This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B9FD184CC84211F0BF44E068C4F9AE02.roa File: B9FD184CC84211F0BF44E068C4F9AE02.roa (raw, json) Hash identifier: vYJPk7KFkk/rKrzwZcbhgjtR/Pi92VUXuzSvIsAoZhg= Subject key identifier: ED:BD:06:D3:1A:2A:34:A7:70:AC:72:EE:FE:D8:2B:09:A2:21:51:18 Certificate issuer: /CN=A91CCDAE/serialNumber=2DBFC7B28615B1FF78D7CF46886AF92139FF968A Certificate serial: 04 Authority key identifier: 2D:BF:C7:B2:86:15:B1:FF:78:D7:CF:46:88:6A:F9:21:39:FF:96:8A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B9FD184CC84211F0BF44E068C4F9AE02.roa Signing time: Sun 23 Nov 2025 08:02:16 +0000 ROA not before: Sun 23 Nov 2025 08:02:16 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 40779 IP address blocks: 82.158.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.crl rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 06:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCDAE, serialNumber=2DBFC7B28615B1FF78D7CF46886AF92139FF968A Validity Not Before: Nov 23 08:02:16 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6922bf88-7a69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:99:70:89:dc:36:1b:e1:9a:ae:68:28:be:a5: 76:77:c4:52:43:cd:b9:43:f3:79:0b:04:03:1c:cb: dd:76:73:a5:82:d4:50:92:26:3c:b5:fe:fd:26:c6: b5:6c:88:69:7e:c7:8a:82:e4:73:50:e9:ac:6e:5e: 49:23:7f:31:d2:86:88:19:bd:5c:02:82:3c:4b:c5: 3b:10:65:91:2a:00:84:89:76:8d:2e:d5:61:6c:d2: bf:8f:22:26:e1:21:8f:5a:8d:4a:d2:cc:b8:02:79: 76:f4:d7:8d:7e:08:69:61:71:fd:0a:56:67:e7:ed: 32:77:89:eb:0d:1c:e4:60:c1:9e:1f:3c:16:5a:12: a6:94:ec:0d:cb:00:f0:07:64:09:ba:63:53:e3:60: c1:5f:58:d1:0a:64:e8:2a:46:6e:ca:53:a1:e6:9c: ae:4e:fd:cc:1f:be:93:0c:cb:29:d7:9a:59:37:0e: 66:f1:2d:31:9a:d0:36:a4:a3:ac:0b:97:bc:ab:c3: 3d:3d:6c:47:ef:8b:5e:cc:ab:53:e1:7d:6a:92:9f: 2c:06:e0:48:6b:5a:72:bf:00:a9:fe:e7:44:61:b7: ce:0c:e1:0d:1e:41:f6:06:99:3b:fb:b9:4b:f1:7c: 85:1b:1a:c4:59:a3:eb:0f:b2:e7:d0:74:cd:e6:c2: f2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:BD:06:D3:1A:2A:34:A7:70:AC:72:EE:FE:D8:2B:09:A2:21:51:18 X509v3 Authority Key Identifier: keyid:2D:BF:C7:B2:86:15:B1:FF:78:D7:CF:46:88:6A:F9:21:39:FF:96:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/Lb_HsoYVsf94189GiGr5ITn_loo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Lb_HsoYVsf94189GiGr5ITn_loo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCDAE/2FBEA402C84211F0A33E9A7EC4F9AE02/B9FD184CC84211F0BF44E068C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 82.158.224.0/21 Signature Algorithm: sha256WithRSAEncryption 3f:f3:e6:48:82:58:f7:b6:96:99:e3:8b:05:27:59:e3:40:ef: 1f:e2:2e:98:15:f3:86:a8:57:77:ca:22:d1:a8:68:01:2b:4f: f7:88:d3:b5:cb:da:f7:17:49:de:e4:c1:02:b9:90:44:5c:23: 22:55:18:2a:ea:d3:05:75:01:e4:67:d8:be:b2:63:94:fe:3d: 4b:03:5e:27:16:67:ee:42:f9:d7:4f:4f:52:ba:dd:ce:6e:fb: d9:8b:e8:1d:16:b9:3e:ec:44:84:0f:f0:ac:b2:da:0d:bd:88: 3a:5b:29:5b:15:a6:3a:78:39:7f:c0:8c:4a:27:de:38:96:44: 0f:a9:7d:94:8a:ab:7f:0f:cf:e0:7d:98:db:9a:c1:e0:f7:3e: 07:9e:2e:2b:47:ba:46:38:e8:26:f5:f3:18:cc:f3:0b:43:eb: 65:51:4d:e9:89:e9:1d:3d:ff:32:d8:a9:96:93:44:2b:32:d1: 68:67:53:91:71:fd:f8:35:ce:2d:48:f9:56:21:f6:3b:78:bc: 7d:76:65:19:b9:1e:d2:76:5b:38:ae:9a:5a:df:a4:b2:70:13: 09:95:e6:4b:45:40:63:b8:1b:ed:ca:67:f3:2c:d9:38:51:01: 6c:81:ea:ab:5b:ed:54:c1:64:53:a3:68:c1:38:99:8d:f4:18: 05:74:fa:0a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0RBRTExMC8GA1UEBRMoMkRCRkM3QjI4NjE1QjFGRjc4RDdDRjQ2ODg2QUY5MjEz OUZGOTY4QTAeFw0yNTExMjMwODAyMTZaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MjJiZjg4LTdhNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6mXCJ3DYb4ZquaCi+pXZ3xFJDzblD83kLBAMcy912c6WC1FCSJjy1/v0mxrVs iGl+x4qC5HNQ6axuXkkjfzHShogZvVwCgjxLxTsQZZEqAISJdo0u1WFs0r+PIibh IY9ajUrSzLgCeXb0141+CGlhcf0KVmfn7TJ3iesNHORgwZ4fPBZaEqaU7A3LAPAH ZAm6Y1PjYMFfWNEKZOgqRm7KU6HmnK5O/cwfvpMMyynXmlk3DmbxLTGa0Dako6wL l7yrwz09bEfvi17Mq1PhfWqSnywG4EhrWnK/AKn+50Rht84M4Q0eQfYGmTv7uUvx fIUbGsRZo+sPsufQdM3mwvLTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU7b0G0xoq NKdwrHLu/tgrCaIhURgwHwYDVR0jBBgwFoAULb/HsoYVsf94189GiGr5ITn/loow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDREFFLzJGQkVBNDAyQzg0 MjExRjBBMzNFOUE3RUM0RjlBRTAyL0xiX0hzb1lWc2Y5NDE4OUdpR3I1SVRuX2xv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvTGJfSHNvWVZzZjk0MTg5R2lHcjVJVG5fbG9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0RBRS8yRkJFQTQwMkM4NDIxMUYwQTMzRTlBN0VDNEY5QUUwMi9COUZEMTg0Q0M4 NDIxMUYwQkY0NEUwNjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA1Ke4DANBgkqhkiG9w0BAQsFAAOCAQEAP/PmSIJY97aWmeOL BSdZ40DvH+IumBXzhqhXd8oi0ahoAStP94jTtcva9xdJ3uTBArmQRFwjIlUYKurT BXUB5GfYvrJjlP49SwNeJxZn7kL5109PUrrdzm772YvoHRa5PuxEhA/wrLLaDb2I OlspWxWmOng5f8CMSifeOJZED6l9lIqrfw/P4H2Y25rB4Pc+B54uK0e6RjjoJvXz GMzzC0PrZVFN6YnpHT3/MtiplpNEKzLRaGdTkXH9+DXOLUj5ViH2O3i8fXZlGbke 0nZbOK6aWt+ksnATCZXmS0VAY7gb7cpn8yzZOFEBbIHqq1vtVMFkU6NowTiZjfQY BXT6Cg== -----END CERTIFICATE-----Generated at Thu Dec 4 02:45:12 2025 by rpki-client