This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa File: C27C0758916B11EF81BBB521C4F9AE02.roa (raw, json) Hash identifier: WY6NckSdirfXvITMblgLU8JwViiWY4ef1kYo4jKimMs= Subject key identifier: 13:FF:07:E7:E7:17:9F:34:16:EF:04:17:E4:D8:E9:77:B5:D1:88:53 Certificate issuer: /CN=A91A7169/serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E Certificate serial: 0207 Authority key identifier: E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa Signing time: Wed 21 Jan 2026 12:39:07 +0000 ROA not before: Wed 21 Jan 2026 12:39:07 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 53813 IP address blocks: 101.2.192.0/24 maxlen: 24 101.2.193.0/24 maxlen: 24 101.2.194.0/24 maxlen: 24 101.2.195.0/24 maxlen: 24 101.2.196.0/24 maxlen: 24 101.2.197.0/24 maxlen: 24 101.2.198.0/24 maxlen: 24 101.2.199.0/24 maxlen: 24 101.2.200.0/24 maxlen: 24 101.2.201.0/24 maxlen: 24 101.2.202.0/23 maxlen: 24 101.2.204.0/23 maxlen: 24 101.2.206.0/24 maxlen: 24 101.2.207.0/24 maxlen: 24 101.2.208.0/24 maxlen: 24 101.2.209.0/24 maxlen: 24 101.2.214.0/24 maxlen: 24 101.2.215.0/24 maxlen: 24 101.2.216.0/23 maxlen: 24 101.2.218.0/23 maxlen: 24 101.2.220.0/23 maxlen: 24 101.2.222.0/23 maxlen: 24 101.2.224.0/23 maxlen: 24 101.2.226.0/23 maxlen: 24 101.2.228.0/23 maxlen: 24 101.2.230.0/23 maxlen: 24 101.2.232.0/23 maxlen: 24 101.2.234.0/23 maxlen: 24 101.2.236.0/23 maxlen: 24 101.2.238.0/23 maxlen: 24 101.2.240.0/24 maxlen: 24 101.2.241.0/24 maxlen: 24 101.2.242.0/23 maxlen: 24 101.2.244.0/23 maxlen: 24 175.107.128.0/23 maxlen: 24 175.107.130.0/23 maxlen: 24 175.107.132.0/23 maxlen: 24 175.107.134.0/24 maxlen: 24 175.107.140.0/23 maxlen: 24 175.107.142.0/23 maxlen: 24 175.107.144.0/23 maxlen: 24 175.107.146.0/23 maxlen: 24 175.107.148.0/23 maxlen: 24 175.107.150.0/23 maxlen: 24 175.107.152.0/23 maxlen: 24 175.107.154.0/23 maxlen: 24 175.107.156.0/23 maxlen: 24 175.107.158.0/23 maxlen: 24 175.107.160.0/23 maxlen: 24 175.107.162.0/23 maxlen: 24 175.107.164.0/23 maxlen: 24 175.107.166.0/23 maxlen: 24 175.107.190.0/24 maxlen: 24 2400:7aa0:1200::/40 maxlen: 48 2400:7aa0:1300::/40 maxlen: 48 2400:7aa0:1400::/40 maxlen: 48 2400:7aa0:1500::/40 maxlen: 48 2400:7aa0:1600::/40 maxlen: 48 2400:7aa0:1700::/40 maxlen: 48 2400:7aa0:1800::/40 maxlen: 48 2400:7aa0:1900::/40 maxlen: 48 2400:7aa0:1a00::/40 maxlen: 48 2400:7aa0:1b00::/40 maxlen: 48 2400:7aa0:1c00::/40 maxlen: 48 2400:7aa0:1d00::/40 maxlen: 40 2400:7aa0:1e00::/40 maxlen: 48 2400:7aa0:1f00::/40 maxlen: 48 2400:7aa0:2200::/40 maxlen: 48 2400:7aa0:2300::/40 maxlen: 48 2400:7aa0:2400::/40 maxlen: 48 2400:7aa0:2500::/40 maxlen: 48 2400:7aa0:2600::/40 maxlen: 48 2400:7aa0:2800::/40 maxlen: 48 2400:7aa0:2900::/40 maxlen: 48 2400:7aa0:2b00::/40 maxlen: 48 2400:7aa0:2c00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E Validity Not Before: Jan 21 12:39:07 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6970c8eb-486b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:82:b0:0b:1f:1e:ac:aa:a1:c8:48:3f:46:b4: d7:3b:17:ff:0c:2a:08:d8:e6:32:f8:05:63:9c:f0: 22:cf:a8:90:92:9c:2d:90:4d:d4:e4:45:5b:33:88: e8:ec:9a:69:e3:af:1a:71:c8:aa:98:e6:c3:86:76: b5:1a:d6:d2:19:76:05:a5:ba:9b:92:cd:00:a6:5c: 1b:bd:bc:78:bb:fe:59:5d:2e:61:e5:10:1e:31:e5: 24:f3:62:7a:2e:2e:ce:53:1e:a3:64:f6:91:14:e1: 26:72:e1:77:df:3c:3a:c3:6e:76:aa:04:75:67:88: 87:3c:53:ae:66:b5:fd:bc:28:9b:3a:b4:3d:ce:33: ef:4c:8b:74:d4:59:fe:8e:c6:9f:2e:eb:48:91:27: 7a:7b:b5:2c:5b:18:c2:09:f1:29:f1:c9:42:30:fa: ac:48:c9:7f:f1:91:c2:2d:4b:b8:be:71:51:1a:10: e1:c4:22:e8:69:0d:6f:60:ef:f3:2f:89:f7:a3:fd: 98:d0:3d:89:ee:15:63:91:a5:78:be:4d:35:58:e5: 2d:97:96:8e:e2:5c:5f:ef:b4:ac:83:f9:07:de:ea: 87:e3:44:96:83:6f:9a:4d:51:79:1c:94:e9:5d:fc: 90:66:b3:ec:40:38:c9:0c:24:a8:5a:ce:e4:da:ed: dd:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:FF:07:E7:E7:17:9F:34:16:EF:04:17:E4:D8:E9:77:B5:D1:88:53 X509v3 Authority Key Identifier: keyid:E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.2.192.0-101.2.209.255 101.2.214.0-101.2.245.255 175.107.128.0-175.107.134.255 175.107.140.0-175.107.167.255 175.107.190.0/24 IPv6: 2400:7aa0:1200::-2400:7aa0:1fff:ffff:ffff:ffff:ffff:ffff 2400:7aa0:2200::-2400:7aa0:26ff:ffff:ffff:ffff:ffff:ffff 2400:7aa0:2800::/39 2400:7aa0:2b00::-2400:7aa0:2cff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 71:96:3b:81:2e:c6:5f:d2:db:98:d0:81:2a:b8:ad:8d:93:16: e5:b2:7e:c3:51:0b:b0:26:ea:20:6f:82:4a:08:f2:09:53:4c: df:8f:af:61:e9:9d:ae:ad:d1:f0:58:48:5e:c3:e1:1a:76:0b: 40:62:3f:ad:7d:61:f9:26:06:d0:ef:22:d4:9a:59:71:cc:b8: 4d:64:ad:3c:8f:a1:16:8c:22:4b:09:a9:fd:07:88:bd:e3:1e: 76:0e:fd:d6:b0:d1:a4:01:1a:8d:12:58:f1:50:8d:eb:5a:24: d4:a2:50:3a:30:c8:35:41:92:0e:93:35:dd:99:30:47:38:ed: 9f:28:46:06:e8:9e:ce:5d:06:98:c1:9b:1d:ad:fa:1b:79:28: 95:10:ca:16:07:65:af:a9:cc:06:61:95:10:42:e0:06:06:4b: 1d:5f:dd:4c:5f:80:71:45:24:40:6e:47:bb:74:95:8b:60:53: a5:35:ae:e6:c0:96:38:b5:ee:b8:51:bd:37:94:f1:d7:30:70: f9:b1:e9:ed:12:66:09:cc:3b:35:56:94:3d:a2:66:53:cb:70: f1:89:ea:35:f2:5b:b0:55:0a:60:66:6b:e7:c7:2e:22:a5:f8: 4a:08:ef:7e:c9:d0:e6:d1:24:b1:d6:8a:9a:8a:70:1e:13:15: 53:59:1a:f9 -----BEGIN CERTIFICATE----- MIIF8jCCBNqgAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKEU1MENCMjUwQkZBRDA4NjNFODVDMjkwMkVBMDIxOUQ1 M0NDMDgxMkUwHhcNMjYwMTIxMTIzOTA3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTcwYzhlYi00ODZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjYKwCx8erKqhyEg/RrTXOxf/DCoI2OYy+AVjnPAiz6iQkpwtkE3U5EVbM4jo 7Jpp468acciqmObDhna1GtbSGXYFpbqbks0Aplwbvbx4u/5ZXS5h5RAeMeUk82J6 Li7OUx6jZPaRFOEmcuF33zw6w252qgR1Z4iHPFOuZrX9vCibOrQ9zjPvTIt01Fn+ jsafLutIkSd6e7UsWxjCCfEp8clCMPqsSMl/8ZHCLUu4vnFRGhDhxCLoaQ1vYO/z L4n3o/2Y0D2J7hVjkaV4vk01WOUtl5aO4lxf77Ssg/kH3uqH40SWg2+aTVF5HJTp XfyQZrPsQDjJDCSoWs7k2u3d1wIDAQABo4IDFjCCAxIwHQYDVR0OBBYEFBP/B+fn F580Fu8EF+TY6Xe10YhTMB8GA1UdIwQYMBaAFOUMslC/rQhj6FwpAuoCGdU8wIEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82QjdGOTkzQ0VC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi81UXl5VUwtdENHUG9YQ2tDNmdJWjFUekFn UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVReXlVTC10Q0dQb1hDa0M2Z0laMVR6QWdTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNkI3Rjk5M0NFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvQzI3QzA3NTg5 MTZCMTFFRjgxQkJCNTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgZ8GCCsGAQUFBwEHAQH/ BIGPMIGMMEQEAgABMD4wDAMEBmUCwAMEAWUC0DAMAwQBZQLWAwQBZQL0MAwDBAev a4ADBACva4YwDAMEAq9rjAMEA69roAMEAK9rvjBEBAIAAjA+MBADBgEkAHqgEgMG BSQAeqAAMBADBgEkAHqgIgMGACQAeqAmAwYBJAB6oCgwEAMGACQAeqArAwYAJAB6 oCwwDQYJKoZIhvcNAQELBQADggEBAHGWO4Euxl/S25jQgSq4rY2TFuWyfsNRC7Am 6iBvgkoI8glTTN+Pr2Hpna6t0fBYSF7D4Rp2C0BiP619YfkmBtDvItSaWXHMuE1k rTyPoRaMIksJqf0HiL3jHnYO/daw0aQBGo0SWPFQjetaJNSiUDowyDVBkg6TNd2Z MEc47Z8oRgbons5dBpjBmx2t+ht5KJUQyhYHZa+pzAZhlRBC4AYGSx1f3UxfgHFF JEBuR7t0lYtgU6U1rubAlji17rhRvTeU8dcwcPmx6e0SZgnMOzVWlD2iZlPLcPGJ 6jXyW7BVCmBma+fHLiKl+EoI737J0ObRJLHWipqKcB4TFVNZGvk= -----END CERTIFICATE-----Generated at Mon Jan 26 08:42:12 2026 by rpki-client