This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/EE375CF036BD11E7B9B7251EC4F9AE02.roa File: EE375CF036BD11E7B9B7251EC4F9AE02.roa (raw, json) Hash identifier: 5b1/IgnFBtnOU/QGYhYiucXHvjsBgfKiscQ0RXrreCU= Subject key identifier: B1:19:FD:28:8A:C5:68:3F:4C:04:82:89:CA:8A:38:99:05:5E:55:C5 Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Certificate serial: 1F4B Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/EE375CF036BD11E7B9B7251EC4F9AE02.roa Signing time: Fri 12 Dec 2025 16:13:44 +0000 ROA not before: Fri 12 Dec 2025 16:13:44 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 134963 IP address blocks: 14.1.112.0/22 maxlen: 24 43.96.0.0/16 maxlen: 24 43.97.0.0/16 maxlen: 24 43.98.0.0/16 maxlen: 24 43.99.0.0/16 maxlen: 24 43.100.0.0/16 maxlen: 24 43.101.0.0/16 maxlen: 24 43.102.0.0/16 maxlen: 24 43.103.0.0/16 maxlen: 24 43.104.0.0/16 maxlen: 24 43.105.0.0/16 maxlen: 24 43.106.0.0/16 maxlen: 24 43.107.0.0/16 maxlen: 24 43.108.0.0/16 maxlen: 24 43.109.0.0/16 maxlen: 24 43.110.0.0/16 maxlen: 24 43.111.0.0/16 maxlen: 24 43.112.0.0/16 maxlen: 24 43.113.0.0/16 maxlen: 24 43.114.0.0/16 maxlen: 24 43.115.0.0/16 maxlen: 24 43.116.0.0/16 maxlen: 24 43.117.0.0/16 maxlen: 24 43.118.0.0/16 maxlen: 24 43.119.0.0/16 maxlen: 24 43.120.0.0/16 maxlen: 24 43.121.0.0/16 maxlen: 24 43.122.0.0/16 maxlen: 24 43.123.0.0/16 maxlen: 24 43.124.0.0/16 maxlen: 24 43.125.0.0/16 maxlen: 24 43.126.0.0/16 maxlen: 24 43.127.0.0/16 maxlen: 16 43.127.0.0/16 maxlen: 24 103.206.40.0/22 maxlen: 24 240b:4000::/32 maxlen: 48 240b:4001::/32 maxlen: 48 240b:4002::/32 maxlen: 48 240b:4003::/32 maxlen: 48 240b:4004::/32 maxlen: 48 240b:4005::/32 maxlen: 48 240b:4006::/32 maxlen: 48 240b:4007::/32 maxlen: 48 240b:4008::/32 maxlen: 48 240b:4009::/32 maxlen: 48 240b:400a::/32 maxlen: 48 240b:400b::/32 maxlen: 48 240b:400c::/32 maxlen: 48 240b:400d::/32 maxlen: 48 240b:400e::/32 maxlen: 48 240b:400f::/32 maxlen: 48 240b:4010::/32 maxlen: 48 240b:4011::/32 maxlen: 48 240b:4012::/32 maxlen: 48 240b:4013::/32 maxlen: 48 240b:4014::/32 maxlen: 48 240b:4015::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 16:03:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8011 (0x1f4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Validity Not Before: Dec 12 16:13:44 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=693c3f38-b83f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:59:1a:46:64:24:75:cd:53:1a:42:2c:67:98: 66:f5:5c:ea:06:e1:40:f1:e9:a7:c1:5d:8a:ca:70: 47:b0:c6:a1:0b:07:08:e9:30:a6:4e:4a:de:b5:f3: 4e:45:19:a6:04:01:6e:e2:38:35:c2:ee:e0:15:fe: 0c:9e:0f:72:88:2e:8d:59:4d:a7:02:2e:79:13:7f: 89:f3:ca:88:34:15:4a:38:b8:cf:39:ff:6d:62:b2: 2b:8e:50:ca:47:b1:61:fb:fe:a6:41:a5:2c:7f:43: 9f:2b:d5:40:2d:0f:be:f0:29:16:34:48:61:9c:e0: 64:8b:dd:6b:71:29:b6:ed:a2:c0:2d:46:4e:21:38: 2b:8e:76:cc:a1:1b:d6:65:1a:66:91:f4:f9:32:cf: fc:11:90:f1:9c:b2:d8:e0:03:ba:b7:35:06:8d:91: 3a:58:6d:73:7e:b9:5e:61:da:f7:05:7a:88:23:6f: 23:53:b5:ba:02:18:3b:ac:4e:eb:5f:57:7d:9c:c1: 5d:fb:d9:c3:75:40:5c:cd:b7:93:03:98:22:13:e8: 91:fd:f7:2a:1e:bf:78:eb:32:47:cf:a5:b0:fe:fd: ae:48:d7:ed:40:bf:28:8a:90:14:d8:fa:7b:08:8b: 19:a7:8d:fd:48:a6:a3:9e:f4:bf:f1:fc:fa:c2:57: 35:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:19:FD:28:8A:C5:68:3F:4C:04:82:89:CA:8A:38:99:05:5E:55:C5 X509v3 Authority Key Identifier: keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/EE375CF036BD11E7B9B7251EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.1.112.0/22 43.96.0.0/11 103.206.40.0/22 IPv6: 240b:4000::-240b:4015:ffff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 44:7f:2c:20:5d:e3:d5:3b:79:64:65:15:3b:ca:d6:52:14:30: e3:bb:6c:6d:bf:be:6c:08:01:88:86:a9:8e:d4:98:88:b9:63: d3:91:a4:67:49:e5:15:74:49:f7:a5:72:92:f8:d2:e1:9a:52: 87:3c:65:dd:2d:79:5c:f9:65:04:14:a5:fe:f4:d7:b2:26:14: a3:81:11:5a:5f:ad:82:3b:8d:3f:ab:52:99:00:9d:a0:87:b1: fd:87:9a:69:bf:40:fd:a5:57:50:84:eb:bb:01:35:4a:53:1a: 13:91:24:4a:10:c4:ca:c4:c8:b7:97:56:79:57:e1:16:dd:d7: af:00:d6:69:89:f6:ea:9f:b2:cb:fb:23:14:c6:f7:13:d8:6c: 0f:93:89:e4:74:ac:1e:27:ab:e9:f5:1f:75:12:84:e1:0b:6c: 1e:0a:25:50:b1:6f:48:80:aa:bf:da:ff:ba:79:10:9e:23:20: 26:8b:1e:79:55:2b:3b:0d:23:79:83:fa:5a:36:81:2c:cf:0c: 98:e0:f5:5c:87:c2:dd:e7:3c:b8:7d:b1:33:40:75:58:e9:5f: 56:5f:06:ab:22:43:81:52:22:5a:1b:96:47:26:b6:62:e8:70: 48:c3:ef:ff:c1:bf:09:31:f8:a9:70:e7:18:e7:78:91:52:fd: 6a:10:66:44 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICH0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDlFMUMzNTMxRDAwNDVFQTM4OUI2OENGRjkyODZBMDhG QkNCQkQ4QkQwHhcNMjUxMjEyMTYxMzQ0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNjM2YzOC1iODNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1kaRmQkdc1TGkIsZ5hm9VzqBuFA8emnwV2KynBHsMahCwcI6TCmTkretfNO RRmmBAFu4jg1wu7gFf4Mng9yiC6NWU2nAi55E3+J88qINBVKOLjPOf9tYrIrjlDK R7Fh+/6mQaUsf0OfK9VALQ++8CkWNEhhnOBki91rcSm27aLALUZOITgrjnbMoRvW ZRpmkfT5Ms/8EZDxnLLY4AO6tzUGjZE6WG1zfrleYdr3BXqII28jU7W6Ahg7rE7r X1d9nMFd+9nDdUBczbeTA5giE+iR/fcqHr946zJHz6Ww/v2uSNftQL8oipAU2Pp7 CIsZp439SKajnvS/8fz6wlc1TQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFLEZ/SiK xWg/TASCicqKOJkFXlXFMB8GA1UdIwQYMBaAFJ4cNTHQBF6jibaM/5KGoI+8u9i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC85OTNGMjA5MEFC QzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhxT0p0b3pfa29hZ2o3eTcy TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odzFNZEFFWHFPSnRvel9rb2Fnajd5NzJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvOTkzRjIwOTBBQkM0MTFFNkJENkJFRDE0QzRGOUFFMDIvRUUzNzVDRjAz NkJEMTFFN0I5QjcyNTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBcEAgABMBEDBAIOAXADAwUrYAMEAmfOKDAVBAIAAjAPMA0DBAYkC0ADBQEk C0AUMA0GCSqGSIb3DQEBCwUAA4IBAQBEfywgXePVO3lkZRU7ytZSFDDju2xtv75s CAGIhqmO1JiIuWPTkaRnSeUVdEn3pXKS+NLhmlKHPGXdLXlc+WUEFKX+9NeyJhSj gRFaX62CO40/q1KZAJ2gh7H9h5ppv0D9pVdQhOu7ATVKUxoTkSRKEMTKxMi3l1Z5 V+EW3devANZpifbqn7LL+yMUxvcT2GwPk4nkdKweJ6vp9R91EoThC2weCiVQsW9I gKq/2v+6eRCeIyAmix55VSs7DSN5g/paNoEszwyY4PVch8Ld5zy4fbEzQHVY6V9W XwarIkOBUiJaG5ZHJrZi6HBIw+//wb8JMfipcOcY53iRUv1qEGZE -----END CERTIFICATE-----Generated at Wed Dec 17 22:28:44 2025 by rpki-client