This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4700/186F2C2ABB8311F088969765C4F9AE02/A9CD5C92BB8C11F08999FE2AC4F9AE02.roa File: A9CD5C92BB8C11F08999FE2AC4F9AE02.roa (raw, json) Hash identifier: /D964zCXO8/n9D0LIEnRf6QWumX/XFVsi0kXmNEcZNw= Subject key identifier: 52:31:84:2A:EF:96:64:83:10:58:21:DC:99:1D:C7:65:DD:73:9D:94 Certificate issuer: /CN=A91E4700/serialNumber=BC25CD4E48AEDF608B49CC298472C5C06E8BF6FB Certificate serial: 03 Authority key identifier: BC:25:CD:4E:48:AE:DF:60:8B:49:CC:29:84:72:C5:C0:6E:8B:F6:FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vCXNTkiu32CLScwphHLFwG6L9vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4700/186F2C2ABB8311F088969765C4F9AE02/A9CD5C92BB8C11F08999FE2AC4F9AE02.roa Signing time: Fri 07 Nov 2025 03:48:47 +0000 ROA not before: Fri 07 Nov 2025 03:48:47 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 63850 IP address blocks: 138.252.168.0/23 maxlen: 23 138.252.168.0/24 maxlen: 24 138.252.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4700/186F2C2ABB8311F088969765C4F9AE02/vCXNTkiu32CLScwphHLFwG6L9vs.crl rsync://rpki.apnic.net/member_repository/A91E4700/186F2C2ABB8311F088969765C4F9AE02/vCXNTkiu32CLScwphHLFwG6L9vs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vCXNTkiu32CLScwphHLFwG6L9vs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 06:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4700, serialNumber=BC25CD4E48AEDF608B49CC298472C5C06E8BF6FB Validity Not Before: Nov 7 03:48:47 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=690d6c1e-4a8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d5:04:2f:8b:d8:9a:97:ef:39:08:51:54:5d: 91:6a:52:ef:da:ad:5e:00:4d:e1:01:09:08:94:43: 32:d1:44:3d:f3:06:c3:53:6e:5e:c9:18:fc:53:d2: db:07:ff:d3:cf:56:2f:3b:47:3a:9f:77:be:18:f6: e9:17:70:ac:97:a5:d8:17:08:6b:c8:5e:7e:94:b3: 1b:1e:3d:21:35:3b:27:81:17:2e:b7:04:31:e6:13: 21:78:9c:5c:e3:7a:b8:03:11:36:7a:de:f5:36:89: 1a:a4:44:a1:e1:9c:20:f5:f7:12:3c:ce:71:01:c9: c7:80:59:8c:89:35:d9:d3:a5:f6:4d:e4:cd:9c:d6: b1:55:99:58:10:62:00:5b:bf:76:36:42:50:70:ba: 9e:74:14:3e:88:03:c6:dd:21:68:6d:d6:e6:7b:95: c8:d1:ea:1e:7c:cc:ce:9d:34:ab:d3:6d:94:16:a3: 8f:3a:6a:87:3d:9d:06:2c:bc:bb:ef:1e:3d:18:c8: ab:ec:39:1e:f0:7b:2b:b4:37:0b:d2:1b:ff:83:e4: 3d:f3:da:4e:14:05:1b:9a:a4:21:a7:a6:d3:16:17: 32:f8:a1:3a:ce:5b:cb:ad:cb:1a:28:c1:c0:0d:0a: 83:33:b5:bb:ee:3c:aa:e4:58:be:8f:65:de:c0:10: 38:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:31:84:2A:EF:96:64:83:10:58:21:DC:99:1D:C7:65:DD:73:9D:94 X509v3 Authority Key Identifier: keyid:BC:25:CD:4E:48:AE:DF:60:8B:49:CC:29:84:72:C5:C0:6E:8B:F6:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4700/186F2C2ABB8311F088969765C4F9AE02/vCXNTkiu32CLScwphHLFwG6L9vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vCXNTkiu32CLScwphHLFwG6L9vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4700/186F2C2ABB8311F088969765C4F9AE02/A9CD5C92BB8C11F08999FE2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.168.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:24:82:40:4d:c3:e7:4d:07:12:11:8a:3a:b9:87:c7:eb:61: 47:b5:1a:f6:d7:9e:1f:10:f2:f6:49:62:f0:9f:db:ff:8d:81: 08:16:59:7d:eb:0d:8c:f2:21:3e:96:17:22:52:16:e6:e2:5a: d1:97:20:f8:93:48:49:5a:a6:80:86:fb:1f:d4:d5:7f:98:7b: 77:3e:ef:5c:90:44:df:85:6d:0f:be:72:eb:9d:0d:04:09:14: 7b:b6:a5:85:dd:f9:93:d7:f0:14:8b:d7:2a:61:c8:84:ad:70: 9c:76:f2:e8:dc:24:20:e9:8b:f4:69:56:58:c8:fe:a8:03:20: bd:59:2a:3a:ca:3a:be:95:91:3f:b7:6d:e5:bf:b8:a3:55:c8: ba:87:31:e6:4d:fe:7e:34:a5:20:40:c7:0c:bd:53:67:8b:90: da:56:48:32:1d:cb:9e:8d:e8:06:5d:84:ca:e5:08:90:28:b0: 9a:42:f9:a0:bf:84:9d:63:24:19:f9:f5:cc:de:25:71:6c:9d: c4:dd:8b:ce:58:60:2e:3f:89:3f:12:25:7d:90:0e:b0:17:71: 8e:0c:5f:38:01:6e:2d:b9:bf:a1:0f:0c:7d:83:12:be:fb:9c: 5c:24:68:f4:03:2d:84:7b:b2:93:0c:a1:0d:cc:8f:1b:82:4e: 78:a2:03:17 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NDcwMDExMC8GA1UEBRMoQkMyNUNENEU0OEFFREY2MDhCNDlDQzI5ODQ3MkM1QzA2 RThCRjZGQjAeFw0yNTExMDcwMzQ4NDdaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MGQ2YzFlLTRhOGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDi1QQvi9ial+85CFFUXZFqUu/arV4ATeEBCQiUQzLRRD3zBsNTbl7JGPxT0tsH /9PPVi87Rzqfd74Y9ukXcKyXpdgXCGvIXn6UsxsePSE1OyeBFy63BDHmEyF4nFzj ergDETZ63vU2iRqkRKHhnCD19xI8znEByceAWYyJNdnTpfZN5M2c1rFVmVgQYgBb v3Y2QlBwup50FD6IA8bdIWht1uZ7lcjR6h58zM6dNKvTbZQWo486aoc9nQYsvLvv Hj0YyKvsOR7weyu0NwvSG/+D5D3z2k4UBRuapCGnptMWFzL4oTrOW8utyxoowcAN CoMztbvuPKrkWL6PZd7AEDiZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUjGEKu+W ZIMQWCHcmR3HZd1znZQwHwYDVR0jBBgwFoAUvCXNTkiu32CLScwphHLFwG6L9vsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0NzAwLzE4NkYyQzJBQkI4 MzExRjA4ODk2OTc2NUM0RjlBRTAyL3ZDWE5Ua2l1MzJDTFNjd3BoSExGd0c2TDl2 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdkNYTlRraXUzMkNMU2N3cGhITEZ3RzZMOXZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDcwMC8xODZGMkMyQUJCODMxMUYwODg5Njk3NjVDNEY5QUUwMi9BOUNENUM5MkJC OEMxMUYwODk5OUZFMkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8qDANBgkqhkiG9w0BAQsFAAOCAQEALSSCQE3D500HEhGK OrmHx+thR7Ua9teeHxDy9kli8J/b/42BCBZZfesNjPIhPpYXIlIW5uJa0Zcg+JNI SVqmgIb7H9TVf5h7dz7vXJBE34VtD75y650NBAkUe7alhd35k9fwFIvXKmHIhK1w nHby6NwkIOmL9GlWWMj+qAMgvVkqOso6vpWRP7dt5b+4o1XIuocx5k3+fjSlIEDH DL1TZ4uQ2lZIMh3Lno3oBl2EyuUIkCiwmkL5oL+EnWMkGfn1zN4lcWydxN2Lzlhg Lj+JPxIlfZAOsBdxjgxfOAFuLbm/oQ8MfYMSvvucXCRo9AMthHuykwyhDcyPG4JO eKIDFw== -----END CERTIFICATE-----Generated at Wed Dec 3 14:52:20 2025 by rpki-client