This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/909AA4DC567011EFA451BD7CC4F9AE02.roa File: 909AA4DC567011EFA451BD7CC4F9AE02.roa (raw, json) Hash identifier: zPgropISn+mkRWOTL46nu4f+BxVnf8fiCaXO1+AGIFQ= Subject key identifier: 31:F1:CC:C2:5E:78:00:B9:4F:65:26:C9:53:DC:60:92:A7:EE:B6:29 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 338B Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/909AA4DC567011EFA451BD7CC4F9AE02.roa Signing time: Wed 24 Dec 2025 16:12:50 +0000 ROA not before: Wed 24 Dec 2025 16:12:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 59211 IP address blocks: 116.251.216.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 16:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13195 (0x338b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Dec 24 16:12:50 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=694c1102-f966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b6:63:e7:b5:8f:f6:13:d5:53:f1:73:b3:24: 00:71:db:9e:c5:7e:af:c7:37:b3:a1:97:22:52:06: b4:61:bb:a3:ec:77:6d:3c:7b:c9:7b:ac:88:d2:22: ec:f4:fc:4e:51:d3:b4:88:1b:5f:e0:ea:c8:12:a2: a3:9f:42:ef:a9:fa:48:13:ed:68:c9:cb:5c:ac:ce: bf:53:89:1f:80:5e:9f:f7:c0:99:84:71:c7:07:84: 6e:92:d6:14:0d:c6:ae:39:fe:32:6e:ec:88:f9:33: 19:9b:ad:48:bd:98:29:7a:8d:54:1c:47:9b:a9:85: e3:d9:54:6a:ab:cd:6a:bc:27:bb:2d:4e:6f:18:63: 72:b9:a7:7a:70:3a:59:19:f3:cf:e4:bd:00:fb:5b: d0:78:40:f7:9a:c8:16:35:29:83:88:38:c1:b5:f1: a9:9a:bc:56:29:4c:22:0b:76:76:fa:e8:cb:21:e2: 5b:c3:de:d9:37:3a:82:53:75:d8:70:d7:b6:6d:73: 79:ef:cb:30:de:d9:da:9d:8c:73:0c:ad:f4:d0:20: e9:b0:72:3c:a4:be:5a:70:b9:2b:06:68:28:18:61: 4a:2e:01:26:22:b7:15:86:9f:af:aa:e2:35:fc:8b: 75:54:ff:ae:51:6d:dc:a5:3c:c2:95:ef:e2:55:f8: e8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:F1:CC:C2:5E:78:00:B9:4F:65:26:C9:53:DC:60:92:A7:EE:B6:29 X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/909AA4DC567011EFA451BD7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.251.216.0/21 Signature Algorithm: sha256WithRSAEncryption a9:9b:06:40:1e:5e:66:a4:12:be:92:c0:6b:0f:1c:0c:03:f6: 7c:07:41:a7:97:a7:d8:de:cf:a3:39:8b:a4:7c:6f:c9:70:e5: cd:06:86:c6:37:d5:fb:a4:7b:6b:a2:93:0c:88:cd:0d:4c:ca: 38:5b:ad:5f:66:89:d2:9d:fa:2a:ae:e5:37:fe:85:da:db:c5: f7:6b:59:b8:d1:75:98:cc:d3:a1:26:c4:63:9a:27:09:a2:8c: b9:18:a7:5b:65:09:4b:04:fc:f3:45:0e:42:4b:c7:16:0b:f3: 05:7b:f2:1e:ce:30:2b:11:dd:aa:b1:da:75:d3:bc:67:bf:7a: 51:be:18:5e:e3:c6:5e:4e:25:0e:c3:b1:88:19:42:81:27:29: c3:f9:d7:7b:ba:9f:96:32:74:0c:82:fd:9b:3a:c6:79:e5:54: fc:b8:f4:2c:38:b5:4c:9f:1c:c6:bf:40:81:f6:67:a8:21:40: cd:70:e7:3c:ee:2e:73:57:7c:d5:d4:fc:d6:ce:e7:0b:f1:63: aa:3d:f8:76:f8:86:f6:fa:0f:71:a6:eb:69:47:08:16:73:2d: 31:8f:e9:1e:06:bc:d8:23:d2:e5:a4:98:1a:c0:78:f0:10:6a: 8a:4e:3e:d5:11:fc:c2:b3:90:75:4d:28:23:0e:8f:9c:b8:45: e7:34:43:5f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjUxMjI0MTYxMjUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTRjMTEwMi1mOTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubZj57WP9hPVU/FzsyQAcduexX6vxzezoZciUga0Ybuj7HdtPHvJe6yI0iLs 9PxOUdO0iBtf4OrIEqKjn0LvqfpIE+1oyctcrM6/U4kfgF6f98CZhHHHB4RuktYU DcauOf4ybuyI+TMZm61IvZgpeo1UHEebqYXj2VRqq81qvCe7LU5vGGNyuad6cDpZ GfPP5L0A+1vQeED3msgWNSmDiDjBtfGpmrxWKUwiC3Z2+ujLIeJbw97ZNzqCU3XY cNe2bXN578sw3tnanYxzDK300CDpsHI8pL5acLkrBmgoGGFKLgEmIrcVhp+vquI1 /It1VP+uUW3cpTzCle/iVfjozwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDHxzMJe eAC5T2UmyVPcYJKn7rYpMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY4NjMvQkZFNTRBNjg4MTVCMTFFMjlCNThBNzNCMzI5MkI1RTgvOTA5QUE0REM1 NjcwMTFFRkE0NTFCRDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN0+9gwDQYJKoZIhvcNAQELBQADggEBAKmbBkAeXmakEr6S wGsPHAwD9nwHQaeXp9jez6M5i6R8b8lw5c0GhsY31fuke2uikwyIzQ1MyjhbrV9m idKd+iqu5Tf+hdrbxfdrWbjRdZjM06EmxGOaJwmijLkYp1tlCUsE/PNFDkJLxxYL 8wV78h7OMCsR3aqx2nXTvGe/elG+GF7jxl5OJQ7DsYgZQoEnKcP513u6n5YydAyC /Zs6xnnlVPy49Cw4tUyfHMa/QIH2Z6ghQM1w5zzuLnNXfNXU/NbO5wvxY6o9+Hb4 hvb6D3Gm62lHCBZzLTGP6R4GvNgj0uWkmBrAePAQaopOPtUR/MKzkHVNKCMOj5y4 Rec0Q18= -----END CERTIFICATE-----Generated at Wed Dec 24 19:30:22 2025 by rpki-client