This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/65A422A8C3F411EEB1191654C4F9AE02.roa File: 65A422A8C3F411EEB1191654C4F9AE02.roa (raw, json) Hash identifier: q0rXM4IeMQ5E14ifbbIFw0Hb35LtVVQvwt/UFqTmRYg= Subject key identifier: 49:82:1C:09:82:22:1F:13:07:3C:DC:7A:A8:B6:A8:38:43:32:01:63 Certificate issuer: /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Certificate serial: 0208 Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/65A422A8C3F411EEB1191654C4F9AE02.roa Signing time: Tue 02 Dec 2025 17:18:13 +0000 ROA not before: Tue 02 Dec 2025 17:18:13 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 4767 IP address blocks: 192.41.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 17:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02, serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Validity Not Before: Dec 2 17:18:13 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692f1f55-dbad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:de:23:65:c4:e9:c2:71:0e:98:ee:06:2a:55: 60:58:d7:7e:fe:7d:99:ad:eb:79:10:a7:44:32:c3: 67:85:3d:3b:30:e0:3c:78:f9:f0:d4:d9:17:33:72: d9:c2:f9:b4:1f:6e:ac:05:40:17:0c:45:5e:d6:c7: e7:60:20:8e:c4:8b:93:82:a1:1e:3a:70:74:78:f4: bb:d7:91:a4:52:76:f3:ed:01:e7:ba:29:b8:97:62: c2:29:e7:04:87:2c:15:1c:f3:54:d5:73:ef:e3:ed: 1d:59:a4:c0:54:7f:62:bb:0e:6a:dd:80:65:10:03: 3b:34:55:8e:16:2a:6f:f3:77:b2:e4:63:32:97:1d: 4f:a0:f1:07:91:08:c0:33:ee:5a:41:27:16:54:12: 46:c0:a8:34:6b:60:c3:7f:90:e1:fd:38:a6:08:a6: fb:19:0d:ab:77:65:d4:50:67:f5:0e:dd:5e:4a:15: c6:e2:e3:2d:90:da:87:f6:d8:91:f8:95:b1:70:30: 67:07:7c:2b:f1:b6:d3:f5:b9:fb:c9:14:ed:71:de: 73:6a:dc:fc:2f:45:c1:19:79:70:1b:86:e2:57:b8: 3f:2e:b8:22:47:de:c7:4b:1d:90:1c:9d:88:75:79: 54:d4:00:14:b0:a1:99:33:b8:b7:65:bd:15:55:ff: e5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:82:1C:09:82:22:1F:13:07:3C:DC:7A:A8:B6:A8:38:43:32:01:63 X509v3 Authority Key Identifier: keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/65A422A8C3F411EEB1191654C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.41.170.0/24 Signature Algorithm: sha256WithRSAEncryption 04:37:17:41:bb:98:64:56:ac:8f:9b:a8:a6:71:59:c4:33:3e: 5d:be:1f:9d:25:4f:16:26:fc:6f:5c:ce:f0:65:66:9e:8b:45: a4:2d:dc:38:59:e0:55:b4:da:74:08:98:26:ab:08:7a:06:22: a0:86:34:aa:b6:1c:7e:4d:73:84:c4:d7:72:de:40:5c:02:6a: cf:54:e6:f5:4f:1a:02:e6:19:7b:da:f3:be:e6:7e:1c:d1:27: 9e:7e:78:b7:60:93:9e:d0:e7:99:7c:6c:df:a6:f2:e6:b7:c8: ba:b3:03:72:cb:34:55:f3:32:fe:13:de:d5:46:4f:3d:30:d1: 64:64:9e:49:6e:b5:64:d4:22:7a:d0:aa:36:47:86:95:1f:41: a6:3a:7f:cc:94:43:b1:e1:f5:6a:5a:eb:06:3d:86:79:0f:33: ea:46:7c:42:a6:6c:ad:e6:74:7c:ee:20:03:37:82:53:69:c4: 74:a2:cd:03:45:36:5c:53:26:bd:d3:75:87:92:c0:61:f1:fd: 52:40:00:70:95:51:e8:84:f3:12:fa:82:83:0e:09:36:b9:a7: 9c:a7:fe:43:ea:8b:e3:ec:eb:98:04:81:e8:00:1d:ab:76:1f: 5a:f7:27:89:4e:e9:eb:49:77:80:73:8f:9e:38:8f:50:d5:4a: 11:0b:1c:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKDE4Q0QyNkYyRjVENDQ0QjcyMEM0NTJBOEM2QzkyMEM2 RDBBNjE4MDUwHhcNMjUxMjAyMTcxODEzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmMWY1NS1kYmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzd4jZcTpwnEOmO4GKlVgWNd+/n2Zret5EKdEMsNnhT07MOA8ePnw1NkXM3LZ wvm0H26sBUAXDEVe1sfnYCCOxIuTgqEeOnB0ePS715GkUnbz7QHnuim4l2LCKecE hywVHPNU1XPv4+0dWaTAVH9iuw5q3YBlEAM7NFWOFipv83ey5GMylx1PoPEHkQjA M+5aQScWVBJGwKg0a2DDf5Dh/TimCKb7GQ2rd2XUUGf1Dt1eShXG4uMtkNqH9tiR +JWxcDBnB3wr8bbT9bn7yRTtcd5zatz8L0XBGXlwG4biV7g/LrgiR97HSx2QHJ2I dXlU1AAUsKGZM7i3Zb0VVf/lRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEmCHAmC Ih8TBzzceqi2qDhDMgFjMB8GA1UdIwQYMBaAFBjNJvL11ES3IMRSqMbJIMbQphgF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi8yNjFGMzREOEMx RjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJMY2d4RktveHNrZ3h0Q21H QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0dNMG04dlhVUkxjZ3hGS294c2tneHRDbUdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFGMDIvMjYxRjM0RDhDMUY3MTFFREI0MjY3NDdCQzRGOUFFMDIvNjVBNDIyQThD M0Y0MTFFRUIxMTkxNjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAKaowDQYJKoZIhvcNAQELBQADggEBAAQ3F0G7mGRWrI+b qKZxWcQzPl2+H50lTxYm/G9czvBlZp6LRaQt3DhZ4FW02nQImCarCHoGIqCGNKq2 HH5Nc4TE13LeQFwCas9U5vVPGgLmGXva877mfhzRJ55+eLdgk57Q55l8bN+m8ua3 yLqzA3LLNFXzMv4T3tVGTz0w0WRknklutWTUInrQqjZHhpUfQaY6f8yUQ7Hh9Wpa 6wY9hnkPM+pGfEKmbK3mdHzuIAM3glNpxHSizQNFNlxTJr3TdYeSwGHx/VJAAHCV UeiE8xL6goMOCTa5p5yn/kPqi+Ps65gEgegAHat2H1r3J4lO6etJd4Bzj544j1DV ShELHJw= -----END CERTIFICATE-----Generated at Wed Dec 3 14:46:53 2025 by rpki-client