This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/459A40A0399111F0B589186BC4F9AE02.roa File: 459A40A0399111F0B589186BC4F9AE02.roa (raw, json) Hash identifier: E3JEqVPFb2Y0z9tOIfHLXVaw1Ss9vC/xCNZdMX4dBjg= Subject key identifier: CB:D1:2B:5A:64:FB:2D:6E:C9:9B:0E:EA:E2:39:5E:05:7C:A2:50:17 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: C5 Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/459A40A0399111F0B589186BC4F9AE02.roa Signing time: Wed 07 Jan 2026 05:24:38 +0000 ROA not before: Wed 07 Jan 2026 05:24:38 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 153490 IP address blocks: 161.248.118.0/23 maxlen: 23 161.248.118.0/24 maxlen: 24 161.248.119.0/24 maxlen: 24 161.248.119.64/27 maxlen: 27 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 05:13:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Jan 7 05:24:38 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=695dee16-bdb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3e:df:12:5c:51:1a:51:d6:01:51:4d:a2:3d: 6b:2b:a7:a1:fb:9a:8c:f2:b5:16:27:77:23:76:38: 10:15:33:fb:75:0c:6d:46:ca:44:1b:d3:83:54:58: fb:ba:03:2a:a9:6e:a8:ed:a1:32:3b:08:84:f3:83: cb:6e:db:19:66:27:06:e1:83:51:c7:ad:63:83:77: a9:61:b1:d8:b8:94:24:6b:d3:97:de:32:5b:6f:39: 15:aa:ff:12:c6:14:4a:44:ee:f3:bd:f0:4a:cd:18: b8:7a:2a:a4:55:ea:2c:b8:8c:ae:0c:85:bf:ca:07: 44:5d:ee:33:b8:c0:56:36:6b:6b:dd:c2:64:a6:a1: 7c:06:ca:10:f3:d0:c4:4d:d3:6e:d0:2d:1b:6c:3a: 0b:20:61:50:d2:1b:ab:ca:89:68:e8:8a:e1:f1:e6: 8b:7c:6d:c3:e8:ab:00:82:d0:67:3d:4c:f3:72:81: b2:6c:d2:f8:08:3c:0d:ac:d3:c0:ad:a5:1d:f5:60: 1e:eb:8d:49:8b:b3:58:ae:ba:ba:dc:02:ac:15:71: ca:10:15:2e:d0:da:47:34:31:4b:64:81:e1:93:c3: 8e:ab:ca:51:eb:43:48:3b:aa:fc:91:e0:00:f6:d2: 83:b3:94:05:d7:3c:f8:b4:b2:5e:b9:d2:be:b0:69: b6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D1:2B:5A:64:FB:2D:6E:C9:9B:0E:EA:E2:39:5E:05:7C:A2:50:17 X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/459A40A0399111F0B589186BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.118.0/23 Signature Algorithm: sha256WithRSAEncryption 46:9b:af:42:22:d1:84:59:d3:f2:05:ef:cb:36:11:88:16:b2: 20:bc:8d:87:7f:2a:02:bb:b8:51:d6:b0:71:c3:e7:b8:2e:d0: b9:54:b5:d1:39:b4:5a:fa:8b:aa:b4:e5:1f:d5:d8:47:51:cd: e3:0b:7b:c5:48:03:d9:e5:e8:c0:db:06:b3:d4:cd:cb:46:36: a9:32:fb:84:99:0e:7e:cf:36:ac:23:3c:a2:33:8e:75:d4:5d: 6d:a3:83:33:ea:56:a9:1f:a5:c4:5e:35:2c:7a:0e:54:df:cb: 04:91:06:6d:d8:a4:64:d8:36:3d:9e:8f:44:8d:1a:e1:e0:a9: 3e:d1:0a:a6:e3:35:38:73:86:da:bf:c0:99:0f:f9:66:91:e0: cd:4f:98:ed:0c:0e:86:74:18:3e:7a:24:42:4b:b7:3a:a6:1d: 7e:8f:02:f1:9d:ab:7c:f9:f3:f8:3d:7b:73:6f:bc:51:5c:ae: 86:d4:82:ba:d9:25:24:81:b5:df:b8:51:c2:00:4b:fe:eb:31: 31:8e:11:f5:e4:fe:59:f8:f7:c0:bb:f7:a0:44:d6:db:8f:19: 38:d3:77:47:84:bf:00:8a:cc:6c:93:49:5a:70:3b:6b:65:39: 8f:96:0b:e5:ce:51:dd:34:ac:43:51:d5:62:55:1f:24:c2:d7: 44:41:21:27 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RDlDQTgxMTAvBgNVBAUTKENCQzY2MDMzNzBGQkU4NENDQ0UwNjRFODRGNEYyNkVE QkVDMjY3QjEwHhcNMjYwMTA3MDUyNDM4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVkZWUxNi1iZGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsj7fElxRGlHWAVFNoj1rK6eh+5qM8rUWJ3cjdjgQFTP7dQxtRspEG9ODVFj7 ugMqqW6o7aEyOwiE84PLbtsZZicG4YNRx61jg3epYbHYuJQka9OX3jJbbzkVqv8S xhRKRO7zvfBKzRi4eiqkVeosuIyuDIW/ygdEXe4zuMBWNmtr3cJkpqF8BsoQ89DE TdNu0C0bbDoLIGFQ0huryolo6Irh8eaLfG3D6KsAgtBnPUzzcoGybNL4CDwNrNPA raUd9WAe641Ji7NYrrq63AKsFXHKEBUu0NpHNDFLZIHhk8OOq8pR60NIO6r8keAA 9tKDs5QF1zz4tLJeudK+sGm27QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMvRK1pk +y1uyZsO6uI5XgV8olAXMB8GA1UdIwQYMBaAFMvGYDNw++hMzOBk6E9PJu2+wmex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yMERBMjc0NkU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZFek00R1RvVDA4bTdiN0Na N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDlDQTgvMjBEQTI3NDZFNEZEMTFFRkFDMUNFNjdGQzRGOUFFMDIvNDU5QTQwQTAz OTkxMTFGMEI1ODkxODZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+HYwDQYJKoZIhvcNAQELBQADggEBAEabr0Ii0YRZ0/IF 78s2EYgWsiC8jYd/KgK7uFHWsHHD57gu0LlUtdE5tFr6i6q05R/V2EdRzeMLe8VI A9nl6MDbBrPUzctGNqky+4SZDn7PNqwjPKIzjnXUXW2jgzPqVqkfpcReNSx6DlTf ywSRBm3YpGTYNj2ej0SNGuHgqT7RCqbjNThzhtq/wJkP+WaR4M1PmO0MDoZ0GD56 JEJLtzqmHX6PAvGdq3z58/g9e3NvvFFcrobUgrrZJSSBtd+4UcIAS/7rMTGOEfXk /ln498C796BE1tuPGTjTd0eEvwCKzGyTSVpwO2tlOY+WC+XOUd00rENR1WJVHyTC 10RBISc= -----END CERTIFICATE-----Generated at Sun Jan 18 04:11:42 2026 by rpki-client