This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/AFB65238AFDC11EAB3910C71C4F9AE02.roa File: AFB65238AFDC11EAB3910C71C4F9AE02.roa (raw, json) Hash identifier: 9Sq4TbQc8GumqX8uTYAB6EAnXcYzZ1xJ5w8RgK1VPJ4= Subject key identifier: 8C:C7:F5:C9:77:EF:DC:D1:EE:29:63:8A:8A:A3:0F:E7:E8:89:08:C0 Certificate issuer: /CN=A91B933A/serialNumber=6E8EA1E3240C0BB3D13B4D275C6C0326A568EC87 Certificate serial: 2590 Authority key identifier: 6E:8E:A1:E3:24:0C:0B:B3:D1:3B:4D:27:5C:6C:03:26:A5:68:EC:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bo6h4yQMC7PRO00nXGwDJqVo7Ic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/AFB65238AFDC11EAB3910C71C4F9AE02.roa Signing time: Sun 14 Dec 2025 15:53:07 +0000 ROA not before: Sun 14 Dec 2025 15:53:07 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 23657 IP address blocks: 202.4.44.0/24 maxlen: 24 202.4.45.0/24 maxlen: 24 202.4.46.0/24 maxlen: 24 202.4.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/bo6h4yQMC7PRO00nXGwDJqVo7Ic.crl rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/bo6h4yQMC7PRO00nXGwDJqVo7Ic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bo6h4yQMC7PRO00nXGwDJqVo7Ic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9616 (0x2590) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B933A, serialNumber=6E8EA1E3240C0BB3D13B4D275C6C0326A568EC87 Validity Not Before: Dec 14 15:53:07 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=693edd63-4e5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:08:3a:d4:bc:20:2f:64:ab:c4:5e:b6:e1:bf: f8:d8:bb:5b:6a:0b:94:f1:00:62:3f:f3:d6:55:cc: 5a:9d:bd:0f:ab:d4:58:d6:68:23:38:bd:c2:bd:24: a5:13:31:c8:77:81:08:7f:59:af:cc:5e:28:f6:0b: 34:7d:ad:b3:cc:73:18:1d:1a:87:e2:01:65:47:9f: a9:e2:19:27:54:43:2e:dd:11:5b:84:8e:ad:01:50: 3b:b9:68:31:0c:96:73:84:43:50:5a:9c:cd:5a:51: 90:fc:6e:3d:26:e4:63:3f:9c:88:2d:6e:f9:8d:cd: 3e:ee:95:14:24:df:ba:33:cc:b0:94:6e:5e:8a:85: 8c:06:9e:54:97:09:be:b2:25:7f:b5:31:9a:ce:54: bb:52:62:ab:87:d3:16:c4:3b:66:00:cf:ec:62:00: 68:fa:85:72:26:04:4f:d9:9b:09:63:80:94:88:f0: c2:e8:71:f9:d1:fd:0d:23:24:2e:8a:54:48:58:48: bf:3b:1a:e2:09:b6:eb:12:ab:e2:3b:ed:34:e0:82: 03:9d:ea:4d:c6:a0:3e:ab:10:ad:93:19:bf:a1:f6: 55:81:df:af:c0:60:ae:5f:d7:b2:c9:d1:db:a8:25: fa:49:a2:26:f7:44:e9:6a:8c:66:8d:43:1f:82:40: 0e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:C7:F5:C9:77:EF:DC:D1:EE:29:63:8A:8A:A3:0F:E7:E8:89:08:C0 X509v3 Authority Key Identifier: keyid:6E:8E:A1:E3:24:0C:0B:B3:D1:3B:4D:27:5C:6C:03:26:A5:68:EC:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/bo6h4yQMC7PRO00nXGwDJqVo7Ic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bo6h4yQMC7PRO00nXGwDJqVo7Ic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/AFB65238AFDC11EAB3910C71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.4.44.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:bb:6d:41:e0:96:ef:62:c8:0c:45:a8:4a:89:4d:d1:17:24: 6d:09:cb:86:2a:99:dc:ae:24:90:92:f1:cc:60:96:d9:3e:02: 4a:4f:f6:d8:e8:e1:84:2b:46:cd:55:b5:07:b5:3c:96:37:33: 51:6d:1a:b7:27:3d:53:8c:c9:3d:3e:09:88:85:5a:01:c6:71: 14:7c:23:52:91:1a:f3:ac:10:b2:85:de:9b:57:58:4b:04:90: 27:3f:79:26:93:57:9f:18:54:b9:22:79:f8:ba:6c:e2:e2:d8: 33:e3:83:17:4c:59:0f:13:31:1d:a9:ad:d6:5c:91:20:81:ce: ac:77:14:4c:fc:5b:fd:4e:46:7c:60:dd:bd:b4:72:74:bf:e2: c3:c6:7f:87:fd:5f:1c:06:67:60:b3:d5:b2:50:e3:41:c4:0d: 4a:81:5f:4a:0c:25:79:fa:c8:8f:af:e7:9d:45:d6:5c:71:55: 49:f4:8b:26:59:7b:7d:54:a1:5d:eb:4f:31:25:c7:1b:05:99: d7:86:c8:8a:38:7a:81:e7:12:7b:79:a4:d5:bd:bf:30:47:0e: e5:f1:cd:e3:12:cd:4d:10:01:69:82:22:b9:78:34:90:7a:0a: df:e1:c2:ef:bd:f2:55:cd:d3:1c:64:34:ad:16:f8:bf:6b:a6: 08:e5:51:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkzM0ExMTAvBgNVBAUTKDZFOEVBMUUzMjQwQzBCQjNEMTNCNEQyNzVDNkMwMzI2 QTU2OEVDODcwHhcNMjUxMjE0MTU1MzA3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNlZGQ2My00ZTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Qg61LwgL2SrxF624b/42LtbaguU8QBiP/PWVcxanb0Pq9RY1mgjOL3CvSSl EzHId4EIf1mvzF4o9gs0fa2zzHMYHRqH4gFlR5+p4hknVEMu3RFbhI6tAVA7uWgx DJZzhENQWpzNWlGQ/G49JuRjP5yILW75jc0+7pUUJN+6M8ywlG5eioWMBp5Ulwm+ siV/tTGazlS7UmKrh9MWxDtmAM/sYgBo+oVyJgRP2ZsJY4CUiPDC6HH50f0NIyQu ilRIWEi/OxriCbbrEqviO+004IIDnepNxqA+qxCtkxm/ofZVgd+vwGCuX9eyydHb qCX6SaIm90TpaoxmjUMfgkAOiQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIzH9cl3 79zR7iljioqjD+foiQjAMB8GA1UdIwQYMBaAFG6OoeMkDAuz0TtNJ1xsAyalaOyH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTMzQS81M0ZFMUVGQTJC NjQxMUU1OEEyRjA3NTRDNEY5QUUwMi9ibzZoNHlRTUM3UFJPMDBuWEd3REpxVm83 SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JvNmg0eVFNQzdQUk8wMG5YR3dESnFWbzdJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkzM0EvNTNGRTFFRkEyQjY0MTFFNThBMkYwNzU0QzRGOUFFMDIvQUZCNjUyMzhB RkRDMTFFQUIzOTEwQzcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKBCwwDQYJKoZIhvcNAQELBQADggEBAJy7bUHglu9iyAxF qEqJTdEXJG0Jy4YqmdyuJJCS8cxgltk+AkpP9tjo4YQrRs1VtQe1PJY3M1FtGrcn PVOMyT0+CYiFWgHGcRR8I1KRGvOsELKF3ptXWEsEkCc/eSaTV58YVLkiefi6bOLi 2DPjgxdMWQ8TMR2prdZckSCBzqx3FEz8W/1ORnxg3b20cnS/4sPGf4f9XxwGZ2Cz 1bJQ40HEDUqBX0oMJXn6yI+v551F1lxxVUn0iyZZe31UoV3rTzElxxsFmdeGyIo4 eoHnEnt5pNW9vzBHDuXxzeMSzU0QAWmCIrl4NJB6Ct/hwu+98lXN0xxkNK0W+L9r pgjlURo= -----END CERTIFICATE-----Generated at Mon Dec 22 17:35:44 2025 by rpki-client