This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E8B/FC75386ABE2111F0AFD5B519C4F9AE02/0359510CBE2711F08C3BFC4DC4F9AE02.roa File: 0359510CBE2711F08C3BFC4DC4F9AE02.roa (raw, json) Hash identifier: xMDfluTZ+ozklwcjk6WSJjCTPWq07m8+7WXhvd6X+vs= Subject key identifier: 4F:FA:B2:A0:F4:B9:9A:E6:53:75:E5:4A:DB:3F:BF:BC:FF:90:CD:E9 Certificate issuer: /CN=A91E3E8B/serialNumber=C217144291ADE1311AFB62D02E595037C8DAB5DC Certificate serial: 02 Authority key identifier: C2:17:14:42:91:AD:E1:31:1A:FB:62:D0:2E:59:50:37:C8:DA:B5:DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/whcUQpGt4TEa-2LQLllQN8jatdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E8B/FC75386ABE2111F0AFD5B519C4F9AE02/0359510CBE2711F08C3BFC4DC4F9AE02.roa Signing time: Mon 10 Nov 2025 11:18:42 +0000 ROA not before: Mon 10 Nov 2025 11:18:42 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133439 IP address blocks: 138.252.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E8B/FC75386ABE2111F0AFD5B519C4F9AE02/whcUQpGt4TEa-2LQLllQN8jatdw.crl rsync://rpki.apnic.net/member_repository/A91E3E8B/FC75386ABE2111F0AFD5B519C4F9AE02/whcUQpGt4TEa-2LQLllQN8jatdw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/whcUQpGt4TEa-2LQLllQN8jatdw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 06:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E8B, serialNumber=C217144291ADE1311AFB62D02E595037C8DAB5DC Validity Not Before: Nov 10 11:18:42 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6911ca12-e6ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fb:c6:f9:de:48:6a:45:fd:67:df:32:21:cf: d3:c2:5f:d5:35:9d:f2:af:f1:36:1c:3a:80:5c:cd: 9a:c6:77:02:6e:c4:ce:95:cf:0c:18:4a:e1:a8:36: c3:4a:a7:1e:97:86:b8:92:5b:d0:92:44:7b:20:a4: af:54:a4:6f:57:5c:49:84:3d:bd:43:c4:34:e3:ad: b5:ee:e7:ff:e1:cb:c9:5b:40:f3:1b:d4:88:f3:d3: dd:3e:37:07:66:67:2f:40:46:17:76:bb:47:c2:c5: 11:1c:cb:ae:07:5d:47:dc:83:44:9f:05:3e:73:69: 60:93:16:00:5c:88:87:a3:55:13:20:e1:bc:02:7d: e5:ad:16:cc:ac:4c:d8:bc:76:0a:4d:73:5a:71:34: e1:d6:96:97:1d:d0:70:d6:77:01:2c:97:c1:22:36: 08:c6:16:ea:c3:f1:1b:33:94:9a:82:53:02:ee:72: 28:cb:1f:57:8a:ab:95:e1:c4:de:e7:f7:d7:e5:65: da:8b:75:7e:57:cf:2a:c1:b3:e4:04:73:3e:24:9d: fd:8c:24:54:0e:c0:a3:42:b6:3a:e3:d5:80:08:a3: 5c:44:aa:aa:94:9d:77:5e:ec:94:26:e9:d9:53:f3: 53:a2:47:68:12:19:2a:83:93:42:c9:a1:34:fe:7f: a8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:FA:B2:A0:F4:B9:9A:E6:53:75:E5:4A:DB:3F:BF:BC:FF:90:CD:E9 X509v3 Authority Key Identifier: keyid:C2:17:14:42:91:AD:E1:31:1A:FB:62:D0:2E:59:50:37:C8:DA:B5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E8B/FC75386ABE2111F0AFD5B519C4F9AE02/whcUQpGt4TEa-2LQLllQN8jatdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/whcUQpGt4TEa-2LQLllQN8jatdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E8B/FC75386ABE2111F0AFD5B519C4F9AE02/0359510CBE2711F08C3BFC4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.115.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:3a:51:5e:36:54:e2:3d:48:67:64:54:84:eb:e3:c7:cf:5f: bb:06:54:ed:65:b9:b6:6f:af:76:0b:2b:82:12:cf:11:f3:c0: 63:6a:fc:d9:99:0a:3a:cf:f5:7b:78:45:a6:f5:cd:3e:26:e7: ca:19:f3:65:a8:62:35:84:05:53:c2:ed:4b:9e:0c:4a:96:be: da:5b:2d:fc:34:9c:f5:d6:50:b3:64:83:c7:d6:fc:00:8b:11: 96:25:b8:ca:8c:07:6d:bc:10:96:b4:3f:d7:61:45:3e:a6:5d: b7:33:74:4e:a7:c3:c1:02:c4:6f:99:3d:81:e3:23:d8:05:d5: c4:ef:34:38:89:e0:1d:37:7c:c6:37:33:fd:94:d3:f5:14:a2: 60:2b:3a:ff:f4:1f:af:02:24:b8:71:05:ff:35:d6:46:89:f5: 30:e3:53:63:c4:c4:a6:aa:e0:4f:b9:4c:57:d1:50:95:98:84: e8:a6:c4:2d:92:7f:61:84:1c:af:4e:26:27:a9:4f:e5:37:51: 3c:6d:73:1a:df:39:66:a6:be:6f:38:75:54:af:72:13:67:26: 4b:40:e3:4f:34:ba:50:31:59:03:26:a2:08:18:e4:ad:b0:73: 28:96:4a:d7:dc:29:41:cd:47:ec:c0:cc:1d:8a:fd:72:e0:e4: c9:2d:69:0c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0U4QjExMC8GA1UEBRMoQzIxNzE0NDI5MUFERTEzMTFBRkI2MkQwMkU1OTUwMzdD OERBQjVEQzAeFw0yNTExMTAxMTE4NDJaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MTFjYTEyLWU2YWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR+8b53khqRf1n3zIhz9PCX9U1nfKv8TYcOoBczZrGdwJuxM6VzwwYSuGoNsNK px6XhriSW9CSRHsgpK9UpG9XXEmEPb1DxDTjrbXu5//hy8lbQPMb1Ijz090+Nwdm Zy9ARhd2u0fCxREcy64HXUfcg0SfBT5zaWCTFgBciIejVRMg4bwCfeWtFsysTNi8 dgpNc1pxNOHWlpcd0HDWdwEsl8EiNgjGFurD8RszlJqCUwLucijLH1eKq5XhxN7n 99flZdqLdX5XzyrBs+QEcz4knf2MJFQOwKNCtjrj1YAIo1xEqqqUnXde7JQm6dlT 81OiR2gSGSqDk0LJoTT+f6ilAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUT/qyoPS5 muZTdeVK2z+/vP+QzekwHwYDVR0jBBgwFoAUwhcUQpGt4TEa+2LQLllQN8jatdww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRThCL0ZDNzUzODZBQkUy MTExRjBBRkQ1QjUxOUM0RjlBRTAyL3doY1VRcEd0NFRFYS0yTFFMbGxRTjhqYXRk dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvd2hjVVFwR3Q0VEVhLTJMUUxsbFFOOGphdGR3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0U4Qi9GQzc1Mzg2QUJFMjExMUYwQUZENUI1MTlDNEY5QUUwMi8wMzU5NTEwQ0JF MjcxMUYwOEMzQkZDNERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIr8czANBgkqhkiG9w0BAQsFAAOCAQEAGzpRXjZU4j1IZ2RU hOvjx89fuwZU7WW5tm+vdgsrghLPEfPAY2r82ZkKOs/1e3hFpvXNPibnyhnzZahi NYQFU8LtS54MSpa+2lst/DSc9dZQs2SDx9b8AIsRliW4yowHbbwQlrQ/12FFPqZd tzN0TqfDwQLEb5k9geMj2AXVxO80OIngHTd8xjcz/ZTT9RSiYCs6//QfrwIkuHEF /zXWRon1MONTY8TEpqrgT7lMV9FQlZiE6KbELZJ/YYQcr04mJ6lP5TdRPG1zGt85 Zqa+bzh1VK9yE2cmS0DjTzS6UDFZAyaiCBjkrbBzKJZK19wpQc1H7MDMHYr9cuDk yS1pDA== -----END CERTIFICATE-----Generated at Wed Dec 3 14:52:47 2025 by rpki-client