This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/40F5D9E6354B11F0A873F14DC4F9AE02.roa File: 40F5D9E6354B11F0A873F14DC4F9AE02.roa (raw, json) Hash identifier: R4BGS1LLfheTx8JCwKxSxsIfP4VA81Yn8mbeXTMgqAY= Subject key identifier: FD:70:A6:69:DA:28:4D:EB:6D:D7:54:92:09:99:F5:02:15:E3:56:45 Certificate issuer: /CN=A91AFAAC/serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Certificate serial: 6A Authority key identifier: 4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/40F5D9E6354B11F0A873F14DC4F9AE02.roa Signing time: Tue 09 Dec 2025 05:14:10 +0000 ROA not before: Tue 09 Dec 2025 05:14:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 136769 IP address blocks: 160.250.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 05:48:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFAAC, serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Validity Not Before: Dec 9 05:14:10 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6937b021-0659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:24:36:74:02:2d:ef:9b:ae:0a:d7:24:c2:f4: 69:8e:9a:c1:d6:db:5d:78:c5:da:f0:9a:f7:1d:8e: 46:c3:f1:1f:e3:a2:c0:52:0b:65:ee:e3:3e:75:4b: 99:f3:af:63:7f:a1:75:62:74:13:93:2b:32:04:d6: 84:7d:32:b2:18:ee:3d:c3:a6:2e:7a:c1:67:e0:e1: 63:7a:af:c5:41:ff:0c:06:42:f9:96:df:a3:a7:ad: 8b:2c:aa:f3:d0:99:22:fc:5b:89:f8:af:ac:24:83: 64:77:74:49:9a:0b:bf:02:8e:c2:86:1a:52:6a:90: 6d:16:a5:22:5b:a8:2c:fe:4d:1f:66:c0:8b:d5:15: e3:38:4c:42:0c:78:f9:86:89:9f:26:df:7c:9d:e1: d9:16:dd:23:77:02:45:5f:a9:a3:35:1f:42:e8:dc: 17:23:47:cf:13:5a:c6:8e:a7:4f:64:17:5a:6b:e4: 09:ce:27:7a:af:e3:87:78:4d:20:91:08:6b:be:f0: 37:dc:3c:46:8b:5b:6f:56:46:7f:1e:b7:cd:3d:ac: 89:32:29:de:6e:51:5c:80:74:88:12:47:05:ef:c5: 40:b0:cc:a1:3d:c5:60:ef:80:2e:77:e9:43:5c:41: 80:9b:60:c6:f3:f4:12:39:50:49:a7:6e:62:a1:bc: b0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:70:A6:69:DA:28:4D:EB:6D:D7:54:92:09:99:F5:02:15:E3:56:45 X509v3 Authority Key Identifier: keyid:4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/40F5D9E6354B11F0A873F14DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.24.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:39:02:88:f8:cb:df:1e:46:9b:a1:7d:f2:3c:be:c8:4a:15: 65:fd:cb:b8:7d:21:ae:b5:25:2b:7b:77:10:f3:ef:6e:b5:fd: 26:d3:05:f5:9e:d0:83:a2:dd:4d:fd:7b:da:9b:5c:bf:21:ff: 7c:bb:6d:d9:4b:f1:df:93:49:f1:67:67:ed:97:5e:fc:97:5e: fd:d7:9d:ad:74:13:34:0f:bd:9b:9c:94:39:f7:6b:85:4f:b5: 3c:29:6d:cb:42:9b:71:ac:d2:f3:2a:19:b5:bc:2a:75:08:4b: ad:f1:a3:69:f5:2e:25:94:72:dd:45:66:2c:a3:a2:4c:d5:fc: bc:1b:55:78:a6:69:37:3b:56:f0:5d:0e:36:cd:a3:1f:24:79: bf:49:a7:2f:ae:75:30:09:86:b9:c0:e6:8a:75:aa:b2:9f:6e: 33:ca:04:05:99:3c:a0:4d:77:f5:6b:1c:b7:fc:12:c9:bf:c2: e7:05:f6:85:cf:cd:4a:fa:d6:7c:8e:44:4b:58:df:80:82:26: 40:71:cc:6d:60:73:29:71:98:34:4e:a6:83:82:c7:f2:8e:d6: fc:3e:0b:70:31:f6:a2:3b:e1:56:82:f0:dd:dd:12:64:e5:a1: ae:2e:d6:8c:58:72:02:62:71:21:c2:07:81:ad:e2:5e:bc:1f: 51:5e:9e:12 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RkFBQzExMC8GA1UEBRMoNEQzRkM0NzA2NEY0RUExQkRDQUIyOUI5RTY1QjMxRDc0 REUyNjRFMDAeFw0yNTEyMDkwNTE0MTBaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MzdiMDIxLTA2NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8JDZ0Ai3vm64K1yTC9GmOmsHW2114xdrwmvcdjkbD8R/josBSC2Xu4z51S5nz r2N/oXVidBOTKzIE1oR9MrIY7j3Dpi56wWfg4WN6r8VB/wwGQvmW36OnrYssqvPQ mSL8W4n4r6wkg2R3dEmaC78CjsKGGlJqkG0WpSJbqCz+TR9mwIvVFeM4TEIMePmG iZ8m33yd4dkW3SN3AkVfqaM1H0Lo3BcjR88TWsaOp09kF1pr5AnOJ3qv44d4TSCR CGu+8DfcPEaLW29WRn8et809rIkyKd5uUVyAdIgSRwXvxUCwzKE9xWDvgC536UNc QYCbYMbz9BI5UEmnbmKhvLA3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/XCmadoo Tett11SSCZn1AhXjVkUwHwYDVR0jBBgwFoAUTT/EcGT06hvcqym55lsx103iZOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGQUFDLzRBRjBDOTJBMzU0 QTExRjBCQTc2NkU0Q0M0RjlBRTAyL1RUX0VjR1QwNmh2Y3F5bTU1bHN4MTAzaVpP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVFRfRWNHVDA2aHZjcXltNTVsc3gxMDNpWk9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkFBQy80QUYwQzkyQTM1NEExMUYwQkE3NjZFNENDNEY5QUUwMi80MEY1RDlFNjM1 NEIxMUYwQTg3M0YxNERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD6GDANBgkqhkiG9w0BAQsFAAOCAQEAKzkCiPjL3x5Gm6F9 8jy+yEoVZf3LuH0hrrUlK3t3EPPvbrX9JtMF9Z7Qg6LdTf172ptcvyH/fLtt2Uvx 35NJ8Wdn7Zde/Jde/dedrXQTNA+9m5yUOfdrhU+1PClty0KbcazS8yoZtbwqdQhL rfGjafUuJZRy3UVmLKOiTNX8vBtVeKZpNztW8F0ONs2jHyR5v0mnL651MAmGucDm inWqsp9uM8oEBZk8oE139Wsct/wSyb/C5wX2hc/NSvrWfI5ES1jfgIImQHHMbWBz KXGYNE6mg4LH8o7W/D4LcDH2ojvhVoLw3d0SZOWhri7WjFhyAmJxIcIHga3iXrwf UV6eEg== -----END CERTIFICATE-----Generated at Sun Jan 18 04:33:46 2026 by rpki-client