This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/C61B734AB0AA11E580DBF725C4F9AE02.roa File: C61B734AB0AA11E580DBF725C4F9AE02.roa (raw, json) Hash identifier: PMOwuwycyz1efOwQD9bi4kFPWmLMoM6pZvvwGRZKzzA= Subject key identifier: 5C:52:39:16:E5:58:56:76:A0:3C:C0:0F:E0:26:B7:6E:7D:A6:26:B1 Certificate issuer: /CN=A91B933A/serialNumber=6E8EA1E3240C0BB3D13B4D275C6C0326A568EC87 Certificate serial: 258F Authority key identifier: 6E:8E:A1:E3:24:0C:0B:B3:D1:3B:4D:27:5C:6C:03:26:A5:68:EC:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bo6h4yQMC7PRO00nXGwDJqVo7Ic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/C61B734AB0AA11E580DBF725C4F9AE02.roa Signing time: Sun 14 Dec 2025 15:53:06 +0000 ROA not before: Sun 14 Dec 2025 15:53:06 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 17993 IP address blocks: 110.5.112.0/22 maxlen: 22 110.5.112.0/24 maxlen: 24 110.5.113.0/24 maxlen: 24 110.5.114.0/24 maxlen: 24 110.5.115.0/24 maxlen: 24 202.4.32.0/19 maxlen: 19 202.4.32.0/21 maxlen: 21 202.4.32.0/24 maxlen: 24 202.4.33.0/24 maxlen: 24 202.4.34.0/24 maxlen: 24 202.4.35.0/24 maxlen: 24 202.4.36.0/24 maxlen: 24 202.4.37.0/24 maxlen: 24 202.4.38.0/24 maxlen: 24 202.4.39.0/24 maxlen: 24 202.4.40.0/21 maxlen: 21 202.4.40.0/24 maxlen: 24 202.4.41.0/24 maxlen: 24 202.4.42.0/24 maxlen: 24 202.4.43.0/24 maxlen: 24 202.4.44.0/24 maxlen: 24 202.4.45.0/24 maxlen: 24 202.4.46.0/24 maxlen: 24 202.4.47.0/24 maxlen: 24 202.4.48.0/20 maxlen: 20 202.4.48.0/24 maxlen: 24 202.4.49.0/24 maxlen: 24 202.4.50.0/24 maxlen: 24 202.4.51.0/24 maxlen: 24 202.4.52.0/24 maxlen: 24 202.4.53.0/24 maxlen: 24 202.4.54.0/24 maxlen: 24 202.4.55.0/24 maxlen: 24 202.4.56.0/24 maxlen: 24 202.4.57.0/24 maxlen: 24 202.4.58.0/24 maxlen: 24 202.4.59.0/24 maxlen: 24 202.4.60.0/24 maxlen: 24 202.4.61.0/24 maxlen: 24 202.4.62.0/24 maxlen: 24 202.4.63.0/24 maxlen: 24 203.99.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/bo6h4yQMC7PRO00nXGwDJqVo7Ic.crl rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/bo6h4yQMC7PRO00nXGwDJqVo7Ic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bo6h4yQMC7PRO00nXGwDJqVo7Ic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:35:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9615 (0x258f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B933A, serialNumber=6E8EA1E3240C0BB3D13B4D275C6C0326A568EC87 Validity Not Before: Dec 14 15:53:06 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=693edd62-b7ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:64:ff:72:69:05:a4:02:44:e7:15:2e:e4:2f: 6d:df:db:de:cf:dc:14:2e:9b:82:46:f7:08:31:39: a1:21:82:d5:d1:1c:81:c8:56:56:66:32:05:35:04: 5a:aa:8f:36:ba:70:94:be:88:27:26:c8:65:74:64: 06:52:0a:90:3d:7c:0d:33:a3:9a:12:55:75:3f:f5: 7f:36:24:64:0b:13:83:ab:93:6d:c1:e9:10:95:d3: 60:4a:6f:9e:8d:e7:93:cc:db:80:7f:15:63:73:cf: 3e:6c:23:0d:20:e1:fc:ee:08:0b:01:1f:71:5d:d3: 0c:93:ee:e4:28:b6:ee:8e:f3:2b:23:5a:64:ee:53: 08:4e:8a:f0:43:28:cb:b1:11:03:4b:72:d6:f4:2d: 3d:17:c1:7c:cf:6c:b2:51:44:44:17:98:ab:87:cb: 18:35:fc:92:c5:6b:61:41:20:c2:5f:23:43:82:d6: d6:34:16:48:78:2b:15:77:32:f7:13:e9:b2:64:50: 35:96:74:d3:c5:45:aa:22:59:ad:99:aa:e3:20:e9: e4:c9:b1:b6:f7:99:b1:07:43:6e:3b:03:69:b9:bc: 80:33:21:2b:c7:8c:94:16:80:cf:d5:7f:d1:6d:63: ac:72:87:2b:b6:1e:3c:ba:89:30:e3:b4:56:60:51: e4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:52:39:16:E5:58:56:76:A0:3C:C0:0F:E0:26:B7:6E:7D:A6:26:B1 X509v3 Authority Key Identifier: keyid:6E:8E:A1:E3:24:0C:0B:B3:D1:3B:4D:27:5C:6C:03:26:A5:68:EC:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/bo6h4yQMC7PRO00nXGwDJqVo7Ic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bo6h4yQMC7PRO00nXGwDJqVo7Ic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/C61B734AB0AA11E580DBF725C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.5.112.0/22 202.4.32.0/19 203.99.255.0/24 Signature Algorithm: sha256WithRSAEncryption b0:8c:62:54:96:3f:74:e1:7c:dc:b4:27:a0:62:cd:69:fe:89: b9:20:38:77:e7:73:5d:18:49:de:1a:a5:ca:c8:be:5b:6a:47: 1d:13:7d:e9:28:b8:b0:68:d3:b1:2d:80:ff:13:a4:0a:2f:b5: 88:23:b1:cb:c9:cb:bc:22:7f:d7:71:aa:7d:0d:a4:b0:bc:6d: 29:91:4e:79:c6:af:4e:0c:b2:85:25:f2:33:10:26:22:3e:bd: 5d:86:76:53:5c:7e:25:43:b2:85:93:e1:e4:c2:1e:a3:dc:21: 0f:11:76:5b:f9:4d:24:4c:52:42:af:5b:86:6b:1d:d6:61:77: df:a5:a9:8c:cb:8c:5d:4d:04:90:55:d9:1f:f6:ad:05:2e:05: 5b:24:48:80:57:16:82:57:b9:5d:fc:5b:40:5c:8b:64:04:4b: f7:48:a9:4e:d3:3e:d4:77:fa:e4:4b:98:8f:b3:e1:1f:54:2c: 16:32:6f:80:d0:98:f2:58:33:a9:25:e6:45:d4:2e:4f:74:04: 3a:a6:38:e1:5b:c8:e3:06:f1:5b:2c:ba:6a:37:5d:2e:90:a9: f5:e9:9f:fe:3d:23:5f:3a:13:b2:a9:88:b8:ae:fd:08:65:6a: 97:1a:57:28:5e:b9:57:28:2e:db:61:c6:f1:be:41:07:f9:62: d2:c5:0c:d9 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICJY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkzM0ExMTAvBgNVBAUTKDZFOEVBMUUzMjQwQzBCQjNEMTNCNEQyNzVDNkMwMzI2 QTU2OEVDODcwHhcNMjUxMjE0MTU1MzA2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNlZGQ2Mi1iN2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7WT/cmkFpAJE5xUu5C9t39vez9wULpuCRvcIMTmhIYLV0RyByFZWZjIFNQRa qo82unCUvognJshldGQGUgqQPXwNM6OaElV1P/V/NiRkCxODq5NtwekQldNgSm+e jeeTzNuAfxVjc88+bCMNIOH87ggLAR9xXdMMk+7kKLbujvMrI1pk7lMITorwQyjL sREDS3LW9C09F8F8z2yyUUREF5irh8sYNfySxWthQSDCXyNDgtbWNBZIeCsVdzL3 E+myZFA1lnTTxUWqIlmtmarjIOnkybG295mxB0NuOwNpubyAMyErx4yUFoDP1X/R bWOscocrth48uokw47RWYFHkXQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFxSORbl WFZ2oDzAD+Amt259piaxMB8GA1UdIwQYMBaAFG6OoeMkDAuz0TtNJ1xsAyalaOyH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTMzQS81M0ZFMUVGQTJC NjQxMUU1OEEyRjA3NTRDNEY5QUUwMi9ibzZoNHlRTUM3UFJPMDBuWEd3REpxVm83 SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JvNmg0eVFNQzdQUk8wMG5YR3dESnFWbzdJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkzM0EvNTNGRTFFRkEyQjY0MTFFNThBMkYwNzU0QzRGOUFFMDIvQzYxQjczNEFC MEFBMTFFNTgwREJGNzI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJuBXADBAXKBCADBADLY/8wDQYJKoZIhvcNAQELBQADggEB ALCMYlSWP3ThfNy0J6BizWn+ibkgOHfnc10YSd4apcrIvltqRx0TfekouLBo07Et gP8TpAovtYgjscvJy7wif9dxqn0NpLC8bSmRTnnGr04MsoUl8jMQJiI+vV2GdlNc fiVDsoWT4eTCHqPcIQ8Rdlv5TSRMUkKvW4ZrHdZhd9+lqYzLjF1NBJBV2R/2rQUu BVskSIBXFoJXuV38W0Bci2QES/dIqU7TPtR3+uRLmI+z4R9ULBYyb4DQmPJYM6kl 5kXULk90BDqmOOFbyOMG8Vssumo3XS6QqfXpn/49I186E7KpiLiu/QhlapcaVyhe uVcoLtthxvG+QQf5YtLFDNk= -----END CERTIFICATE-----Generated at Mon Dec 22 20:42:24 2025 by rpki-client