This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/89A9F0B436B511EEB14AD345C4F9AE02.roa File: 89A9F0B436B511EEB14AD345C4F9AE02.roa (raw, json) Hash identifier: U1P7I1pa/rkVzU2py5My8aLOdpJimuuWXLDQRwYsMmw= Subject key identifier: 20:F4:6D:62:E8:37:F4:83:31:D8:EE:E9:44:DF:93:78:8B:88:5E:0F Certificate issuer: /CN=A91D3794/serialNumber=30E589288EB65002510C877B466ABE19753BDBCE Certificate serial: 221F Authority key identifier: 30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/89A9F0B436B511EEB14AD345C4F9AE02.roa Signing time: Fri 30 Jan 2026 16:13:45 +0000 ROA not before: Fri 30 Jan 2026 16:13:45 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 55803 IP address blocks: 27.54.80.0/21 maxlen: 24 27.54.88.0/21 maxlen: 24 27.111.81.0/24 maxlen: 24 27.111.82.0/23 maxlen: 24 27.111.84.0/24 maxlen: 24 27.111.86.0/24 maxlen: 24 27.111.88.0/23 maxlen: 24 27.111.92.0/22 maxlen: 24 27.123.24.0/21 maxlen: 24 27.124.112.0/20 maxlen: 24 43.245.52.0/22 maxlen: 24 43.250.248.0/22 maxlen: 24 103.250.212.0/22 maxlen: 24 103.253.193.0/24 maxlen: 24 103.254.136.0/22 maxlen: 24 112.109.74.0/24 maxlen: 24 112.109.81.0/24 maxlen: 24 112.109.82.0/23 maxlen: 24 112.109.84.0/24 maxlen: 24 116.0.16.0/21 maxlen: 24 119.47.112.0/22 maxlen: 24 119.47.117.0/24 maxlen: 24 119.47.118.0/23 maxlen: 24 119.47.122.0/23 maxlen: 24 119.47.124.0/24 maxlen: 24 163.47.72.0/22 maxlen: 24 202.174.80.0/24 maxlen: 24 203.17.36.0/24 maxlen: 24 203.26.41.0/24 maxlen: 24 203.28.48.0/23 maxlen: 24 203.28.50.0/24 maxlen: 24 203.170.80.0/21 maxlen: 24 2400:6d80::/32 maxlen: 48 2402:cb40::/32 maxlen: 48 2407:4c00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Feb 2026 02:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8735 (0x221f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3794, serialNumber=30E589288EB65002510C877B466ABE19753BDBCE Validity Not Before: Jan 30 16:13:45 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697cd8b9-7662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b8:fa:d9:9f:96:ea:83:68:9e:44:26:87:83: 12:33:85:8b:69:2f:30:81:cc:40:41:a4:71:58:73: 32:e3:bf:92:9b:dc:90:a2:cf:be:07:33:11:25:da: 97:78:24:21:9c:a2:1e:74:f9:b3:2c:0a:9b:e0:f3: 84:82:37:2f:17:1d:a3:db:d5:f3:d2:9c:ee:18:d1: bc:a2:43:fe:de:3a:9f:d7:24:bd:40:c8:27:9c:c0: 5b:67:bc:1f:51:73:2e:df:0b:ce:a8:71:df:af:83: cf:e2:59:41:0a:99:b3:7a:1b:0d:d5:3a:62:ce:03: 05:09:b2:4c:ad:f4:f2:79:a6:86:f6:d7:59:62:3d: 2f:9a:6b:a5:cc:a0:2d:aa:b7:c4:64:32:3b:ac:2e: 95:49:9e:c8:e2:a3:be:f2:36:59:aa:65:62:3a:c6: 6c:f8:a0:86:21:7d:bc:ab:b8:10:14:1e:f0:58:ce: 22:8b:11:af:72:a3:aa:dc:7f:73:82:98:a4:ab:3b: 2b:0f:f4:df:f4:6b:0d:87:9c:ef:38:2b:b5:51:a4: cf:8e:34:83:19:a9:27:96:05:ce:c9:30:12:18:a6: ea:4f:77:02:85:d9:29:68:22:2e:39:95:b8:70:87: 00:05:04:16:56:00:fb:7d:83:43:4d:5e:4d:20:e2: b7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F4:6D:62:E8:37:F4:83:31:D8:EE:E9:44:DF:93:78:8B:88:5E:0F X509v3 Authority Key Identifier: keyid:30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/89A9F0B436B511EEB14AD345C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.54.80.0/20 27.111.81.0-27.111.84.255 27.111.86.0/24 27.111.88.0/23 27.111.92.0/22 27.123.24.0/21 27.124.112.0/20 43.245.52.0/22 43.250.248.0/22 103.250.212.0/22 103.253.193.0/24 103.254.136.0/22 112.109.74.0/24 112.109.81.0-112.109.84.255 116.0.16.0/21 119.47.112.0/22 119.47.117.0-119.47.119.255 119.47.122.0-119.47.124.255 163.47.72.0/22 202.174.80.0/24 203.17.36.0/24 203.26.41.0/24 203.28.48.0-203.28.50.255 203.170.80.0/21 IPv6: 2400:6d80::/32 2402:cb40::/32 2407:4c00::/32 Signature Algorithm: sha256WithRSAEncryption 45:6d:9f:15:43:48:6b:e0:15:af:f5:f4:aa:6a:44:db:a6:c7: 0a:3d:c6:9e:78:d5:8e:32:e3:3c:48:7a:0d:18:38:e3:7d:f9: 15:2c:2a:21:32:7a:1f:f2:d3:04:12:d2:ec:08:69:22:2e:e9: dd:63:fe:2e:9f:79:35:35:9c:e6:68:2a:6f:01:13:39:cd:ae: 32:67:1b:df:34:ac:0e:dc:06:cb:89:fc:82:f7:53:be:68:03: 73:e5:b8:ac:88:1e:62:2f:b9:ab:58:69:fe:31:0f:32:57:7c: 6d:43:aa:a7:a6:d2:90:94:4b:86:97:4f:6a:43:5d:97:ae:ef: 99:46:e0:16:92:45:b1:3a:10:2e:e6:fb:64:b4:a4:33:75:5f: 46:ab:ce:b5:c0:4a:fe:47:6f:cd:d8:ed:91:20:ba:35:d8:9c: e8:79:da:fe:21:68:c1:fc:69:1d:db:72:fa:98:71:ba:7a:43: ff:b1:11:38:be:c8:0a:e1:28:60:3d:31:6c:1e:ce:58:47:d5: 6f:a2:a3:ce:cc:db:ff:f3:3e:9c:af:4c:00:a4:8f:7e:6e:47: a8:00:58:91:34:6b:af:2d:14:6b:55:68:9e:fe:4f:97:85:ea: 6f:49:7a:47:16:15:4a:5f:b4:5c:9a:35:59:79:24:15:b4:c4: 7b:b0:a4:4e -----BEGIN CERTIFICATE----- MIIGRTCCBS2gAwIBAgICIh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RDM3OTQxMTAvBgNVBAUTKDMwRTU4OTI4OEVCNjUwMDI1MTBDODc3QjQ2NkFCRTE5 NzUzQkRCQ0UwHhcNMjYwMTMwMTYxMzQ1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdjZDhiOS03NjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbj62Z+W6oNonkQmh4MSM4WLaS8wgcxAQaRxWHMy47+Sm9yQos++BzMRJdqX eCQhnKIedPmzLAqb4POEgjcvFx2j29Xz0pzuGNG8okP+3jqf1yS9QMgnnMBbZ7wf UXMu3wvOqHHfr4PP4llBCpmzehsN1TpizgMFCbJMrfTyeaaG9tdZYj0vmmulzKAt qrfEZDI7rC6VSZ7I4qO+8jZZqmViOsZs+KCGIX28q7gQFB7wWM4iixGvcqOq3H9z gpikqzsrD/Tf9GsNh5zvOCu1UaTPjjSDGaknlgXOyTASGKbqT3cChdkpaCIuOZW4 cIcABQQWVgD7fYNDTV5NIOK3JwIDAQABo4IDaTCCA2UwHQYDVR0OBBYEFCD0bWLo N/SDMdju6UTfk3iLiF4PMB8GA1UdIwQYMBaAFDDliSiOtlACUQyHe0Zqvhl1O9vO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzc5NC8yMEZFNTYxNkU5 OEYxMUU1QTNERERDNjZDNEY5QUUwMi9NT1dKS0k2MlVBSlJESWQ3Um1xLUdYVTcy ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PV0pLSTYyVUFKUkRJZDdSbXEtR1hVNzI4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM3OTQvMjBGRTU2MTZFOThGMTFFNUEzREREQzY2QzRGOUFFMDIvODlBOUYwQjQz NkI1MTFFRUIxNEFEMzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgfIGCCsGAQUFBwEHAQH/ BIHiMIHfMIG/BAIAATCBuAMEBBs2UDAMAwQAG29RAwQAG29UAwQAG29WAwQBG29Y AwQCG29cAwQDG3sYAwQEG3xwAwQCK/U0AwQCK/r4AwQCZ/rUAwQAZ/3BAwQCZ/6I AwQAcG1KMAwDBABwbVEDBABwbVQDBAN0ABADBAJ3L3AwDAMEAHcvdQMEA3cvcDAM AwQBdy96AwQAdy98AwQCoy9IAwQAyq5QAwQAyxEkAwQAyxopMAwDBATLHDADBADL HDIDBAPLqlAwGwQCAAIwFQMFACQAbYADBQAkAstAAwUAJAdMADANBgkqhkiG9w0B AQsFAAOCAQEARW2fFUNIa+AVr/X0qmpE26bHCj3GnnjVjjLjPEh6DRg44335FSwq ITJ6H/LTBBLS7AhpIi7p3WP+Lp95NTWc5mgqbwETOc2uMmcb3zSsDtwGy4n8gvdT vmgDc+W4rIgeYi+5q1hp/jEPMld8bUOqp6bSkJRLhpdPakNdl67vmUbgFpJFsToQ Lub7ZLSkM3VfRqvOtcBK/kdvzdjtkSC6Ndic6Hna/iFowfxpHdty+phxunpD/7ER OL7ICuEoYD0xbB7OWEfVb6Kjzszb//M+nK9MAKSPfm5HqABYkTRrry0Ua1Vonv5P l4Xqb0l6RxYVSl+0XJo1WXkkFbTEe7CkTg== -----END CERTIFICATE-----Generated at Thu Feb 5 05:57:58 2026 by rpki-client