This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4700/186F2C2ABB8311F088969765C4F9AE02/A9CD5C92BB8C11F08999FE2AC4F9AE02.roa File: A9CD5C92BB8C11F08999FE2AC4F9AE02.roa (raw, json) Hash identifier: syJLr3ikJeHQEQVvYs24+4w7PIGZMRhXV4y7W7GEFZM= Subject key identifier: CC:50:DF:B5:93:9B:47:A9:7E:A6:6C:0E:63:15:99:5D:07:4B:BA:BF Certificate issuer: /CN=A91E4700/serialNumber=BC25CD4E48AEDF608B49CC298472C5C06E8BF6FB Certificate serial: 25 Authority key identifier: BC:25:CD:4E:48:AE:DF:60:8B:49:CC:29:84:72:C5:C0:6E:8B:F6:FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vCXNTkiu32CLScwphHLFwG6L9vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4700/186F2C2ABB8311F088969765C4F9AE02/A9CD5C92BB8C11F08999FE2AC4F9AE02.roa Signing time: Wed 07 Jan 2026 07:24:48 +0000 ROA not before: Wed 07 Jan 2026 07:24:48 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63850 IP address blocks: 138.252.168.0/23 maxlen: 23 138.252.168.0/24 maxlen: 24 138.252.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4700/186F2C2ABB8311F088969765C4F9AE02/vCXNTkiu32CLScwphHLFwG6L9vs.crl rsync://rpki.apnic.net/member_repository/A91E4700/186F2C2ABB8311F088969765C4F9AE02/vCXNTkiu32CLScwphHLFwG6L9vs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vCXNTkiu32CLScwphHLFwG6L9vs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 06:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4700, serialNumber=BC25CD4E48AEDF608B49CC298472C5C06E8BF6FB Validity Not Before: Jan 7 07:24:48 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695e0a40-88d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:32:8f:ac:cd:df:8e:8e:6d:7e:97:67:2f:39: c0:a3:ca:d5:c1:91:bb:6d:14:e8:d6:2a:7a:01:67: d3:75:74:62:b0:a8:a6:d6:71:37:2d:35:d1:e7:ac: b9:cc:da:01:53:6b:81:dc:0f:97:24:c3:bf:76:73: e8:92:e6:1e:f2:17:47:01:8d:fa:a1:3c:8d:13:bb: fb:13:48:fd:fb:b2:03:c2:25:a0:71:a1:1c:4f:cd: 17:0c:25:27:2e:b5:18:fe:40:20:ff:06:5b:6e:93: 1d:30:68:a5:a6:2c:f6:98:68:8c:39:2b:b6:e0:47: 86:d0:c9:3e:3c:2d:0c:81:03:09:11:2c:b1:b5:97: e3:7f:31:4c:77:4a:6c:39:a8:92:78:c1:58:e5:35: 3a:d1:01:c3:73:ee:28:d3:1c:da:f7:63:fb:ce:fc: bc:8e:f3:3c:66:2c:b1:e8:45:cb:83:68:59:64:82: 7a:3c:13:66:38:cb:d3:9f:1c:59:5c:26:6b:72:a6: 0f:bc:cf:b6:2d:8c:ca:4b:c2:6f:25:1f:e2:cd:94: 79:43:b3:2f:11:c8:46:48:80:88:bd:34:6e:e3:19: 08:bb:59:a3:f6:e2:68:9d:b0:1e:e5:7e:14:1e:c9: e9:83:26:b9:85:bf:e9:97:a7:7b:3b:06:ef:c0:fe: 49:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:50:DF:B5:93:9B:47:A9:7E:A6:6C:0E:63:15:99:5D:07:4B:BA:BF X509v3 Authority Key Identifier: keyid:BC:25:CD:4E:48:AE:DF:60:8B:49:CC:29:84:72:C5:C0:6E:8B:F6:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4700/186F2C2ABB8311F088969765C4F9AE02/vCXNTkiu32CLScwphHLFwG6L9vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vCXNTkiu32CLScwphHLFwG6L9vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4700/186F2C2ABB8311F088969765C4F9AE02/A9CD5C92BB8C11F08999FE2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.168.0/23 Signature Algorithm: sha256WithRSAEncryption 88:d9:23:46:c0:63:e5:0d:f1:13:aa:b4:2d:14:aa:fd:05:6b: 95:b2:ad:92:55:fa:66:24:f6:b8:97:1c:42:5e:f0:7c:b8:5b: 62:5e:3b:2b:67:f0:4e:d2:aa:67:bf:c2:84:bc:6c:57:ec:86: 0f:c6:0a:13:92:ae:1b:73:8c:38:87:95:91:4e:85:b1:9e:5f: ba:78:dc:97:70:7c:e9:0a:2a:f5:a9:84:77:a7:05:96:98:c9: db:06:c1:6e:8d:d0:da:d2:f6:02:df:f0:41:93:e4:32:ad:78: ab:7e:f6:b8:8c:3f:dc:1f:45:93:ed:01:ac:db:fc:9e:89:6d: 41:14:19:88:6f:bb:85:ed:35:1e:c2:37:56:93:61:b1:a3:9c: 68:0c:a4:49:c2:5f:18:c1:20:e5:ab:4a:ca:ef:44:13:ab:8d: d6:a5:ce:dd:a4:46:7a:5f:27:04:0e:a0:b2:66:fb:10:75:81: cd:d2:11:c4:be:a8:a5:df:ce:8d:7a:9a:8f:39:66:78:a1:11: 94:0b:51:36:72:2d:0d:0b:9f:e5:fd:48:d5:5d:12:4e:ed:10: a2:67:17:8f:82:b9:b1:9f:8a:3e:20:42:1e:1e:ae:08:f3:7a: ca:42:f8:13:b5:84:46:75:60:85:fc:02:98:dc:cc:8c:a4:a6: 67:44:18:32 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFF NDcwMDExMC8GA1UEBRMoQkMyNUNENEU0OEFFREY2MDhCNDlDQzI5ODQ3MkM1QzA2 RThCRjZGQjAeFw0yNjAxMDcwNzI0NDhaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NWUwYTQwLTg4ZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCQMo+szd+Ojm1+l2cvOcCjytXBkbttFOjWKnoBZ9N1dGKwqKbWcTctNdHnrLnM 2gFTa4HcD5ckw792c+iS5h7yF0cBjfqhPI0Tu/sTSP37sgPCJaBxoRxPzRcMJScu tRj+QCD/Bltukx0waKWmLPaYaIw5K7bgR4bQyT48LQyBAwkRLLG1l+N/MUx3Smw5 qJJ4wVjlNTrRAcNz7ijTHNr3Y/vO/LyO8zxmLLHoRcuDaFlkgno8E2Y4y9OfHFlc Jmtypg+8z7YtjMpLwm8lH+LNlHlDsy8RyEZIgIi9NG7jGQi7WaP24midsB7lfhQe yemDJrmFv+mXp3s7Bu/A/km9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzFDftZOb R6l+pmwOYxWZXQdLur8wHwYDVR0jBBgwFoAUvCXNTkiu32CLScwphHLFwG6L9vsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0NzAwLzE4NkYyQzJBQkI4 MzExRjA4ODk2OTc2NUM0RjlBRTAyL3ZDWE5Ua2l1MzJDTFNjd3BoSExGd0c2TDl2 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdkNYTlRraXUzMkNMU2N3cGhITEZ3RzZMOXZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDcwMC8xODZGMkMyQUJCODMxMUYwODg5Njk3NjVDNEY5QUUwMi9BOUNENUM5MkJC OEMxMUYwODk5OUZFMkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8qDANBgkqhkiG9w0BAQsFAAOCAQEAiNkjRsBj5Q3xE6q0 LRSq/QVrlbKtklX6ZiT2uJccQl7wfLhbYl47K2fwTtKqZ7/ChLxsV+yGD8YKE5Ku G3OMOIeVkU6FsZ5funjcl3B86Qoq9amEd6cFlpjJ2wbBbo3Q2tL2At/wQZPkMq14 q372uIw/3B9Fk+0BrNv8noltQRQZiG+7he01HsI3VpNhsaOcaAykScJfGMEg5atK yu9EE6uN1qXO3aRGel8nBA6gsmb7EHWBzdIRxL6opd/OjXqajzlmeKERlAtRNnIt DQuf5f1I1V0STu0QomcXj4K5sZ+KPiBCHh6uCPN6ykL4E7WERnVghfwCmNzMjKSm Z0QYMg== -----END CERTIFICATE-----Generated at Sun Jan 18 04:32:29 2026 by rpki-client