This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/1960E628919111EE9A03A712C4F9AE02.roa File: 1960E628919111EE9A03A712C4F9AE02.roa (raw, json) Hash identifier: 2n+kYuaKH+b63s11qTM8MFxtWRsl5POY9pDyQ9VblQE= Subject key identifier: C9:56:36:9B:BD:05:F0:E3:CE:49:45:B3:B9:B5:E2:4C:3D:DB:4C:94 Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 0178 Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/1960E628919111EE9A03A712C4F9AE02.roa Signing time: Wed 03 Dec 2025 02:34:15 +0000 ROA not before: Wed 03 Dec 2025 02:34:15 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 150172 IP address blocks: 210.79.174.0/24 maxlen: 24 210.79.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 01:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: Dec 3 02:34:15 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=692fa1a7-e02d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c4:7a:ac:9c:8d:0a:7c:ed:98:5f:2a:05:8e: 63:2c:38:69:1f:59:44:c9:b7:e8:67:fd:62:69:52: 26:7a:3a:66:cd:a1:3e:ce:a6:be:d6:c7:3e:92:0c: c9:14:5b:a9:a4:ed:8d:a6:0f:7c:73:c3:ee:76:b0: d3:0e:e2:a7:d4:b4:cb:ff:02:8c:62:2d:17:cf:c2: b9:7f:b3:b6:6d:4a:c6:ef:d7:e4:89:33:73:bf:3a: 39:d1:91:6d:ce:22:03:ca:72:47:37:34:e3:aa:ee: eb:d6:3b:99:cb:fc:95:77:44:ad:45:e4:b3:3d:30: d3:8e:ed:a6:01:3a:84:f8:52:a1:83:30:2b:cd:ac: c7:d1:dc:2e:bf:49:a7:f3:35:42:f8:88:e0:40:d9: 58:fe:8c:d5:8c:09:57:ed:7d:b3:e0:11:fa:43:75: f4:63:bb:cc:70:af:0f:2e:cf:4a:42:a4:21:60:6f: e6:22:3f:19:fc:e1:63:b6:63:01:1d:4a:f8:0a:e6: 01:4b:bb:7b:f0:2e:da:99:2d:27:89:84:cc:d5:86: b5:f1:a9:34:83:a3:c2:50:01:ba:39:38:90:4b:64: 20:e7:17:74:56:b5:44:38:ec:25:a8:ab:70:e7:21: 52:8d:fd:37:2a:31:88:cb:ac:8c:82:92:b3:1d:6e: 22:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:56:36:9B:BD:05:F0:E3:CE:49:45:B3:B9:B5:E2:4C:3D:DB:4C:94 X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/1960E628919111EE9A03A712C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.79.174.0/23 Signature Algorithm: sha256WithRSAEncryption 77:09:7f:fb:53:f3:14:f8:ec:fa:9d:54:db:06:ab:e2:76:3f: 2f:68:5b:be:d5:05:9c:f7:0b:8f:bf:f3:25:1d:1c:7a:d0:06: 39:4a:9e:31:23:26:9d:99:0b:a9:81:1c:9b:36:1c:7f:99:df: 7f:a2:da:c1:99:8f:51:84:cf:67:5d:be:b1:a0:0e:38:c6:38: c8:28:e6:40:5f:b0:dc:dc:29:a7:8d:ec:58:cf:a5:e3:39:19: 8b:ac:14:20:a6:89:12:14:85:b9:b9:91:7f:7c:79:e0:a6:63: a8:8a:ba:9b:3b:6b:82:61:cb:55:8f:57:f6:4a:ae:d1:38:04: 44:22:d1:3b:b0:ff:7f:36:cc:76:dc:a3:96:1f:b4:dd:3b:3c: 79:1e:a7:1f:88:63:51:a5:da:40:3d:32:df:10:f7:11:a5:20: 98:98:38:13:26:1b:9c:60:ff:84:23:81:68:aa:c5:3c:0b:85: fc:1b:7f:d1:f9:2e:29:f0:ab:2c:56:b2:56:e9:fb:4b:b4:4c: 00:90:fc:98:ed:7b:00:07:ef:54:95:cf:55:2d:00:ba:6a:1f: 55:6e:4c:35:fa:70:1c:f1:0c:11:75:6f:56:a3:53:73:2a:95: a1:76:41:66:84:84:70:9a:fd:01:0d:01:7a:58:69:ff:0c:b0: 2d:4d:af:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjUxMjAzMDIzNDE1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmYTFhNy1lMDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsR6rJyNCnztmF8qBY5jLDhpH1lEybfoZ/1iaVImejpmzaE+zqa+1sc+kgzJ FFuppO2Npg98c8PudrDTDuKn1LTL/wKMYi0Xz8K5f7O2bUrG79fkiTNzvzo50ZFt ziIDynJHNzTjqu7r1juZy/yVd0StReSzPTDTju2mATqE+FKhgzArzazH0dwuv0mn 8zVC+IjgQNlY/ozVjAlX7X2z4BH6Q3X0Y7vMcK8PLs9KQqQhYG/mIj8Z/OFjtmMB HUr4CuYBS7t78C7amS0niYTM1Ya18ak0g6PCUAG6OTiQS2Qg5xd0VrVEOOwlqKtw 5yFSjf03KjGIy6yMgpKzHW4iLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMlWNpu9 BfDjzklFs7m14kw920yUMB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U2MjAvM0FBNTlBREM5MTkwMTFFRTg3RkVFMDBCQzRGOUFFMDIvMTk2MEU2Mjg5 MTkxMTFFRTlBMDNBNzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHST64wDQYJKoZIhvcNAQELBQADggEBAHcJf/tT8xT47Pqd VNsGq+J2Py9oW77VBZz3C4+/8yUdHHrQBjlKnjEjJp2ZC6mBHJs2HH+Z33+i2sGZ j1GEz2ddvrGgDjjGOMgo5kBfsNzcKaeN7FjPpeM5GYusFCCmiRIUhbm5kX98eeCm Y6iKups7a4Jhy1WPV/ZKrtE4BEQi0Tuw/382zHbco5YftN07PHkepx+IY1Gl2kA9 Mt8Q9xGlIJiYOBMmG5xg/4QjgWiqxTwLhfwbf9H5LinwqyxWslbp+0u0TACQ/Jjt ewAH71SVz1UtALpqH1VuTDX6cBzxDBF1b1ajU3MqlaF2QWaEhHCa/QENAXpYaf8M sC1Nr/k= -----END CERTIFICATE-----Generated at Wed Dec 10 13:36:20 2025 by rpki-client