This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/04BAA614A98C11EF9350FB63C4F9AE02/8D6B6D86A98C11EFAAC0F364C4F9AE02.roa File: 8D6B6D86A98C11EFAAC0F364C4F9AE02.roa (raw, json) Hash identifier: im2ulDC6TuJxDzTWTDZh2iCRPtHb9EQEE+xjYBtaU3w= Subject key identifier: 18:E3:CD:97:59:21:63:06:DA:05:51:BC:16:77:50:0B:24:67:CF:19 Certificate issuer: /CN=A91D2C38/serialNumber=AA35E2F977B55E72F91635BF7D53BCEB5347983B Certificate serial: C0 Authority key identifier: AA:35:E2:F9:77:B5:5E:72:F9:16:35:BF:7D:53:BC:EB:53:47:98:3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjXi-Xe1XnL5FjW_fVO861NHmDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2C38/04BAA614A98C11EF9350FB63C4F9AE02/8D6B6D86A98C11EFAAC0F364C4F9AE02.roa Signing time: Sat 29 Nov 2025 04:03:06 +0000 ROA not before: Sat 29 Nov 2025 04:03:06 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137037 IP address blocks: 160.191.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2C38/04BAA614A98C11EF9350FB63C4F9AE02/qjXi-Xe1XnL5FjW_fVO861NHmDs.crl rsync://rpki.apnic.net/member_repository/A91D2C38/04BAA614A98C11EF9350FB63C4F9AE02/qjXi-Xe1XnL5FjW_fVO861NHmDs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjXi-Xe1XnL5FjW_fVO861NHmDs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2C38, serialNumber=AA35E2F977B55E72F91635BF7D53BCEB5347983B Validity Not Before: Nov 29 04:03:06 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692a7079-3bc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a3:ee:18:09:ae:64:b6:5b:05:87:d3:e7:91: 69:14:f3:5e:16:ee:6b:58:da:39:49:fa:ee:6d:0d: ef:14:68:83:d6:e9:3c:6f:18:4f:6c:a0:f8:da:5a: 63:17:1a:02:d1:5c:0c:d0:d0:cf:98:65:85:0b:7f: a7:05:86:fc:55:f6:d0:f7:4b:cc:54:1d:f6:ca:be: f3:79:3a:1e:21:a0:87:b4:fa:d4:57:c6:87:5b:3e: 44:5f:53:40:7a:01:a7:99:5c:b1:f2:09:df:bb:9c: bd:31:68:43:a4:14:3d:9a:05:30:b6:28:9e:0c:81: c8:34:a4:5f:95:c1:2c:34:d4:8a:7b:ad:bc:28:44: 6c:f5:37:3e:09:2c:f8:5b:c0:03:d6:dc:57:3c:c9: b7:08:33:d1:33:8c:8a:db:0f:c5:6e:7f:5a:6b:80: 5f:57:a6:6d:75:8b:b8:ce:3b:d7:7c:1f:40:f9:48: 74:51:2e:06:77:07:34:5d:57:f2:c7:ba:af:39:02: 7b:be:93:b3:f3:65:cc:44:79:1d:7a:57:35:65:96: 79:b3:03:fb:c0:7e:13:e5:5b:1c:86:74:01:42:78: 5e:0a:d1:c7:5a:36:c3:95:07:c2:26:da:ba:98:f0: a8:f6:8e:52:3a:51:6d:68:08:9c:ff:68:e2:5b:6e: f3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E3:CD:97:59:21:63:06:DA:05:51:BC:16:77:50:0B:24:67:CF:19 X509v3 Authority Key Identifier: keyid:AA:35:E2:F9:77:B5:5E:72:F9:16:35:BF:7D:53:BC:EB:53:47:98:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2C38/04BAA614A98C11EF9350FB63C4F9AE02/qjXi-Xe1XnL5FjW_fVO861NHmDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjXi-Xe1XnL5FjW_fVO861NHmDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/04BAA614A98C11EF9350FB63C4F9AE02/8D6B6D86A98C11EFAAC0F364C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.224.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:02:e3:e2:60:e3:c9:14:f4:19:fe:29:48:74:dc:38:04:17: be:e3:58:f1:4e:8d:74:83:58:6f:50:e4:dd:d7:cb:5d:24:b1: dd:1f:2b:aa:3f:27:f5:cf:4e:10:f8:39:02:39:cd:c4:df:29: d1:8f:11:55:10:a5:5e:27:60:d8:62:62:07:b2:a5:f1:78:a1: 8e:18:ee:81:ee:b0:31:68:55:c6:b2:43:1d:6a:f5:a6:23:4c: ca:ca:64:7a:67:f6:e2:7e:c8:08:ee:80:af:fc:58:62:9d:27: 56:b2:ec:c4:d6:56:13:8a:b3:c0:b7:3e:ef:be:b1:a2:c5:4a: 7e:62:28:23:51:4f:f1:4e:3f:5d:d1:32:49:7d:e6:29:6a:27: 66:10:cb:2a:3f:c6:ae:3f:20:0f:b8:a9:86:26:cb:7d:65:5b: 09:59:56:5e:b1:ee:d1:c2:a8:4e:f2:72:cb:7e:53:c5:de:00: f6:47:22:ee:23:c1:82:69:27:16:82:38:94:6f:e3:64:12:75: 59:31:7f:2a:5d:1d:a5:0f:f1:d6:5d:df:72:13:38:c8:b3:12: d2:aa:49:4a:40:98:12:d2:f0:f6:41:c5:09:f8:4c:61:0a:1b: 3b:3a:6f:52:78:30:fe:10:e3:1d:31:e1:63:d5:8e:60:01:f7: 96:60:16:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDMzgxMTAvBgNVBAUTKEFBMzVFMkY5NzdCNTVFNzJGOTE2MzVCRjdENTNCQ0VC NTM0Nzk4M0IwHhcNMjUxMTI5MDQwMzA2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJhNzA3OS0zYmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqPuGAmuZLZbBYfT55FpFPNeFu5rWNo5SfrubQ3vFGiD1uk8bxhPbKD42lpj FxoC0VwM0NDPmGWFC3+nBYb8VfbQ90vMVB32yr7zeToeIaCHtPrUV8aHWz5EX1NA egGnmVyx8gnfu5y9MWhDpBQ9mgUwtiieDIHINKRflcEsNNSKe628KERs9Tc+CSz4 W8AD1txXPMm3CDPRM4yK2w/Fbn9aa4BfV6ZtdYu4zjvXfB9A+Uh0US4Gdwc0XVfy x7qvOQJ7vpOz82XMRHkdelc1ZZZ5swP7wH4T5VschnQBQnheCtHHWjbDlQfCJtq6 mPCo9o5SOlFtaAic/2jiW27zfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBjjzZdZ IWMG2gVRvBZ3UAskZ88ZMB8GA1UdIwQYMBaAFKo14vl3tV5y+RY1v31TvOtTR5g7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkMzOC8wNEJBQTYxNEE5 OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9xalhpLVhlMVhuTDVGaldfZlZPODYxTkht RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FqWGktWGUxWG5MNUZqV19mVk84NjFOSG1Ecy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDJDMzgvMDRCQUE2MTRBOThDMTFFRjkzNTBGQjYzQzRGOUFFMDIvOEQ2QjZEODZB OThDMTFFRkFBQzBGMzY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgv+AwDQYJKoZIhvcNAQELBQADggEBADoC4+Jg48kU9Bn+ KUh03DgEF77jWPFOjXSDWG9Q5N3Xy10ksd0fK6o/J/XPThD4OQI5zcTfKdGPEVUQ pV4nYNhiYgeypfF4oY4Y7oHusDFoVcayQx1q9aYjTMrKZHpn9uJ+yAjugK/8WGKd J1ay7MTWVhOKs8C3Pu++saLFSn5iKCNRT/FOP13RMkl95ilqJ2YQyyo/xq4/IA+4 qYYmy31lWwlZVl6x7tHCqE7ycst+U8XeAPZHIu4jwYJpJxaCOJRv42QSdVkxfypd HaUP8dZd33ITOMizEtKqSUpAmBLS8PZBxQn4TGEKGzs6b1J4MP4Q4x0x4WPVjmAB 95ZgFkI= -----END CERTIFICATE-----Generated at Wed Dec 3 14:46:57 2025 by rpki-client