This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/A947EC6ED0BA11EFB7A6B027C4F9AE02.roa File: A947EC6ED0BA11EFB7A6B027C4F9AE02.roa (raw, json) Hash identifier: gdJaViuBwvdpPTeyFSaMX4mD+CpzF4bPGx3ZYKFPeLA= Subject key identifier: 86:23:94:21:1C:A6:40:3B:64:83:5C:6B:2B:74:83:25:CB:01:75:76 Certificate issuer: /CN=A91E5832/serialNumber=6147A2A6F106DC56013DC3BCFBA0B4B753ECD1BC Certificate serial: A0 Authority key identifier: 61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/A947EC6ED0BA11EFB7A6B027C4F9AE02.roa Signing time: Sat 15 Nov 2025 04:22:05 +0000 ROA not before: Sat 15 Nov 2025 04:22:05 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 132714 IP address blocks: 160.191.38.0/24 maxlen: 24 160.191.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:32:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5832, serialNumber=6147A2A6F106DC56013DC3BCFBA0B4B753ECD1BC Validity Not Before: Nov 15 04:22:05 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6917ffed-8fce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2a:17:da:91:0b:45:60:3f:c3:44:41:f9:15: fe:ba:16:9d:f4:6f:34:06:70:ba:e3:65:0d:e9:08: 8a:6a:71:b9:8e:26:6e:ae:3f:b5:46:8f:df:a5:d2: 0f:91:66:e3:3c:5b:61:6b:0c:2d:5d:cb:cf:0d:9e: 93:cf:ab:15:0f:d3:83:70:29:7c:0b:35:dc:4a:31: 66:79:46:67:31:4f:62:41:70:db:a8:59:55:49:84: 9b:91:ef:18:78:82:a4:22:d1:3d:2b:d9:2a:ab:b3: 37:ef:d8:bd:03:36:db:14:a6:5d:e4:ae:e6:4c:c2: 71:c6:38:44:50:3b:b3:33:c1:da:0a:f5:a9:48:dc: ed:d6:e3:6f:d7:dc:26:71:bd:ef:ab:14:69:27:6a: ef:da:2d:1b:39:9c:40:23:46:ed:df:f3:ed:3d:f6: e6:8e:6c:49:49:a1:70:05:1e:70:01:b1:89:a1:5d: f1:07:ac:a9:28:1c:ac:6f:0c:f6:63:10:37:39:c5: 28:2e:0e:bc:0b:5e:db:5e:ec:6c:bc:c5:31:c0:78: dc:96:11:71:01:5f:c9:8c:53:48:dc:3b:6b:b9:5b: ac:77:f3:ab:7e:77:45:bb:41:5b:f0:59:80:b0:ac: b7:1d:ad:b5:64:a3:ce:99:67:cb:8e:37:0c:06:9a: 0e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:23:94:21:1C:A6:40:3B:64:83:5C:6B:2B:74:83:25:CB:01:75:76 X509v3 Authority Key Identifier: keyid:61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/A947EC6ED0BA11EFB7A6B027C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.38.0/23 Signature Algorithm: sha256WithRSAEncryption 23:70:f2:7d:58:a6:d8:da:2a:72:6a:bb:7f:fe:06:53:e9:5c: 1a:28:fe:4e:fc:a0:14:a7:5f:86:06:1a:6b:b2:15:a8:ed:b9: cf:58:13:51:63:7f:dc:f4:4b:92:20:3e:36:0f:d5:f6:6b:43: ca:52:32:64:57:36:82:64:e7:39:05:6e:79:dd:6a:6b:48:a4: b7:5d:2e:c3:5b:8a:bc:7c:24:2f:7f:e0:99:29:be:5f:91:8d: 87:d1:b4:5c:9e:6f:fb:92:27:9d:de:10:56:9d:fe:29:54:21: b2:ab:36:61:0e:b1:17:2b:5c:fd:06:c3:f8:62:06:d2:c6:2c: 45:24:cc:d2:e8:c6:f1:a2:6a:bf:f9:12:5a:90:ff:9e:0d:24: 98:b1:0e:a3:49:ef:ab:fd:03:fd:a7:42:79:5f:44:92:18:1d: 4f:d8:6c:d0:47:d8:25:c6:f8:38:0e:f2:f2:6e:70:44:0b:bf: b1:86:bb:0a:82:95:b7:07:0b:7f:18:bd:df:3c:09:a8:f2:65: 3c:12:d8:8f:81:4d:b9:4d:bd:13:09:86:5a:fa:db:7e:a5:e6: 0f:56:9d:c1:4b:8d:c7:0c:cd:8d:61:46:8c:be:c8:17:ad:3b: 36:a9:13:56:49:c3:6d:56:98:53:d1:7a:1c:10:80:21:c7:06: 05:57:7e:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU4MzIxMTAvBgNVBAUTKDYxNDdBMkE2RjEwNkRDNTYwMTNEQzNCQ0ZCQTBCNEI3 NTNFQ0QxQkMwHhcNMjUxMTE1MDQyMjA1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTE3ZmZlZC04ZmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSoX2pELRWA/w0RB+RX+uhad9G80BnC642UN6QiKanG5jiZurj+1Ro/fpdIP kWbjPFthawwtXcvPDZ6Tz6sVD9ODcCl8CzXcSjFmeUZnMU9iQXDbqFlVSYSbke8Y eIKkItE9K9kqq7M379i9AzbbFKZd5K7mTMJxxjhEUDuzM8HaCvWpSNzt1uNv19wm cb3vqxRpJ2rv2i0bOZxAI0bt3/PtPfbmjmxJSaFwBR5wAbGJoV3xB6ypKBysbwz2 YxA3OcUoLg68C17bXuxsvMUxwHjclhFxAV/JjFNI3DtruVusd/OrfndFu0Fb8FmA sKy3Ha21ZKPOmWfLjjcMBpoOywIDAQABo4IClTCCApEwHQYDVR0OBBYEFIYjlCEc pkA7ZINcayt0gyXLAXV2MB8GA1UdIwQYMBaAFGFHoqbxBtxWAT3DvPugtLdT7NG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTgzMi8xRUQ0NTJBQ0Qw QkExMUVGODk2Q0QwMjZDNEY5QUUwMi9ZVWVpcHZFRzNGWUJQY084LTZDMHQxUHMw YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lVZWlwdkVHM0ZZQlBjTzgtNkMwdDFQczBidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU4MzIvMUVENDUyQUNEMEJBMTFFRjg5NkNEMDI2QzRGOUFFMDIvQTk0N0VDNkVE MEJBMTFFRkI3QTZCMDI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgvyYwDQYJKoZIhvcNAQELBQADggEBACNw8n1YptjaKnJq u3/+BlPpXBoo/k78oBSnX4YGGmuyFajtuc9YE1Fjf9z0S5IgPjYP1fZrQ8pSMmRX NoJk5zkFbnndamtIpLddLsNbirx8JC9/4Jkpvl+RjYfRtFyeb/uSJ53eEFad/ilU IbKrNmEOsRcrXP0Gw/hiBtLGLEUkzNLoxvGiar/5ElqQ/54NJJixDqNJ76v9A/2n QnlfRJIYHU/YbNBH2CXG+DgO8vJucEQLv7GGuwqClbcHC38Yvd88CajyZTwS2I+B TblNvRMJhlr6236l5g9WncFLjccMzY1hRoy+yBetOzapE1ZJw21WmFPRehwQgCHH BgVXfg8= -----END CERTIFICATE-----Generated at Wed Dec 3 14:58:31 2025 by rpki-client