This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B90F319AC84211F09A0BE068C4F9AE02.roa File: B90F319AC84211F09A0BE068C4F9AE02.roa (raw, json) Hash identifier: g0+1PT5qez9GcqrDkre9mHd9DAQlXO634JLUgpdLP1M= Subject key identifier: 12:B1:34:3A:E8:85:52:E6:AF:12:BD:0E:49:0A:2A:FD:47:4C:ED:BC Certificate issuer: /CN=A91CCDAE/serialNumber=2DBFC7B28615B1FF78D7CF46886AF92139FF968A Certificate serial: 02 Authority key identifier: 2D:BF:C7:B2:86:15:B1:FF:78:D7:CF:46:88:6A:F9:21:39:FF:96:8A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B90F319AC84211F09A0BE068C4F9AE02.roa Signing time: Sun 23 Nov 2025 08:02:15 +0000 ROA not before: Sun 23 Nov 2025 08:02:15 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 401696 IP address blocks: 82.158.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.crl rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 06:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCDAE, serialNumber=2DBFC7B28615B1FF78D7CF46886AF92139FF968A Validity Not Before: Nov 23 08:02:15 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6922bf86-d230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:26:df:84:e4:74:7f:e2:44:e9:bc:50:3d:70: 3e:85:e0:eb:32:b8:ef:9f:c1:29:79:2d:88:31:7a: 80:da:06:9c:1b:a0:93:62:06:00:5b:6f:a8:82:c6: 86:8d:59:89:d7:33:ec:d1:1f:1a:09:c1:27:a6:45: 40:19:be:65:23:30:f1:d1:2d:31:b7:59:98:01:ac: eb:fa:e0:e4:9c:94:29:e3:5b:b0:b9:16:99:11:42: f7:a9:4d:be:32:02:50:75:b6:44:c1:41:d4:e9:e1: 0d:00:b1:d0:63:18:e1:f3:76:16:8d:e3:f7:30:11: f8:46:9d:51:51:19:43:34:9d:9b:88:bf:01:2d:5b: b6:c5:50:8d:ae:81:26:af:aa:48:c6:30:80:b8:2c: b8:f3:ce:fb:bc:19:42:96:f2:0c:68:8b:e1:78:ed: 76:07:54:3c:30:89:b7:76:08:7e:4e:5e:73:6a:43: cb:27:dc:5a:a9:3a:46:81:7f:45:29:3f:31:86:93: 25:8e:c7:5c:9b:ca:d1:98:3b:37:35:ea:c9:27:dc: e8:5f:d9:95:c0:2c:8d:cd:6e:25:e5:b4:a8:7d:2c: 81:58:eb:df:7e:01:bc:9c:ea:28:c7:46:be:f9:3f: aa:8c:e3:59:d3:3c:7d:d6:ad:0c:99:54:9a:77:5f: 5f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B1:34:3A:E8:85:52:E6:AF:12:BD:0E:49:0A:2A:FD:47:4C:ED:BC X509v3 Authority Key Identifier: keyid:2D:BF:C7:B2:86:15:B1:FF:78:D7:CF:46:88:6A:F9:21:39:FF:96:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B90F319AC84211F09A0BE068C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 82.158.224.0/21 Signature Algorithm: sha256WithRSAEncryption 35:c8:fa:71:7c:13:67:a0:98:09:08:82:24:14:88:46:cc:a2: 4a:56:60:a2:f8:63:2a:2c:19:90:89:26:ef:eb:77:c2:2a:61: 58:d0:86:27:9f:99:3a:90:13:52:1d:4b:51:ad:75:4b:e3:26: 11:19:d0:49:9c:31:98:89:16:46:a2:e5:db:ad:5e:14:70:78: 5e:78:e6:57:29:1b:a7:37:18:98:20:3f:01:67:a1:1a:9c:05: 44:a6:5b:13:ae:49:24:4e:13:b1:db:22:fb:ed:84:05:9e:54: 23:36:86:bd:29:ef:40:e0:43:a3:90:c6:fa:bd:d7:df:32:40: 4a:d3:10:fb:6c:f8:f2:48:89:fa:fb:1e:f1:8a:09:b8:d7:dd: bd:04:56:c3:67:ff:06:82:fb:3b:7a:c1:b2:6a:bb:6d:ba:a6: 0f:31:1b:fb:47:1b:0e:1b:fe:23:3e:17:80:24:f0:16:a0:01: 37:5e:43:1a:11:4e:48:73:e5:8f:52:77:3f:bc:8a:56:90:26: 99:80:31:46:7d:2d:f2:8e:7a:2f:d8:17:09:32:62:b7:1c:cb: dc:57:aa:a8:e6:06:4b:39:b6:53:c5:7b:dc:59:96:a1:a0:c8: 6a:c5:70:d0:4a:a5:5b:70:e1:fd:5f:77:5b:25:89:35:3f:3e: e9:88:24:c5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0RBRTExMC8GA1UEBRMoMkRCRkM3QjI4NjE1QjFGRjc4RDdDRjQ2ODg2QUY5MjEz OUZGOTY4QTAeFw0yNTExMjMwODAyMTVaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MjJiZjg2LWQyMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1Jt+E5HR/4kTpvFA9cD6F4OsyuO+fwSl5LYgxeoDaBpwboJNiBgBbb6iCxoaN WYnXM+zRHxoJwSemRUAZvmUjMPHRLTG3WZgBrOv64OSclCnjW7C5FpkRQvepTb4y AlB1tkTBQdTp4Q0AsdBjGOHzdhaN4/cwEfhGnVFRGUM0nZuIvwEtW7bFUI2ugSav qkjGMIC4LLjzzvu8GUKW8gxoi+F47XYHVDwwibd2CH5OXnNqQ8sn3FqpOkaBf0Up PzGGkyWOx1ybytGYOzc16skn3Ohf2ZXALI3NbiXltKh9LIFY699+Abyc6ijHRr75 P6qM41nTPH3WrQyZVJp3X18ZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUErE0OuiF UuavEr0OSQoq/UdM7bwwHwYDVR0jBBgwFoAULb/HsoYVsf94189GiGr5ITn/loow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDREFFLzJGQkVBNDAyQzg0 MjExRjBBMzNFOUE3RUM0RjlBRTAyL0xiX0hzb1lWc2Y5NDE4OUdpR3I1SVRuX2xv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvTGJfSHNvWVZzZjk0MTg5R2lHcjVJVG5fbG9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0RBRS8yRkJFQTQwMkM4NDIxMUYwQTMzRTlBN0VDNEY5QUUwMi9COTBGMzE5QUM4 NDIxMUYwOUEwQkUwNjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA1Ke4DANBgkqhkiG9w0BAQsFAAOCAQEANcj6cXwTZ6CYCQiC JBSIRsyiSlZgovhjKiwZkIkm7+t3wiphWNCGJ5+ZOpATUh1LUa11S+MmERnQSZwx mIkWRqLl261eFHB4XnjmVykbpzcYmCA/AWehGpwFRKZbE65JJE4Tsdsi++2EBZ5U IzaGvSnvQOBDo5DG+r3X3zJAStMQ+2z48kiJ+vse8YoJuNfdvQRWw2f/BoL7O3rB smq7bbqmDzEb+0cbDhv+Iz4XgCTwFqABN15DGhFOSHPlj1J3P7yKVpAmmYAxRn0t 8o56L9gXCTJitxzL3FeqqOYGSzm2U8V73FmWoaDIasVw0EqlW3Dh/V93WyWJNT8+ 6YgkxQ== -----END CERTIFICATE-----Generated at Thu Dec 4 02:45:12 2025 by rpki-client