This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/7B8BE75E8FBE11EA9797847DC4F9AE02.roa File: 7B8BE75E8FBE11EA9797847DC4F9AE02.roa (raw, json) Hash identifier: 2sxpt/g5gNqtTqTR0//y7KZEd6jiqpJM3aKw8HB7Xls= Subject key identifier: 2C:18:61:0C:8F:67:22:53:1C:D2:24:C7:9C:D3:3E:A0:5E:A4:53:20 Certificate issuer: /CN=A91C1A14/serialNumber=598DD5A39AE477658AD5BCBFE36264A1A61D6708 Certificate serial: 0A13 Authority key identifier: 59:8D:D5:A3:9A:E4:77:65:8A:D5:BC:BF:E3:62:64:A1:A6:1D:67:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/7B8BE75E8FBE11EA9797847DC4F9AE02.roa Signing time: Sun 04 Jan 2026 20:16:12 +0000 ROA not before: Sun 04 Jan 2026 20:16:12 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 136030 IP address blocks: 43.225.98.0/24 maxlen: 24 43.225.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.crl rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 19:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2579 (0xa13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A14, serialNumber=598DD5A39AE477658AD5BCBFE36264A1A61D6708 Validity Not Before: Jan 4 20:16:12 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=695aca8c-daf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b2:e9:05:c8:d0:ab:fb:57:41:6a:a1:78:be: d6:11:1e:b9:2d:a7:ef:02:98:cc:18:ca:44:9e:c5: 35:ef:94:0a:48:9a:7b:6b:70:88:f0:6e:aa:80:2a: 1e:5d:e4:19:7c:99:76:35:58:7f:12:7b:d7:fa:28: 30:a0:4f:0b:07:83:7a:dd:f0:a6:41:bc:81:60:66: bb:b5:33:87:1b:61:16:69:26:46:32:3a:e8:b1:a4: 0b:bb:43:61:2d:37:0a:e8:7d:28:ad:80:d5:8f:c8: af:1e:f9:31:6b:88:ae:bc:45:99:d4:5b:ac:9e:cd: 5f:fb:b7:cb:f3:27:12:92:c4:99:57:9d:c2:77:78: dd:ae:0b:16:4e:93:39:3f:23:69:e3:ca:4f:23:06: 8a:f8:a6:f2:e2:e1:1d:42:0b:09:e2:0d:25:ae:b6: f3:a2:b2:00:25:4d:f5:56:fd:2f:17:2c:26:58:cc: 49:70:92:75:97:66:cf:b4:a9:44:56:e9:f5:cb:63: 1f:06:60:c0:0c:98:ed:de:7a:bb:41:a6:1e:0f:65: 71:19:d4:da:79:20:20:b8:a3:86:19:81:38:1c:b9: 76:11:cc:7f:19:35:5e:45:ef:16:dc:66:66:79:ab: 89:63:b0:69:9e:3e:1c:5c:cb:bb:38:46:85:96:9d: 4f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:18:61:0C:8F:67:22:53:1C:D2:24:C7:9C:D3:3E:A0:5E:A4:53:20 X509v3 Authority Key Identifier: keyid:59:8D:D5:A3:9A:E4:77:65:8A:D5:BC:BF:E3:62:64:A1:A6:1D:67:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/7B8BE75E8FBE11EA9797847DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.98.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:96:ad:bb:7b:0a:76:9a:72:b7:8f:4f:56:07:ec:89:ec:af: ca:8a:11:f4:09:47:9c:50:96:39:1e:42:f8:93:fd:22:fd:17: d9:83:91:5f:8d:18:1d:8b:c5:89:f7:d5:93:1c:e4:f2:ce:b0: 13:a6:62:82:a8:2d:8d:5c:96:64:c7:fb:96:97:fb:24:d6:95: 86:f1:6a:d7:6f:51:bf:47:03:5d:94:8d:7c:86:b8:3f:2a:9e: e5:f9:f0:72:f0:51:69:82:ed:0e:b1:ad:68:6d:fa:cf:d1:76: 83:d5:33:d0:b3:ac:70:5b:f1:a9:43:dc:34:8d:98:d9:11:bf: 49:57:65:17:19:33:75:ab:80:f7:d0:95:04:37:64:60:8f:22: 58:3b:26:fc:ae:99:e1:dd:65:6a:16:44:15:1a:ff:44:df:78: 25:16:83:dd:c8:60:d8:1b:34:8a:08:f7:25:fc:a3:a3:9e:a7: 8d:42:f4:af:44:cc:21:97:6c:33:e2:54:2e:3c:f1:17:2f:fd: 73:41:51:03:d8:9a:28:c5:89:12:29:5e:f4:e8:1b:45:d5:02: 8b:05:15:4c:72:fd:6e:b2:e4:82:e3:44:d9:eb:f8:36:a2:18: 49:b6:29:5d:d8:c3:2d:3c:4a:73:24:7d:e8:d5:98:4e:9d:4c: 42:b7:73:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICChMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QzFBMTQxMTAvBgNVBAUTKDU5OERENUEzOUFFNDc3NjU4QUQ1QkNCRkUzNjI2NEEx QTYxRDY3MDgwHhcNMjYwMTA0MjAxNjEyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVhY2E4Yy1kYWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubLpBcjQq/tXQWqheL7WER65LafvApjMGMpEnsU175QKSJp7a3CI8G6qgCoe XeQZfJl2NVh/EnvX+igwoE8LB4N63fCmQbyBYGa7tTOHG2EWaSZGMjrosaQLu0Nh LTcK6H0orYDVj8ivHvkxa4iuvEWZ1Fusns1f+7fL8ycSksSZV53Cd3jdrgsWTpM5 PyNp48pPIwaK+Kby4uEdQgsJ4g0lrrbzorIAJU31Vv0vFywmWMxJcJJ1l2bPtKlE Vun1y2MfBmDADJjt3nq7QaYeD2VxGdTaeSAguKOGGYE4HLl2Ecx/GTVeRe8W3GZm eauJY7Bpnj4cXMu7OEaFlp1P+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCwYYQyP ZyJTHNIkx5zTPqBepFMgMB8GA1UdIwQYMBaAFFmN1aOa5HdlitW8v+NiZKGmHWcI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUExNC9GN0U4NjQ0NjhG QkMxMUVBQThDMzEyN0JDNEY5QUUwMi9XWTNWbzVya2QyV0sxYnlfNDJKa29hWWRa d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dZM1ZvNXJrZDJXSzFieV80Mkprb2FZZFp3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFBMTQvRjdFODY0NDY4RkJDMTFFQUE4QzMxMjdCQzRGOUFFMDIvN0I4QkU3NUU4 RkJFMTFFQTk3OTc4NDdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEr4WIwDQYJKoZIhvcNAQELBQADggEBAIuWrbt7CnaacreP T1YH7Insr8qKEfQJR5xQljkeQviT/SL9F9mDkV+NGB2LxYn31ZMc5PLOsBOmYoKo LY1clmTH+5aX+yTWlYbxatdvUb9HA12UjXyGuD8qnuX58HLwUWmC7Q6xrWht+s/R doPVM9CzrHBb8alD3DSNmNkRv0lXZRcZM3WrgPfQlQQ3ZGCPIlg7JvyumeHdZWoW RBUa/0TfeCUWg93IYNgbNIoI9yX8o6Oep41C9K9EzCGXbDPiVC488Rcv/XNBUQPY mijFiRIpXvToG0XVAosFFUxy/W6y5ILjRNnr+DaiGEm2KV3Ywy08SnMkfejVmE6d TEK3czg= -----END CERTIFICATE-----Generated at Mon Jan 26 21:53:34 2026 by rpki-client