This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/B6D9896CD51111F0AE06421FC4F9AE02.roa File: B6D9896CD51111F0AE06421FC4F9AE02.roa (raw, json) Hash identifier: YmULQCh6p4pfhRWOBp/VNl3l1d3GMccBdrx8pDE5IwU= Subject key identifier: B8:6D:B2:A4:18:8A:E2:8F:16:A1:F2:DC:74:E8:36:F7:E1:71:9A:D0 Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Certificate serial: 1F45 Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/B6D9896CD51111F0AE06421FC4F9AE02.roa Signing time: Tue 09 Dec 2025 15:14:11 +0000 ROA not before: Tue 09 Dec 2025 15:14:11 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 45102 IP address blocks: 14.1.112.0/22 maxlen: 24 43.0.0.0/9 maxlen: 15 43.91.0.0/16 maxlen: 24 43.96.0.0/16 maxlen: 24 43.97.0.0/16 maxlen: 24 43.98.0.0/16 maxlen: 24 43.99.0.0/16 maxlen: 24 43.100.0.0/16 maxlen: 24 43.101.0.0/16 maxlen: 24 43.102.0.0/16 maxlen: 24 43.103.0.0/16 maxlen: 24 43.104.0.0/16 maxlen: 24 43.105.0.0/16 maxlen: 24 43.106.0.0/16 maxlen: 24 43.107.0.0/16 maxlen: 16 43.107.0.0/16 maxlen: 24 43.108.0.0/16 maxlen: 24 43.109.0.0/16 maxlen: 24 43.110.0.0/16 maxlen: 24 43.111.0.0/16 maxlen: 16 43.111.0.0/16 maxlen: 24 43.112.0.0/16 maxlen: 16 43.112.0.0/16 maxlen: 24 43.113.0.0/16 maxlen: 24 43.114.0.0/16 maxlen: 24 43.115.0.0/16 maxlen: 24 43.116.0.0/16 maxlen: 24 43.117.0.0/16 maxlen: 24 43.118.0.0/16 maxlen: 24 43.119.0.0/16 maxlen: 24 43.120.0.0/16 maxlen: 24 43.121.0.0/16 maxlen: 24 43.122.0.0/16 maxlen: 24 43.123.0.0/16 maxlen: 24 43.124.0.0/16 maxlen: 24 43.125.0.0/16 maxlen: 24 43.126.0.0/16 maxlen: 24 43.127.0.0/16 maxlen: 24 103.206.40.0/22 maxlen: 24 2404:2280::/32 maxlen: 48 240b:4000::/22 maxlen: 31 240b:4000::/32 maxlen: 48 240b:4001::/32 maxlen: 40 240b:4002::/32 maxlen: 48 240b:4003::/32 maxlen: 48 240b:4004::/32 maxlen: 48 240b:4005::/32 maxlen: 48 240b:4006::/32 maxlen: 48 240b:4007::/32 maxlen: 48 240b:4008::/32 maxlen: 48 240b:4009::/32 maxlen: 48 240b:400a::/32 maxlen: 48 240b:400b::/32 maxlen: 48 240b:400c::/32 maxlen: 48 240b:400d::/32 maxlen: 48 240b:400e::/32 maxlen: 48 240b:400f::/32 maxlen: 48 240b:4010::/32 maxlen: 48 240b:4011::/32 maxlen: 48 240b:4012::/32 maxlen: 48 240b:4013::/32 maxlen: 48 240b:4014::/32 maxlen: 48 240b:4015::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 15:45:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8005 (0x1f45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Validity Not Before: Dec 9 15:14:11 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=69383cc3-c824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:96:fe:22:46:60:75:99:2f:1b:a7:83:0f:26: 0c:9c:79:65:36:7f:64:86:32:70:38:f3:23:d8:c7: 0a:89:f6:12:23:9e:0b:b7:e3:dc:04:a9:89:e1:2d: e0:c9:1d:c0:13:e6:8f:c6:fa:df:2c:55:58:ab:12: c6:ca:46:e6:8b:8b:ff:01:ae:b6:1e:da:c1:db:35: 7e:c3:49:0f:21:3f:53:93:a8:1b:87:90:24:9a:73: 77:f1:41:22:c7:8b:0d:64:19:cf:39:b8:e3:91:c2: 0e:41:b0:ab:c4:4d:a6:9b:0b:46:53:cf:34:b1:75: 7e:4f:f0:39:67:37:8a:4a:1c:6e:5b:5f:68:71:e7: 13:da:2a:ed:2e:c4:6d:00:db:7f:a6:e6:67:98:76: 83:47:c7:85:2e:bc:94:ca:1d:42:ca:1a:76:5e:33: 82:f5:c0:2f:a4:5a:e6:c4:ce:89:42:b3:ae:a2:a3: ab:95:c4:32:58:72:01:a8:6a:03:4d:f5:ca:9e:cf: 75:fd:4d:35:8b:fc:8b:35:98:7b:6b:78:7e:4a:c6: ce:ca:44:16:75:0c:8e:5b:e9:c7:dd:28:8f:8b:7d: 59:16:d2:3e:b3:a7:fa:68:7a:1c:e0:ef:cf:bd:a3: 24:7e:da:33:ae:bc:43:11:a3:22:80:57:ef:37:05: e5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:6D:B2:A4:18:8A:E2:8F:16:A1:F2:DC:74:E8:36:F7:E1:71:9A:D0 X509v3 Authority Key Identifier: keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/B6D9896CD51111F0AE06421FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.1.112.0/22 43.0.0.0/9 103.206.40.0/22 IPv6: 2404:2280::/32 240b:4000::/22 Signature Algorithm: sha256WithRSAEncryption 18:dc:d3:60:d4:47:30:c3:d7:1d:ac:f8:24:f5:69:72:b2:57: 2f:c7:84:dd:35:1f:c4:d7:a3:9b:61:ad:f5:a1:31:ff:91:b4: 69:d7:fb:af:6d:93:3b:7e:b8:03:c9:0b:21:0e:df:c3:98:9d: ac:c4:7d:4f:41:04:91:1e:81:b5:e7:b2:7b:17:ab:14:03:92: fb:ba:0c:57:17:88:0b:18:2f:95:2e:f7:33:6b:20:28:bb:32: 48:90:1a:30:6c:ec:f5:34:92:9b:75:e7:c2:1e:6e:b9:e5:09: 40:df:56:64:46:c3:55:ca:4a:07:6a:62:b7:cf:49:62:c2:0e: 4b:35:73:08:78:e6:16:07:06:0e:29:0a:ff:ef:a2:9b:2f:a8: b7:e8:e6:f8:c0:0a:66:69:f0:47:69:81:89:56:bb:91:6e:4b: cc:e9:da:0c:b2:e7:1a:75:6a:9b:f4:82:56:b6:80:6e:3a:7a: a3:55:7f:96:9e:c8:5e:e7:6b:16:1d:b3:dd:c5:f6:14:9b:db: 7d:e9:cb:1a:44:48:13:e9:99:1f:ff:98:7c:2d:28:32:60:91: f7:97:0b:17:42:d7:ff:68:17:14:d4:cc:00:0a:1f:4f:1f:cf: de:58:e5:73:12:f5:6b:ed:d5:b5:d8:ff:45:c3:c4:a3:c2:c6: de:b3:46:b7 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICH0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDlFMUMzNTMxRDAwNDVFQTM4OUI2OENGRjkyODZBMDhG QkNCQkQ4QkQwHhcNMjUxMjA5MTUxNDExWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM4M2NjMy1jODI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5b+IkZgdZkvG6eDDyYMnHllNn9khjJwOPMj2McKifYSI54Lt+PcBKmJ4S3g yR3AE+aPxvrfLFVYqxLGykbmi4v/Aa62HtrB2zV+w0kPIT9Tk6gbh5AkmnN38UEi x4sNZBnPObjjkcIOQbCrxE2mmwtGU880sXV+T/A5ZzeKShxuW19ocecT2irtLsRt ANt/puZnmHaDR8eFLryUyh1Cyhp2XjOC9cAvpFrmxM6JQrOuoqOrlcQyWHIBqGoD TfXKns91/U01i/yLNZh7a3h+SsbOykQWdQyOW+nH3SiPi31ZFtI+s6f6aHoc4O/P vaMkftozrrxDEaMigFfvNwXlZQIDAQABo4ICtTCCArEwHQYDVR0OBBYEFLhtsqQY iuKPFqHy3HToNvfhcZrQMB8GA1UdIwQYMBaAFJ4cNTHQBF6jibaM/5KGoI+8u9i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC85OTNGMjA5MEFC QzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhxT0p0b3pfa29hZ2o3eTcy TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odzFNZEFFWHFPSnRvel9rb2Fnajd5NzJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvOTkzRjIwOTBBQkM0MTFFNkJENkJFRDE0QzRGOUFFMDIvQjZEOTg5NkNE NTExMTFGMEFFMDY0MjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMBcEAgABMBEDBAIOAXADAwcrAAMEAmfOKDATBAIAAjANAwUAJAQigAMEAiQL QDANBgkqhkiG9w0BAQsFAAOCAQEAGNzTYNRHMMPXHaz4JPVpcrJXL8eE3TUfxNej m2Gt9aEx/5G0adf7r22TO364A8kLIQ7fw5idrMR9T0EEkR6BteeyexerFAOS+7oM VxeICxgvlS73M2sgKLsySJAaMGzs9TSSm3Xnwh5uueUJQN9WZEbDVcpKB2pit89J YsIOSzVzCHjmFgcGDikK/++imy+ot+jm+MAKZmnwR2mBiVa7kW5LzOnaDLLnGnVq m/SCVraAbjp6o1V/lp7IXudrFh2z3cX2FJvbfenLGkRIE+mZH/+YfC0oMmCR95cL F0LX/2gXFNTMAAofTx/P3ljlcxL1a+3Vtdj/RcPEo8LG3rNGtw== -----END CERTIFICATE-----Generated at Fri Dec 12 05:15:19 2025 by rpki-client