This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/48DA881CA5FF11F08004B67CC4F9AE02.roa File: 48DA881CA5FF11F08004B67CC4F9AE02.roa (raw, json) Hash identifier: U7Bt5g8XtBArxtex2r2qjcE8yon03irN5KZgG3SqjtY= Subject key identifier: D0:21:9D:C4:53:BE:8D:0E:E9:45:66:FF:A1:4E:F7:10:42:28:8C:EB Certificate issuer: /CN=A91E3493/serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Certificate serial: 2C Authority key identifier: 31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/48DA881CA5FF11F08004B67CC4F9AE02.roa Signing time: Tue 18 Nov 2025 22:44:55 +0000 ROA not before: Tue 18 Nov 2025 22:44:55 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 396982 IP address blocks: 152.65.192.0/18 maxlen: 21 152.65.192.0/19 maxlen: 24 152.65.224.0/20 maxlen: 24 152.65.240.0/21 maxlen: 24 152.65.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 22:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3493, serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Validity Not Before: Nov 18 22:44:55 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=691cf6e6-3412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:83:94:b3:80:55:93:f1:e9:06:48:68:6d:1f: 3c:fa:cb:73:7f:33:b3:9f:04:f8:48:cf:3d:d1:5e: 6f:06:e4:a1:d8:f2:42:0a:1f:2b:cf:7f:16:e3:da: 91:d0:f0:e4:4d:3b:89:8e:be:6c:a3:5f:58:94:9b: 2d:2a:24:73:23:d2:c5:ea:f2:21:9f:24:ca:8c:0f: d7:42:2d:d5:0b:f2:37:ef:28:64:05:46:a8:27:7c: 94:f3:c9:66:00:d5:ce:65:1a:c9:9d:e5:2e:80:f3: 14:ce:2b:99:5c:32:7d:c1:30:55:5d:6b:e5:36:7e: cf:06:f0:de:e3:25:29:c3:eb:4c:ae:9e:f6:38:09: a2:9a:fc:81:b7:8b:0d:9f:bd:1f:d9:ac:09:3d:df: 75:76:35:b4:fc:15:0a:c5:07:81:0f:9d:05:cd:d3: d5:2f:61:14:1e:a9:39:0b:27:9c:4b:51:a6:61:3b: eb:87:8c:1f:ae:b9:f0:25:70:c0:89:ba:66:63:cb: 71:a4:d0:51:cb:20:c1:13:80:6b:33:6f:4f:90:81: 63:5a:6a:1f:f5:75:7e:36:f5:1f:74:3d:9d:7b:a4: 1f:8f:4d:b2:f5:77:9a:45:9b:88:f9:ab:91:d1:f9: 64:f5:35:b6:d9:3d:e9:ed:3f:06:a5:d7:b6:46:05: e8:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:21:9D:C4:53:BE:8D:0E:E9:45:66:FF:A1:4E:F7:10:42:28:8C:EB X509v3 Authority Key Identifier: keyid:31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/48DA881CA5FF11F08004B67CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.65.192.0/18 Signature Algorithm: sha256WithRSAEncryption 38:3e:cc:3f:ff:8c:97:7c:b3:1d:c7:26:94:02:bd:82:32:71: 8b:fc:65:75:39:66:ef:e5:6b:65:cd:69:ae:37:09:a3:43:48: 89:30:43:c4:b0:9a:66:53:ab:dd:d1:26:01:24:b7:66:ba:03: c2:67:7a:87:57:ec:f3:d0:2f:20:4d:ae:af:44:7e:18:48:b0: f0:7e:39:a5:de:61:45:b7:f1:b7:43:cd:36:4a:c9:58:03:37: 7f:74:ec:63:49:73:06:36:fb:d8:a0:3f:a4:be:8a:02:a1:c7: 0b:7a:8f:bb:ff:83:a1:4d:06:0a:3d:ba:65:91:fc:3f:2f:01: 2b:94:e7:7e:c1:32:27:42:d1:42:28:af:a8:f2:98:ba:69:b5: 9a:c8:45:30:4c:99:ae:02:af:ff:78:8a:68:b3:b6:fb:9e:47: a6:e5:d4:82:a1:a6:90:7d:cf:e7:31:41:dc:ba:e5:a6:da:f6: cb:33:fb:b7:9a:1a:93:e1:28:5d:99:0c:6e:5e:16:eb:ea:03: 6e:99:d5:81:f7:db:76:99:8f:2c:83:5a:10:82:a8:97:fc:76: 04:34:76:ea:94:73:3f:fc:af:c0:4a:a5:10:a5:21:e5:05:43: 70:49:29:cf:c6:7c:d7:96:2f:f9:eb:f2:31:f0:fb:35:d0:38: 0d:b6:e1:8a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzQ5MzExMC8GA1UEBRMoMzEzMTFDRkNDMTQwMUJENkQwRTZCNkIzOTE2N0I2NUMy MTA5MjExNDAeFw0yNTExMTgyMjQ0NTVaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MWNmNmU2LTM0MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1g5SzgFWT8ekGSGhtHzz6y3N/M7OfBPhIzz3RXm8G5KHY8kIKHyvPfxbj2pHQ 8ORNO4mOvmyjX1iUmy0qJHMj0sXq8iGfJMqMD9dCLdUL8jfvKGQFRqgnfJTzyWYA 1c5lGsmd5S6A8xTOK5lcMn3BMFVda+U2fs8G8N7jJSnD60yunvY4CaKa/IG3iw2f vR/ZrAk933V2NbT8FQrFB4EPnQXN09UvYRQeqTkLJ5xLUaZhO+uHjB+uufAlcMCJ umZjy3Gk0FHLIMETgGszb0+QgWNaah/1dX429R90PZ17pB+PTbL1d5pFm4j5q5HR +WT1NbbZPentPwal17ZGBeitAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0CGdxFO+ jQ7pRWb/oU73EEIojOswHwYDVR0jBBgwFoAUMTEc/MFAG9bQ5razkWe2XCEJIRQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzNDkzL0U1MkMxNEMwOUZG QTExRjBCQUQ1MEI2MUM0RjlBRTAyL01URWNfTUZBRzliUTVyYXprV2UyWENFSklS US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTVRFY19NRkFHOWJRNXJhemtXZTJYQ0VKSVJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzQ5My9FNTJDMTRDMDlGRkExMUYwQkFENTBCNjFDNEY5QUUwMi80OERBODgxQ0E1 RkYxMUYwODAwNEI2N0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBphBwDANBgkqhkiG9w0BAQsFAAOCAQEAOD7MP/+Ml3yzHccm lAK9gjJxi/xldTlm7+VrZc1prjcJo0NIiTBDxLCaZlOr3dEmASS3ZroDwmd6h1fs 89AvIE2ur0R+GEiw8H45pd5hRbfxt0PNNkrJWAM3f3TsY0lzBjb72KA/pL6KAqHH C3qPu/+DoU0GCj26ZZH8Py8BK5TnfsEyJ0LRQiivqPKYumm1mshFMEyZrgKv/3iK aLO2+55HpuXUgqGmkH3P5zFB3Lrlptr2yzP7t5oak+EoXZkMbl4W6+oDbpnVgffb dpmPLINaEIKol/x2BDR26pRzP/yvwEqlEKUh5QVDcEkpz8Z815Yv+evyMfD7NdA4 Dbbhig== -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:53 2025 by rpki-client