This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/5537463AC91911F0AFA34C6DC4F9AE02.roa File: 5537463AC91911F0AFA34C6DC4F9AE02.roa (raw, json) Hash identifier: yoL3EzYooRWeprtTC3zU7L7b1cT/XHQ/zGKxRBGUmLI= Subject key identifier: D4:55:8E:05:72:9C:E1:2F:F1:98:49:62:29:75:C8:B9:F9:02:8A:D5 Certificate issuer: /CN=A912598D/serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Certificate serial: 72 Authority key identifier: 9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/5537463AC91911F0AFA34C6DC4F9AE02.roa Signing time: Tue 09 Dec 2025 03:32:44 +0000 ROA not before: Tue 09 Dec 2025 03:32:44 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 135566 IP address blocks: 122.155.26.0/24 maxlen: 24 122.155.27.0/24 maxlen: 24 202.139.197.0/24 maxlen: 24 202.139.198.0/24 maxlen: 24 202.139.199.0/24 maxlen: 24 202.139.200.0/24 maxlen: 24 202.139.201.0/24 maxlen: 24 202.139.202.0/24 maxlen: 24 202.139.203.0/24 maxlen: 24 202.139.204.0/24 maxlen: 24 202.139.205.0/24 maxlen: 24 202.139.206.0/24 maxlen: 24 202.139.207.0/24 maxlen: 24 202.139.208.0/24 maxlen: 24 202.139.209.0/24 maxlen: 24 202.139.210.0/24 maxlen: 24 202.139.211.0/24 maxlen: 24 202.139.212.0/24 maxlen: 24 202.139.213.0/24 maxlen: 24 202.139.215.0/24 maxlen: 24 202.139.216.0/24 maxlen: 24 202.139.217.0/24 maxlen: 24 2001:c38:90a0::/44 maxlen: 44 2001:c38:90a9::/48 maxlen: 48 2001:c38:90aa::/48 maxlen: 48 2001:c38:90ab::/48 maxlen: 48 2001:c38:90ae::/48 maxlen: 48 2001:c38:90af::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 07:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912598D, serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Validity Not Before: Dec 9 03:32:44 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6937985b-9bf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:31:41:99:13:59:71:73:99:d0:74:9f:a6:30: 88:be:45:06:0e:a7:26:4c:61:35:4b:5b:6c:e6:63: f0:ba:36:65:b5:32:1a:9a:93:68:d8:86:60:0f:5f: f1:62:f0:45:20:5a:52:18:d4:ef:bb:5d:fa:95:dc: 41:e5:de:f7:41:c8:67:cb:45:bc:71:32:f9:c7:8b: 06:2c:0f:b7:e9:55:10:16:a0:20:e0:18:b8:26:e9: ca:c1:f4:81:0f:12:7b:5f:07:52:c5:82:cd:99:54: 63:10:68:de:37:a1:8c:47:58:67:e9:d6:98:7b:18: c6:18:52:40:e3:78:4c:58:ce:1b:1f:29:06:cb:fe: 64:83:4e:de:9f:af:d4:4f:74:cd:7b:70:62:7e:a0: a4:22:6a:16:cc:14:7f:03:9e:48:a7:4a:2e:63:99: 79:ac:5e:a3:fd:c6:26:f4:7e:59:1e:0b:80:6e:30: 05:70:a7:01:74:45:59:95:fc:7c:e8:69:a4:01:8a: 2f:7b:dc:cf:96:b5:3a:c4:e9:43:99:39:d7:6b:f1: 6d:2c:c5:88:eb:64:c7:4e:d1:ba:3f:1c:c6:ad:a6: dd:ca:99:89:4d:42:83:d9:7b:ce:06:e2:07:5f:4e: 0d:b0:0b:09:43:d1:06:ff:06:32:64:69:29:b9:c6: 6a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:55:8E:05:72:9C:E1:2F:F1:98:49:62:29:75:C8:B9:F9:02:8A:D5 X509v3 Authority Key Identifier: keyid:9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/5537463AC91911F0AFA34C6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.155.26.0/23 202.139.197.0-202.139.213.255 202.139.215.0-202.139.217.255 IPv6: 2001:c38:90a0::/44 Signature Algorithm: sha256WithRSAEncryption 4c:44:7b:f0:d9:d3:96:6b:5f:28:5a:dd:0c:bc:af:76:f9:3c: c6:b5:e6:fb:75:81:89:a8:9d:6b:bf:59:49:bf:af:32:db:d1: 86:b1:59:aa:b7:a4:eb:f3:f2:8a:62:b4:16:7d:da:ce:90:c9: 52:3b:c9:d9:28:59:04:39:e6:b0:b6:08:c9:e1:d9:57:ff:1e: 70:7c:44:a3:17:f5:12:22:39:13:30:8a:50:4c:fa:50:56:95: 4d:4a:b2:57:92:bb:78:af:2b:79:51:fc:69:aa:ff:f8:e7:7e: e4:60:9b:6f:bb:8c:ca:66:c0:37:c3:62:51:3c:30:39:7d:8d: e1:0b:76:15:02:c0:e6:c4:12:1d:2d:f9:a1:36:75:94:ad:b2: c7:26:b5:2e:43:8a:bf:e6:8c:84:03:ad:fb:14:fd:5c:0a:40: a9:30:55:18:a9:eb:a7:68:8e:00:7e:b1:4f:27:38:63:58:e2: 1e:bd:18:04:64:6a:72:16:48:ef:02:79:94:a8:a1:34:97:b7: 29:73:55:55:e5:c6:c3:56:75:ba:8b:56:67:92:b2:5f:22:c6: 43:3b:24:b2:ca:b4:4d:6b:26:e6:f3:b7:35:e8:c8:f5:3e:67: ce:6b:2d:36:80:91:e7:6d:5b:01:8d:c5:bc:ee:20:f4:ff:88: ef:fc:07:31 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTk4RDExMC8GA1UEBRMoOUEzQTY3RUREQ0QwOTc3NTMzQTlBMEI4QzQ5RjRDMDEw MEM4NTM5MTAeFw0yNTEyMDkwMzMyNDRaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5Mzc5ODViLTliZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcMUGZE1lxc5nQdJ+mMIi+RQYOpyZMYTVLW2zmY/C6NmW1Mhqak2jYhmAPX/Fi 8EUgWlIY1O+7XfqV3EHl3vdByGfLRbxxMvnHiwYsD7fpVRAWoCDgGLgm6crB9IEP EntfB1LFgs2ZVGMQaN43oYxHWGfp1ph7GMYYUkDjeExYzhsfKQbL/mSDTt6fr9RP dM17cGJ+oKQiahbMFH8DnkinSi5jmXmsXqP9xib0flkeC4BuMAVwpwF0RVmV/Hzo aaQBii973M+WtTrE6UOZOddr8W0sxYjrZMdO0bo/HMatpt3KmYlNQoPZe84G4gdf Tg2wCwlD0Qb/BjJkaSm5xmp1AgMBAAGjggLCMIICvjAdBgNVHQ4EFgQU1FWOBXKc 4S/xmEliKXXIufkCitUwHwYDVR0jBBgwFoAUmjpn7dzQl3UzqaC4xJ9MAQDIU5Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1OThEL0I4ODUzMUNBQzhF QzExRjBBMzQ0QUI0NUM0RjlBRTAyL21qcG43ZHpRbDNVenFhQzR4SjlNQVFESVU1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWpwbjdkelFsM1V6cWFDNHhKOU1BUURJVTVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTk4RC9CODg1MzFDQUM4RUMxMUYwQTM0NEFCNDVDNEY5QUUwMi81NTM3NDYzQUM5 MTkxMUYwQUZBMzRDNkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBMBggrBgEFBQcBBwEB/wQ9 MDswKAQCAAEwIgMEAXqbGjAMAwQAyovFAwQByovUMAwDBADKi9cDBAHKi9gwDwQC AAIwCQMHBCABDDiQoDANBgkqhkiG9w0BAQsFAAOCAQEATER78NnTlmtfKFrdDLyv dvk8xrXm+3WBiaida79ZSb+vMtvRhrFZqrek6/PyimK0Fn3azpDJUjvJ2ShZBDnm sLYIyeHZV/8ecHxEoxf1EiI5EzCKUEz6UFaVTUqyV5K7eK8reVH8aar/+Od+5GCb b7uMymbAN8NiUTwwOX2N4Qt2FQLA5sQSHS35oTZ1lK2yxya1LkOKv+aMhAOt+xT9 XApAqTBVGKnrp2iOAH6xTyc4Y1jiHr0YBGRqchZI7wJ5lKihNJe3KXNVVeXGw1Z1 uotWZ5KyXyLGQzskssq0TWsm5vO3NejI9T5nzmstNoCR521bAY3FvO4g9P+I7/wH MQ== -----END CERTIFICATE-----Generated at Thu Dec 18 05:06:14 2025 by rpki-client