This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/8D243F849A6D11EA8674310DC4F9AE02.roa File: 8D243F849A6D11EA8674310DC4F9AE02.roa (raw, json) Hash identifier: YLygHL2l+u1oyN1oC/1JspolWs3irx/GlqLYrTgxATU= Subject key identifier: 43:80:98:A5:58:ED:C6:4C:10:24:E3:FD:32:36:30:B8:7A:1C:21:3C Certificate issuer: /CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Certificate serial: 0CF1 Authority key identifier: B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/8D243F849A6D11EA8674310DC4F9AE02.roa Signing time: Tue 02 Dec 2025 17:48:17 +0000 ROA not before: Tue 02 Dec 2025 17:48:17 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 45474 IP address blocks: 167.179.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3313 (0xcf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F91EB, serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Validity Not Before: Dec 2 17:48:17 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692f2661-5331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4b:55:c2:61:2c:d8:02:48:a5:d5:5a:5a:2c: e2:2c:03:17:2f:e4:cf:26:19:ff:66:86:38:8a:fe: 3d:c4:99:37:1d:80:e0:0f:bb:ea:32:4c:c1:df:3c: 2e:61:64:12:f9:fc:e4:c1:27:5a:84:f8:9a:8e:56: a2:a3:19:a8:f6:50:73:a1:65:b7:dc:55:3d:99:ea: 02:83:c7:f0:d9:48:9e:80:76:cd:d2:99:fe:8d:1c: 69:9b:28:cc:ec:45:22:ef:53:d1:ac:7e:38:1b:c8: 65:f8:5e:bc:54:62:a8:26:94:e2:bd:00:2e:07:00: 85:fe:c6:1c:ca:c0:b8:4e:83:15:ae:1e:24:56:96: 6b:cf:c3:c5:f4:5b:3c:d6:da:5d:03:89:30:24:91: 02:fa:9e:29:25:76:8a:51:cd:aa:c1:2c:24:36:f4: 6e:ec:f2:c6:c0:88:d4:35:3b:9b:75:85:64:4c:96: 29:73:2e:12:f8:f6:32:ce:3c:f1:b5:02:f9:06:c3: d6:f5:ed:dc:3a:22:74:f2:e7:36:85:ca:97:c4:bd: fe:4f:79:68:54:12:3d:51:41:f0:a6:58:67:48:7c: 96:ba:6e:0f:de:4b:bd:44:30:56:01:0e:ee:97:6c: 0c:c4:dc:f8:6c:38:7e:c4:47:fd:56:b8:2a:43:94: ff:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:80:98:A5:58:ED:C6:4C:10:24:E3:FD:32:36:30:B8:7A:1C:21:3C X509v3 Authority Key Identifier: keyid:B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/8D243F849A6D11EA8674310DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.179.200.0/21 Signature Algorithm: sha256WithRSAEncryption 4e:b6:ad:8c:d6:4c:1b:c7:8a:52:cf:55:9e:73:7a:e0:7e:78: 79:79:d0:a7:cb:6a:2d:25:5c:e5:cd:62:97:7e:2f:9a:bb:2e: 1e:c5:4c:19:25:ea:2d:b9:30:d1:7f:74:89:5d:53:8a:95:7f: 9c:00:d5:11:89:d1:4a:3c:05:cb:cf:91:f6:1c:e7:a2:a5:9f: 48:aa:a0:5e:a4:7b:08:f3:d5:ad:c1:b0:6c:59:73:b0:6b:e2: 5e:bb:35:e8:aa:8a:c8:04:40:c8:d1:3c:12:c0:dc:80:e9:60: f0:e6:6b:88:b2:e6:64:02:cd:9d:e7:be:63:ae:15:59:e8:71: 2f:a6:dd:e5:c8:5b:4f:66:0f:52:4c:36:03:e5:c7:0e:0a:42: 72:d1:35:85:2d:ec:07:23:8c:1a:03:40:86:b5:c8:8b:00:ad: d3:6c:9f:20:99:c6:15:81:06:a0:76:b3:e3:e0:b4:a9:e6:a9: 65:19:14:cd:6d:e7:c8:ca:6a:97:6f:19:48:37:b1:e6:3a:da: f8:e9:53:57:37:da:ae:1a:4f:83:44:2b:dd:21:fa:13:9e:7b: 92:91:e7:d8:12:b6:36:5f:f6:d3:35:ab:a4:6b:ed:03:0d:de: b7:0f:c1:48:9d:0d:09:43:a5:04:d1:3b:b5:68:f3:76:53:b8: 8c:b0:9d:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxRUIxMTAvBgNVBAUTKEI3RENFMTQxMTJBMDI5ODJGNTc1N0NBQjhEMzQ5MTAz MkM4RTE4RkEwHhcNMjUxMjAyMTc0ODE3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmMjY2MS01MzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUtVwmEs2AJIpdVaWiziLAMXL+TPJhn/ZoY4iv49xJk3HYDgD7vqMkzB3zwu YWQS+fzkwSdahPiajlaioxmo9lBzoWW33FU9meoCg8fw2UiegHbN0pn+jRxpmyjM 7EUi71PRrH44G8hl+F68VGKoJpTivQAuBwCF/sYcysC4ToMVrh4kVpZrz8PF9Fs8 1tpdA4kwJJEC+p4pJXaKUc2qwSwkNvRu7PLGwIjUNTubdYVkTJYpcy4S+PYyzjzx tQL5BsPW9e3cOiJ08uc2hcqXxL3+T3loVBI9UUHwplhnSHyWum4P3ku9RDBWAQ7u l2wMxNz4bDh+xEf9VrgqQ5T/bwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEOAmKVY 7cZMECTj/TI2MLh6HCE8MB8GA1UdIwQYMBaAFLfc4UESoCmC9XV8q400kQMsjhj6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTFFQi80OTdGMkJEOEY3 MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZTDFkWHlyalRTUkF5eU9H UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q5emhRUktnS1lMMWRYeXJqVFNSQXl5T0dQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjkxRUIvNDk3RjJCRDhGNzA1MTFFOUFEQkE0NTFGQzRGOUFFMDIvOEQyNDNGODQ5 QTZEMTFFQTg2NzQzMTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAOns8gwDQYJKoZIhvcNAQELBQADggEBAE62rYzWTBvHilLP VZ5zeuB+eHl50KfLai0lXOXNYpd+L5q7Lh7FTBkl6i25MNF/dIldU4qVf5wA1RGJ 0Uo8BcvPkfYc56Kln0iqoF6kewjz1a3BsGxZc7Br4l67NeiqisgEQMjRPBLA3IDp YPDma4iy5mQCzZ3nvmOuFVnocS+m3eXIW09mD1JMNgPlxw4KQnLRNYUt7AcjjBoD QIa1yIsArdNsnyCZxhWBBqB2s+PgtKnmqWUZFM1t58jKapdvGUg3seY62vjpU1c3 2q4aT4NEK90h+hOee5KR59gStjZf9tM1q6Rr7QMN3rcPwUidDQlDpQTRO7Vo83ZT uIywnSY= -----END CERTIFICATE-----Generated at Mon Dec 8 02:49:09 2025 by rpki-client