This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0CB3549EA01011F086F7E872C4F9AE02.roa File: 0CB3549EA01011F086F7E872C4F9AE02.roa (raw, json) Hash identifier: 8qmM8BcIDew+qCE9M2BiKfvZOVGlRv4WXnQWsudSFSA= Subject key identifier: A1:A4:CC:F5:09:9C:B0:D7:F9:F0:47:FF:FD:B4:B8:13:4E:47:D5:A1 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4F2A Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0CB3549EA01011F086F7E872C4F9AE02.roa Signing time: Mon 24 Nov 2025 09:05:50 +0000 ROA not before: Mon 24 Nov 2025 09:05:50 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154247 IP address blocks: 121.200.216.0/24 maxlen: 24 121.200.217.0/24 maxlen: 24 2001:df6:22c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:30:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20266 (0x4f2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Nov 24 09:05:50 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69241fed-3888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:36:05:67:0b:7c:23:08:dd:ee:23:eb:28:ea: 58:5c:44:d5:02:df:0d:10:b5:23:5b:59:88:28:fc: 16:a9:4f:82:54:52:59:a2:ad:83:49:84:54:67:db: cb:e0:5d:73:61:56:ac:a2:a0:c4:c8:09:93:c5:72: f9:e2:f3:5d:2f:7c:8c:87:15:24:09:7d:d2:a6:79: 5e:58:2c:f0:21:f6:f1:17:71:17:f9:ab:c9:75:71: 84:25:d2:77:0e:98:ed:f7:0e:ef:1b:ed:aa:b6:26: 71:00:02:47:9d:a5:09:63:25:b6:8a:4d:f9:d2:ae: 85:1c:1c:56:45:ce:54:61:e5:88:a1:de:0e:76:ca: a0:7f:57:1f:03:50:d6:cf:bd:8d:4c:ee:47:30:ef: 4f:8d:a8:23:5f:5f:86:c6:6b:87:4f:81:8a:1a:a0: f8:a8:89:b6:8d:77:fd:a3:61:61:84:0c:22:1a:12: da:49:43:82:cc:b8:93:a3:3b:0f:d7:c0:81:44:ad: d7:04:98:60:c5:2d:0b:7f:97:49:00:9f:54:7d:54: 79:6c:83:c3:36:e3:9d:41:fa:39:d1:3c:30:21:0c: 34:ba:9b:69:d0:cc:4c:bb:b4:85:3b:2c:26:8c:6b: 62:59:46:7e:e7:d1:bd:95:a1:9e:64:76:32:83:ae: 8b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A4:CC:F5:09:9C:B0:D7:F9:F0:47:FF:FD:B4:B8:13:4E:47:D5:A1 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0CB3549EA01011F086F7E872C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.200.216.0/23 IPv6: 2001:df6:22c0::/48 Signature Algorithm: sha256WithRSAEncryption c1:52:6f:c1:37:ce:8c:86:b8:de:0d:25:03:ab:2a:d6:e6:9e: c7:9b:80:ca:7e:65:54:df:79:c1:54:92:f9:42:00:7b:77:d4: 3f:f6:6f:ea:4e:fb:5e:3e:be:3a:83:1d:f1:1f:b3:f9:e0:49: ad:d9:6e:b7:b4:d2:c3:e0:a3:bc:6c:41:9c:5a:44:ad:73:d9: 17:8b:2f:89:4d:01:35:a7:e9:c4:1b:33:72:cf:b8:ab:3c:82: 0f:c1:11:82:8f:68:30:fa:e9:b6:eb:25:68:5d:fc:68:f9:4a: 37:2e:a8:f3:74:de:16:41:69:cb:87:8c:6e:9f:67:47:cd:85: 0b:0a:72:50:d3:0f:70:e8:d4:9c:b8:59:1f:6c:f7:c8:dc:31: 11:b2:f6:99:88:a8:4e:ff:c4:6f:b0:cc:b6:92:f5:18:55:58: 58:9b:10:40:27:84:b0:42:92:88:17:4f:07:10:d6:20:ef:45: fb:c0:28:9d:f5:17:cf:69:1e:51:24:24:8d:8e:ed:ed:f7:ab: 0c:20:63:84:36:1d:25:ca:9f:6b:08:c5:a9:aa:0c:d4:6b:df: 39:53:24:8b:64:da:26:6e:05:23:de:80:3d:eb:44:a9:ae:69: 62:41:d7:6e:61:61:b7:ea:33:3f:ba:c5:ed:5a:37:4f:5c:46: ef:01:c4:2d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUxMTI0MDkwNTUwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI0MWZlZC0zODg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojYFZwt8Iwjd7iPrKOpYXETVAt8NELUjW1mIKPwWqU+CVFJZoq2DSYRUZ9vL 4F1zYVasoqDEyAmTxXL54vNdL3yMhxUkCX3SpnleWCzwIfbxF3EX+avJdXGEJdJ3 Dpjt9w7vG+2qtiZxAAJHnaUJYyW2ik350q6FHBxWRc5UYeWIod4Odsqgf1cfA1DW z72NTO5HMO9PjagjX1+GxmuHT4GKGqD4qIm2jXf9o2FhhAwiGhLaSUOCzLiTozsP 18CBRK3XBJhgxS0Lf5dJAJ9UfVR5bIPDNuOdQfo50TwwIQw0uptp0MxMu7SFOywm jGtiWUZ+59G9laGeZHYyg66LfQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKGkzPUJ nLDX+fBH//20uBNOR9WhMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMENCMzU0OUVB MDEwMTFGMDg2RjdFODcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAF5yNgwDwQCAAIwCQMHACABDfYiwDANBgkqhkiG9w0BAQsF AAOCAQEAwVJvwTfOjIa43g0lA6sq1uaex5uAyn5lVN95wVSS+UIAe3fUP/Zv6k77 Xj6+OoMd8R+z+eBJrdlut7TSw+CjvGxBnFpErXPZF4sviU0BNafpxBszcs+4qzyC D8ERgo9oMPrptuslaF38aPlKNy6o83TeFkFpy4eMbp9nR82FCwpyUNMPcOjUnLhZ H2z3yNwxEbL2mYioTv/Eb7DMtpL1GFVYWJsQQCeEsEKSiBdPBxDWIO9F+8AonfUX z2keUSQkjY7t7ferDCBjhDYdJcqfawjFqaoM1GvfOVMki2TaJm4FI96APetEqa5p YkHXbmFht+ozP7rF7Vo3T1xG7wHELQ== -----END CERTIFICATE-----Generated at Sun Dec 7 15:50:16 2025 by rpki-client