This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/AEE9F9E6326011ED9031BC4FC4F9AE02.roa File: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (raw, json) Hash identifier: o0bGkeKtz3bzG/bWSV5R/zZyXNKnvRhJi3bUD0NjFsE= Subject key identifier: 29:39:CD:78:74:82:33:A1:22:96:46:07:C3:CB:F0:8B:4B:3C:84:64 Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 0424 Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/AEE9F9E6326011ED9031BC4FC4F9AE02.roa Signing time: Wed 10 Dec 2025 23:08:29 +0000 ROA not before: Wed 10 Dec 2025 23:08:29 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 58511 IP address blocks: 58.96.158.0/23 maxlen: 23 125.254.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1060 (0x424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: Dec 10 23:08:29 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6939fd6d-068d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:07:12:14:b0:aa:9f:e7:04:72:a2:6d:6c:5f: db:41:93:36:cf:59:5e:d0:14:4f:ac:67:cb:af:66: 13:b9:bd:f1:53:4a:2e:a1:83:2b:56:33:d6:9a:96: c7:ba:d5:ce:b8:9b:f4:66:c2:58:2a:f8:b4:20:ca: 30:32:2f:41:3f:bd:27:f7:ae:e6:37:ce:9d:b7:64: 79:86:2b:93:2f:50:f7:47:d4:4c:95:05:26:1b:db: 18:8b:b3:35:f3:c9:2c:72:7e:58:e9:12:33:94:3a: 49:db:fa:b6:67:3f:4c:cb:22:d7:cf:8f:80:ed:f4: 07:74:06:aa:f0:ae:7b:c4:ae:f7:e2:4d:7b:35:20: 92:4f:0a:ce:25:f5:5a:b0:c9:27:ea:ce:64:7a:d8: 2c:24:a8:9c:36:b3:c2:a2:6f:56:49:40:59:50:05: 0d:3e:e2:47:71:4c:f5:49:24:88:9e:76:37:fb:03: 92:20:0e:1f:2d:40:1a:46:47:1d:36:44:0e:0d:9d: 3b:08:70:78:50:7f:19:db:3b:dc:9f:b9:08:f9:d9: e5:fb:94:4d:d5:7b:c2:d9:84:41:dc:ef:cf:7f:54: 43:e2:ef:08:f2:11:2d:cc:c7:01:9c:bc:6c:ea:57: 92:69:e6:66:cd:88:ba:ac:f6:93:79:a4:9d:40:b2: 9f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:39:CD:78:74:82:33:A1:22:96:46:07:C3:CB:F0:8B:4B:3C:84:64 X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/AEE9F9E6326011ED9031BC4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.96.158.0/23 125.254.64.0/18 Signature Algorithm: sha256WithRSAEncryption 1a:da:54:ab:8b:05:9a:46:ae:d3:e5:86:0e:f1:28:db:26:4a: 9c:d2:c1:27:0f:f4:15:b5:a6:d7:70:60:61:b7:cb:9c:9c:f0: ad:99:34:8a:db:32:2d:ff:a8:05:13:8e:2f:16:d7:70:23:e0: 2c:bb:a3:e5:e4:8a:05:cf:7b:6c:42:dc:ee:6e:b4:38:5e:1a: 9b:7b:8e:50:d1:6d:94:bd:02:69:f4:7f:19:39:bb:46:77:61: e6:2d:d1:4c:74:fe:8b:09:58:5e:c6:23:4d:cc:90:27:8e:0d: 30:73:4a:17:34:36:cd:af:7d:82:63:50:90:b6:02:53:0c:44: ac:d9:eb:d4:b2:9b:9e:44:b7:7c:51:85:4d:15:57:77:c5:2a: 0e:fb:6f:bd:d9:f0:03:d1:a8:7c:84:d6:90:f9:0a:ad:95:8a: 97:e7:4f:4c:f1:5a:98:d1:95:a6:e0:a2:3b:fb:d5:b8:92:80: 3f:25:47:6d:f7:02:08:3d:2b:9f:d3:eb:66:de:67:92:d8:2f: e6:63:c0:10:c7:f3:35:32:63:91:38:94:74:1a:43:0c:40:59: ec:bc:75:f2:8a:49:eb:36:58:f4:58:38:5d:c6:c5:a7:50:2c: 54:e0:04:c1:06:fa:41:c8:99:e3:db:ca:9b:90:69:17:38:c5: 15:95:8d:bd -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjUxMjEwMjMwODI5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM5ZmQ2ZC0wNjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQcSFLCqn+cEcqJtbF/bQZM2z1le0BRPrGfLr2YTub3xU0ouoYMrVjPWmpbH utXOuJv0ZsJYKvi0IMowMi9BP70n967mN86dt2R5hiuTL1D3R9RMlQUmG9sYi7M1 88kscn5Y6RIzlDpJ2/q2Zz9MyyLXz4+A7fQHdAaq8K57xK734k17NSCSTwrOJfVa sMkn6s5ketgsJKicNrPCom9WSUBZUAUNPuJHcUz1SSSInnY3+wOSIA4fLUAaRkcd NkQODZ07CHB4UH8Z2zvcn7kI+dnl+5RN1XvC2YRB3O/Pf1RD4u8I8hEtzMcBnLxs 6leSaeZmzYi6rPaTeaSdQLKfsQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCk5zXh0 gjOhIpZGB8PL8ItLPIRkMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDEyMTYvREM3ODI2OENCOTRCMTFFQzgzMkI3NDE5QzRGOUFFMDIvQUVFOUY5RTYz MjYwMTFFRDkwMzFCQzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAE6YJ4DBAZ9/kAwDQYJKoZIhvcNAQELBQADggEBABraVKuL BZpGrtPlhg7xKNsmSpzSwScP9BW1ptdwYGG3y5yc8K2ZNIrbMi3/qAUTji8W13Aj 4Cy7o+XkigXPe2xC3O5utDheGpt7jlDRbZS9Amn0fxk5u0Z3YeYt0Ux0/osJWF7G I03MkCeODTBzShc0Ns2vfYJjUJC2AlMMRKzZ69Sym55Et3xRhU0VV3fFKg77b73Z 8APRqHyE1pD5Cq2VipfnT0zxWpjRlabgojv71biSgD8lR233Agg9K5/T62beZ5LY L+ZjwBDH8zUyY5E4lHQaQwxAWey8dfKKSes2WPRYOF3GxadQLFTgBMEG+kHImePb ypuQaRc4xRWVjb0= -----END CERTIFICATE-----Generated at Sun Dec 21 06:59:16 2025 by rpki-client