTaXGOqg2qii/QFhv+5o9CX9BjD+3ybvmlmQ+UfWK2N3qKszBmm lPaXVZ6higER+X6pI2PoRaByQbCkEGkydS3nFm2JHWtu/e2CtDIsx6hP1YTkfOKl wbJRg9yFUBgh1rdgM/ThWgXvsCTbcZ3/Hy+faLZBR4uir3+vqS4PHzH5THkQw7Sb Szcu4N7OCwgA2xtzDoBIQDDZuPbt4KfaEKfT1ontWmkyH6XDYbzTW6dpcMA45Aed to8fNHpZz1JXLExdUSkO/qJaCQIDAQABo4IC/jCCAvowHQYDVR0OBBYEFIc2xV/t M/yQGvyuiE1A92BuTYbaMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQjEwRjVFOEU1 NTc1MTFFRjlGNTRBODNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgYcGCCsGAQUFBwEHAQH/ BHgwdjB0BAIAATBuAwQBnQrGAwQBnUJQAwQBnUJkAwQBnULaAwQBoBZ6AwQBoBno AwQBoB4sAwQBoB5wAwQCoL8wAwQBoL/sAwQBoPqCMAwDBAGg+oYDBAGg+ogDBAGg +vYDBAGh+JIDBAClY4IDBAGlZVwDBAGlZfwwDQYJKoZIhvcNAQELBQADggEBAEPa Sw0EJnWngVNJbr5BkBBroglxk1lIc+Sd5EWH9miB0Iw9wLh6uNUnC24HyK/LkTGw D+IzOBetCfUNApA0ig9Oh2oFuiKUFGpENclTyKCxSrobzBy/s0ogfebypwvcEqHX 3kYr9dJDCYAEfp8JLS59WblyVLkXNFb4Pw1AYQjWhnhEZ3gcv9InnU0bFu58vwVE 11R6PT0fqOFxr3sVMDE6pF9lAm2ygnzCtXBNmi/5JO2M0jTPvRexmsu/0qfdpBxZ 0Zzr0qyOoaoVdJ/JjThy1xyGJGNGKMGKobwZSZz8f0DsicWoxEQv6g8vefj1bwTj vw8uFOMGXjZnlgSPUxc= -----END CERTIFICATE-----Generated at Sun Dec 7 15:30:53 2025 by rpki-client