This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/140D52F2854B11EAACB2FE39C4F9AE02.roa File: 140D52F2854B11EAACB2FE39C4F9AE02.roa (raw, json) Hash identifier: ET3ghi3nq6hX3PLnVE0wD9eaGHtw25NadfuPrt0oFBU= Subject key identifier: FC:19:9A:C7:6A:D4:ED:1F:26:5A:F2:1C:9A:FA:4A:D9:58:39:4B:87 Certificate issuer: /CN=A91274A4/serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Certificate serial: 0C3A Authority key identifier: 59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/140D52F2854B11EAACB2FE39C4F9AE02.roa Signing time: Sat 20 Dec 2025 19:15:58 +0000 ROA not before: Sat 20 Dec 2025 19:15:58 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139883 IP address blocks: 61.16.51.0/24 maxlen: 24 61.16.52.0/24 maxlen: 24 61.16.55.0/24 maxlen: 24 61.16.101.0/24 maxlen: 24 61.16.105.0/24 maxlen: 24 61.16.110.0/24 maxlen: 24 61.16.119.0/24 maxlen: 24 2407:9880:8101::/48 maxlen: 48 2407:9880:8111::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:16:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3130 (0xc3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91274A4, serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Validity Not Before: Dec 20 19:15:58 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6946f5ee-e1ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:c8:14:64:6b:4a:4c:5b:30:e1:00:ef:27:51: 29:9e:9e:cd:5e:9c:f4:06:40:d0:7d:03:95:db:44: fe:98:cd:3b:9d:f3:7b:ba:29:56:1b:2b:a1:94:b9: f7:9c:8c:c4:01:a2:de:6c:a1:4e:54:65:4d:a6:ae: 22:6f:71:8a:46:01:26:d3:00:a7:9a:a0:34:09:5e: 46:c5:3a:87:41:60:67:e8:c1:00:8c:25:05:5d:49: d3:cc:52:c8:a1:be:49:f6:f9:46:c6:ea:29:d6:4a: 3e:05:d2:bf:ea:12:85:1c:5d:ce:01:1a:9f:de:b3: 68:5b:8a:b1:c8:9d:77:89:a1:fa:be:6a:f1:24:40: ba:7e:ca:3b:0b:b1:2c:9f:ea:30:0a:2f:9f:d9:04: 27:e1:16:00:79:19:ac:c6:f9:03:6e:1c:77:08:58: bc:63:51:f1:96:68:56:69:d3:ef:3a:0c:3e:05:f5: cd:af:a1:ed:9d:30:bd:6c:a6:e2:2f:58:da:89:34: 91:52:77:ab:56:c4:95:5b:74:da:00:a0:1c:5e:90: 6b:99:1e:38:8a:7d:51:d4:01:7d:f2:6b:a9:8c:76: 7b:a2:34:95:b0:8c:fe:f0:98:04:40:3f:33:ef:34: 93:fe:ba:c6:fc:31:60:4d:1c:c4:bd:3f:14:57:19: a8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:19:9A:C7:6A:D4:ED:1F:26:5A:F2:1C:9A:FA:4A:D9:58:39:4B:87 X509v3 Authority Key Identifier: keyid:59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/140D52F2854B11EAACB2FE39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.16.51.0-61.16.52.255 61.16.55.0/24 61.16.101.0/24 61.16.105.0/24 61.16.110.0/24 61.16.119.0/24 IPv6: 2407:9880:8101::/48 2407:9880:8111::/48 Signature Algorithm: sha256WithRSAEncryption d3:c0:2f:6d:46:16:36:d0:56:6d:8d:c4:1f:0f:78:5f:4e:ca: 18:ef:85:c9:49:99:61:b4:4d:d8:b9:58:8c:86:f3:d6:c2:69: 2b:14:db:de:1f:06:3a:4f:a2:54:9f:5a:55:61:27:c6:30:18: f9:c1:42:1c:39:93:1e:6e:13:bd:71:82:dd:10:17:66:dd:a7: 76:44:c4:6b:a4:c6:41:ca:7b:6a:ac:33:b9:f6:8e:44:8d:0b: d5:d5:dc:09:da:a3:09:b0:9c:a8:66:5f:02:ab:71:4c:e8:3d: d0:2b:69:34:2f:77:89:c9:26:d0:b0:1f:2f:af:04:e9:fc:3e: 2b:cc:3a:26:af:ea:72:a4:38:39:40:6b:0a:9b:e9:3a:d8:d2: 7d:eb:4e:6d:2e:a1:e1:2a:a4:f4:a1:8e:27:1b:8f:bd:5d:5c: 9a:76:c0:8f:cb:18:00:32:8d:f3:d5:05:b1:a2:e3:c2:e2:97: 25:db:0a:97:02:0f:80:f2:49:21:2a:6b:6e:61:fc:cd:e6:93: 1b:17:3b:4e:d3:a2:2d:e3:a1:24:1d:b0:f0:b6:f3:f2:33:c4: 5b:67:a2:0b:f6:c1:b8:e1:42:6f:24:9b:c4:d6:e6:92:70:a5: 55:28:3a:72:e3:9f:c5:b5:ed:99:81:0e:47:56:95:d1:46:2b: f6:6f:62:4a -----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgICDDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Mjc0QTQxMTAvBgNVBAUTKDU5NTY2NUZGODVFNEU0NzczNzFGNzU0MUY3MjA5REMy NDRFNjBDQTUwHhcNMjUxMjIwMTkxNTU4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ2ZjVlZS1lMWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlcgUZGtKTFsw4QDvJ1Epnp7NXpz0BkDQfQOV20T+mM07nfN7uilWGyuhlLn3 nIzEAaLebKFOVGVNpq4ib3GKRgEm0wCnmqA0CV5GxTqHQWBn6MEAjCUFXUnTzFLI ob5J9vlGxuop1ko+BdK/6hKFHF3OARqf3rNoW4qxyJ13iaH6vmrxJEC6fso7C7Es n+owCi+f2QQn4RYAeRmsxvkDbhx3CFi8Y1HxlmhWadPvOgw+BfXNr6HtnTC9bKbi L1jaiTSRUnerVsSVW3TaAKAcXpBrmR44in1R1AF98mupjHZ7ojSVsIz+8JgEQD8z 7zST/rrG/DFgTRzEvT8UVxmoGQIDAQABo4IC1TCCAtEwHQYDVR0OBBYEFPwZmsdq 1O0fJlryHJr6StlYOUuHMB8GA1UdIwQYMBaAFFlWZf+F5OR3Nx91QfcgncJE5gyl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzRBNC9EREJFNDIwQTMw RjAxMUVBOTg1OUFFNTNDNEY5QUUwMi9XVlpsXzRYazVIYzNIM1ZCOXlDZHdrVG1E S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dWWmxfNFhrNUhjM0gzVkI5eUNkd2tUbURLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc0QTQvRERCRTQyMEEzMEYwMTFFQTk4NTlBRTUzQzRGOUFFMDIvMTQwRDUyRjI4 NTRCMTFFQUFDQjJGRTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXwYIKwYBBQUHAQcBAf8E UDBOMDIEAgABMCwwDAMEAD0QMwMEAD0QNAMEAD0QNwMEAD0QZQMEAD0QaQMEAD0Q bgMEAD0QdzAYBAIAAjASAwcAJAeYgIEBAwcAJAeYgIERMA0GCSqGSIb3DQEBCwUA A4IBAQDTwC9tRhY20FZtjcQfD3hfTsoY74XJSZlhtE3YuViMhvPWwmkrFNveHwY6 T6JUn1pVYSfGMBj5wUIcOZMebhO9cYLdEBdm3ad2RMRrpMZByntqrDO59o5EjQvV 1dwJ2qMJsJyoZl8Cq3FM6D3QK2k0L3eJySbQsB8vrwTp/D4rzDomr+pypDg5QGsK m+k62NJ9605tLqHhKqT0oY4nG4+9XVyadsCPyxgAMo3z1QWxouPC4pcl2wqXAg+A 8kkhKmtuYfzN5pMbFztO06It46EkHbDwtvPyM8RbZ6IL9sG44UJvJJvE1uaScKVV KDpy45/Fte2ZgQ5HVpXRRiv2b2JK -----END CERTIFICATE-----Generated at Sun Dec 21 15:47:56 2025 by rpki-client