This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/2E96A63A690A11EF9525E980C4F9AE02.roa File: 2E96A63A690A11EF9525E980C4F9AE02.roa (raw, json) Hash identifier: EzJu4NrWpukbz30ZMeSBC7xmaD1jBqVwT6Irau+K5pk= Subject key identifier: 9F:EF:16:AB:20:DF:75:2C:05:CA:04:E8:A8:B6:CF:34:A0:4F:FD:4D Certificate issuer: /CN=A9157D7A/serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Certificate serial: 0828 Authority key identifier: 40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/2E96A63A690A11EF9525E980C4F9AE02.roa Signing time: Mon 29 Dec 2025 07:17:40 +0000 ROA not before: Mon 29 Dec 2025 07:17:40 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 45820 IP address blocks: 14.194.0.0/18 maxlen: 24 14.194.64.0/18 maxlen: 24 14.194.128.0/18 maxlen: 24 14.194.208.0/20 maxlen: 24 14.194.240.0/20 maxlen: 24 14.195.0.0/18 maxlen: 24 14.195.64.0/19 maxlen: 24 14.195.96.0/19 maxlen: 24 14.195.128.0/18 maxlen: 24 14.195.192.0/20 maxlen: 24 14.195.208.0/20 maxlen: 24 14.195.240.0/20 maxlen: 24 49.200.0.0/14 maxlen: 14 49.200.0.0/19 maxlen: 24 49.200.40.0/21 maxlen: 24 49.200.48.0/21 maxlen: 24 49.200.56.0/22 maxlen: 24 49.200.60.0/22 maxlen: 24 49.200.96.0/21 maxlen: 24 49.200.104.0/21 maxlen: 24 49.200.112.0/21 maxlen: 24 49.200.120.0/21 maxlen: 24 49.200.128.0/21 maxlen: 24 49.200.136.0/21 maxlen: 24 49.200.144.0/21 maxlen: 24 49.200.152.0/21 maxlen: 24 49.202.208.0/24 maxlen: 24 49.249.0.0/17 maxlen: 24 49.249.128.0/18 maxlen: 24 115.160.217.0/24 maxlen: 24 182.156.0.0/18 maxlen: 22 182.156.0.0/22 maxlen: 24 182.156.4.0/23 maxlen: 24 182.156.8.0/21 maxlen: 24 182.156.16.0/22 maxlen: 24 182.156.22.0/23 maxlen: 24 182.156.24.0/21 maxlen: 23 182.156.24.0/23 maxlen: 24 182.156.28.0/22 maxlen: 24 182.156.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 13:18:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2088 (0x828) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D7A, serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Validity Not Before: Dec 29 07:17:40 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69522b13-e10e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ea:30:a1:aa:42:83:65:c0:cd:bb:61:70:66: 5a:a3:12:17:7a:39:a8:20:4e:a4:5d:bc:61:d2:31: f0:84:9c:6b:5a:e2:51:19:b7:da:32:0b:d8:71:94: 98:a9:ee:f4:1a:67:97:77:fc:68:a8:d8:fa:d9:c7: b4:fe:6e:1a:18:e0:8c:50:53:a6:79:ca:08:16:76: 3d:0b:06:ca:bb:54:76:52:3f:d0:29:c4:81:14:0b: 3d:2e:ac:4f:6b:b7:9f:c9:4c:63:c4:e6:da:2e:4c: 28:ca:e4:f2:fb:58:46:02:e2:a3:14:cf:3d:8a:2d: 37:37:f7:1d:6b:bf:76:ab:e8:6d:a3:54:5b:84:a6: b9:9e:c4:8c:cb:dc:4c:f7:cd:9c:17:03:2b:0e:a3: 54:b0:46:29:86:1c:9e:ae:a4:67:2f:c7:f6:dc:22: 46:34:61:02:fb:b3:d7:bd:f3:70:04:24:e3:e8:d9: df:73:1d:cd:1d:2c:18:8c:7d:10:92:11:6d:1e:dc: d4:a7:68:a2:2f:c4:e4:12:1d:a9:b1:b6:84:e9:b7: 89:60:68:25:8b:1f:4b:d6:93:e4:71:84:14:a6:08: 23:89:21:9c:7b:94:c6:37:3a:8b:2d:c3:fb:ea:45: 74:00:6e:3f:fc:ee:97:3a:0f:07:b9:38:f1:14:96: 62:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:EF:16:AB:20:DF:75:2C:05:CA:04:E8:A8:B6:CF:34:A0:4F:FD:4D X509v3 Authority Key Identifier: keyid:40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/2E96A63A690A11EF9525E980C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.194.0.0-14.194.191.255 14.194.208.0/20 14.194.240.0-14.195.223.255 14.195.240.0/20 49.200.0.0/14 49.249.0.0-49.249.191.255 115.160.217.0/24 182.156.0.0/18 Signature Algorithm: sha256WithRSAEncryption 3f:87:ec:13:04:23:b6:34:04:77:4a:e9:7e:7e:82:76:01:90: 07:7a:be:fa:7e:33:d9:0b:e8:16:b6:e9:59:b8:ce:1a:4a:66: 9b:a5:46:93:c5:9d:06:08:a4:85:a7:a4:9f:85:6d:8b:2d:b1: 24:c9:f8:bd:44:d8:bc:10:6b:68:19:4c:45:ef:d3:c0:01:fe: c1:43:d7:11:ff:9d:e5:94:91:8d:a0:2b:24:ba:98:7e:09:03: a4:45:e8:d2:52:f8:b5:ee:ea:5f:e2:7e:21:52:84:79:85:68: d9:ed:6e:b8:c8:6f:b1:83:ec:0e:16:05:7e:2d:d9:49:d1:cc: 02:36:ab:2f:29:a7:f3:39:ee:fb:82:81:cd:21:02:f3:07:32: 1e:61:dc:11:5c:d0:8f:a4:96:0b:8e:27:bb:39:36:3b:2e:8a: 25:ab:c5:ff:69:b6:b9:01:49:48:38:d5:6b:ea:56:0f:36:4c: 30:73:b5:99:68:36:c9:b0:d5:5f:fc:6b:a9:fe:bc:e6:d3:d3: 9a:a6:eb:b4:95:e9:5c:3c:7f:9c:9a:4d:b6:e3:63:97:14:46: 77:bf:45:1e:fd:eb:7e:67:5b:f5:c5:8e:45:34:98:47:b6:0b: 5a:25:83:5f:20:24:12:5e:65:65:14:b3:ed:90:be:aa:c5:82: 8a:49:58:bc -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgICCCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEN0ExMTAvBgNVBAUTKDQwMUI0Mjk5MDZDOTBFQTAzRUNGQzYxQjE1QkE0RUYx MjM5MDMzNzkwHhcNMjUxMjI5MDcxNzQwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDDA02OTUyMmIxMy1lMTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+owoapCg2XAzbthcGZaoxIXejmoIE6kXbxh0jHwhJxrWuJRGbfaMgvYcZSY qe70GmeXd/xoqNj62ce0/m4aGOCMUFOmecoIFnY9CwbKu1R2Uj/QKcSBFAs9LqxP a7efyUxjxObaLkwoyuTy+1hGAuKjFM89ii03N/cda792q+hto1RbhKa5nsSMy9xM 982cFwMrDqNUsEYphhyerqRnL8f23CJGNGEC+7PXvfNwBCTj6Nnfcx3NHSwYjH0Q khFtHtzUp2iiL8TkEh2psbaE6beJYGglix9L1pPkcYQUpggjiSGce5TGNzqLLcP7 6kV0AG4//O6XOg8HuTjxFJZiKQIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFJ/vFqsg 33UsBcoE6Ki2zzSgT/1NMB8GA1UdIwQYMBaAFEAbQpkGyQ6gPs/GGxW6TvEjkDN5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q3QS81RERDQ0NDNjk5 MTUxMUVCOTY3MjcyNDNDNEY5QUUwMi9RQnRDbVFiSkRxQS16OFliRmJwTzhTT1FN M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCdENtUWJKRHFBLXo4WWJGYnBPOFNPUU0zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEN0EvNUREQ0NDQzY5OTE1MTFFQjk2NzI3MjQzQzRGOUFFMDIvMkU5NkE2M0E2 OTBBMTFFRjk1MjVFOTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXgYIKwYBBQUHAQcBAf8E TzBNMEsEAgABMEUwCwMDAQ7CAwQGDsKAAwQEDsLQMAwDBAQOwvADBAUOw8ADBAQO w/ADAwIxyDALAwMAMfkDBAYx+YADBABzoNkDBAa2nAAwDQYJKoZIhvcNAQELBQAD ggEBAD+H7BMEI7Y0BHdK6X5+gnYBkAd6vvp+M9kL6Ba26Vm4zhpKZpulRpPFnQYI pIWnpJ+FbYstsSTJ+L1E2LwQa2gZTEXv08AB/sFD1xH/neWUkY2gKyS6mH4JA6RF 6NJS+LXu6l/ifiFShHmFaNntbrjIb7GD7A4WBX4t2UnRzAI2qy8pp/M57vuCgc0h AvMHMh5h3BFc0I+klguOJ7s5NjsuiiWrxf9ptrkBSUg41WvqVg82TDBztZloNsmw 1V/8a6n+vObT05qm67SV6Vw8f5yaTbbjY5cURne/RR79635nW/XFjkU0mEe2C1ol g18gJBJeZWUUs+2QvqrFgopJWLw= -----END CERTIFICATE-----Generated at Tue Dec 30 20:20:55 2025 by rpki-client