This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/01BB1B8E7C0411EFB0D29158C4F9AE02.roa File: 01BB1B8E7C0411EFB0D29158C4F9AE02.roa (raw, json) Hash identifier: NnTP30cAPahdvDB9XdxZstDaaEvgVNxPiMSVPQxc1BQ= Subject key identifier: D5:C9:CE:61:03:51:4B:47:F5:BD:DB:98:2B:A8:4E:44:06:FC:82:CA Certificate issuer: /CN=A91D298D/serialNumber=FEF2C1C4EA0964477514C1AA946E6C41778D06BF Certificate serial: 08D6 Authority key identifier: FE:F2:C1:C4:EA:09:64:47:75:14:C1:AA:94:6E:6C:41:77:8D:06:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/01BB1B8E7C0411EFB0D29158C4F9AE02.roa Signing time: Mon 22 Dec 2025 07:31:52 +0000 ROA not before: Mon 22 Dec 2025 07:31:52 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138423 IP address blocks: 111.119.175.0/24 maxlen: 24 115.42.72.0/21 maxlen: 24 117.134.192.0/19 maxlen: 24 121.91.56.0/23 maxlen: 24 121.91.60.0/23 maxlen: 24 121.91.62.0/23 maxlen: 24 144.48.0.0/22 maxlen: 24 223.123.0.0/24 maxlen: 24 223.123.32.0/24 maxlen: 24 223.123.33.0/24 maxlen: 24 223.123.34.0/24 maxlen: 24 223.123.35.0/24 maxlen: 24 223.123.36.0/24 maxlen: 24 223.123.37.0/24 maxlen: 24 223.123.38.0/24 maxlen: 24 223.123.39.0/24 maxlen: 24 223.123.40.0/24 maxlen: 24 223.123.41.0/24 maxlen: 24 223.123.42.0/24 maxlen: 24 223.123.43.0/24 maxlen: 24 223.123.44.0/24 maxlen: 24 223.123.45.0/24 maxlen: 24 223.123.46.0/24 maxlen: 24 223.123.47.0/24 maxlen: 24 223.123.48.0/24 maxlen: 24 223.123.49.0/24 maxlen: 24 223.123.66.0/24 maxlen: 24 223.123.67.0/24 maxlen: 24 223.123.76.0/24 maxlen: 24 223.123.77.0/24 maxlen: 24 223.123.100.0/23 maxlen: 24 223.123.102.0/23 maxlen: 24 223.123.122.0/23 maxlen: 24 223.123.124.0/23 maxlen: 24 223.123.126.0/23 maxlen: 24 2402:ad80:c0::/44 maxlen: 48 2402:ad80:d0::/44 maxlen: 48 2402:ad80:e0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.crl rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2262 (0x8d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=FEF2C1C4EA0964477514C1AA946E6C41778D06BF Validity Not Before: Dec 22 07:31:52 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6948f3e8-d3ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:0f:8e:b1:1e:96:35:c6:aa:9b:d7:60:f1:3a: f7:56:b8:41:15:ef:3d:44:d8:55:7b:98:53:74:82: 05:aa:be:60:e8:10:a6:35:14:2c:99:84:5d:93:16: 6f:1a:21:f7:be:3e:6f:83:74:cf:78:85:b2:08:78: ee:11:6c:4c:11:5b:61:6f:e6:ab:dc:8c:46:3b:19: 4c:c9:93:62:78:cb:b6:28:79:0b:48:04:06:f0:4a: 86:83:42:2f:76:92:31:ce:0d:65:ff:d0:55:39:1b: 87:fb:27:7c:a4:87:07:7d:d5:5b:82:c4:18:11:0f: 75:13:c0:13:c9:23:fc:fc:0b:2d:42:4d:a3:81:66: 63:1c:01:89:fe:01:5f:39:ba:9c:02:34:59:eb:4e: 05:b1:e6:c4:97:97:b6:e7:ab:4c:81:a6:ab:61:9b: f1:dd:74:63:10:25:24:bb:56:ed:85:1d:9b:c6:f4: 77:ab:81:09:f1:3e:fc:fa:f7:8c:06:61:d9:1c:3b: ae:6c:da:8e:68:36:c2:b8:88:97:ab:e5:3d:20:ee: a0:09:45:1d:fb:32:22:62:cd:91:99:25:8c:b8:f1: 08:24:08:1f:c8:e0:80:ac:7e:a8:04:ae:82:70:16: 6a:3f:2e:3e:ec:8e:74:d8:9d:59:0a:b6:e4:33:c0: 90:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:C9:CE:61:03:51:4B:47:F5:BD:DB:98:2B:A8:4E:44:06:FC:82:CA X509v3 Authority Key Identifier: keyid:FE:F2:C1:C4:EA:09:64:47:75:14:C1:AA:94:6E:6C:41:77:8D:06:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/01BB1B8E7C0411EFB0D29158C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.119.175.0/24 115.42.72.0/21 117.134.192.0/19 121.91.56.0/23 121.91.60.0/22 144.48.0.0/22 223.123.0.0/24 223.123.32.0-223.123.49.255 223.123.66.0/23 223.123.76.0/23 223.123.100.0/22 223.123.122.0-223.123.127.255 IPv6: 2402:ad80:c0::-2402:ad80:ef:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 93:5e:d3:c4:97:ff:d1:03:7e:0d:4c:82:d5:89:5b:90:10:1b: 3f:04:5d:bd:de:4d:eb:33:ed:2e:40:84:7d:c2:8d:b4:c9:f3: e3:cb:32:10:8b:2f:27:96:4d:5d:46:0a:d3:0a:34:b5:20:9a: 07:99:c8:17:26:3c:ed:e6:cd:dd:90:66:04:18:ec:45:f4:bd: 1a:ee:0d:9e:0a:bc:c9:26:4d:45:cc:9c:c8:1b:28:2c:70:5c: 73:77:e6:37:73:7c:9a:ba:7c:a8:27:97:49:29:ec:bc:64:7c: 49:d1:ca:2d:4e:e0:0d:87:2b:0f:e7:fe:dd:41:16:ab:bf:00: ae:73:5d:40:e1:e0:e9:ea:b6:7d:f5:17:6b:10:bb:57:83:19: 3a:74:7b:74:52:6f:aa:c1:c1:1e:27:78:be:74:a7:e4:7f:fa: ee:da:b9:6f:93:cb:e6:db:c6:52:4c:33:db:7d:7a:4c:25:fc: 4f:9e:19:96:85:ba:fc:cb:0e:17:3f:3f:cc:14:9e:14:22:42: 42:a5:77:d3:68:20:de:c7:a2:4f:2e:61:99:ec:ba:17:72:c7: b1:1f:5c:5a:58:96:8c:03:7b:96:16:34:2a:0c:37:e4:31:b0: a4:85:70:20:7b:5c:6c:0e:b5:f5:f5:45:83:8d:ee:32:a0:60: 79:b1:9f:5f -----BEGIN CERTIFICATE----- MIIF4DCCBMigAwIBAgICCNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKEZFRjJDMUM0RUEwOTY0NDc3NTE0QzFBQTk0NkU2QzQx Nzc4RDA2QkYwHhcNMjUxMjIyMDczMTUyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ4ZjNlOC1kM2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAig+OsR6WNcaqm9dg8Tr3VrhBFe89RNhVe5hTdIIFqr5g6BCmNRQsmYRdkxZv GiH3vj5vg3TPeIWyCHjuEWxMEVthb+ar3IxGOxlMyZNieMu2KHkLSAQG8EqGg0Iv dpIxzg1l/9BVORuH+yd8pIcHfdVbgsQYEQ91E8ATySP8/AstQk2jgWZjHAGJ/gFf ObqcAjRZ604FsebEl5e256tMgaarYZvx3XRjECUku1bthR2bxvR3q4EJ8T78+veM BmHZHDuubNqOaDbCuIiXq+U9IO6gCUUd+zIiYs2RmSWMuPEIJAgfyOCArH6oBK6C cBZqPy4+7I502J1ZCrbkM8CQawIDAQABo4IDBDCCAwAwHQYDVR0OBBYEFNXJzmED UUtH9b3bmCuoTkQG/ILKMB8GA1UdIwQYMBaAFP7ywcTqCWRHdRTBqpRubEF3jQa/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8zMzdBNjQzMkYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9fdkxCeE9vSlpFZDFGTUdxbEc1c1FYZU5C cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL192TEJ4T29KWkVkMUZNR3FsRzVzUVhlTkJyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI5OEQvMzM3QTY0MzJGMUE2MTFFQUI5NUMwRTJGQzRGOUFFMDIvMDFCQjFCOEU3 QzA0MTFFRkIwRDI5MTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgY0GCCsGAQUFBwEHAQH/ BH4wfDBeBAIAATBYAwQAb3evAwQDcypIAwQFdYbAAwQBeVs4AwQCeVs8AwQCkDAA AwQA33sAMAwDBAXfeyADBAHfezADBAHfe0IDBAHfe0wDBALfe2QwDAMEAd97egME B997ADAaBAIAAjAUMBIDBwYkAq2AAMADBwQkAq2AAOAwDQYJKoZIhvcNAQELBQAD ggEBAJNe08SX/9EDfg1MgtWJW5AQGz8EXb3eTesz7S5AhH3CjbTJ8+PLMhCLLyeW TV1GCtMKNLUgmgeZyBcmPO3mzd2QZgQY7EX0vRruDZ4KvMkmTUXMnMgbKCxwXHN3 5jdzfJq6fKgnl0kp7LxkfEnRyi1O4A2HKw/n/t1BFqu/AK5zXUDh4Onqtn31F2sQ u1eDGTp0e3RSb6rBwR4neL50p+R/+u7auW+Ty+bbxlJMM9t9ekwl/E+eGZaFuvzL Dhc/P8wUnhQiQkKld9NoIN7Hok8uYZnsuhdyx7EfXFpYlowDe5YWNCoMN+QxsKSF cCB7XGwOtfX1RYON7jKgYHmxn18= -----END CERTIFICATE-----Generated at Wed Dec 24 19:29:28 2025 by rpki-client