This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9A44/CDA95B48C08211F0B8FE7226C4F9AE02/769D5C68C09711F08165E157C4F9AE02.roa File: 769D5C68C09711F08165E157C4F9AE02.roa (raw, json) Hash identifier: OJEG2iMlHS+dlOzTygzni5AYhZaYZz74JLyfsdZ4HV0= Subject key identifier: B2:5B:96:AC:D8:81:43:93:0C:24:7A:6C:08:C8:2C:DC:65:AE:6C:7F Certificate issuer: /CN=A91E9A44/serialNumber=CACA2E442222C3ED87E7759B95EC1118C38B85B6 Certificate serial: 05 Authority key identifier: CA:CA:2E:44:22:22:C3:ED:87:E7:75:9B:95:EC:11:18:C3:8B:85:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ysouRCIiw-2H53WblewRGMOLhbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9A44/CDA95B48C08211F0B8FE7226C4F9AE02/769D5C68C09711F08165E157C4F9AE02.roa Signing time: Thu 13 Nov 2025 13:49:22 +0000 ROA not before: Thu 13 Nov 2025 13:49:22 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 154356 IP address blocks: 138.252.186.0/24 maxlen: 24 138.252.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9A44/CDA95B48C08211F0B8FE7226C4F9AE02/ysouRCIiw-2H53WblewRGMOLhbY.crl rsync://rpki.apnic.net/member_repository/A91E9A44/CDA95B48C08211F0B8FE7226C4F9AE02/ysouRCIiw-2H53WblewRGMOLhbY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ysouRCIiw-2H53WblewRGMOLhbY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 06:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9A44, serialNumber=CACA2E442222C3ED87E7759B95EC1118C38B85B6 Validity Not Before: Nov 13 13:49:22 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6915e1e2-1546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f2:bd:b2:7e:ca:cf:5f:6a:bb:d1:e6:68:b7: 65:6e:af:3c:01:66:ed:3c:0c:7d:7f:1c:18:29:2c: 18:1f:f7:43:8d:b0:f0:d9:6a:d4:b9:ad:b7:f3:f7: 0a:e8:af:4b:5e:7c:d2:6b:c9:af:7c:b9:b2:2e:c4: ea:09:93:23:e9:6d:be:e5:07:f6:7e:31:34:ab:19: 2b:79:21:f8:01:4d:1c:49:28:e1:a2:c4:05:aa:63: 25:01:7f:94:be:30:79:e8:a7:4a:6d:fd:64:f3:06: 72:be:25:98:42:b0:80:a7:dc:4b:be:c6:b7:37:32: ca:6b:ab:31:97:5d:34:7e:41:52:23:7e:e5:a6:cd: e9:00:74:6f:e0:9f:22:20:da:86:30:58:87:1c:c9: a4:2a:f2:94:3f:72:48:a0:ec:8a:53:6f:ed:15:a2: 30:97:98:54:27:fe:25:ae:44:93:5b:88:ad:4a:10: b2:fc:a3:74:89:0f:9a:b5:7b:9e:37:a3:b8:c5:32: 6d:f3:5b:29:1b:c3:5a:60:34:a4:05:7e:94:f0:b4: 49:9c:46:e1:ca:e2:f9:36:11:f5:e4:82:61:f9:87: 37:55:5a:47:85:f8:77:c3:48:2b:d4:c0:86:d6:82: e8:e0:10:6e:9d:92:1f:06:2e:9b:c5:3b:a7:bb:92: b3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:5B:96:AC:D8:81:43:93:0C:24:7A:6C:08:C8:2C:DC:65:AE:6C:7F X509v3 Authority Key Identifier: keyid:CA:CA:2E:44:22:22:C3:ED:87:E7:75:9B:95:EC:11:18:C3:8B:85:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9A44/CDA95B48C08211F0B8FE7226C4F9AE02/ysouRCIiw-2H53WblewRGMOLhbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ysouRCIiw-2H53WblewRGMOLhbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9A44/CDA95B48C08211F0B8FE7226C4F9AE02/769D5C68C09711F08165E157C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.186.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:fd:2d:88:df:bd:61:4e:83:54:2c:2d:84:8a:07:09:41:5a: e9:cd:be:ea:2d:1a:c6:d1:5b:06:24:8c:84:49:7d:13:74:27: 51:94:79:80:23:f8:e4:33:ba:5c:31:6b:38:52:e7:a8:a6:f7: f5:fb:5b:af:32:c7:bc:6a:ce:82:93:9b:c6:48:ee:c7:b7:16: ad:4a:ff:97:94:f8:e3:aa:86:62:c6:24:e2:ca:52:dd:a2:98: 99:bc:12:bc:d7:dc:12:42:f3:88:e3:88:d3:c4:03:45:78:24: 7c:ee:19:fd:36:63:31:c6:63:54:51:e8:ad:fb:00:57:5f:e1: f1:19:e5:e4:e6:29:75:1a:f7:1c:ef:7f:36:4b:b0:af:ff:e3: ab:d7:b5:3a:a9:8d:d2:9d:3e:53:88:24:7a:1f:0b:b6:6b:6c: 2c:3d:46:26:3a:f1:6c:87:2b:eb:53:4d:d0:55:98:44:b1:cb: 44:23:fe:2c:1f:21:a4:4a:3e:3f:4c:6e:7c:7c:b8:70:0b:d4: c4:b6:5b:17:99:af:bf:f9:19:6e:2c:75:c6:73:d8:43:aa:9a: 9b:af:d1:a0:4b:1a:f6:a2:27:16:b9:41:f1:3e:15:45:27:55: ab:bd:52:6c:2b:ac:d2:20:44:bf:8b:26:48:7d:a8:6e:55:01: 3c:ee:ef:08 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OUE0NDExMC8GA1UEBRMoQ0FDQTJFNDQyMjIyQzNFRDg3RTc3NTlCOTVFQzExMThD MzhCODVCNjAeFw0yNTExMTMxMzQ5MjJaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MTVlMWUyLTE1NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCi8r2yfsrPX2q70eZot2VurzwBZu08DH1/HBgpLBgf90ONsPDZatS5rbfz9wro r0tefNJrya98ubIuxOoJkyPpbb7lB/Z+MTSrGSt5IfgBTRxJKOGixAWqYyUBf5S+ MHnop0pt/WTzBnK+JZhCsICn3Eu+xrc3MsprqzGXXTR+QVIjfuWmzekAdG/gnyIg 2oYwWIccyaQq8pQ/ckig7IpTb+0VojCXmFQn/iWuRJNbiK1KELL8o3SJD5q1e543 o7jFMm3zWykbw1pgNKQFfpTwtEmcRuHK4vk2EfXkgmH5hzdVWkeF+HfDSCvUwIbW gujgEG6dkh8GLpvFO6e7krNxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUsluWrNiB Q5MMJHpsCMgs3GWubH8wHwYDVR0jBBgwFoAUysouRCIiw+2H53WblewRGMOLhbYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5QTQ0L0NEQTk1QjQ4QzA4 MjExRjBCOEZFNzIyNkM0RjlBRTAyL3lzb3VSQ0lpdy0ySDUzV2JsZXdSR01PTGhi WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveXNvdVJDSWl3LTJINTNXYmxld1JHTU9MaGJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUE0NC9DREE5NUI0OEMwODIxMUYwQjhGRTcyMjZDNEY5QUUwMi83NjlENUM2OEMw OTcxMUYwODE2NUUxNTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8ujANBgkqhkiG9w0BAQsFAAOCAQEAWv0tiN+9YU6DVCwt hIoHCUFa6c2+6i0axtFbBiSMhEl9E3QnUZR5gCP45DO6XDFrOFLnqKb39ftbrzLH vGrOgpObxkjux7cWrUr/l5T446qGYsYk4spS3aKYmbwSvNfcEkLziOOI08QDRXgk fO4Z/TZjMcZjVFHorfsAV1/h8Rnl5OYpdRr3HO9/Nkuwr//jq9e1OqmN0p0+U4gk eh8LtmtsLD1GJjrxbIcr61NN0FWYRLHLRCP+LB8hpEo+P0xufHy4cAvUxLZbF5mv v/kZbix1xnPYQ6qam6/RoEsa9qInFrlB8T4VRSdVq71SbCus0iBEv4smSH2oblUB PO7vCA== -----END CERTIFICATE-----Generated at Wed Dec 3 14:52:21 2025 by rpki-client