This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/70A77C348D6C11EBAFD23A2EC4F9AE02.roa File: 70A77C348D6C11EBAFD23A2EC4F9AE02.roa (raw, json) Hash identifier: rzIFmJRJok4EYg0aJC0SnHdEv8CwANX+fTfQwm//Y1c= Subject key identifier: 0B:BB:6A:79:FE:A7:05:17:0B:9B:AE:8C:7C:E1:F9:7B:32:AE:19:CF Certificate issuer: /CN=A91F277D/serialNumber=BBC103561AFD7A93036D1C72DD4C0A7C2A4E29CE Certificate serial: 06C4 Authority key identifier: BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/70A77C348D6C11EBAFD23A2EC4F9AE02.roa Signing time: Wed 26 Nov 2025 21:13:19 +0000 ROA not before: Wed 26 Nov 2025 21:13:19 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 1221 IP address blocks: 139.163.18.0/24 maxlen: 24 139.163.40.0/24 maxlen: 24 139.163.83.0/24 maxlen: 24 139.163.85.0/24 maxlen: 24 139.163.131.0/24 maxlen: 24 139.163.132.0/24 maxlen: 24 139.163.133.0/24 maxlen: 24 139.163.137.0/24 maxlen: 24 139.163.138.0/24 maxlen: 24 139.163.139.0/24 maxlen: 24 139.163.250.0/24 maxlen: 24 168.134.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 21:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1732 (0x6c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F277D, serialNumber=BBC103561AFD7A93036D1C72DD4C0A7C2A4E29CE Validity Not Before: Nov 26 21:13:19 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69276d6f-9334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a9:f7:ba:09:9e:72:4e:f4:d7:b8:d2:e6:9d: d3:9a:ac:c5:c2:bb:47:6d:f7:84:d8:06:3b:d3:eb: d6:1e:a9:dc:12:4e:f2:e9:e1:d1:02:27:ef:9c:0c: ed:30:ab:b1:8f:40:88:2b:c3:ae:e7:16:ed:ce:fd: 46:39:69:1d:58:f5:11:6c:ec:3b:9e:ad:e3:49:b4: 61:40:a5:81:8c:83:c8:61:41:d6:a4:fb:4f:ea:b9: d1:1b:cf:57:3a:a9:e2:66:42:1c:5e:73:b7:2f:dc: ae:a0:73:ea:a8:b2:a4:04:0a:c5:f5:23:61:d0:7d: 5d:6e:ef:4e:05:72:7d:4f:c5:8b:14:b4:de:14:85: d8:ca:39:22:25:29:88:08:bf:5c:8e:dc:ec:a8:f4: d3:4e:5a:65:a6:ee:b4:b7:a6:e4:f8:b8:d0:2e:35: 1d:82:54:91:60:df:86:80:35:e2:21:b0:ef:de:20: 88:76:93:1a:a9:fd:72:92:7c:0b:e2:b4:36:f1:39: 22:ec:bd:08:15:96:22:69:b6:2e:e1:29:d8:64:38: f1:ad:2d:24:9f:12:a2:ce:59:c7:74:8d:b4:2c:9f: 3e:e5:86:8f:07:9f:77:25:af:06:8a:11:de:a5:93: 30:9f:a4:8c:89:42:0d:44:ac:69:e0:b5:db:4d:2f: c1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:BB:6A:79:FE:A7:05:17:0B:9B:AE:8C:7C:E1:F9:7B:32:AE:19:CF X509v3 Authority Key Identifier: keyid:BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/70A77C348D6C11EBAFD23A2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.163.18.0/24 139.163.40.0/24 139.163.83.0/24 139.163.85.0/24 139.163.131.0-139.163.133.255 139.163.137.0-139.163.139.255 139.163.250.0/24 168.134.0.0/24 Signature Algorithm: sha256WithRSAEncryption 63:e0:9d:35:d4:0a:fb:dd:6b:2b:67:17:6e:2f:69:1f:12:5b: e9:38:af:6b:d7:59:c4:5f:0d:90:08:27:8a:f4:33:77:df:67: f9:8c:6f:6a:08:1a:aa:bc:78:88:ff:31:02:43:fd:40:f0:78: 59:a5:bd:5a:0c:30:06:4c:ae:61:c0:07:bd:e3:7c:9e:22:73: 53:02:e8:9e:40:06:6f:a9:5e:96:4b:16:26:f1:74:ab:57:ef: d6:bb:2c:27:96:e8:5e:24:cf:71:e9:a3:15:ec:dc:91:9a:01: 06:4c:ec:85:ee:f6:b6:ee:6f:0a:ad:31:1e:16:03:e9:e6:df: ba:9f:62:c5:0f:6f:63:54:07:2c:5c:28:2c:af:86:97:35:4b: d4:03:ff:67:70:55:0e:32:07:8c:6d:bb:e3:c8:fe:6c:64:60: 54:e0:6b:1f:d5:5f:dc:5c:94:c3:5e:e3:90:20:c0:14:4f:53: 8e:38:86:5e:3f:22:5d:24:78:0c:30:d2:17:f4:76:5c:b9:b5: 7b:d1:ac:45:79:91:5b:4d:24:36:dd:6c:07:c9:9c:0f:08:13: b3:04:41:e2:d4:71:30:3c:6c:0c:bc:99:a0:03:8a:ed:ec:c5: 14:ec:24:97:54:83:f3:f3:33:12:7c:f7:e8:58:61:b4:04:0f: e2:ff:3d:d4 -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgICBsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI3N0QxMTAvBgNVBAUTKEJCQzEwMzU2MUFGRDdBOTMwMzZEMUM3MkRENEMwQTdD MkE0RTI5Q0UwHhcNMjUxMTI2MjExMzE5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI3NmQ2Zi05MzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtan3ugmeck7017jS5p3TmqzFwrtHbfeE2AY70+vWHqncEk7y6eHRAifvnAzt MKuxj0CIK8Ou5xbtzv1GOWkdWPURbOw7nq3jSbRhQKWBjIPIYUHWpPtP6rnRG89X OqniZkIcXnO3L9yuoHPqqLKkBArF9SNh0H1dbu9OBXJ9T8WLFLTeFIXYyjkiJSmI CL9cjtzsqPTTTlplpu60t6bk+LjQLjUdglSRYN+GgDXiIbDv3iCIdpMaqf1yknwL 4rQ28Tki7L0IFZYiabYu4SnYZDjxrS0knxKizlnHdI20LJ8+5YaPB593Ja8GihHe pZMwn6SMiUINRKxp4LXbTS/BzQIDAQABo4ICzzCCAsswHQYDVR0OBBYEFAu7ann+ pwUXC5uujHzh+XsyrhnPMB8GA1UdIwQYMBaAFLvBA1Ya/XqTA20cct1MCnwqTinO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjc3RC83OEExRDA4RThE NkIxMUVCOTg0MEUwNUZDNEY5QUUwMi91OEVEVmhyOWVwTURiUnh5M1V3S2ZDcE9L YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3U4RURWaHI5ZXBNRGJSeHkzVXdLZkNwT0tjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI3N0QvNzhBMUQwOEU4RDZCMTFFQjk4NDBFMDVGQzRGOUFFMDIvNzBBNzdDMzQ4 RDZDMTFFQkFGRDIzQTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWQYIKwYBBQUHAQcBAf8E SjBIMEYEAgABMEADBACLoxIDBACLoygDBACLo1MDBACLo1UwDAMEAIujgwMEAYuj hDAMAwQAi6OJAwQCi6OIAwQAi6P6AwQAqIYAMA0GCSqGSIb3DQEBCwUAA4IBAQBj 4J011Ar73WsrZxduL2kfElvpOK9r11nEXw2QCCeK9DN332f5jG9qCBqqvHiI/zEC Q/1A8HhZpb1aDDAGTK5hwAe943yeInNTAuieQAZvqV6WSxYm8XSrV+/Wuywnluhe JM9x6aMV7NyRmgEGTOyF7va27m8KrTEeFgPp5t+6n2LFD29jVAcsXCgsr4aXNUvU A/9ncFUOMgeMbbvjyP5sZGBU4Gsf1V/cXJTDXuOQIMAUT1OOOIZePyJdJHgMMNIX 9HZcubV70axFeZFbTSQ23WwHyZwPCBOzBEHi1HEwPGwMvJmgA4rt7MUU7CSXVIPz 8zMSfPfoWGG0BA/i/z3U -----END CERTIFICATE-----Generated at Wed Dec 3 15:32:25 2025 by rpki-client