This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/F6FAB490BB5811EF8C37CB81C4F9AE02.roa File: F6FAB490BB5811EF8C37CB81C4F9AE02.roa (raw, json) Hash identifier: snvd+5sq9m/YOaEHMBb2pxjCYxt/qvZ6KU5dEMOAGDw= Subject key identifier: 19:EF:E8:B1:34:FF:E7:10:6A:4D:D6:6D:62:18:B7:B4:A1:92:A0:17 Certificate issuer: /CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Certificate serial: 35A7 Authority key identifier: 16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/F6FAB490BB5811EF8C37CB81C4F9AE02.roa Signing time: Tue 09 Dec 2025 07:25:43 +0000 ROA not before: Tue 09 Dec 2025 07:25:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 23974 IP address blocks: 1.0.197.0/24 maxlen: 24 1.10.135.0/24 maxlen: 24 101.51.0.0/20 maxlen: 20 101.51.16.0/21 maxlen: 21 101.51.64.0/22 maxlen: 22 101.51.152.0/21 maxlen: 21 101.51.176.0/21 maxlen: 21 101.108.48.0/21 maxlen: 21 113.53.1.0/24 maxlen: 24 113.53.64.0/20 maxlen: 20 118.172.153.0/24 maxlen: 24 125.27.24.0/21 maxlen: 21 125.27.192.0/21 maxlen: 21 125.27.208.0/20 maxlen: 20 125.27.240.0/22 maxlen: 22 182.52.160.0/20 maxlen: 20 182.52.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Dec 2025 14:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13735 (0x35a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF4FE, serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Validity Not Before: Dec 9 07:25:43 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6937cef7-bfdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a1:b8:43:26:0c:bd:61:0b:c2:be:15:bd:f0: ba:bd:2f:d9:46:db:48:e0:76:5c:ee:7d:d1:d0:b2: 15:8c:c6:a7:e5:77:cb:d1:7f:3c:a4:fb:bc:72:6a: 69:9f:e0:38:5a:e5:44:84:68:d5:29:6b:12:bb:1f: c6:98:66:e0:f1:34:8d:92:32:9c:38:a3:18:33:2a: 4f:6b:82:c2:17:12:f1:b1:3e:cd:c6:23:9a:38:e9: e3:3f:9d:1e:75:b6:9e:07:a7:9a:8f:9a:21:d8:56: 74:ef:8f:c0:aa:f5:a1:c8:69:a6:0f:d3:80:d1:1b: 8e:89:d2:f9:2f:54:1d:39:46:8e:af:46:cf:af:7a: de:4e:d3:be:f3:c5:ae:b5:16:6c:02:46:bb:1a:5d: ec:6b:87:72:be:74:96:cf:0e:5d:59:7e:e5:16:df: a2:e0:e0:1d:d9:3c:24:8a:7a:69:c4:01:a8:02:1a: a2:ae:5e:2b:82:d0:fc:8c:d5:fe:0b:85:0e:05:12: 00:49:79:a8:e5:b7:42:76:5f:74:58:ce:d7:a4:0f: e5:94:4f:e0:11:01:f2:23:2b:51:00:3c:df:f9:3f: e1:2d:06:1b:64:68:8e:42:45:58:14:b8:f2:2a:e6: b3:87:a7:ff:88:83:63:57:12:d7:7c:77:4e:2f:1d: 1b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:EF:E8:B1:34:FF:E7:10:6A:4D:D6:6D:62:18:B7:B4:A1:92:A0:17 X509v3 Authority Key Identifier: keyid:16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/F6FAB490BB5811EF8C37CB81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.0.197.0/24 1.10.135.0/24 101.51.0.0-101.51.23.255 101.51.64.0/22 101.51.152.0/21 101.51.176.0/21 101.108.48.0/21 113.53.1.0/24 113.53.64.0/20 118.172.153.0/24 125.27.24.0/21 125.27.192.0/21 125.27.208.0/20 125.27.240.0/22 182.52.160.0/20 182.52.230.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:3d:f8:fe:3f:8c:e4:6d:71:ee:73:6a:48:0f:ab:06:66:a0: 5c:95:6e:31:20:83:09:a9:1c:51:0d:75:b8:07:bb:42:5d:5f: 4c:f2:15:b3:64:b9:6b:34:61:0a:4f:ba:d1:62:5b:6e:c5:70: 2f:cc:47:19:6b:20:95:62:af:ea:95:22:7a:eb:f6:ff:6e:48: 65:98:a7:20:64:34:20:6d:32:d6:ac:ff:87:52:ca:c9:ee:41: d7:f2:38:0b:1d:d4:60:49:ec:f0:1b:cc:53:1f:0f:e5:4b:e8: 08:4b:a6:bf:16:85:a1:e4:0f:67:ad:b3:b2:70:51:27:dd:83: e9:49:e3:51:68:6f:ac:07:45:dd:4f:2f:f7:89:e5:6f:f6:3e: ab:6f:14:ed:a1:42:8a:73:2b:d8:d3:d5:1b:24:db:81:51:51: eb:b7:28:26:5c:6f:15:f8:be:4c:2d:45:3a:df:57:57:55:c5: ae:74:0d:37:dd:55:6e:c3:12:d9:4c:a6:8d:27:f1:ba:3b:3e: 98:ca:6c:a8:20:cd:29:8d:0a:f7:98:ac:43:ee:f0:46:4f:f6: 00:03:11:27:e9:a0:ca:b3:5e:42:61:79:2f:f9:2f:17:b1:09: 8a:22:5e:30:a7:a9:45:93:32:67:e8:df:d7:32:18:96:fe:30: 46:93:ff:ea -----BEGIN CERTIFICATE----- MIIF0zCCBLugAwIBAgICNacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y0RkUxMTAvBgNVBAUTKDE2QjU2NEI3NThERkNENTJDNUNFODkxMTkyRTMxQjcx NUIxQ0JGRTgwHhcNMjUxMjA5MDcyNTQzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM3Y2VmNy1iZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqG4QyYMvWELwr4VvfC6vS/ZRttI4HZc7n3R0LIVjMan5XfL0X88pPu8cmpp n+A4WuVEhGjVKWsSux/GmGbg8TSNkjKcOKMYMypPa4LCFxLxsT7NxiOaOOnjP50e dbaeB6eaj5oh2FZ074/AqvWhyGmmD9OA0RuOidL5L1QdOUaOr0bPr3reTtO+88Wu tRZsAka7Gl3sa4dyvnSWzw5dWX7lFt+i4OAd2TwkinppxAGoAhqirl4rgtD8jNX+ C4UOBRIASXmo5bdCdl90WM7XpA/llE/gEQHyIytRADzf+T/hLQYbZGiOQkVYFLjy Kuazh6f/iINjVxLXfHdOLx0b+wIDAQABo4IC9zCCAvMwHQYDVR0OBBYEFBnv6LE0 /+cQak3WbWIYt7ShkqAXMB8GA1UdIwQYMBaAFBa1ZLdY381Sxc6JEZLjG3FbHL/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjRGRS9CQTEzMTI0RTFE ODUxMUUyQTc3OTk5REMwOEIwMkNEMi9GclZrdDFqZnpWTEZ6b2tSa3VNYmNWc2N2 LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyVmt0MWpmelZMRnpva1JrdU1iY1ZzY3YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y0RkUvQkExMzEyNEUxRDg1MTFFMkE3Nzk5OURDMDhCMDJDRDIvRjZGQUI0OTBC QjU4MTFFRjhDMzdDQjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgYAGCCsGAQUFBwEHAQH/ BHEwbzBtBAIAATBnAwQAAQDFAwQAAQqHMAsDAwBlMwMEA2UzEAMEAmUzQAMEA2Uz mAMEA2UzsAMEA2VsMAMEAHE1AQMEBHE1QAMEAHasmQMEA30bGAMEA30bwAMEBH0b 0AMEAn0b8AMEBLY0oAMEALY05jANBgkqhkiG9w0BAQsFAAOCAQEAWj34/j+M5G1x 7nNqSA+rBmagXJVuMSCDCakcUQ11uAe7Ql1fTPIVs2S5azRhCk+60WJbbsVwL8xH GWsglWKv6pUieuv2/25IZZinIGQ0IG0y1qz/h1LKye5B1/I4Cx3UYEns8BvMUx8P 5UvoCEumvxaFoeQPZ62zsnBRJ92D6UnjUWhvrAdF3U8v94nlb/Y+q28U7aFCinMr 2NPVGyTbgVFR67coJlxvFfi+TC1FOt9XV1XFrnQNN91VbsMS2UymjSfxujs+mMps qCDNKY0K95isQ+7wRk/2AAMRJ+mgyrNeQmF5L/kvF7EJiiJeMKepRZMyZ+jf1zIY lv4wRpP/6g== -----END CERTIFICATE-----Generated at Fri Dec 12 15:47:09 2025 by rpki-client