This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/E21E1C6CF3EE11ECBAE10054C4F9AE02.roa File: E21E1C6CF3EE11ECBAE10054C4F9AE02.roa (raw, json) Hash identifier: UiQJQcjiTKGUKZaMNBKg71L13IK59w5XS6QCL7nnWSE= Subject key identifier: D2:58:3F:DB:73:AE:64:94:97:DD:0D:FF:EF:55:41:CB:F2:7E:BA:11 Certificate issuer: /CN=A91C5B46/serialNumber=56CD32D13F8CAE1E92F9C97F395F1A23ABB9C6F7 Certificate serial: 25B4 Authority key identifier: 56:CD:32:D1:3F:8C:AE:1E:92:F9:C9:7F:39:5F:1A:23:AB:B9:C6:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/E21E1C6CF3EE11ECBAE10054C4F9AE02.roa Signing time: Wed 12 Mar 2025 15:42:53 +0000 ROA not before: Wed 12 Mar 2025 15:42:53 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 4755 IP address blocks: 123.136.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.crl rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9652 (0x25b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5B46, serialNumber=56CD32D13F8CAE1E92F9C97F395F1A23ABB9C6F7 Validity Not Before: Mar 12 15:42:53 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67d1ab7d-ffa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b6:1c:93:b8:3f:37:ef:7c:9f:b4:1e:be:10: bd:db:7a:e4:7d:83:3a:2d:3c:5c:75:10:40:9a:0e: 82:3e:9d:2d:e8:4a:07:a0:eb:4b:27:10:5c:7e:2e: 9e:72:47:87:69:16:d4:15:c4:03:8c:07:02:35:d7: 9b:5c:81:8b:f0:2a:00:64:bd:25:25:21:a4:a7:77: 93:8a:ed:c6:c1:35:8d:a0:17:a4:0e:06:5b:01:97: 4e:c9:88:67:a9:e0:94:a4:97:a1:13:6f:bd:53:c0: 88:21:4f:a2:48:32:1b:45:61:b0:14:4a:f5:eb:70: 6f:a6:06:9d:4a:ec:49:a3:6d:b2:03:a6:c5:b6:65: 10:28:a2:1e:94:22:0b:cb:0e:15:76:0f:f7:f2:3c: 61:a8:c3:7d:d3:f7:25:02:fd:c5:c1:d7:b3:25:99: c4:d0:6f:c2:c6:e0:ea:6c:c4:ed:25:52:08:31:57: 15:67:c5:59:a2:5a:4c:a2:b9:85:17:3e:7c:73:65: 48:59:0b:24:12:49:47:9f:12:fb:6b:50:2c:fc:d8: 2b:65:ef:f8:43:76:80:99:78:a2:32:09:0e:26:e3: a5:8a:34:1e:c9:d0:ea:a3:9b:1f:83:3d:5a:ae:53: d4:81:c2:70:6d:d5:51:7b:35:99:79:03:b6:a0:c6: da:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:58:3F:DB:73:AE:64:94:97:DD:0D:FF:EF:55:41:CB:F2:7E:BA:11 X509v3 Authority Key Identifier: keyid:56:CD:32:D1:3F:8C:AE:1E:92:F9:C9:7F:39:5F:1A:23:AB:B9:C6:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/E21E1C6CF3EE11ECBAE10054C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.136.16.0/21 Signature Algorithm: sha256WithRSAEncryption 53:f4:bb:ee:c7:92:85:e9:70:3a:c2:8d:cc:2d:06:5f:f6:03: 17:94:f1:28:5c:ea:ed:b0:9e:2c:ff:de:55:89:1f:0f:6a:50: 18:6c:c1:55:4f:e6:a0:f9:b6:df:79:7a:df:62:88:da:60:09: 04:4c:7a:46:d9:a3:ec:30:01:45:cf:ac:80:5d:45:a6:2d:c7: a4:65:c4:8a:e4:d9:42:65:4c:62:63:f9:58:a2:e7:56:1e:0a: dc:17:b1:f7:4f:5f:1a:f7:44:82:a8:30:c8:5e:fa:74:f1:43: 1d:ac:4c:33:17:c0:8f:32:0c:bb:cf:22:c4:e7:4a:be:06:d6: c1:03:55:9b:4b:ae:db:82:25:99:a2:84:83:62:40:24:96:bd: 80:3f:16:07:0c:a0:26:81:bf:65:6c:6d:ce:06:f3:af:07:77: b1:5f:84:f2:99:6f:89:43:08:e9:df:fb:df:b0:99:08:39:2a: 0f:bc:55:32:dd:c9:34:ac:7d:45:e6:5e:04:c5:bf:4e:26:fe: a6:d3:4c:ef:0e:8a:54:c4:7e:3f:af:6c:dd:7e:38:a2:fb:11: 7d:ad:5e:b9:5f:70:3e:03:4e:98:52:5f:b7:a4:f2:3d:08:36: 8c:26:8b:aa:80:e1:15:6b:9c:0b:01:27:63:42:29:28:0e:94: bd:13:af:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVCNDYxMTAvBgNVBAUTKDU2Q0QzMkQxM0Y4Q0FFMUU5MkY5Qzk3RjM5NUYxQTIz QUJCOUM2RjcwHhcNMjUwMzEyMTU0MjUzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2QxYWI3ZC1mZmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbYck7g/N+98n7QevhC923rkfYM6LTxcdRBAmg6CPp0t6EoHoOtLJxBcfi6e ckeHaRbUFcQDjAcCNdebXIGL8CoAZL0lJSGkp3eTiu3GwTWNoBekDgZbAZdOyYhn qeCUpJehE2+9U8CIIU+iSDIbRWGwFEr163BvpgadSuxJo22yA6bFtmUQKKIelCIL yw4Vdg/38jxhqMN90/clAv3FwdezJZnE0G/CxuDqbMTtJVIIMVcVZ8VZolpMormF Fz58c2VIWQskEklHnxL7a1As/NgrZe/4Q3aAmXiiMgkOJuOlijQeydDqo5sfgz1a rlPUgcJwbdVRezWZeQO2oMbaJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNJYP9tz rmSUl90N/+9VQcvyfroRMB8GA1UdIwQYMBaAFFbNMtE/jK4ekvnJfzlfGiOrucb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUI0Ni9CQTBCODQzMDAy ODgxMUU1QUUxRTQ3NjFDNEY5QUUwMi9WczB5MFQtTXJoNlMtY2xfT1Y4YUk2dTV4 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZzMHkwVC1Ncmg2Uy1jbF9PVjhhSTZ1NXh2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzVCNDYvQkEwQjg0MzAwMjg4MTFFNUFFMUU0NzYxQzRGOUFFMDIvRTIxRTFDNkNG M0VFMTFFQ0JBRTEwMDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN7iBAwDQYJKoZIhvcNAQELBQADggEBAFP0u+7HkoXpcDrC jcwtBl/2AxeU8Shc6u2wniz/3lWJHw9qUBhswVVP5qD5tt95et9iiNpgCQRMekbZ o+wwAUXPrIBdRaYtx6RlxIrk2UJlTGJj+Vii51YeCtwXsfdPXxr3RIKoMMhe+nTx Qx2sTDMXwI8yDLvPIsTnSr4G1sEDVZtLrtuCJZmihINiQCSWvYA/FgcMoCaBv2Vs bc4G868Hd7FfhPKZb4lDCOnf+9+wmQg5Kg+8VTLdyTSsfUXmXgTFv04m/qbTTO8O ilTEfj+vbN1+OKL7EX2tXrlfcD4DTphSX7ek8j0INowmi6qA4RVrnAsBJ2NCKSgO lL0TrzE= -----END CERTIFICATE-----Generated at Fri Dec 5 18:58:44 2025 by rpki-client