This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C49BA/E367F6C6BEF511F09B7E7209C4F9AE02/72F530E2BEF611F08C939B16C4F9AE02.roa File: 72F530E2BEF611F08C939B16C4F9AE02.roa (raw, json) Hash identifier: OVDXYXiPK6DUjh7GuuPjYLe4oNz6kILt+KBikGM4NtM= Subject key identifier: C5:4A:09:0F:54:27:91:40:80:5A:D4:DF:27:59:73:A5:1C:06:0E:7B Certificate issuer: /CN=A91C49BA/serialNumber=E87903017AB1F06A9CB46AB021BD0B921C9AFA88 Certificate serial: 02 Authority key identifier: E8:79:03:01:7A:B1:F0:6A:9C:B4:6A:B0:21:BD:0B:92:1C:9A:FA:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6HkDAXqx8GqctGqwIb0Lkhya-og.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C49BA/E367F6C6BEF511F09B7E7209C4F9AE02/72F530E2BEF611F08C939B16C4F9AE02.roa Signing time: Tue 11 Nov 2025 12:03:35 +0000 ROA not before: Tue 11 Nov 2025 12:03:35 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 154024 IP address blocks: 138.252.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C49BA/E367F6C6BEF511F09B7E7209C4F9AE02/6HkDAXqx8GqctGqwIb0Lkhya-og.crl rsync://rpki.apnic.net/member_repository/A91C49BA/E367F6C6BEF511F09B7E7209C4F9AE02/6HkDAXqx8GqctGqwIb0Lkhya-og.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6HkDAXqx8GqctGqwIb0Lkhya-og.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 06:08:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C49BA, serialNumber=E87903017AB1F06A9CB46AB021BD0B921C9AFA88 Validity Not Before: Nov 11 12:03:35 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69132617-55cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:57:ec:67:18:54:03:ed:5c:1d:ff:46:cd:b6: a7:11:62:18:11:cf:cf:cd:9e:24:87:40:f6:87:6a: 61:4b:3f:87:63:e8:d9:db:52:b3:68:83:48:ea:74: af:31:7f:f3:53:71:5d:a5:b2:42:8a:30:d5:29:5e: 4a:3e:6a:62:d2:14:39:dc:b1:4c:48:74:7e:4c:28: 1f:24:a1:a8:8e:f4:77:8f:3a:b1:c3:65:1c:92:a4: 12:87:d8:48:a9:9e:df:f2:7d:71:27:9b:01:2d:17: dd:74:6e:7e:9e:34:53:ec:76:a3:37:9e:2e:0f:dc: a1:45:d9:fc:48:18:9c:9a:ce:b3:50:4a:cc:3b:4b: 7f:54:2b:20:6a:c9:c9:4f:cb:9a:e9:61:5d:8b:a4: b2:44:00:01:56:30:4a:95:38:d5:1c:56:3d:bf:ba: 61:69:ab:d8:6e:5a:86:cd:10:b6:ca:d2:1e:0d:5f: 18:98:e2:8e:30:ce:d2:bc:62:0d:72:bd:89:59:29: d3:90:c5:59:8a:6e:4b:7c:c0:ba:ad:29:65:d0:8b: 98:ba:90:5c:47:3a:b6:bb:2a:94:6f:e8:11:98:da: b4:f7:ea:13:7a:6e:63:fd:09:8b:ef:d1:70:0e:77: 5a:6b:49:07:0f:b3:0b:19:4a:d7:c8:7b:0f:3d:7b: 32:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:4A:09:0F:54:27:91:40:80:5A:D4:DF:27:59:73:A5:1C:06:0E:7B X509v3 Authority Key Identifier: keyid:E8:79:03:01:7A:B1:F0:6A:9C:B4:6A:B0:21:BD:0B:92:1C:9A:FA:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C49BA/E367F6C6BEF511F09B7E7209C4F9AE02/6HkDAXqx8GqctGqwIb0Lkhya-og.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6HkDAXqx8GqctGqwIb0Lkhya-og.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C49BA/E367F6C6BEF511F09B7E7209C4F9AE02/72F530E2BEF611F08C939B16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.170.0/23 Signature Algorithm: sha256WithRSAEncryption a1:ac:d6:ed:33:13:ba:a4:83:32:72:57:47:db:dc:b7:ad:47: 8f:b0:3a:b4:30:7a:35:9f:0a:79:14:e3:ac:9c:c2:7a:8a:f2: 1e:a6:ff:59:57:bf:db:56:2d:7f:fd:d6:88:52:f9:5a:9c:d5: d6:66:95:a6:56:6f:4f:ec:fd:03:a1:09:a8:71:ce:9f:9f:c2: f8:48:fd:57:14:8f:07:d7:b2:3f:15:d2:1a:15:3b:46:ae:59: 6e:73:4b:30:4f:48:52:80:d2:f7:cd:cd:8a:64:29:62:2a:43: 3a:aa:ed:b0:70:28:08:06:fb:bd:46:55:66:57:3e:77:d4:fe: b2:62:bb:8b:f1:a0:40:8c:e7:6f:5f:79:76:49:3e:a6:d7:af: fc:94:e0:de:25:cf:51:e6:19:c0:48:aa:11:48:f9:0a:da:5d: 57:7c:34:7b:71:78:1d:48:ee:63:fe:2a:5c:d7:34:d8:04:50: 50:0d:be:e7:3f:16:72:a4:6f:f7:cf:fe:a0:0d:d9:f4:cb:ca: 75:50:0b:4b:83:db:d7:3e:a0:05:1f:be:9b:5d:41:48:01:94: 9e:7a:75:0d:4c:4e:ed:b7:24:af:21:42:b1:52:42:55:28:da: df:db:a6:8e:91:b2:ad:d3:e7:b0:37:c8:f7:e0:d5:37:25:39: 5c:85:5d:6e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDlCQTExMC8GA1UEBRMoRTg3OTAzMDE3QUIxRjA2QTlDQjQ2QUIwMjFCRDBCOTIx QzlBRkE4ODAeFw0yNTExMTExMjAzMzVaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MTMyNjE3LTU1Y2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDyV+xnGFQD7Vwd/0bNtqcRYhgRz8/NniSHQPaHamFLP4dj6NnbUrNog0jqdK8x f/NTcV2lskKKMNUpXko+amLSFDncsUxIdH5MKB8koaiO9HePOrHDZRySpBKH2Eip nt/yfXEnmwEtF910bn6eNFPsdqM3ni4P3KFF2fxIGJyazrNQSsw7S39UKyBqyclP y5rpYV2LpLJEAAFWMEqVONUcVj2/umFpq9huWobNELbK0h4NXxiY4o4wztK8Yg1y vYlZKdOQxVmKbkt8wLqtKWXQi5i6kFxHOra7KpRv6BGY2rT36hN6bmP9CYvv0XAO d1prSQcPswsZStfIew89ezJ1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUxUoJD1Qn kUCAWtTfJ1lzpRwGDnswHwYDVR0jBBgwFoAU6HkDAXqx8GqctGqwIb0Lkhya+ogw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0OUJBL0UzNjdGNkM2QkVG NTExRjA5QjdFNzIwOUM0RjlBRTAyLzZIa0RBWHF4OEdxY3RHcXdJYjBMa2h5YS1v Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNkhrREFYcXg4R3FjdEdxd0liMExraHlhLW9nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDlCQS9FMzY3RjZDNkJFRjUxMUYwOUI3RTcyMDlDNEY5QUUwMi83MkY1MzBFMkJF RjYxMUYwOEM5MzlCMTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8qjANBgkqhkiG9w0BAQsFAAOCAQEAoazW7TMTuqSDMnJX R9vct61Hj7A6tDB6NZ8KeRTjrJzCeoryHqb/WVe/21Ytf/3WiFL5WpzV1maVplZv T+z9A6EJqHHOn5/C+Ej9VxSPB9eyPxXSGhU7Rq5ZbnNLME9IUoDS983NimQpYipD OqrtsHAoCAb7vUZVZlc+d9T+smK7i/GgQIznb195dkk+ptev/JTg3iXPUeYZwEiq EUj5CtpdV3w0e3F4HUjuY/4qXNc02ARQUA2+5z8WcqRv98/+oA3Z9MvKdVALS4Pb 1z6gBR++m11BSAGUnnp1DUxO7bckryFCsVJCVSja39umjpGyrdPnsDfI9+DVNyU5 XIVdbg== -----END CERTIFICATE-----Generated at Wed Dec 3 14:52:23 2025 by rpki-client