This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/025F9668C60A11F0AB4AE483C4F9AE02.roa File: 025F9668C60A11F0AB4AE483C4F9AE02.roa (raw, json) Hash identifier: 12RMAudJL+SHTcjUoCBqfB1EVhMixsbW3pw7P/AEY6c= Subject key identifier: 98:1E:99:4D:DF:87:86:2D:AD:79:EE:62:14:EA:57:E3:25:E9:D8:E7 Certificate issuer: /CN=A91538E7/serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Certificate serial: 4C Authority key identifier: 3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/025F9668C60A11F0AB4AE483C4F9AE02.roa Signing time: Fri 12 Dec 2025 04:40:51 +0000 ROA not before: Fri 12 Dec 2025 04:40:51 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 202736 IP address blocks: 72.57.165.0/24 maxlen: 24 72.57.166.0/23 maxlen: 24 72.57.168.0/21 maxlen: 24 72.57.176.0/22 maxlen: 24 72.57.180.0/24 maxlen: 24 72.57.186.0/23 maxlen: 24 72.57.188.0/22 maxlen: 24 72.57.192.0/22 maxlen: 24 72.57.196.0/22 maxlen: 24 72.57.200.0/21 maxlen: 24 72.57.208.0/20 maxlen: 24 72.57.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91538E7, serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Validity Not Before: Dec 12 04:40:51 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=693b9cd3-bd22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0b:90:68:86:d5:b8:45:38:6c:a7:b2:5a:91: 84:93:17:ea:98:50:54:1a:34:3d:50:5e:f0:e6:43: 55:ff:a6:e7:b5:63:b6:d7:d2:51:ff:28:57:4e:88: a8:88:88:c8:de:e4:da:e8:cb:47:20:fe:8b:a6:bc: 77:e4:78:36:e8:9d:0d:9a:9e:b6:16:a5:71:cf:29: 1c:10:89:32:a1:8e:34:cb:d3:96:32:53:af:b5:c9: 7e:3c:09:5d:5a:82:50:d7:8a:68:f9:93:e7:d7:62: 94:dc:00:ba:51:05:c1:b2:b0:c6:82:95:b6:7f:70: 6d:3b:8d:31:dd:e5:e5:5e:f6:97:f8:fd:46:28:16: 8e:fa:83:ec:7c:e9:6c:e3:02:37:f8:3e:64:9a:25: 83:be:03:e2:b2:a7:02:b3:4d:2c:ed:b1:8d:b2:dd: ef:3a:c9:cb:44:20:1b:71:dd:d1:4d:7b:e8:50:4a: f3:53:7f:4e:0b:97:8c:b5:5c:a1:df:6e:e5:e3:c6: 4c:7c:67:67:09:d0:22:6a:51:ce:3e:be:6f:89:ef: 14:60:dd:77:5d:2d:bd:a2:d6:53:b9:7e:1e:af:c9: 6f:6b:71:67:63:a6:01:4d:50:45:a4:37:da:ba:10: 52:17:cc:ac:59:2b:d9:1c:e7:11:c1:6a:57:ba:94: ae:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:1E:99:4D:DF:87:86:2D:AD:79:EE:62:14:EA:57:E3:25:E9:D8:E7 X509v3 Authority Key Identifier: keyid:3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/025F9668C60A11F0AB4AE483C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 72.57.165.0-72.57.180.255 72.57.186.0-72.57.227.255 Signature Algorithm: sha256WithRSAEncryption 70:dc:83:7f:89:96:30:0b:2b:c2:9f:b6:e5:7e:dd:ab:e0:b2: 3a:5b:b4:4d:1d:5c:3f:d0:81:6f:cd:6c:cf:d3:44:48:3a:b0: 2b:4f:41:19:a4:4d:e8:2a:a2:a4:7f:45:75:85:d7:ab:33:e8: 09:aa:81:6c:47:61:58:59:ad:e1:38:d1:cb:ff:f9:e5:dc:9e: 67:fc:42:4b:11:6a:12:76:63:31:54:30:89:4f:d3:ab:59:3e: 10:56:ee:fd:c0:ec:9e:d5:e3:4e:47:e9:1b:3d:22:ae:a2:1f: ef:52:2c:8e:c9:bd:b4:a4:cb:f9:34:82:76:95:52:34:88:29: 7a:16:7d:04:b9:f1:46:ae:3b:b8:f5:8d:d4:4b:6f:85:38:76: c2:be:3b:c5:89:23:5d:8b:0b:e8:bf:85:20:24:d3:8c:bc:8f: e1:c6:44:03:3f:03:b1:a4:db:3b:aa:f7:56:59:48:cf:31:e5: d7:58:39:68:55:9b:5b:23:95:ac:be:ca:6d:c2:9a:1e:38:4e: c9:8d:6a:ba:9e:b6:74:d4:6d:e5:96:59:26:92:cf:7c:9e:6e: 6f:2f:27:54:66:0e:ab:d9:ac:a0:c4:c2:10:05:61:3b:d9:a0: a4:a2:f9:a8:7e:5a:7a:99:50:87:40:7b:b6:c2:ba:da:52:08: c4:59:ca:8a -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzhFNzExMC8GA1UEBRMoM0Q2MjE2RDU1Q0I1NEZDOUI1NzBGOUYyNUY5QUREMEYz NzY5QjRERTAeFw0yNTEyMTIwNDQwNTFaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMMDTY5M2I5Y2QzLWJkMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcC5BohtW4RThsp7JakYSTF+qYUFQaND1QXvDmQ1X/pue1Y7bX0lH/KFdOiKiI iMje5Nroy0cg/oumvHfkeDbonQ2anrYWpXHPKRwQiTKhjjTL05YyU6+1yX48CV1a glDXimj5k+fXYpTcALpRBcGysMaClbZ/cG07jTHd5eVe9pf4/UYoFo76g+x86Wzj Ajf4PmSaJYO+A+KypwKzTSztsY2y3e86yctEIBtx3dFNe+hQSvNTf04Ll4y1XKHf buXjxkx8Z2cJ0CJqUc4+vm+J7xRg3XddLb2i1lO5fh6vyW9rcWdjpgFNUEWkN9q6 EFIXzKxZK9kc5xHBale6lK5xAgMBAAGjggKrMIICpzAdBgNVHQ4EFgQUmB6ZTd+H hi2tee5iFOpX4yXp2OcwHwYDVR0jBBgwFoAUPWIW1Vy1T8m1cPnyX5rdDzdptN4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzOEU3L0M2MkIyOTg2OTM0 MjExRjBBOTg3NzgzQkM0RjlBRTAyL1BXSVcxVnkxVDhtMWNQbnlYNXJkRHpkcHRO NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUFdJVzFWeTFUOG0xY1BueVg1cmREemRwdE40LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzhFNy9DNjJCMjk4NjkzNDIxMUYwQTk4Nzc4M0JDNEY5QUUwMi8wMjVGOTY2OEM2 MEExMUYwQUI0QUU0ODNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA1BggrBgEFBQcBBwEB/wQm MCQwIgQCAAEwHDAMAwQASDmlAwQASDm0MAwDBAFIOboDBAJIOeAwDQYJKoZIhvcN AQELBQADggEBAHDcg3+JljALK8KftuV+3avgsjpbtE0dXD/QgW/NbM/TREg6sCtP QRmkTegqoqR/RXWF16sz6AmqgWxHYVhZreE40cv/+eXcnmf8QksRahJ2YzFUMIlP 06tZPhBW7v3A7J7V405H6Rs9Iq6iH+9SLI7JvbSky/k0gnaVUjSIKXoWfQS58Uau O7j1jdRLb4U4dsK+O8WJI12LC+i/hSAk04y8j+HGRAM/A7Gk2zuq91ZZSM8x5ddY OWhVm1sjlay+ym3Cmh44TsmNarqetnTUbeWWWSaSz3yebm8vJ1RmDqvZrKDEwhAF YTvZoKSi+ah+WnqZUIdAe7bCutpSCMRZyoo= -----END CERTIFICATE-----Generated at Fri Dec 19 16:49:48 2025 by rpki-client