This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/715924988D6C11EBAFD23A2EC4F9AE02.roa File: 715924988D6C11EBAFD23A2EC4F9AE02.roa (raw, json) Hash identifier: 70dih3UbetFDHhvzgAW5HRGe9IoAJJpZ82sRIP7Wgmg= Subject key identifier: DB:9F:41:C1:7B:E0:7A:7E:AA:3C:51:25:46:6A:F7:1E:4E:08:04:6A Certificate issuer: /CN=A91F277D/serialNumber=BBC103561AFD7A93036D1C72DD4C0A7C2A4E29CE Certificate serial: 06C6 Authority key identifier: BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/715924988D6C11EBAFD23A2EC4F9AE02.roa Signing time: Wed 26 Nov 2025 21:13:21 +0000 ROA not before: Wed 26 Nov 2025 21:13:21 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4637 IP address blocks: 168.134.3.0/24 maxlen: 24 168.134.3.0/25 maxlen: 25 168.134.3.128/25 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 21:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1734 (0x6c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F277D, serialNumber=BBC103561AFD7A93036D1C72DD4C0A7C2A4E29CE Validity Not Before: Nov 26 21:13:21 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69276d70-d624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:40:1c:e7:d8:f6:fc:7e:b0:7a:83:60:d2:98: 90:79:d8:fc:a9:df:be:50:cf:ab:cf:3b:c3:52:0a: 7b:bf:82:14:ce:db:1f:04:b8:f9:78:42:28:82:a5: 23:e7:d2:1b:44:7b:98:fe:ae:57:0a:a2:28:4d:ff: 0c:9d:26:83:ca:54:70:38:e0:b8:03:c8:bc:54:3e: 85:58:0b:5f:3b:bb:40:7d:e4:6f:66:a5:f5:0d:89: 32:73:90:4e:eb:3d:e6:d9:1e:08:30:0a:26:6f:8a: 28:d1:b1:82:90:fc:1c:fa:6d:89:4a:30:45:a6:81: 4f:d1:70:bb:68:ce:e3:cf:59:9c:b6:61:b4:a4:59: 44:87:c4:b5:98:c7:a0:78:6b:01:02:7b:2d:b9:6f: 61:73:ac:e3:f1:53:36:18:0b:85:ba:6e:e9:41:e6: 96:73:f5:27:a9:d9:2d:f8:1e:62:d8:fc:cd:09:5d: bb:90:94:06:00:d0:25:c3:61:d5:46:0f:5b:cf:c5: cf:c4:c9:ba:34:6b:d6:12:53:d6:1e:37:44:d0:9a: 48:e9:43:66:8f:62:4d:c3:21:bb:bc:22:f7:38:1f: 4a:eb:0a:f6:b6:ca:f6:f0:d4:8a:9d:90:b6:48:dc: 18:69:c8:ef:cb:39:9c:da:c4:cf:3c:af:95:c1:c6: 07:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:9F:41:C1:7B:E0:7A:7E:AA:3C:51:25:46:6A:F7:1E:4E:08:04:6A X509v3 Authority Key Identifier: keyid:BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/715924988D6C11EBAFD23A2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.134.3.0/24 Signature Algorithm: sha256WithRSAEncryption 68:56:ec:3f:26:58:23:d7:7f:a7:0a:10:61:6b:f1:3f:88:73: 92:81:7c:6b:cd:39:78:3f:ae:74:99:12:4f:bb:44:91:15:a8: 7d:d1:ce:c5:ec:06:1a:cd:fa:fc:7a:3a:3b:fa:98:0c:0e:64: b7:57:6f:a5:4b:01:69:cd:64:c7:a6:44:1b:19:ea:88:3c:e8: db:e2:41:a0:72:9d:94:7b:63:64:e2:00:79:b4:f5:dc:3a:8e: 27:c0:07:a5:5e:91:e7:b0:c7:fc:23:f1:a9:94:f0:5d:a1:39: cb:aa:d7:0f:ac:ae:de:e8:c8:a1:75:87:25:31:ec:fa:58:77: ff:33:a4:3a:8e:3a:5b:32:1a:8f:f4:d6:20:ed:53:5e:c8:cf: f4:b6:71:cb:9d:59:62:b9:0e:da:74:eb:fc:28:93:6a:06:5d: da:97:31:0d:6d:fd:c1:f8:0a:4d:ba:5a:5d:71:10:5f:ab:51: 70:b8:1f:25:09:b7:a4:cc:70:fa:c3:a9:46:60:c7:93:52:90: 8d:fe:6c:6a:84:51:0a:12:fa:b1:91:6e:22:63:b0:ab:4e:95: 9e:2e:6a:93:53:2b:96:0a:49:c6:c5:0b:2d:91:02:c6:4e:8d: b8:0c:c8:5e:99:98:e9:b6:fe:f8:bf:bc:c8:08:c1:f8:f1:af: 32:3e:54:03 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI3N0QxMTAvBgNVBAUTKEJCQzEwMzU2MUFGRDdBOTMwMzZEMUM3MkRENEMwQTdD MkE0RTI5Q0UwHhcNMjUxMTI2MjExMzIxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI3NmQ3MC1kNjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0Ac59j2/H6weoNg0piQedj8qd++UM+rzzvDUgp7v4IUztsfBLj5eEIogqUj 59IbRHuY/q5XCqIoTf8MnSaDylRwOOC4A8i8VD6FWAtfO7tAfeRvZqX1DYkyc5BO 6z3m2R4IMAomb4oo0bGCkPwc+m2JSjBFpoFP0XC7aM7jz1mctmG0pFlEh8S1mMeg eGsBAnstuW9hc6zj8VM2GAuFum7pQeaWc/Unqdkt+B5i2PzNCV27kJQGANAlw2HV Rg9bz8XPxMm6NGvWElPWHjdE0JpI6UNmj2JNwyG7vCL3OB9K6wr2tsr28NSKnZC2 SNwYacjvyzmc2sTPPK+VwcYHzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNufQcF7 4Hp+qjxRJUZq9x5OCARqMB8GA1UdIwQYMBaAFLvBA1Ya/XqTA20cct1MCnwqTinO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjc3RC83OEExRDA4RThE NkIxMUVCOTg0MEUwNUZDNEY5QUUwMi91OEVEVmhyOWVwTURiUnh5M1V3S2ZDcE9L YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3U4RURWaHI5ZXBNRGJSeHkzVXdLZkNwT0tjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI3N0QvNzhBMUQwOEU4RDZCMTFFQjk4NDBFMDVGQzRGOUFFMDIvNzE1OTI0OTg4 RDZDMTFFQkFGRDIzQTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACohgMwDQYJKoZIhvcNAQELBQADggEBAGhW7D8mWCPXf6cK EGFr8T+Ic5KBfGvNOXg/rnSZEk+7RJEVqH3RzsXsBhrN+vx6Ojv6mAwOZLdXb6VL AWnNZMemRBsZ6og86NviQaBynZR7Y2TiAHm09dw6jifAB6Vekeewx/wj8amU8F2h Ocuq1w+srt7oyKF1hyUx7PpYd/8zpDqOOlsyGo/01iDtU17Iz/S2ccudWWK5Dtp0 6/wok2oGXdqXMQ1t/cH4Ck26Wl1xEF+rUXC4HyUJt6TMcPrDqUZgx5NSkI3+bGqE UQoS+rGRbiJjsKtOlZ4uapNTK5YKScbFCy2RAsZOjbgMyF6ZmOm2/vi/vMgIwfjx rzI+VAM= -----END CERTIFICATE-----Generated at Wed Dec 3 15:32:34 2025 by rpki-client