This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/47D5EEA2A5FF11F08004B67CC4F9AE02.roa File: 47D5EEA2A5FF11F08004B67CC4F9AE02.roa (raw, json) Hash identifier: Yq/6jVPQzAm5hgRP7rXQoplDCQWlPs9QKDxMJ3MAfy8= Subject key identifier: 1F:CF:DD:1A:34:75:F5:BD:E2:79:AE:88:42:F9:2F:DD:2F:3F:B0:75 Certificate issuer: /CN=A91E3493/serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Certificate serial: 2A Authority key identifier: 31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/47D5EEA2A5FF11F08004B67CC4F9AE02.roa Signing time: Tue 18 Nov 2025 22:44:53 +0000 ROA not before: Tue 18 Nov 2025 22:44:53 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 15169 IP address blocks: 152.65.192.0/18 maxlen: 22 152.65.192.0/19 maxlen: 24 152.65.224.0/20 maxlen: 24 152.65.240.0/21 maxlen: 24 152.65.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 22:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3493, serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Validity Not Before: Nov 18 22:44:53 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=691cf6e5-c755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e2:ea:cb:a4:ae:e9:ec:e0:6c:a4:c0:1d:31: 0a:33:7c:95:57:bf:2a:ec:58:8f:a5:13:f6:1a:34: 07:03:62:c5:2d:f9:30:58:c8:47:f1:04:cf:25:08: 7a:d2:2b:0b:b5:41:d4:0d:fe:bd:70:4c:0e:56:17: a9:78:97:90:ba:ee:51:2c:43:8b:52:99:e9:fb:51: 3b:bf:31:ca:9d:63:f1:50:af:46:0b:37:ed:58:c6: 34:f7:fb:99:95:7e:51:a9:7f:37:51:69:c1:e1:76: 11:ea:67:51:45:71:ad:5a:96:af:71:fb:c7:b8:8c: f2:ad:30:31:4b:23:5a:c4:b5:29:41:77:42:5a:de: d9:c3:3b:a2:87:cd:5c:27:c7:98:94:7d:0a:f5:2e: f9:9c:aa:84:85:e9:ef:2f:1d:97:ef:c3:86:f4:42: 79:6c:eb:a3:35:c8:0b:ee:26:27:6a:fb:20:2a:5c: 3e:e5:a8:04:70:dd:85:b6:5d:ed:72:10:74:33:55: ca:49:81:53:ba:ff:05:0a:58:2b:2e:49:72:13:3f: b2:5b:95:69:6a:5f:07:8c:7b:3d:b3:3a:06:d9:1c: ed:58:2b:1a:8e:83:56:f4:1b:83:88:26:88:9d:47: 1a:75:82:5f:a1:32:2b:db:ca:20:50:77:8d:0e:a4: e1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:CF:DD:1A:34:75:F5:BD:E2:79:AE:88:42:F9:2F:DD:2F:3F:B0:75 X509v3 Authority Key Identifier: keyid:31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/47D5EEA2A5FF11F08004B67CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.65.192.0/18 Signature Algorithm: sha256WithRSAEncryption b1:27:e2:e6:2e:e6:00:9a:b9:7a:b3:e3:5f:36:d1:ca:b5:a2: 43:e1:49:49:36:41:89:39:e3:c4:d0:34:e3:d4:32:ff:df:93: af:9d:ef:40:7b:9d:a4:5a:a0:c0:c1:27:01:89:f1:9f:6a:54: 62:d5:54:d9:34:05:cb:b3:43:25:dc:57:61:59:e8:26:8b:e5: 04:95:f4:1f:89:04:c6:0f:39:8f:a4:ee:92:76:38:9a:55:f0: a5:dc:33:1f:b7:ec:c4:db:1c:34:92:dd:fa:60:7b:0d:27:68: a9:18:60:74:0b:a0:c5:ad:6d:02:c7:17:5f:f7:98:7f:06:25: 70:f8:64:f2:7e:b9:27:96:5a:67:69:62:14:35:01:6d:95:9d: 94:1f:40:60:5c:14:f0:b1:66:a2:11:83:37:b9:20:09:87:50: 3d:27:2c:9d:f0:f3:64:ab:5c:64:d2:4e:61:82:73:00:e2:e8: 7d:bf:14:89:ee:a8:74:14:1e:23:bb:ad:07:04:15:f1:77:ab: 27:23:6c:d7:65:6e:f8:1b:35:24:db:30:a0:f9:29:5b:56:bc: d8:b7:cf:09:c1:e2:83:ec:78:02:6f:bc:ff:3f:5a:82:d7:1b: fd:d2:0a:2f:a6:d8:17:47:00:87:78:d5:cc:51:96:c8:d2:9f: ab:37:81:2b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzQ5MzExMC8GA1UEBRMoMzEzMTFDRkNDMTQwMUJENkQwRTZCNkIzOTE2N0I2NUMy MTA5MjExNDAeFw0yNTExMTgyMjQ0NTNaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MWNmNmU1LWM3NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDV4urLpK7p7OBspMAdMQozfJVXvyrsWI+lE/YaNAcDYsUt+TBYyEfxBM8lCHrS Kwu1QdQN/r1wTA5WF6l4l5C67lEsQ4tSmen7UTu/McqdY/FQr0YLN+1YxjT3+5mV flGpfzdRacHhdhHqZ1FFca1alq9x+8e4jPKtMDFLI1rEtSlBd0Ja3tnDO6KHzVwn x5iUfQr1LvmcqoSF6e8vHZfvw4b0Qnls66M1yAvuJidq+yAqXD7lqARw3YW2Xe1y EHQzVcpJgVO6/wUKWCsuSXITP7JblWlqXweMez2zOgbZHO1YKxqOg1b0G4OIJoid Rxp1gl+hMivbyiBQd40OpOGTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUH8/dGjR1 9b3iea6IQvkv3S8/sHUwHwYDVR0jBBgwFoAUMTEc/MFAG9bQ5razkWe2XCEJIRQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzNDkzL0U1MkMxNEMwOUZG QTExRjBCQUQ1MEI2MUM0RjlBRTAyL01URWNfTUZBRzliUTVyYXprV2UyWENFSklS US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTVRFY19NRkFHOWJRNXJhemtXZTJYQ0VKSVJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzQ5My9FNTJDMTRDMDlGRkExMUYwQkFENTBCNjFDNEY5QUUwMi80N0Q1RUVBMkE1 RkYxMUYwODAwNEI2N0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBphBwDANBgkqhkiG9w0BAQsFAAOCAQEAsSfi5i7mAJq5erPj XzbRyrWiQ+FJSTZBiTnjxNA049Qy/9+Tr53vQHudpFqgwMEnAYnxn2pUYtVU2TQF y7NDJdxXYVnoJovlBJX0H4kExg85j6TuknY4mlXwpdwzH7fsxNscNJLd+mB7DSdo qRhgdAugxa1tAscXX/eYfwYlcPhk8n65J5ZaZ2liFDUBbZWdlB9AYFwU8LFmohGD N7kgCYdQPScsnfDzZKtcZNJOYYJzAOLofb8Uie6odBQeI7utBwQV8XerJyNs12Vu +Bs1JNswoPkpW1a82LfPCcHig+x4Am+8/z9agtcb/dIKL6bYF0cAh3jVzFGWyNKf qzeBKw== -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:48 2025 by rpki-client