This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa File: FD6881C4438111ECBC63AC7BC4F9AE02.roa (raw, json) Hash identifier: JzLTfh+GciE2ubQPVVJG4EzQllt5nNHJ0s9t7GZNzHw= Subject key identifier: B7:28:CF:0D:95:C5:54:2C:23:2D:84:97:13:6A:D2:0F:EF:4E:8B:5D Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 07BC Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa Signing time: Tue 11 Nov 2025 05:55:23 +0000 ROA not before: Tue 11 Nov 2025 05:55:23 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 62610 IP address blocks: 129.227.143.0/24 maxlen: 24 156.59.73.0/24 maxlen: 24 156.59.123.0/24 maxlen: 24 156.59.146.0/24 maxlen: 24 156.59.184.0/24 maxlen: 24 162.128.82.0/24 maxlen: 24 162.128.83.0/24 maxlen: 24 162.128.84.0/24 maxlen: 24 162.128.85.0/24 maxlen: 24 162.128.86.0/24 maxlen: 24 162.128.87.0/24 maxlen: 24 162.128.88.0/24 maxlen: 24 162.128.90.0/24 maxlen: 24 162.128.91.0/24 maxlen: 24 162.128.92.0/24 maxlen: 24 162.128.93.0/24 maxlen: 24 162.128.94.0/24 maxlen: 24 162.128.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1980 (0x7bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Nov 11 05:55:23 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6912cfcb-91d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f5:0d:82:c4:6b:56:33:5f:ff:cd:48:b4:fc: 45:c2:43:6c:3e:20:b5:65:7d:0e:f0:64:68:40:0a: e0:3e:0b:b2:d4:4f:a9:63:72:0d:6b:6b:05:94:db: 5c:f0:23:b3:74:bd:de:56:9e:a8:fe:17:88:5e:24: 43:bc:d1:ef:26:e2:f0:dc:2e:12:e2:e2:8a:45:74: 41:6c:c8:48:a0:0a:5a:53:8d:21:b6:10:c1:30:2d: cb:fe:88:b0:d7:c6:fa:78:74:45:82:c8:ed:19:be: 42:15:dc:e4:45:5a:97:ad:83:48:11:74:66:2a:99: 7d:13:0c:84:ad:1f:e6:41:f6:c8:97:76:99:97:36: 3a:59:5d:42:70:38:2a:61:00:94:6c:9f:07:48:bc: e7:65:45:75:f4:d2:57:20:42:17:fe:40:75:74:a3: 9d:df:24:a3:e2:1c:ec:f2:81:47:31:3d:67:3d:90: 9f:e7:7b:b4:9b:64:a6:ce:8e:b6:ae:0f:33:8d:c1: 80:72:33:41:ce:cd:80:9a:e9:95:3d:34:1e:5b:57: 22:c1:54:e4:71:b9:48:aa:2b:13:09:f7:b4:56:92: 7a:fd:0e:92:88:a5:aa:22:76:5b:dd:78:81:73:13: 21:39:fe:6b:d5:d5:8e:e7:4a:95:e5:d6:7c:b4:85: 9b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:28:CF:0D:95:C5:54:2C:23:2D:84:97:13:6A:D2:0F:EF:4E:8B:5D X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 129.227.143.0/24 156.59.73.0/24 156.59.123.0/24 156.59.146.0/24 156.59.184.0/24 162.128.82.0-162.128.88.255 162.128.90.0-162.128.95.255 Signature Algorithm: sha256WithRSAEncryption 25:97:47:54:18:8b:de:af:b2:06:cf:ab:b4:f8:d5:6f:1d:31: a6:e4:6c:2d:df:5d:87:04:c4:ab:d7:68:6e:f0:40:ce:da:86: 4e:1f:09:05:24:76:96:28:30:c1:23:e2:d0:13:4a:10:5b:1c: 14:1e:72:72:1b:4c:98:ad:89:b8:63:63:ea:50:05:6e:36:04: 5d:44:f9:85:fd:32:a6:96:05:9e:f9:49:00:25:c4:79:38:95: 10:a9:1a:e8:38:44:d5:b4:36:46:46:2e:b7:9f:08:b3:2e:b4: 52:b1:07:37:f3:1e:f5:2e:b6:9a:4f:9a:a5:6a:ed:bb:01:01: 0c:ad:bc:ef:da:b7:26:65:6f:bd:57:0f:d2:be:df:6e:66:f0: 9a:06:b3:07:6c:25:61:39:44:ba:78:41:1b:3f:2c:fb:c0:1a: 6d:33:91:f6:f9:ec:ed:c0:7f:7f:36:39:f3:01:40:bd:f3:9e: 43:1a:56:1e:d4:1c:58:be:a3:97:96:e3:cf:1f:01:95:47:b4: 62:21:37:ec:d9:6a:45:98:60:9f:05:59:59:90:e6:f4:43:e8: 2b:40:9a:ae:73:35:a5:08:fa:0a:89:90:4e:21:ba:da:17:3d: 31:22:4e:e8:62:23:cd:be:51:fb:2d:f2:11:d2:c4:0f:01:f7: 9b:46:b2:e1 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgICB7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjUxMTExMDU1NTIzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTEyY2ZjYi05MWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fUNgsRrVjNf/81ItPxFwkNsPiC1ZX0O8GRoQArgPguy1E+pY3INa2sFlNtc 8COzdL3eVp6o/heIXiRDvNHvJuLw3C4S4uKKRXRBbMhIoApaU40hthDBMC3L/oiw 18b6eHRFgsjtGb5CFdzkRVqXrYNIEXRmKpl9EwyErR/mQfbIl3aZlzY6WV1CcDgq YQCUbJ8HSLznZUV19NJXIEIX/kB1dKOd3ySj4hzs8oFHMT1nPZCf53u0m2Smzo62 rg8zjcGAcjNBzs2AmumVPTQeW1ciwVTkcblIqisTCfe0VpJ6/Q6SiKWqInZb3XiB cxMhOf5r1dWO50qV5dZ8tIWbMQIDAQABo4ICyTCCAsUwHQYDVR0OBBYEFLcozw2V xVQsIy2ElxNq0g/vTotdMB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvRkQ2ODgxQzQ0 MzgxMTFFQ0JDNjNBQzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUwYIKwYBBQUHAQcBAf8E RDBCMEAEAgABMDoDBACB448DBACcO0kDBACcO3sDBACcO5IDBACcO7gwDAMEAaKA UgMEAKKAWDAMAwQBooBaAwQFooBAMA0GCSqGSIb3DQEBCwUAA4IBAQAll0dUGIve r7IGz6u0+NVvHTGm5Gwt312HBMSr12hu8EDO2oZOHwkFJHaWKDDBI+LQE0oQWxwU HnJyG0yYrYm4Y2PqUAVuNgRdRPmF/TKmlgWe+UkAJcR5OJUQqRroOETVtDZGRi63 nwizLrRSsQc38x71LraaT5qlau27AQEMrbzv2rcmZW+9Vw/Svt9uZvCaBrMHbCVh OUS6eEEbPyz7wBptM5H2+eztwH9/NjnzAUC9855DGlYe1BxYvqOXluPPHwGVR7Ri ITfs2WpFmGCfBVlZkOb0Q+grQJquczWlCPoKiZBOIbraFz0xIk7oYiPNvlH7LfIR 0sQPAfebRrLh -----END CERTIFICATE-----Generated at Sat Dec 6 09:27:16 2025 by rpki-client