This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/A52438CC4D7B11EE9DA62A3BC4F9AE02.roa File: A52438CC4D7B11EE9DA62A3BC4F9AE02.roa (raw, json) Hash identifier: 11LoPdlCQwQzfirTo9g4etvp4+K/4Sl7bcNuvgUnk/M= Subject key identifier: 3F:5A:B5:B2:97:86:3D:38:11:68:37:7B:EC:44:6D:D3:1D:F9:FF:A4 Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 025F Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/A52438CC4D7B11EE9DA62A3BC4F9AE02.roa Signing time: Thu 05 Jun 2025 03:10:51 +0000 ROA not before: Thu 05 Jun 2025 03:10:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 54252 IP address blocks: 202.134.230.0/24 maxlen: 24 202.134.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:48:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550, serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: Jun 5 03:10:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68410abb-9d89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:2b:78:e5:93:9b:88:f5:a2:d9:31:35:74:b0: c5:a0:8b:60:92:7f:d9:c0:52:8b:a2:eb:0c:97:35: dc:e1:94:54:59:91:0f:55:8a:0e:4c:75:ff:c9:71: 4c:6e:dd:85:4f:17:5a:11:e6:3f:7f:22:ac:39:79: 55:ba:b0:f4:01:6f:8f:eb:08:83:6b:53:94:c0:cb: f1:27:7e:8b:15:d5:d8:9e:69:59:f1:c6:e4:64:3e: 05:a6:20:03:8f:bd:98:c0:aa:4c:1d:6b:4e:4a:b8: 89:17:a8:ce:22:e7:8c:19:ea:bc:15:7c:72:cd:56: 28:39:f4:f1:28:06:39:55:44:05:3d:17:d1:98:da: a7:f4:fd:4b:dc:68:3f:25:d5:f6:36:53:5a:ac:cd: 40:b5:be:ef:4c:88:5d:e5:48:10:a2:19:10:45:d2: 09:fc:00:a8:26:d0:b1:98:80:dc:d9:31:77:61:33: a9:01:73:93:e5:5d:80:dd:04:3f:28:58:01:f6:42: 81:d5:53:d5:ed:f4:1e:8c:3f:86:54:7e:6f:6f:61: 2e:98:0e:fd:e6:70:0d:24:6e:d3:22:00:3f:03:9a: 35:d9:b4:cf:b1:b7:00:63:fb:de:0b:89:ef:cd:c9: 59:7b:39:79:26:f2:d6:87:57:c3:72:72:64:4f:43: 79:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:5A:B5:B2:97:86:3D:38:11:68:37:7B:EC:44:6D:D3:1D:F9:FF:A4 X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/A52438CC4D7B11EE9DA62A3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.230.0/23 Signature Algorithm: sha256WithRSAEncryption a6:38:07:27:18:ff:a4:4c:5b:b8:8e:a6:8b:bd:bf:31:c2:a9: fc:5e:c9:f6:9d:71:73:c5:3e:d5:65:dc:ca:48:6d:75:6b:7e: 39:75:a5:79:7c:ab:ea:3d:42:16:0a:00:ea:6b:7f:98:6a:c4: 3a:7d:35:7f:76:85:d7:80:36:bc:f0:c4:8b:6d:93:47:44:bd: 89:34:cf:0f:97:77:04:f9:a2:7a:9d:fe:0d:39:0a:56:c4:09: 26:57:a2:38:bf:78:75:90:d0:1a:3f:92:06:20:82:81:77:55: 13:63:b3:10:d7:ef:68:41:24:b6:bf:6d:63:13:03:8b:94:5d: be:1a:1e:b7:3b:92:91:88:a4:eb:f8:1e:7a:f4:94:c3:2f:3d: 8f:70:b0:24:fc:4b:8d:08:13:23:66:16:02:30:21:6f:2a:63: 3e:fa:bb:d5:3e:fd:07:2f:c2:dd:c6:63:98:15:d1:9b:93:d9: 40:5b:ef:e5:05:69:05:f5:1e:1d:46:3b:f5:20:2a:8f:52:56: 22:d5:5f:4d:ef:d4:c2:c4:20:82:37:7f:4e:8f:3f:d2:7b:6a: b5:7f:61:be:30:56:85:82:92:01:c6:82:b2:0f:31:3b:08:2e: 86:38:09:3a:51:37:a2:c2:45:ad:90:3b:20:a2:c2:29:ac:ae: 45:a0:94:34 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjUwNjA1MDMxMDUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMGFiYi05ZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmSt45ZObiPWi2TE1dLDFoItgkn/ZwFKLousMlzXc4ZRUWZEPVYoOTHX/yXFM bt2FTxdaEeY/fyKsOXlVurD0AW+P6wiDa1OUwMvxJ36LFdXYnmlZ8cbkZD4FpiAD j72YwKpMHWtOSriJF6jOIueMGeq8FXxyzVYoOfTxKAY5VUQFPRfRmNqn9P1L3Gg/ JdX2NlNarM1Atb7vTIhd5UgQohkQRdIJ/ACoJtCxmIDc2TF3YTOpAXOT5V2A3QQ/ KFgB9kKB1VPV7fQejD+GVH5vb2EumA795nANJG7TIgA/A5o12bTPsbcAY/veC4nv zclZezl5JvLWh1fDcnJkT0N5TwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD9atbKX hj04EWg3e+xEbdMd+f+kMB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvQTUyNDM4Q0M0 RDdCMTFFRTlEQTYyQTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKhuYwDQYJKoZIhvcNAQELBQADggEBAKY4BycY/6RMW7iO pou9vzHCqfxeyfadcXPFPtVl3MpIbXVrfjl1pXl8q+o9QhYKAOprf5hqxDp9NX92 hdeANrzwxIttk0dEvYk0zw+XdwT5onqd/g05ClbECSZXoji/eHWQ0Bo/kgYggoF3 VRNjsxDX72hBJLa/bWMTA4uUXb4aHrc7kpGIpOv4Hnr0lMMvPY9wsCT8S40IEyNm FgIwIW8qYz76u9U+/Qcvwt3GY5gV0ZuT2UBb7+UFaQX1Hh1GO/UgKo9SViLVX03v 1MLEIII3f06PP9J7arV/Yb4wVoWCkgHGgrIPMTsILoY4CTpRN6LCRa2QOyCiwims rkWglDQ= -----END CERTIFICATE-----Generated at Sun Dec 7 00:42:01 2025 by rpki-client