This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/B32F80267BD111EBBB223C84C4F9AE02.roa File: B32F80267BD111EBBB223C84C4F9AE02.roa (raw, json) Hash identifier: jo8N5VR8/QXYCNwECV0F0gpGSCFYJ9bVaNaPjx3t5DQ= Subject key identifier: B5:64:A2:4E:45:73:F3:9A:D1:1F:BE:25:8F:8F:C5:A5:62:89:6A:16 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 07CC Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/B32F80267BD111EBBB223C84C4F9AE02.roa Signing time: Mon 01 Dec 2025 02:45:11 +0000 ROA not before: Mon 01 Dec 2025 02:45:11 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 21859 IP address blocks: 129.227.17.0/24 maxlen: 24 129.227.18.0/24 maxlen: 24 129.227.19.0/24 maxlen: 24 129.227.29.0/24 maxlen: 24 129.227.30.0/24 maxlen: 24 129.227.31.0/24 maxlen: 24 129.227.63.0/24 maxlen: 24 129.227.176.0/23 maxlen: 24 129.227.192.0/24 maxlen: 24 129.227.193.0/24 maxlen: 24 129.227.194.0/23 maxlen: 24 156.59.16.0/22 maxlen: 24 156.59.48.0/23 maxlen: 24 156.59.50.0/23 maxlen: 24 156.59.52.0/22 maxlen: 24 156.59.73.0/24 maxlen: 24 156.59.80.0/21 maxlen: 24 156.59.94.0/23 maxlen: 24 156.59.108.0/24 maxlen: 24 156.59.123.0/24 maxlen: 24 156.59.128.0/21 maxlen: 24 156.59.136.0/21 maxlen: 24 156.59.146.0/24 maxlen: 24 156.59.216.0/24 maxlen: 24 156.59.224.0/24 maxlen: 24 156.59.225.0/24 maxlen: 24 156.59.241.0/24 maxlen: 24 156.59.255.0/24 maxlen: 24 162.128.43.0/24 maxlen: 24 162.128.44.0/24 maxlen: 24 162.128.53.0/24 maxlen: 24 162.128.54.0/24 maxlen: 24 162.128.55.0/24 maxlen: 24 162.128.56.0/24 maxlen: 24 162.128.57.0/24 maxlen: 24 162.128.58.0/24 maxlen: 24 162.128.59.0/24 maxlen: 24 162.128.60.0/24 maxlen: 24 162.128.61.0/24 maxlen: 24 162.128.62.0/24 maxlen: 24 162.128.63.0/24 maxlen: 24 162.128.140.0/24 maxlen: 24 162.128.149.0/24 maxlen: 24 162.128.150.0/24 maxlen: 24 162.128.151.0/24 maxlen: 24 162.128.186.0/24 maxlen: 24 162.128.196.0/24 maxlen: 24 162.128.197.0/24 maxlen: 24 162.128.198.0/24 maxlen: 24 162.128.199.0/24 maxlen: 24 162.128.200.0/24 maxlen: 24 162.128.201.0/24 maxlen: 24 162.128.202.0/24 maxlen: 24 162.128.203.0/24 maxlen: 24 162.128.204.0/24 maxlen: 24 162.128.205.0/24 maxlen: 24 162.128.206.0/24 maxlen: 24 162.128.207.0/24 maxlen: 24 162.128.208.0/24 maxlen: 24 162.128.209.0/24 maxlen: 24 162.128.210.0/24 maxlen: 24 162.128.211.0/24 maxlen: 24 162.128.213.0/24 maxlen: 24 162.128.214.0/24 maxlen: 24 162.128.217.0/24 maxlen: 24 162.128.218.0/24 maxlen: 24 162.128.219.0/24 maxlen: 24 162.128.220.0/24 maxlen: 24 162.128.221.0/24 maxlen: 24 162.128.222.0/24 maxlen: 24 162.128.223.0/24 maxlen: 24 162.128.224.0/24 maxlen: 24 162.128.225.0/24 maxlen: 24 162.128.226.0/24 maxlen: 24 162.128.227.0/24 maxlen: 24 162.128.228.0/24 maxlen: 24 162.128.229.0/24 maxlen: 24 162.128.230.0/24 maxlen: 24 162.128.231.0/24 maxlen: 24 162.128.237.0/24 maxlen: 24 162.128.238.0/24 maxlen: 24 162.128.239.0/24 maxlen: 24 162.128.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1996 (0x7cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Dec 1 02:45:11 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=692d0137-8f7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:49:93:d0:25:4a:43:53:6a:a6:c4:37:1a:5e: 2a:94:8a:25:7f:a6:12:6f:7b:6b:60:b8:3b:ce:18: ed:5d:75:c8:da:6e:7a:0f:ee:a3:be:54:2a:5f:c4: ef:dd:e3:3a:61:de:1d:84:58:22:f6:4e:c8:57:46: 97:11:6a:af:b1:1d:65:33:20:3d:98:10:00:bc:ba: 09:89:c4:2e:90:6c:4e:33:f9:36:bc:2b:c9:b1:7c: 10:e0:69:31:3c:87:37:d0:1f:f0:ff:59:53:6b:90: 98:0f:7f:74:5b:51:de:64:f7:4a:b0:85:cd:1a:ec: 19:50:ee:13:34:9f:7b:42:f4:fa:07:b0:8d:43:fd: 06:b4:b5:1a:bb:56:c7:54:09:ae:2c:48:41:3d:97: bb:e2:16:9f:2d:31:f1:89:4f:6e:54:04:c3:77:cd: b4:d8:6a:74:89:5a:45:7d:27:6b:2b:57:2b:44:2e: a4:45:bf:54:d2:e5:ec:ef:37:c8:5e:28:71:9b:56: c3:46:39:d5:cf:97:ae:00:e7:68:40:fc:f2:16:9a: a7:09:a6:83:ab:a8:c0:84:0e:13:84:c0:3a:c7:2e: b9:b5:0b:f3:6e:78:cb:32:b4:3a:07:6f:05:d1:81: e0:df:86:ff:40:f8:96:20:ee:76:e8:bd:20:5d:d1: f2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:64:A2:4E:45:73:F3:9A:D1:1F:BE:25:8F:8F:C5:A5:62:89:6A:16 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/B32F80267BD111EBBB223C84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 129.227.17.0-129.227.19.255 129.227.29.0-129.227.31.255 129.227.63.0/24 129.227.176.0/23 129.227.192.0/22 156.59.16.0/22 156.59.48.0/21 156.59.73.0/24 156.59.80.0/21 156.59.94.0/23 156.59.108.0/24 156.59.123.0/24 156.59.128.0/20 156.59.146.0/24 156.59.216.0/24 156.59.224.0/23 156.59.241.0/24 156.59.255.0/24 162.128.43.0-162.128.44.255 162.128.53.0-162.128.63.255 162.128.140.0/24 162.128.149.0-162.128.151.255 162.128.186.0/24 162.128.196.0-162.128.211.255 162.128.213.0-162.128.214.255 162.128.217.0-162.128.231.255 162.128.237.0-162.128.239.255 162.128.254.0/24 Signature Algorithm: sha256WithRSAEncryption 98:04:f2:a6:84:33:8b:23:74:7f:aa:57:3b:fd:c9:c3:b5:42: bf:44:f7:6e:29:96:28:77:d5:31:72:b7:24:45:fa:86:85:70: d3:ba:5a:bb:fc:be:18:a5:03:fd:21:f5:62:aa:14:9e:8d:15: 96:72:db:9b:44:aa:c2:df:c6:8d:d0:a5:4b:19:da:c8:ba:6f: 5c:01:36:4a:c8:2b:75:b3:69:9e:49:4a:84:98:34:ab:3d:4d: 4c:26:d9:9c:cf:f0:42:7c:90:43:2f:bf:88:cc:93:83:d3:3f: ae:a4:3d:5b:5d:04:9c:22:01:38:8a:ec:70:5c:07:46:3f:b0: ea:f9:86:98:86:bc:58:75:86:59:aa:f3:f3:27:54:2c:9f:d8: 6a:08:4f:1b:46:32:0b:da:3d:5f:2f:32:d6:09:d9:3d:22:29: 7e:86:c5:8e:4c:ea:53:be:06:b2:ad:4c:5e:25:58:b2:20:de: ec:6a:93:58:fe:d3:e1:4a:50:7d:dc:8f:e2:25:40:b9:6b:41: 99:ba:b9:95:01:1a:0c:80:d5:e6:f6:a1:dc:4e:da:89:c8:0b: 0d:cd:9e:0b:2e:83:a0:6b:d8:91:1c:50:7f:0d:b5:ab:f3:97: 6a:99:cb:e0:85:55:84:56:6f:c3:82:0a:3e:5b:f5:01:1f:be: e8:9d:03:a8 -----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgICB8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjUxMjAxMDI0NTExWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJkMDEzNy04ZjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUmT0CVKQ1NqpsQ3Gl4qlIolf6YSb3trYLg7zhjtXXXI2m56D+6jvlQqX8Tv 3eM6Yd4dhFgi9k7IV0aXEWqvsR1lMyA9mBAAvLoJicQukGxOM/k2vCvJsXwQ4Gkx PIc30B/w/1lTa5CYD390W1HeZPdKsIXNGuwZUO4TNJ97QvT6B7CNQ/0GtLUau1bH VAmuLEhBPZe74hafLTHxiU9uVATDd8202Gp0iVpFfSdrK1crRC6kRb9U0uXs7zfI Xihxm1bDRjnVz5euAOdoQPzyFpqnCaaDq6jAhA4ThMA6xy65tQvzbnjLMrQ6B28F 0YHg34b/QPiWIO526L0gXdHy6QIDAQABo4IDhTCCA4EwHQYDVR0OBBYEFLVkok5F c/Oa0R++JY+PxaViiWoWMB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvQjMyRjgwMjY3 QkQxMTFFQkJCMjIzQzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggENBggrBgEFBQcBBwEB /wSB/TCB+jCB9wQCAAEwgfAwDAMEAIHjEQMEAoHjEDAMAwQAgeMdAwQFgeMAAwQA geM/AwQBgeOwAwQCgePAAwQCnDsQAwQDnDswAwQAnDtJAwQDnDtQAwQBnDteAwQA nDtsAwQAnDt7AwQEnDuAAwQAnDuSAwQAnDvYAwQBnDvgAwQAnDvxAwQAnDv/MAwD BACigCsDBACigCwwDAMEAKKANQMEBqKAAAMEAKKAjDAMAwQAooCVAwQDooCQAwQA ooC6MAwDBAKigMQDBAKigNAwDAMEAKKA1QMEAKKA1jAMAwQAooDZAwQDooDgMAwD BACigO0DBASigOADBACigP4wDQYJKoZIhvcNAQELBQADggEBAJgE8qaEM4sjdH+q Vzv9ycO1Qr9E924plih31TFytyRF+oaFcNO6Wrv8vhilA/0h9WKqFJ6NFZZy25tE qsLfxo3QpUsZ2si6b1wBNkrIK3WzaZ5JSoSYNKs9TUwm2ZzP8EJ8kEMvv4jMk4PT P66kPVtdBJwiATiK7HBcB0Y/sOr5hpiGvFh1hlmq8/MnVCyf2GoITxtGMgvaPV8v MtYJ2T0iKX6GxY5M6lO+BrKtTF4lWLIg3uxqk1j+0+FKUH3cj+IlQLlrQZm6uZUB GgyA1eb2odxO2onICw3Nngsug6Br2JEcUH8Ntavzl2qZy+CFVYRWb8OCCj5b9QEf vuidA6g= -----END CERTIFICATE-----Generated at Sat Dec 6 20:09:53 2025 by rpki-client