This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/0A65ADB6CEEE11EFAA2CA812C4F9AE02.roa File: 0A65ADB6CEEE11EFAA2CA812C4F9AE02.roa (raw, json) Hash identifier: e5hGL0HB5luNnJLrnQAuAjoBKICv2cCV8dxAwYGWnTk= Subject key identifier: 43:DF:F7:C1:E6:D3:D0:37:BD:C1:D1:7A:02:2E:2D:DB:79:C2:4F:04 Certificate issuer: /CN=A91B15DC/serialNumber=D36E104261F819D68D0F70BB29ADFE8EF463B2ED Certificate serial: AA Authority key identifier: D3:6E:10:42:61:F8:19:D6:8D:0F:70:BB:29:AD:FE:8E:F4:63:B2:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/0A65ADB6CEEE11EFAA2CA812C4F9AE02.roa Signing time: Wed 03 Dec 2025 04:34:56 +0000 ROA not before: Wed 03 Dec 2025 04:34:56 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134602 IP address blocks: 160.191.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.crl rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:35:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=D36E104261F819D68D0F70BB29ADFE8EF463B2ED Validity Not Before: Dec 3 04:34:56 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692fbdf0-bc34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8a:d2:92:e3:ac:5f:c2:38:e2:0b:11:db:fd: 2f:28:79:28:05:78:34:b6:1f:51:e3:79:03:45:5e: cb:96:2b:12:9d:f4:28:12:1b:db:9a:42:f5:d7:d0: 2d:a4:0b:3f:58:6a:24:3c:b8:ed:16:cf:0a:1d:85: 8a:01:a1:df:3a:e5:cf:b5:12:52:ea:f1:34:63:ab: bb:d1:dd:89:8b:2e:17:8e:5f:9c:e9:0a:8c:ef:9d: f3:96:9f:05:0d:18:57:8e:f4:1c:d2:e6:03:1a:4c: f0:a9:da:a5:58:3a:fc:d5:b1:c6:e4:e2:9a:3d:d4: 81:80:44:4b:cf:6e:13:3c:a2:f3:2e:8a:82:5e:2b: d4:1a:5c:8f:08:91:a9:f0:7c:64:dd:63:96:25:08: f8:94:3d:f1:ee:07:ab:f2:b2:49:58:88:f9:d8:f0: 6b:70:a4:e0:5e:47:6d:ae:8f:57:54:93:82:23:73: 8f:3d:03:0f:50:9f:d9:ba:2e:7b:20:60:41:42:e6: 7e:fa:59:ff:ba:9a:62:35:89:1f:a9:d3:8a:ed:26: 10:0f:7e:93:98:fa:79:ec:a4:ad:0b:d9:11:22:a0: 92:45:12:96:d7:10:26:e2:e3:77:21:d3:33:ee:ae: 1d:e7:3d:d6:d1:a4:a6:73:2a:52:29:75:bf:d4:9d: 1f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:DF:F7:C1:E6:D3:D0:37:BD:C1:D1:7A:02:2E:2D:DB:79:C2:4F:04 X509v3 Authority Key Identifier: keyid:D3:6E:10:42:61:F8:19:D6:8D:0F:70:BB:29:AD:FE:8E:F4:63:B2:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/0A65ADB6CEEE11EFAA2CA812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.170.0/24 Signature Algorithm: sha256WithRSAEncryption bb:91:e8:b2:24:e0:7c:d6:94:4d:5d:46:96:e8:e7:3e:8b:03: e8:68:43:61:e3:1b:81:f2:83:93:4f:25:90:0d:b3:8a:bf:0c: 44:d6:bc:ff:7c:28:a9:bc:57:41:e2:2a:ee:6b:e5:6a:f0:6f: 43:ca:5b:f4:7d:7a:24:41:08:98:74:83:38:d8:a0:ab:69:d9: 30:da:6a:f3:67:d7:30:d2:81:c6:40:21:48:85:22:b7:45:b6: 10:2b:c0:9f:aa:0d:c0:8d:1c:5f:dc:77:d7:5a:50:be:44:89: 3e:37:54:0a:3a:c6:7c:1b:43:bb:4c:b6:b9:3e:b2:60:3a:cf: 13:dd:d7:fc:28:41:42:06:71:3c:44:73:87:88:86:e7:9b:de: dd:36:a6:b2:f5:e3:32:fa:4c:0f:df:96:3e:28:93:d7:f3:ea: 36:2a:13:f4:93:d9:97:3e:7e:d3:95:dd:67:17:11:2b:cb:19: 11:f2:65:70:d8:93:9b:38:6a:39:d3:a9:a5:e7:60:b7:91:52: 8e:4a:d4:ba:2e:9f:2e:7a:71:61:16:d3:ab:b8:69:9c:fb:30: e5:af:4f:7a:54:fe:d7:21:46:10:ff:1e:78:66:f4:ef:d2:75: 67:75:52:e8:03:70:63:35:5f:d3:08:4a:a7:b8:41:53:5f:12: 10:08:03:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE1REMxMTAvBgNVBAUTKEQzNkUxMDQyNjFGODE5RDY4RDBGNzBCQjI5QURGRThF RjQ2M0IyRUQwHhcNMjUxMjAzMDQzNDU2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmYmRmMC1iYzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIrSkuOsX8I44gsR2/0vKHkoBXg0th9R43kDRV7LlisSnfQoEhvbmkL119At pAs/WGokPLjtFs8KHYWKAaHfOuXPtRJS6vE0Y6u70d2Jiy4Xjl+c6QqM753zlp8F DRhXjvQc0uYDGkzwqdqlWDr81bHG5OKaPdSBgERLz24TPKLzLoqCXivUGlyPCJGp 8Hxk3WOWJQj4lD3x7ger8rJJWIj52PBrcKTgXkdtro9XVJOCI3OPPQMPUJ/Zui57 IGBBQuZ++ln/uppiNYkfqdOK7SYQD36TmPp57KStC9kRIqCSRRKW1xAm4uN3IdMz 7q4d5z3W0aSmcypSKXW/1J0ffQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEPf98Hm 09A3vcHRegIuLdt5wk8EMB8GA1UdIwQYMBaAFNNuEEJh+BnWjQ9wuymt/o70Y7Lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTVEQy80RkVDMUMwNENF RUQxMUVGQkQ2NTU1MTFDNEY5QUUwMi8wMjRRUW1INEdkYU5EM0M3S2EzLWp2Umpz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzAyNFFRbUg0R2RhTkQzQzdLYTMtanZSanN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjE1REMvNEZFQzFDMDRDRUVEMTFFRkJENjU1NTExQzRGOUFFMDIvMEE2NUFEQjZD RUVFMTFFRkFBMkNBODEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgv6owDQYJKoZIhvcNAQELBQADggEBALuR6LIk4HzWlE1d Rpbo5z6LA+hoQ2HjG4Hyg5NPJZANs4q/DETWvP98KKm8V0HiKu5r5Wrwb0PKW/R9 eiRBCJh0gzjYoKtp2TDaavNn1zDSgcZAIUiFIrdFthArwJ+qDcCNHF/cd9daUL5E iT43VAo6xnwbQ7tMtrk+smA6zxPd1/woQUIGcTxEc4eIhueb3t02prL14zL6TA/f lj4ok9fz6jYqE/ST2Zc+ftOV3WcXESvLGRHyZXDYk5s4ajnTqaXnYLeRUo5K1Lou ny56cWEW06u4aZz7MOWvT3pU/tchRhD/Hnhm9O/SdWd1UugDcGM1X9MISqe4QVNf EhAIA3Q= -----END CERTIFICATE-----Generated at Wed Dec 3 17:39:09 2025 by rpki-client