This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/8DEEDC96E6B511EF9FEF6436C4F9AE02.roa File: 8DEEDC96E6B511EF9FEF6436C4F9AE02.roa (raw, json) Hash identifier: RFHWotDjHz9IyTVgQhqPMzU4NUGIMGbK3Tq94su3l+4= Subject key identifier: F5:41:0F:DD:49:6A:E2:C5:76:6E:56:EB:0A:60:0B:67:CA:2D:E6:AC Certificate issuer: /CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Certificate serial: 0648 Authority key identifier: 56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/8DEEDC96E6B511EF9FEF6436C4F9AE02.roa Signing time: Mon 10 Nov 2025 22:45:34 +0000 ROA not before: Mon 10 Nov 2025 22:45:34 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45271 IP address blocks: 1.38.209.0/24 maxlen: 24 1.38.210.0/24 maxlen: 24 1.187.0.0/22 maxlen: 22 1.187.4.0/22 maxlen: 22 1.187.12.0/22 maxlen: 22 1.187.16.0/22 maxlen: 22 1.187.20.0/22 maxlen: 22 1.187.24.0/22 maxlen: 22 1.187.112.0/21 maxlen: 21 1.187.120.0/21 maxlen: 21 1.187.144.0/22 maxlen: 22 1.187.148.0/22 maxlen: 22 1.187.152.0/22 maxlen: 22 1.187.156.0/22 maxlen: 22 1.187.180.0/24 maxlen: 24 1.187.181.0/24 maxlen: 24 1.187.182.0/24 maxlen: 24 1.187.183.0/24 maxlen: 24 1.187.184.0/22 maxlen: 22 1.187.188.0/22 maxlen: 22 1.187.212.0/24 maxlen: 24 1.187.213.0/24 maxlen: 24 1.187.214.0/24 maxlen: 24 1.187.215.0/24 maxlen: 24 1.187.216.0/24 maxlen: 24 1.187.217.0/24 maxlen: 24 1.187.218.0/24 maxlen: 24 1.187.219.0/24 maxlen: 24 1.187.220.0/24 maxlen: 24 1.187.221.0/24 maxlen: 24 1.187.222.0/24 maxlen: 24 1.187.223.0/24 maxlen: 24 1.187.224.0/22 maxlen: 22 1.187.228.0/22 maxlen: 22 1.187.232.0/22 maxlen: 22 1.187.236.0/22 maxlen: 22 1.187.240.0/22 maxlen: 22 1.187.244.0/22 maxlen: 22 1.187.248.0/22 maxlen: 22 1.187.252.0/22 maxlen: 22 106.66.17.0/24 maxlen: 24 106.66.24.0/24 maxlen: 24 106.66.25.0/24 maxlen: 24 106.66.26.0/24 maxlen: 24 106.66.28.0/24 maxlen: 24 106.66.29.0/24 maxlen: 24 106.66.31.0/24 maxlen: 24 106.66.38.0/23 maxlen: 23 106.66.44.0/24 maxlen: 24 106.66.45.0/24 maxlen: 24 106.66.52.0/22 maxlen: 22 106.66.56.0/22 maxlen: 22 106.66.60.0/24 maxlen: 24 106.66.61.0/24 maxlen: 24 106.66.62.0/24 maxlen: 24 106.66.63.0/24 maxlen: 24 106.66.131.0/24 maxlen: 24 106.66.132.0/24 maxlen: 24 106.66.133.0/24 maxlen: 24 106.66.134.0/24 maxlen: 24 106.66.135.0/24 maxlen: 24 106.66.139.0/24 maxlen: 24 106.66.140.0/24 maxlen: 24 106.66.141.0/24 maxlen: 24 106.66.142.0/24 maxlen: 24 106.66.143.0/24 maxlen: 24 106.66.147.0/24 maxlen: 24 106.66.148.0/24 maxlen: 24 106.66.149.0/24 maxlen: 24 106.66.150.0/24 maxlen: 24 106.66.151.0/24 maxlen: 24 106.66.156.0/24 maxlen: 24 106.66.157.0/24 maxlen: 24 106.66.158.0/24 maxlen: 24 106.66.159.0/24 maxlen: 24 106.66.176.0/24 maxlen: 24 106.66.177.0/24 maxlen: 24 106.66.178.0/24 maxlen: 24 106.66.179.0/24 maxlen: 24 106.66.180.0/24 maxlen: 24 106.66.181.0/24 maxlen: 24 106.66.182.0/24 maxlen: 24 106.66.183.0/24 maxlen: 24 106.66.184.0/24 maxlen: 24 106.66.185.0/24 maxlen: 24 106.66.186.0/24 maxlen: 24 106.66.187.0/24 maxlen: 24 106.66.188.0/24 maxlen: 24 106.66.189.0/24 maxlen: 24 106.66.190.0/24 maxlen: 24 106.66.191.0/24 maxlen: 24 112.110.0.0/21 maxlen: 21 112.110.8.0/21 maxlen: 21 112.110.16.0/21 maxlen: 21 112.110.24.0/21 maxlen: 21 112.110.71.0/24 maxlen: 24 112.110.72.0/24 maxlen: 24 112.110.73.0/24 maxlen: 24 112.110.74.0/24 maxlen: 24 112.110.75.0/24 maxlen: 24 112.110.77.0/24 maxlen: 24 112.110.79.0/24 maxlen: 24 112.110.85.0/24 maxlen: 24 112.110.86.0/24 maxlen: 24 112.110.88.0/24 maxlen: 24 112.110.92.0/24 maxlen: 24 112.110.96.0/21 maxlen: 21 112.110.104.0/21 maxlen: 21 112.110.112.0/21 maxlen: 21 112.110.112.0/24 maxlen: 24 112.110.113.0/24 maxlen: 24 112.110.114.0/24 maxlen: 24 112.110.115.0/24 maxlen: 24 112.110.116.0/24 maxlen: 24 112.110.117.0/24 maxlen: 24 112.110.118.0/24 maxlen: 24 112.110.119.0/24 maxlen: 24 112.110.120.0/22 maxlen: 22 112.110.120.0/24 maxlen: 24 112.110.121.0/24 maxlen: 24 112.110.122.0/24 maxlen: 24 112.110.123.0/24 maxlen: 24 112.110.125.0/24 maxlen: 24 112.110.126.0/24 maxlen: 24 112.110.144.0/24 maxlen: 24 112.110.160.0/24 maxlen: 24 115.69.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1608 (0x648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD39D, serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Validity Not Before: Nov 10 22:45:34 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69126b0e-1eec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f5:fc:db:bd:ff:36:d0:b8:f5:d3:6a:55:c0: fd:ba:ee:81:7a:d0:4d:0f:69:32:8b:ad:31:bf:89: 6f:61:da:37:5a:df:d6:da:d1:74:03:4b:f0:b7:fb: 97:7d:91:ce:64:73:41:ee:39:cc:d9:63:67:b5:8d: d9:1d:bc:47:78:42:b6:cf:a0:11:96:93:dd:71:99: 5b:f2:82:d4:d4:b9:e7:45:8f:64:ed:3c:0e:87:84: 7c:c6:96:74:ac:d9:8e:93:82:26:1a:78:01:07:9a: 61:34:4b:08:31:95:b9:66:01:99:1a:7a:c3:6c:20: 18:53:12:61:b6:1e:4c:77:0a:4c:42:4a:8d:f6:30: 0e:83:13:e1:5f:d4:a5:db:73:6f:f7:dd:27:cb:10: b9:6a:aa:16:1c:56:2c:77:15:54:e0:3f:d3:ad:71: 1d:56:f1:ba:87:2a:13:6b:66:e6:cf:69:82:03:af: e1:40:0e:c7:5c:b7:c8:63:88:5d:5d:22:7b:64:7c: 2d:9a:e3:e0:c0:83:df:92:ed:5d:dd:7d:b0:1f:a6: 47:31:26:9b:6a:59:bf:02:95:ff:b3:90:b7:b6:dc: 80:fc:5c:78:33:13:4f:78:07:eb:d2:ee:70:81:e1: ac:14:60:71:6d:80:57:55:94:26:55:a6:99:87:0e: f3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:41:0F:DD:49:6A:E2:C5:76:6E:56:EB:0A:60:0B:67:CA:2D:E6:AC X509v3 Authority Key Identifier: keyid:56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/8DEEDC96E6B511EF9FEF6436C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.38.209.0-1.38.210.255 1.187.0.0/21 1.187.12.0-1.187.27.255 1.187.112.0/20 1.187.144.0/20 1.187.180.0-1.187.191.255 1.187.212.0-1.187.255.255 106.66.17.0/24 106.66.24.0-106.66.26.255 106.66.28.0/23 106.66.31.0/24 106.66.38.0/23 106.66.44.0/23 106.66.52.0-106.66.63.255 106.66.131.0-106.66.135.255 106.66.139.0-106.66.143.255 106.66.147.0-106.66.151.255 106.66.156.0/22 106.66.176.0/20 112.110.0.0/19 112.110.71.0-112.110.75.255 112.110.77.0/24 112.110.79.0/24 112.110.85.0-112.110.86.255 112.110.88.0/24 112.110.92.0/24 112.110.96.0-112.110.123.255 112.110.125.0-112.110.126.255 112.110.144.0/24 112.110.160.0/24 115.69.157.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:e7:f7:7c:51:5b:3b:73:fd:c6:d7:b7:5d:da:ee:e8:3f:ab: 2a:e8:fc:89:91:c0:54:69:8b:90:de:11:bb:06:e5:75:3a:5c: 06:0a:cd:51:33:f4:a6:22:a9:52:f8:d6:d9:c2:28:09:38:b5: 98:f8:1e:d8:f3:06:a0:a6:b9:44:0a:05:3a:82:bc:63:ba:99: 51:c8:35:dc:26:b7:75:21:43:c1:ec:ab:1d:c1:59:f5:2b:e1: c3:c9:a7:42:7c:78:20:ce:83:8f:66:a8:b9:27:13:2a:0b:3e: db:fe:b5:4a:d6:41:ef:90:7b:4e:d1:62:bd:f5:7e:ca:2f:95: 19:42:85:4a:df:b3:1f:ac:38:bb:2f:72:cf:a9:ba:21:7d:9b: 8a:a2:10:8c:10:28:48:ee:cd:f0:22:ba:65:db:7b:be:fc:55: 3f:0a:b1:f1:19:1a:7c:bc:c7:96:b9:30:34:8f:04:6c:5f:5a: 8f:d1:b3:7e:89:77:05:bf:12:dc:5f:8c:10:65:56:2f:59:4a: 77:7e:3a:28:58:f7:44:f6:be:5a:57:df:22:fe:ad:80:48:10: 59:27:04:6b:69:b0:47:e3:3c:a1:34:2c:02:2c:5c:d1:ef:e9: bf:41:ff:8d:ba:bb:0d:c6:a0:77:ad:01:c0:f8:a9:f4:63:e3: da:fd:93:17 -----BEGIN CERTIFICATE----- MIIGljCCBX6gAwIBAgICBkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QzOUQxMTAvBgNVBAUTKDU2Qjk4M0U0NkJDQkExMTVGRjIyNjVGRTQ5MTkwOUM3 RDc0MTQ3RjMwHhcNMjUxMTEwMjI0NTM0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTEyNmIwZS0xZWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmPX8273/NtC49dNqVcD9uu6BetBND2kyi60xv4lvYdo3Wt/W2tF0A0vwt/uX fZHOZHNB7jnM2WNntY3ZHbxHeEK2z6ARlpPdcZlb8oLU1LnnRY9k7TwOh4R8xpZ0 rNmOk4ImGngBB5phNEsIMZW5ZgGZGnrDbCAYUxJhth5MdwpMQkqN9jAOgxPhX9Sl 23Nv990nyxC5aqoWHFYsdxVU4D/TrXEdVvG6hyoTa2bmz2mCA6/hQA7HXLfIY4hd XSJ7ZHwtmuPgwIPfku1d3X2wH6ZHMSabalm/ApX/s5C3ttyA/Fx4MxNPeAfr0u5w geGsFGBxbYBXVZQmVaaZhw7zXwIDAQABo4IDujCCA7YwHQYDVR0OBBYEFPVBD91J auLFdm5W6wpgC2fKLeasMB8GA1UdIwQYMBaAFFa5g+Rry6EV/yJl/kkZCcfXQUfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDM5RC9ERTdEMkY5NDRF NzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9Wcm1ENUd2TG9SWF9JbVgtU1JrSng5ZEJS X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZybUQ1R3ZMb1JYX0ltWC1TUmtKeDlkQlJfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QzOUQvREU3RDJGOTQ0RTc2MTFFQ0E1NzIwQjc5QzRGOUFFMDIvOERFRURDOTZF NkI1MTFFRjlGRUY2NDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggFCBggrBgEFBQcBBwEB /wSCATEwggEtMIIBKQQCAAEwggEhMAwDBAABJtEDBAABJtIDBAMBuwAwDAMEAgG7 DAMEAgG7GAMEBAG7cAMEBAG7kDAMAwQCAbu0AwQGAbuAMAsDBAIBu9QDAwIBuAME AGpCETAMAwQDakIYAwQAakIaAwQBakIcAwQAakIfAwQBakImAwQBakIsMAwDBAJq QjQDBAZqQgAwDAMEAGpCgwMEA2pCgDAMAwQAakKLAwQEakKAMAwDBABqQpMDBANq QpADBAJqQpwDBARqQrADBAVwbgAwDAMEAHBuRwMEAnBuSAMEAHBuTQMEAHBuTzAM AwQAcG5VAwQAcG5WAwQAcG5YAwQAcG5cMAwDBAVwbmADBAJwbngwDAMEAHBufQME AHBufgMEAHBukAMEAHBuoAMEAHNFnTANBgkqhkiG9w0BAQsFAAOCAQEAXuf3fFFb O3P9xte3Xdru6D+rKuj8iZHAVGmLkN4RuwbldTpcBgrNUTP0piKpUvjW2cIoCTi1 mPge2PMGoKa5RAoFOoK8Y7qZUcg13Ca3dSFDweyrHcFZ9Svhw8mnQnx4IM6Dj2ao uScTKgs+2/61StZB75B7TtFivfV+yi+VGUKFSt+zH6w4uy9yz6m6IX2biqIQjBAo SO7N8CK6Zdt7vvxVPwqx8RkafLzHlrkwNI8EbF9aj9Gzfol3Bb8S3F+MEGVWL1lK d346KFj3RPa+WlffIv6tgEgQWScEa2mwR+M8oTQsAixc0e/pv0H/jbq7Dcagd60B wPip9GPj2v2TFw== -----END CERTIFICATE-----Generated at Sun Dec 7 07:26:13 2025 by rpki-client