This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/0134DE8CC77211EC9B377B2DC4F9AE02.roa File: 0134DE8CC77211EC9B377B2DC4F9AE02.roa (raw, json) Hash identifier: OEn5E6mEmhX4OZk0ZQ6Gl1vTVics3LVEMP8WB/IMAEw= Subject key identifier: 70:69:62:1B:96:6D:95:1A:DC:82:AF:7D:FE:0C:10:12:47:4B:A8:43 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0FA1 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/0134DE8CC77211EC9B377B2DC4F9AE02.roa Signing time: Wed 14 Jan 2026 18:14:57 +0000 ROA not before: Wed 14 Jan 2026 18:14:57 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 13335 IP address blocks: 61.47.0.0/24 maxlen: 24 61.47.3.0/24 maxlen: 24 61.47.4.0/23 maxlen: 24 61.47.15.0/24 maxlen: 24 61.47.17.0/24 maxlen: 24 61.47.21.0/24 maxlen: 24 61.47.22.0/24 maxlen: 24 61.47.24.0/24 maxlen: 24 61.47.27.0/24 maxlen: 24 61.47.29.0/24 maxlen: 24 61.47.44.0/23 maxlen: 24 61.47.46.0/24 maxlen: 24 61.47.49.0/24 maxlen: 24 61.47.50.0/23 maxlen: 24 61.47.53.0/24 maxlen: 24 61.47.54.0/23 maxlen: 24 61.47.56.0/24 maxlen: 24 61.47.64.0/23 maxlen: 24 61.47.66.0/24 maxlen: 24 61.47.72.0/21 maxlen: 24 61.47.102.0/23 maxlen: 24 61.47.108.0/22 maxlen: 24 221.128.0.0/18 maxlen: 24 221.128.71.0/24 maxlen: 24 221.128.73.0/24 maxlen: 24 221.128.77.0/24 maxlen: 24 221.128.79.0/24 maxlen: 24 221.128.81.0/24 maxlen: 24 221.128.87.0/24 maxlen: 24 221.128.88.0/22 maxlen: 24 221.128.97.0/24 maxlen: 24 221.128.98.0/23 maxlen: 24 221.128.104.0/22 maxlen: 24 221.128.108.0/23 maxlen: 24 221.128.110.0/24 maxlen: 24 221.128.115.0/24 maxlen: 24 221.128.116.0/24 maxlen: 24 221.128.118.0/23 maxlen: 24 221.128.121.0/24 maxlen: 24 221.128.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 17:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4001 (0xfa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:14:57 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6967dd21-892d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:83:2e:e3:73:8a:c6:be:9a:3a:ad:72:99:ec: 25:cd:14:d8:69:bc:ce:bf:01:a0:90:f0:e5:d7:2b: fe:c8:0c:16:15:c5:77:77:c3:0b:be:8f:2b:eb:c8: b4:24:d3:f0:0a:35:1b:f0:f8:8c:26:90:71:02:d9: 53:ac:87:da:c4:47:a6:4f:48:92:eb:8e:c4:f3:0b: aa:7a:0b:aa:e7:e0:fd:e2:1d:42:4a:1b:23:c4:97: fc:0b:71:bd:23:0c:9f:a1:6f:c9:52:e4:84:73:d1: 3b:64:c1:c3:95:2e:ea:e4:34:84:44:e2:0d:91:f5: f1:31:5d:44:fc:ba:03:29:ed:88:3c:5d:8b:45:29: a6:e2:1c:e9:19:2c:f1:cf:a0:aa:fc:3b:c3:c9:b3: 54:e7:e0:04:9f:8c:fb:1e:72:4a:cd:cc:8f:d1:4d: d1:15:f9:d3:96:96:14:90:f2:04:f4:ab:dc:27:01: a2:a1:47:01:3c:c8:ca:4a:65:83:c7:45:51:99:27: b7:ab:e1:b5:8c:94:c1:3f:56:f0:c6:ee:b7:5e:98: 3b:39:69:e0:9c:09:8e:0c:67:f9:fe:32:c1:1a:ae: 63:16:c5:2a:da:ed:b6:35:3e:0e:0c:3b:4b:0a:a1: 3d:a6:9a:9e:a8:50:0d:3e:24:29:4f:43:6e:db:63: c1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:69:62:1B:96:6D:95:1A:DC:82:AF:7D:FE:0C:10:12:47:4B:A8:43 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/0134DE8CC77211EC9B377B2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.47.0.0/24 61.47.3.0-61.47.5.255 61.47.15.0/24 61.47.17.0/24 61.47.21.0-61.47.22.255 61.47.24.0/24 61.47.27.0/24 61.47.29.0/24 61.47.44.0-61.47.46.255 61.47.49.0-61.47.51.255 61.47.53.0-61.47.56.255 61.47.64.0-61.47.66.255 61.47.72.0/21 61.47.102.0/23 61.47.108.0/22 221.128.0.0/18 221.128.71.0/24 221.128.73.0/24 221.128.77.0/24 221.128.79.0/24 221.128.81.0/24 221.128.87.0-221.128.91.255 221.128.97.0-221.128.99.255 221.128.104.0-221.128.110.255 221.128.115.0-221.128.116.255 221.128.118.0/23 221.128.121.0/24 221.128.123.0/24 Signature Algorithm: sha256WithRSAEncryption 48:d0:cc:3c:b1:d0:8b:74:91:f0:58:36:5d:61:b5:c2:ed:3b: 31:5f:b3:72:77:fd:2f:aa:2c:96:04:27:b7:f1:ca:ce:ba:00: 04:07:6f:04:b4:43:2e:68:57:7d:6e:4a:23:9a:98:d2:53:f7: 50:1e:57:66:18:ae:3d:2a:d2:77:63:aa:eb:c7:ab:bd:5a:66: 52:24:df:8e:1f:a0:4c:09:60:93:b3:ba:3f:3b:6a:5c:99:d8: 6c:b8:b7:11:89:41:7a:3a:bb:3c:c9:d9:91:d2:95:71:07:1e: 89:a9:75:ed:a0:a6:3c:58:38:2a:13:b5:e7:ba:f6:3f:f1:c3: ba:96:79:18:40:20:7d:92:a5:d5:9c:48:c0:72:ac:f3:54:1a: d8:57:d4:ea:54:bd:29:bd:f5:4c:04:ea:73:d4:31:3d:a6:80: d2:9b:22:6b:8c:1c:b8:55:2b:2b:42:69:b1:81:4c:a8:bc:8e: b7:ee:d1:37:fe:f7:5e:1c:3f:b8:f1:76:8e:9b:3f:99:c6:ae: 6e:e0:d6:d5:a0:91:5a:2e:78:46:dd:12:95:8f:8b:3c:90:37: 83:8c:d7:4c:1a:f5:15:90:67:52:fa:1b:34:f0:96:25:b8:57: 28:d2:7f:c1:cf:aa:32:50:2c:25:1e:93:d8:ed:93:ff:58:1e: 9f:4b:03:dc -----BEGIN CERTIFICATE----- MIIGazCCBVOgAwIBAgICD6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjYwMTE0MTgxNDU3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY3ZGQyMS04OTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIMu43OKxr6aOq1ymewlzRTYabzOvwGgkPDl1yv+yAwWFcV3d8MLvo8r68i0 JNPwCjUb8PiMJpBxAtlTrIfaxEemT0iS647E8wuqeguq5+D94h1CShsjxJf8C3G9 IwyfoW/JUuSEc9E7ZMHDlS7q5DSEROINkfXxMV1E/LoDKe2IPF2LRSmm4hzpGSzx z6Cq/DvDybNU5+AEn4z7HnJKzcyP0U3RFfnTlpYUkPIE9KvcJwGioUcBPMjKSmWD x0VRmSe3q+G1jJTBP1bwxu63Xpg7OWngnAmODGf5/jLBGq5jFsUq2u22NT4ODDtL CqE9ppqeqFANPiQpT0Nu22PBoQIDAQABo4IDjzCCA4swHQYDVR0OBBYEFHBpYhuW bZUa3IKvff4MEBJHS6hDMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvMDEzNERFOEND NzcyMTFFQzlCMzc3QjJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggEXBggrBgEFBQcBBwEB /wSCAQYwggECMIH/BAIAATCB+AMEAD0vADAMAwQAPS8DAwQBPS8EAwQAPS8PAwQA PS8RMAwDBAA9LxUDBAA9LxYDBAA9LxgDBAA9LxsDBAA9Lx0wDAMEAj0vLAMEAD0v LjAMAwQAPS8xAwQCPS8wMAwDBAA9LzUDBAA9LzgwDAMEBj0vQAMEAD0vQgMEAz0v SAMEAT0vZgMEAj0vbAMEBt2AAAMEAN2ARwMEAN2ASQMEAN2ATQMEAN2ATwMEAN2A UTAMAwQA3YBXAwQC3YBYMAwDBADdgGEDBALdgGAwDAMEA92AaAMEAN2AbjAMAwQA 3YBzAwQA3YB0AwQB3YB2AwQA3YB5AwQA3YB7MA0GCSqGSIb3DQEBCwUAA4IBAQBI 0Mw8sdCLdJHwWDZdYbXC7TsxX7Nyd/0vqiyWBCe38crOugAEB28EtEMuaFd9bkoj mpjSU/dQHldmGK49KtJ3Y6rrx6u9WmZSJN+OH6BMCWCTs7o/O2pcmdhsuLcRiUF6 Ors8ydmR0pVxBx6JqXXtoKY8WDgqE7XnuvY/8cO6lnkYQCB9kqXVnEjAcqzzVBrY V9TqVL0pvfVMBOpz1DE9poDSmyJrjBy4VSsrQmmxgUyovI637tE3/vdeHD+48XaO mz+Zxq5u4NbVoJFaLnhG3RKVj4s8kDeDjNdMGvUVkGdS+hs08JYluFco0n/Bz6oy UCwlHpPY7ZP/WB6fSwPc -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:48 2026 by rpki-client