This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B97B11B2C84211F0A053E068C4F9AE02.roa File: B97B11B2C84211F0A053E068C4F9AE02.roa (raw, json) Hash identifier: T8+SUWMp7lLCNyIXktANN5lVZd79pGX/sm4qsAqhCs0= Subject key identifier: FC:AD:0B:15:E3:E4:3B:04:A2:2E:77:8E:7E:7D:AE:BB:EE:4C:64:87 Certificate issuer: /CN=A91CCDAE/serialNumber=2DBFC7B28615B1FF78D7CF46886AF92139FF968A Certificate serial: 03 Authority key identifier: 2D:BF:C7:B2:86:15:B1:FF:78:D7:CF:46:88:6A:F9:21:39:FF:96:8A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B97B11B2C84211F0A053E068C4F9AE02.roa Signing time: Sun 23 Nov 2025 08:02:15 +0000 ROA not before: Sun 23 Nov 2025 08:02:15 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 401701 IP address blocks: 82.158.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.crl rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 06:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCDAE, serialNumber=2DBFC7B28615B1FF78D7CF46886AF92139FF968A Validity Not Before: Nov 23 08:02:15 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6922bf87-171e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8f:a4:27:17:80:67:1f:6b:f3:0d:13:72:89: 99:a5:b7:e7:30:36:a1:e0:7f:2c:ac:46:6f:f8:41: 6f:fc:94:5a:f9:a0:62:cb:ca:8c:0c:fe:fe:8c:7b: b0:e8:e7:0d:c6:ab:40:e2:39:0e:90:3d:93:b7:ff: db:cf:55:f8:c2:24:fd:1a:cf:49:6a:77:49:db:df: d7:8b:e2:96:41:f3:6b:a1:28:63:b2:55:3a:45:53: bc:8e:ae:df:a8:05:08:0e:f4:f5:5c:f7:7e:c1:4b: fc:76:6a:a3:f4:4d:a3:1d:1e:c6:bc:24:23:fc:c0: 3c:4a:95:40:a2:de:4e:36:f2:9b:87:11:78:d1:22: 5d:6e:65:85:b0:28:b2:0c:17:d1:e7:02:72:f3:16: 8c:8d:7b:e7:ed:a1:c9:bd:97:4d:69:34:67:0f:88: 08:8a:50:d6:4f:28:a7:6f:bd:d4:55:f0:1c:80:e0: db:10:1e:87:97:45:65:b1:88:04:1b:3c:1a:01:1a: c5:69:8b:a0:6d:38:aa:80:66:de:02:31:23:8b:08: f4:78:9d:57:27:cb:d5:4c:56:3c:a3:9f:f8:4d:e4: d4:bd:f3:f4:44:16:af:b1:a2:53:79:0d:96:35:13: c9:e8:38:75:6b:16:51:b4:e3:7e:6f:34:5d:a2:64: 9e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:AD:0B:15:E3:E4:3B:04:A2:2E:77:8E:7E:7D:AE:BB:EE:4C:64:87 X509v3 Authority Key Identifier: keyid:2D:BF:C7:B2:86:15:B1:FF:78:D7:CF:46:88:6A:F9:21:39:FF:96:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B97B11B2C84211F0A053E068C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 82.158.224.0/21 Signature Algorithm: sha256WithRSAEncryption 40:be:c9:78:b0:fd:ad:e7:91:11:59:1e:f5:8d:95:b5:0f:f6: a3:9a:d8:0e:78:41:12:d4:d7:49:ac:5b:a1:93:ac:27:b5:86: f5:b1:17:53:56:01:58:33:78:48:b5:42:4d:a5:d8:6b:7d:ef: 6b:e3:b4:18:38:b3:45:5c:3f:c6:cf:bf:ca:11:cc:fa:e4:2f: a3:6c:0b:1f:da:1f:f2:00:5d:e6:2a:0c:f1:08:34:3f:98:76: 05:7a:3d:0d:27:42:de:f6:a0:05:15:ee:55:b3:78:fd:04:5b: 0d:73:c0:f2:0e:25:f8:1b:92:bc:52:53:9c:01:5c:28:84:84: e7:56:a1:fa:ff:75:30:f3:67:96:aa:e9:9f:04:02:a5:ef:ed: 8c:39:58:81:ba:75:8e:ad:7a:96:f2:7c:a9:6e:7c:b5:02:9f: 75:b0:71:b0:19:dc:00:6f:25:78:54:17:bd:ad:7d:61:94:48: b7:b6:9b:17:0a:0d:ac:9c:93:24:b2:76:34:c7:26:2c:b9:fe: cf:c4:de:07:21:6a:2a:4a:7d:2a:ba:3f:85:7e:e0:44:b3:d6: 94:5a:d2:c5:53:41:87:b3:11:e7:20:36:ea:1e:0b:a7:15:b2: 35:cb:2a:27:c5:8b:08:d8:5a:52:fd:ac:81:0f:ba:96:84:4b: 94:5c:dc:5c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0RBRTExMC8GA1UEBRMoMkRCRkM3QjI4NjE1QjFGRjc4RDdDRjQ2ODg2QUY5MjEz OUZGOTY4QTAeFw0yNTExMjMwODAyMTVaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MjJiZjg3LTE3MWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTj6QnF4BnH2vzDRNyiZmlt+cwNqHgfyysRm/4QW/8lFr5oGLLyowM/v6Me7Do 5w3Gq0DiOQ6QPZO3/9vPVfjCJP0az0lqd0nb39eL4pZB82uhKGOyVTpFU7yOrt+o BQgO9PVc937BS/x2aqP0TaMdHsa8JCP8wDxKlUCi3k428puHEXjRIl1uZYWwKLIM F9HnAnLzFoyNe+ftocm9l01pNGcPiAiKUNZPKKdvvdRV8ByA4NsQHoeXRWWxiAQb PBoBGsVpi6BtOKqAZt4CMSOLCPR4nVcny9VMVjyjn/hN5NS98/REFq+xolN5DZY1 E8noOHVrFlG0435vNF2iZJ53AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/K0LFePk OwSiLneOfn2uu+5MZIcwHwYDVR0jBBgwFoAULb/HsoYVsf94189GiGr5ITn/loow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDREFFLzJGQkVBNDAyQzg0 MjExRjBBMzNFOUE3RUM0RjlBRTAyL0xiX0hzb1lWc2Y5NDE4OUdpR3I1SVRuX2xv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvTGJfSHNvWVZzZjk0MTg5R2lHcjVJVG5fbG9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0RBRS8yRkJFQTQwMkM4NDIxMUYwQTMzRTlBN0VDNEY5QUUwMi9COTdCMTFCMkM4 NDIxMUYwQTA1M0UwNjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA1Ke4DANBgkqhkiG9w0BAQsFAAOCAQEAQL7JeLD9reeREVke 9Y2VtQ/2o5rYDnhBEtTXSaxboZOsJ7WG9bEXU1YBWDN4SLVCTaXYa33va+O0GDiz RVw/xs+/yhHM+uQvo2wLH9of8gBd5ioM8Qg0P5h2BXo9DSdC3vagBRXuVbN4/QRb DXPA8g4l+BuSvFJTnAFcKISE51ah+v91MPNnlqrpnwQCpe/tjDlYgbp1jq16lvJ8 qW58tQKfdbBxsBncAG8leFQXva19YZRIt7abFwoNrJyTJLJ2NMcmLLn+z8TeByFq Kkp9Kro/hX7gRLPWlFrSxVNBh7MR5yA26h4LpxWyNcsqJ8WLCNhaUv2sgQ+6loRL lFzcXA== -----END CERTIFICATE-----Generated at Thu Dec 4 04:21:25 2025 by rpki-client