This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/5DF144D4C28811EB8BB7245FC4F9AE02.roa File: 5DF144D4C28811EB8BB7245FC4F9AE02.roa (raw, json) Hash identifier: OzHKLHd1U6YzvsmrK7q/33ZmI9ffZaYBM7HgN6f2pcI= Subject key identifier: EF:69:2D:C4:F1:88:6A:6D:A1:04:79:CB:DF:3A:1C:76:15:1A:61:16 Certificate issuer: /CN=A91E38C1/serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Certificate serial: 34F8 Authority key identifier: 33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/5DF144D4C28811EB8BB7245FC4F9AE02.roa Signing time: Sun 31 Aug 2025 15:01:01 +0000 ROA not before: Sun 31 Aug 2025 15:01:01 +0000 ROA not after: Thu 01 Jan 2026 00:00:00 +0000 asID: 9229 IP address blocks: 119.252.228.0/24 maxlen: 24 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 13560 (0x34f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E38C1, serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Validity Not Before: Aug 31 15:01:01 2025 GMT Not After : Jan 1 00:00:00 2026 GMT Subject: CN=68b463ac-a203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:49:5a:b5:76:6b:de:3d:d6:d4:fd:08:62:b1: 6b:b7:5e:38:85:38:48:23:14:0f:68:10:d4:8e:a4: ef:2d:77:c0:ba:b2:57:7f:d1:85:0c:af:48:92:a4: 73:d7:ab:ab:39:75:5c:03:d4:64:61:a7:dd:4c:ae: 1d:a7:08:f6:63:90:89:0f:25:4e:53:2a:9c:af:45: a6:6b:78:47:d6:14:d6:a1:6f:20:48:8a:02:dd:62: 39:b3:b7:c5:1e:47:db:4f:4a:83:b1:86:69:3e:4d: da:2d:70:0d:4e:d1:c4:67:c6:4e:b6:f0:20:c4:25: 8c:26:f1:fd:c1:9a:61:13:ef:cf:a0:32:3e:84:f0: 2e:e6:70:d1:64:0b:a3:fe:77:51:f9:de:5a:41:b6: 98:b1:12:ac:6f:9e:f1:2e:b1:3b:e5:c7:ee:03:a8: a7:20:8f:de:b0:a4:b7:67:e4:cc:25:e0:50:b3:20: d9:55:f5:85:4a:81:45:10:6d:16:ea:cf:2a:a4:bc: e1:ef:d7:3d:19:92:e4:e4:67:24:4b:3b:ca:d4:47: a2:3f:63:ef:74:6c:11:52:fc:00:91:a3:42:3d:9b: fd:02:e4:13:80:37:4c:49:f2:ff:0c:27:0c:d1:65: 7d:ec:fe:7b:64:2b:55:c0:6f:2a:f7:de:63:3a:8d: 64:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:69:2D:C4:F1:88:6A:6D:A1:04:79:CB:DF:3A:1C:76:15:1A:61:16 X509v3 Authority Key Identifier: keyid:33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/5DF144D4C28811EB8BB7245FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.252.228.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:9f:57:b6:68:06:b5:12:da:2e:a8:f2:ed:84:1b:8a:8d:3c: ec:2b:85:bc:a3:b7:1e:e3:92:c4:0b:32:fd:e7:11:52:52:de: 2f:be:81:83:82:fe:c8:31:43:12:6d:6b:2e:1f:29:87:85:2d: 39:25:11:09:9d:7b:05:b0:0b:59:0e:b3:e3:89:9e:38:b1:d1: e9:a3:07:8f:e0:57:8f:9f:eb:e4:76:cd:95:28:8b:81:95:41: 24:e3:7c:f5:50:74:ff:66:e0:7b:0b:c6:f4:6b:1f:2c:0d:d8: 59:c3:e0:c3:e0:4e:f9:31:4e:4d:c1:f0:8f:ac:55:87:e6:f6: 83:84:34:0e:03:0b:bc:58:68:ec:90:68:88:e8:79:b5:68:9e: 60:67:4e:c5:5f:a4:e0:7a:8f:58:25:ba:b8:f2:72:28:bb:21: bd:68:fc:b6:11:4c:ca:34:be:70:26:39:41:ba:88:26:b6:c1: 75:59:59:73:34:73:e7:e2:61:28:d8:43:1f:4c:0d:8f:08:3f: 3c:ee:33:c4:8d:ba:5b:06:20:c6:0e:a4:b5:26:ad:5c:89:01: 39:f7:54:ca:6a:8e:1e:78:b1:12:2b:ee:4d:ca:46:29:87:d4: 27:c5:ce:0d:10:c6:ae:a9:5c:fe:b5:a9:3a:74:df:6f:32:16: 44:c6:7c:c3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4QzExMTAvBgNVBAUTKDMzOEJENzgxRUQyMUU1REIxNDA1N0IzN0I5MDNBMkE0 MDhFMjQyMDIwHhcNMjUwODMxMTUwMTAxWhcNMjYwMTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI0NjNhYy1hMjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvElatXZr3j3W1P0IYrFrt144hThIIxQPaBDUjqTvLXfAurJXf9GFDK9IkqRz 16urOXVcA9RkYafdTK4dpwj2Y5CJDyVOUyqcr0Wma3hH1hTWoW8gSIoC3WI5s7fF HkfbT0qDsYZpPk3aLXANTtHEZ8ZOtvAgxCWMJvH9wZphE+/PoDI+hPAu5nDRZAuj /ndR+d5aQbaYsRKsb57xLrE75cfuA6inII/esKS3Z+TMJeBQsyDZVfWFSoFFEG0W 6s8qpLzh79c9GZLk5GckSzvK1EeiP2PvdGwRUvwAkaNCPZv9AuQTgDdMSfL/DCcM 0WV97P57ZCtVwG8q995jOo1kUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFO9pLcTx iGptoQR5y986HHYVGmEWMB8GA1UdIwQYMBaAFDOL14HtIeXbFAV7N7kDoqQI4kIC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzhDMS9FNzVBQzI2MjFE OTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVkc1VCWHMzdVFPaXBBamlR Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL000dlhnZTBoNWRzVUJYczN1UU9pcEFqaVFnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM4QzEvRTc1QUMyNjIxRDk3MTFFMjhFRjg5MjgxMDhCMDJDRDIvNURGMTQ0RDRD Mjg4MTFFQjhCQjcyNDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3/OQwDQYJKoZIhvcNAQELBQADggEBAHyfV7ZoBrUS2i6o 8u2EG4qNPOwrhbyjtx7jksQLMv3nEVJS3i++gYOC/sgxQxJtay4fKYeFLTklEQmd ewWwC1kOs+OJnjix0emjB4/gV4+f6+R2zZUoi4GVQSTjfPVQdP9m4HsLxvRrHywN 2FnD4MPgTvkxTk3B8I+sVYfm9oOENA4DC7xYaOyQaIjoebVonmBnTsVfpOB6j1gl urjycii7Ib1o/LYRTMo0vnAmOUG6iCa2wXVZWXM0c+fiYSjYQx9MDY8IPzzuM8SN ulsGIMYOpLUmrVyJATn3VMpqjh54sRIr7k3KRimH1CfFzg0Qxq6pXP61qTp0328y FkTGfMM= -----END CERTIFICATE-----Generated at Sun Dec 21 19:31:46 2025 by rpki-client