This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/34EEE440914911EFAD03F553C4F9AE02.roa File: 34EEE440914911EFAD03F553C4F9AE02.roa (raw, json) Hash identifier: IDo5GRPla6jccGpI9/ZSSuKt+C/mxolKDm1dtZU8zQs= Subject key identifier: 88:C6:F2:41:C9:B8:A0:FF:1C:01:1F:47:6F:3E:C2:CC:09:72:32:6A Certificate issuer: /CN=A91AF4CC/serialNumber=252A5A58C2C2393682BBF2BBC4612341C11D8419 Certificate serial: CA Authority key identifier: 25:2A:5A:58:C2:C2:39:36:82:BB:F2:BB:C4:61:23:41:C1:1D:84:19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSpaWMLCOTaCu_K7xGEjQcEdhBk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/34EEE440914911EFAD03F553C4F9AE02.roa Signing time: Mon 17 Nov 2025 03:51:45 +0000 ROA not before: Mon 17 Nov 2025 03:51:45 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 153373 IP address blocks: 160.191.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/JSpaWMLCOTaCu_K7xGEjQcEdhBk.crl rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/JSpaWMLCOTaCu_K7xGEjQcEdhBk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSpaWMLCOTaCu_K7xGEjQcEdhBk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:04:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF4CC, serialNumber=252A5A58C2C2393682BBF2BBC4612341C11D8419 Validity Not Before: Nov 17 03:51:45 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=691a9bd1-10cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4f:55:3f:bd:1f:a3:23:88:1f:22:61:6b:b0: 27:40:a2:8d:8c:73:83:4d:0a:50:e4:45:3c:78:16: 4e:5b:2b:65:8e:55:db:e8:46:74:19:60:37:13:7b: fd:4f:bd:ed:a3:dd:91:85:74:f1:a2:e4:5e:51:29: 1d:17:82:5f:43:9e:1f:65:fc:bc:27:52:ca:93:89: 87:01:2e:49:c3:7f:7d:7b:96:8e:3e:be:2c:a9:2e: 4a:66:35:28:2e:69:a6:0e:a8:43:41:22:30:5f:28: c5:97:9f:be:9e:cf:65:86:72:13:0c:fb:7c:e3:78: 5d:5b:a5:f6:d0:9b:2c:2f:68:f6:ff:d9:b9:94:a2: 08:86:e9:2f:d2:9e:e9:5d:09:95:e8:da:1d:ca:8f: 79:9f:e0:b1:d2:10:2f:7e:4e:a0:32:6f:a4:72:0d: ed:70:72:e4:6c:88:f6:42:87:bb:29:3a:4f:ff:6e: 4f:4a:9e:2b:63:9e:e2:77:fb:53:b7:07:b7:df:d1: 53:65:6a:8d:02:8b:96:d0:4e:fb:9f:4f:d6:6f:b1: 08:47:33:3b:d2:9e:5f:e3:80:e4:35:24:57:a7:8f: 29:87:bb:ac:c9:a7:f0:1d:bc:dd:a7:c2:9d:c5:85: 8c:18:c2:dc:e0:63:f9:a9:94:86:ca:74:d6:26:77: 26:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C6:F2:41:C9:B8:A0:FF:1C:01:1F:47:6F:3E:C2:CC:09:72:32:6A X509v3 Authority Key Identifier: keyid:25:2A:5A:58:C2:C2:39:36:82:BB:F2:BB:C4:61:23:41:C1:1D:84:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/JSpaWMLCOTaCu_K7xGEjQcEdhBk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSpaWMLCOTaCu_K7xGEjQcEdhBk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/34EEE440914911EFAD03F553C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.70.0/23 Signature Algorithm: sha256WithRSAEncryption 00:53:f2:1a:9c:81:ae:2f:e0:d8:d7:7c:95:28:bb:1d:78:af: 35:62:67:0b:4e:dc:02:4a:60:53:73:c2:3c:52:4a:0f:e7:22: af:78:e7:cf:90:74:47:81:74:3a:bf:4d:34:8f:4d:6d:a4:7f: 2c:0f:6b:8a:4e:b8:3e:85:09:8d:6a:5d:5b:b8:c3:da:e2:39: 8f:ae:7b:fe:18:89:4f:36:f1:f7:05:51:ba:54:6b:59:9a:c5: 3b:57:61:bb:6f:43:eb:2e:ce:26:90:07:f4:1d:fc:f9:c2:4f: 66:c4:40:fa:2f:1d:7e:24:09:1b:83:1b:1f:f1:fd:cc:9a:d2: 3a:35:6a:63:03:f5:90:a3:02:39:d2:59:09:01:be:ae:60:fb: 93:ce:04:fb:d3:43:14:f3:31:ae:25:e7:b5:93:9b:35:59:b8: 44:3d:63:1c:ef:78:08:d8:3b:07:e3:fa:84:a7:94:2c:21:19: 6a:be:5a:3b:be:69:f0:83:ae:14:a2:89:80:f2:b2:9a:d3:b3: 0b:9c:78:28:18:35:67:c4:89:e1:8d:1c:ce:51:3c:76:ae:38: 5f:d9:0a:01:bd:e2:4d:e9:7d:7d:6a:39:98:ec:d5:f3:3f:0e: b3:12:23:62:f8:8f:fc:49:1d:d5:ab:24:58:12:dd:79:c8:87: c9:6d:77:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY0Q0MxMTAvBgNVBAUTKDI1MkE1QTU4QzJDMjM5MzY4MkJCRjJCQkM0NjEyMzQx QzExRDg0MTkwHhcNMjUxMTE3MDM1MTQ1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFhOWJkMS0xMGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArU9VP70foyOIHyJha7AnQKKNjHODTQpQ5EU8eBZOWytljlXb6EZ0GWA3E3v9 T73to92RhXTxouReUSkdF4JfQ54fZfy8J1LKk4mHAS5Jw399e5aOPr4sqS5KZjUo LmmmDqhDQSIwXyjFl5++ns9lhnITDPt843hdW6X20JssL2j2/9m5lKIIhukv0p7p XQmV6Nodyo95n+Cx0hAvfk6gMm+kcg3tcHLkbIj2Qoe7KTpP/25PSp4rY57id/tT twe339FTZWqNAouW0E77n0/Wb7EIRzM70p5f44DkNSRXp48ph7usyafwHbzdp8Kd xYWMGMLc4GP5qZSGynTWJncmrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIjG8kHJ uKD/HAEfR28+wswJcjJqMB8GA1UdIwQYMBaAFCUqWljCwjk2grvyu8RhI0HBHYQZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjRDQy9DQzY4RTNEQTkx NDgxMUVGODdFQURENTJDNEY5QUUwMi9KU3BhV01MQ09UYUN1X0s3eEdFalFjRWRo QmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pTcGFXTUxDT1RhQ3VfSzd4R0VqUWNFZGhCay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUY0Q0MvQ0M2OEUzREE5MTQ4MTFFRjg3RUFERDUyQzRGOUFFMDIvMzRFRUU0NDA5 MTQ5MTFFRkFEMDNGNTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgv0YwDQYJKoZIhvcNAQELBQADggEBAABT8hqcga4v4NjX fJUoux14rzViZwtO3AJKYFNzwjxSSg/nIq9458+QdEeBdDq/TTSPTW2kfywPa4pO uD6FCY1qXVu4w9riOY+ue/4YiU828fcFUbpUa1maxTtXYbtvQ+suziaQB/Qd/PnC T2bEQPovHX4kCRuDGx/x/cya0jo1amMD9ZCjAjnSWQkBvq5g+5POBPvTQxTzMa4l 57WTmzVZuEQ9YxzveAjYOwfj+oSnlCwhGWq+Wju+afCDrhSiiYDysprTswuceCgY NWfEieGNHM5RPHauOF/ZCgG94k3pfX1qOZjs1fM/DrMSI2L4j/xJHdWrJFgS3XnI h8ltdyU= -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:25 2025 by rpki-client