This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5552/6F60F77C0BCC11EC8570CD1FC4F9AE02/0E183FBE516911ED9B5EF024C4F9AE02.roa File: 0E183FBE516911ED9B5EF024C4F9AE02.roa (raw, json) Hash identifier: ETtdvHyJ0kruEI7+UpCgdiqzKfFtMYbM3eVB3bdG2Ao= Subject key identifier: D4:DE:EB:8C:D6:0A:63:24:39:23:19:86:9A:DC:2A:81:77:D0:6C:07 Certificate issuer: /CN=A91B5552/serialNumber=7829136F79B7F89B3CD47C536FC7496232B9E13A Certificate serial: 0574 Authority key identifier: 78:29:13:6F:79:B7:F8:9B:3C:D4:7C:53:6F:C7:49:62:32:B9:E1:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eCkTb3m3-Js81HxTb8dJYjK54To.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5552/6F60F77C0BCC11EC8570CD1FC4F9AE02/0E183FBE516911ED9B5EF024C4F9AE02.roa Signing time: Fri 12 Dec 2025 22:39:28 +0000 ROA not before: Fri 12 Dec 2025 22:39:28 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 131324 IP address blocks: 43.225.172.0/22 maxlen: 24 103.44.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5552/6F60F77C0BCC11EC8570CD1FC4F9AE02/eCkTb3m3-Js81HxTb8dJYjK54To.crl rsync://rpki.apnic.net/member_repository/A91B5552/6F60F77C0BCC11EC8570CD1FC4F9AE02/eCkTb3m3-Js81HxTb8dJYjK54To.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eCkTb3m3-Js81HxTb8dJYjK54To.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:41:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1396 (0x574) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5552, serialNumber=7829136F79B7F89B3CD47C536FC7496232B9E13A Validity Not Before: Dec 12 22:39:28 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=693c99a0-91fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:5f:c4:0d:a7:5e:c4:d2:a2:da:e9:62:ad:0e: 85:44:af:5b:54:10:f2:1b:0a:12:93:fa:a8:99:a5: ba:3f:85:75:85:a3:16:02:7c:7f:f0:46:c1:15:18: 74:1d:74:f7:5b:ad:20:d8:9e:d9:04:59:64:18:33: e2:9e:04:71:98:df:25:5a:89:b5:3d:a2:a9:db:6f: 8f:7d:f0:d3:66:02:e3:f3:e9:22:2f:04:8e:76:2b: 9c:6f:71:22:a7:95:7a:65:6d:54:a7:a5:29:f9:b9: 0e:c4:90:90:e0:8f:26:fd:21:33:4b:54:61:77:2f: 40:3c:a2:d3:fb:24:14:a0:80:4f:8f:b7:d9:4b:66: ff:b3:3a:ab:60:40:fd:0a:d4:3f:72:6d:a9:0c:71: af:10:dd:7d:37:c1:62:e3:32:dd:df:ce:49:2c:92: 0f:53:cf:46:fd:45:df:a2:f0:75:b6:cf:56:a1:80: d7:d9:b7:91:17:f9:05:d6:9d:ba:01:41:42:cb:76: 70:a2:b1:ca:7a:b8:51:f2:70:ef:3c:77:5f:fc:7d: 16:1b:79:e9:20:11:02:a7:c5:a2:a1:d0:83:21:cd: 25:a9:08:cf:a8:11:89:c4:f5:dd:bf:dd:b7:ab:f8: 44:9b:0a:26:a7:72:28:99:09:80:28:c0:60:a6:3b: b4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:DE:EB:8C:D6:0A:63:24:39:23:19:86:9A:DC:2A:81:77:D0:6C:07 X509v3 Authority Key Identifier: keyid:78:29:13:6F:79:B7:F8:9B:3C:D4:7C:53:6F:C7:49:62:32:B9:E1:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5552/6F60F77C0BCC11EC8570CD1FC4F9AE02/eCkTb3m3-Js81HxTb8dJYjK54To.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eCkTb3m3-Js81HxTb8dJYjK54To.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5552/6F60F77C0BCC11EC8570CD1FC4F9AE02/0E183FBE516911ED9B5EF024C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.172.0/22 103.44.132.0/22 Signature Algorithm: sha256WithRSAEncryption 67:6f:a0:3e:aa:78:ae:76:b0:5a:e8:06:a7:ec:3f:12:93:8b: 82:12:4a:20:b1:e9:6b:3d:2f:84:65:d7:ad:a8:d5:1a:91:e4: 08:33:ef:3c:3b:63:95:05:c2:46:31:2b:83:6c:59:f4:b8:76: e1:c1:49:b0:cd:7b:1f:85:fc:c3:6c:be:1c:33:48:61:fd:8a: 04:55:3f:cf:80:2b:4d:48:02:f7:f1:b4:09:48:34:e9:98:4f: 04:4d:23:42:68:1e:64:a9:c6:a3:7a:d1:a7:3f:da:4f:9a:2a: 3d:2f:24:e7:64:c4:69:d8:5f:cb:8c:fe:cf:95:5a:ed:18:84: 61:ce:83:23:ae:19:40:75:c5:01:1e:36:ef:e3:27:ad:56:ce: e1:0d:f7:c4:c6:b6:6c:b2:ab:fd:c3:4d:a6:95:bf:67:7f:21: ad:d3:45:91:ac:10:12:d6:54:7d:a9:97:c1:42:56:66:ab:7f: c2:c2:17:52:35:3d:7e:0a:08:0f:2e:0f:d6:92:74:8c:c9:c2: 31:ba:bb:8c:5b:12:86:51:fa:14:ad:50:c0:7c:f3:1f:4f:5f: 92:56:07:39:f9:56:b2:06:31:c7:f6:12:be:91:50:8c:54:e4: 3c:fe:55:a5:1b:41:45:c3:9d:3d:e1:fe:9d:7e:72:11:dd:22: c4:6c:88:0b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU1NTIxMTAvBgNVBAUTKDc4MjkxMzZGNzlCN0Y4OUIzQ0Q0N0M1MzZGQzc0OTYy MzJCOUUxM0EwHhcNMjUxMjEyMjIzOTI4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNjOTlhMC05MWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjl/EDadexNKi2ulirQ6FRK9bVBDyGwoSk/qomaW6P4V1haMWAnx/8EbBFRh0 HXT3W60g2J7ZBFlkGDPingRxmN8lWom1PaKp22+PffDTZgLj8+kiLwSOdiucb3Ei p5V6ZW1Up6Up+bkOxJCQ4I8m/SEzS1Rhdy9APKLT+yQUoIBPj7fZS2b/szqrYED9 CtQ/cm2pDHGvEN19N8Fi4zLd385JLJIPU89G/UXfovB1ts9WoYDX2beRF/kF1p26 AUFCy3ZworHKerhR8nDvPHdf/H0WG3npIBECp8WiodCDIc0lqQjPqBGJxPXdv923 q/hEmwomp3IomQmAKMBgpju09wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNTe64zW CmMkOSMZhprcKoF30GwHMB8GA1UdIwQYMBaAFHgpE295t/ibPNR8U2/HSWIyueE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTU1Mi82RjYwRjc3QzBC Q0MxMUVDODU3MENEMUZDNEY5QUUwMi9lQ2tUYjNtMy1KczgxSHhUYjhkSllqSzU0 VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VDa1RiM20zLUpzODFIeFRiOGRKWWpLNTRUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU1NTIvNkY2MEY3N0MwQkNDMTFFQzg1NzBDRDFGQzRGOUFFMDIvMEUxODNGQkU1 MTY5MTFFRDlCNUVGMDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr4awDBAJnLIQwDQYJKoZIhvcNAQELBQADggEBAGdvoD6q eK52sFroBqfsPxKTi4ISSiCx6Ws9L4Rl162o1RqR5Agz7zw7Y5UFwkYxK4NsWfS4 duHBSbDNex+F/MNsvhwzSGH9igRVP8+AK01IAvfxtAlINOmYTwRNI0JoHmSpxqN6 0ac/2k+aKj0vJOdkxGnYX8uM/s+VWu0YhGHOgyOuGUB1xQEeNu/jJ61WzuEN98TG tmyyq/3DTaaVv2d/Ia3TRZGsEBLWVH2pl8FCVmarf8LCF1I1PX4KCA8uD9aSdIzJ wjG6u4xbEoZR+hStUMB88x9PX5JWBzn5VrIGMcf2Er6RUIxU5Dz+VaUbQUXDnT3h /p1+chHdIsRsiAs= -----END CERTIFICATE-----Generated at Sat Dec 20 10:47:46 2025 by rpki-client