This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/535DB56CD1AF11F0A278C10CC4F9AE02.roa File: 535DB56CD1AF11F0A278C10CC4F9AE02.roa (raw, json) Hash identifier: 5wR/vgwBsZWB9tqC4WRbv4D2H8YQRdD09PXZrJfd0zk= Subject key identifier: 97:28:74:84:10:29:71:55:1B:12:6E:86:6A:FD:D1:B4:BD:98:75:90 Certificate issuer: /CN=A91652B5/serialNumber=FD49A51346A2F7AC811B00AD62EBEF0E94A2A1B2 Certificate serial: 13 Authority key identifier: FD:49:A5:13:46:A2:F7:AC:81:1B:00:AD:62:EB:EF:0E:94:A2:A1:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/535DB56CD1AF11F0A278C10CC4F9AE02.roa Signing time: Tue 09 Dec 2025 07:09:42 +0000 ROA not before: Tue 09 Dec 2025 07:09:42 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154315 IP address blocks: 138.252.96.0/23 maxlen: 23 138.252.96.0/24 maxlen: 24 138.252.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.crl rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:51:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91652B5, serialNumber=FD49A51346A2F7AC811B00AD62EBEF0E94A2A1B2 Validity Not Before: Dec 9 07:09:42 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6937cb36-e2f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d0:3c:6d:37:f7:e3:05:30:7e:58:c2:92:0a: 47:2d:4a:1f:a2:80:27:ae:56:85:36:9a:86:b0:80: 12:b1:e9:09:1d:66:bc:46:70:33:49:4a:4d:6b:e5: 40:39:fe:f1:ed:a3:b5:75:ac:b3:d6:c6:d6:2c:ed: 32:34:6d:65:88:cf:8e:01:99:a7:a5:16:b5:1b:db: 6f:b8:8a:c1:98:10:c5:b3:54:15:8d:79:cd:24:6c: 4b:cb:0e:e2:73:c9:8e:45:26:fe:cf:b6:87:3d:76: 29:5f:3b:a3:df:0d:56:91:65:8c:67:57:cf:74:28: 37:5c:33:9c:c7:65:b0:73:09:0f:a5:28:01:c8:d1: 7c:5e:97:c4:a5:b0:fb:5c:c7:78:27:18:5a:0e:10: 93:a7:eb:6d:f4:c8:b7:8d:92:14:78:40:d6:e1:ce: cb:bc:af:85:bd:5c:8a:02:67:b4:c2:72:07:c6:57: cc:6b:62:22:97:5b:c6:a5:cc:0b:ab:2e:ac:76:8e: 59:cf:bb:c8:b8:7e:af:6f:6d:a9:40:48:ab:30:49: b1:0f:8d:4c:9d:5f:59:66:2a:0e:4b:59:8b:bd:1c: a4:1d:18:69:c1:71:f4:f9:ac:63:6c:59:ac:92:62: a9:bc:d1:69:17:18:0e:a0:a4:6e:e0:78:95:5e:f7: 37:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:28:74:84:10:29:71:55:1B:12:6E:86:6A:FD:D1:B4:BD:98:75:90 X509v3 Authority Key Identifier: keyid:FD:49:A5:13:46:A2:F7:AC:81:1B:00:AD:62:EB:EF:0E:94:A2:A1:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/535DB56CD1AF11F0A278C10CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.96.0/23 Signature Algorithm: sha256WithRSAEncryption 04:27:3d:e2:82:2d:72:bc:e2:d7:01:6d:20:9f:ab:ca:9b:7b: b7:60:0c:01:7f:0b:35:1c:a9:ba:fb:a1:db:73:66:8f:a2:fe: 9d:f0:37:8a:9a:40:15:cd:81:a9:d4:20:2f:0f:e2:11:56:95: bb:ab:50:04:4c:2c:79:bc:6c:1c:9d:0e:c4:72:79:f0:15:2d: 62:0d:f1:b3:54:b3:29:5c:71:19:d8:15:9b:2d:c1:26:00:ed: 00:28:4a:d8:c3:cb:af:c4:5d:5e:02:a7:56:e1:a3:da:45:ed: a7:db:48:c5:f1:e4:02:45:53:05:b3:10:03:9c:d3:6c:6a:fd: d3:32:83:a9:93:6d:fe:27:29:d7:30:5d:16:2b:1b:c4:de:10: 90:53:d8:eb:81:94:50:ff:3d:cd:00:6b:28:90:a7:03:f0:51: 6a:ab:52:21:83:65:d6:fc:7a:73:27:c5:9e:4d:2a:aa:68:37: c8:59:f9:d8:41:3c:a0:26:ff:cb:02:d3:ce:47:d0:11:46:0d: 13:9e:03:f1:87:ef:4f:0b:30:25:c1:fa:9e:d7:01:61:16:c7: 12:55:69:88:4d:e1:32:31:d8:ff:79:ff:5a:d1:06:40:45:c4: a5:d3:f4:4b:80:d1:44:72:44:d7:8c:0c:57:a0:07:47:61:11: c1:08:34:8d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTJCNTExMC8GA1UEBRMoRkQ0OUE1MTM0NkEyRjdBQzgxMUIwMEFENjJFQkVGMEU5 NEEyQTFCMjAeFw0yNTEyMDkwNzA5NDJaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MzdjYjM2LWUyZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCm0DxtN/fjBTB+WMKSCkctSh+igCeuVoU2moawgBKx6QkdZrxGcDNJSk1r5UA5 /vHto7V1rLPWxtYs7TI0bWWIz44BmaelFrUb22+4isGYEMWzVBWNec0kbEvLDuJz yY5FJv7Ptoc9dilfO6PfDVaRZYxnV890KDdcM5zHZbBzCQ+lKAHI0Xxel8SlsPtc x3gnGFoOEJOn6230yLeNkhR4QNbhzsu8r4W9XIoCZ7TCcgfGV8xrYiKXW8alzAur Lqx2jlnPu8i4fq9vbalASKswSbEPjUydX1lmKg5LWYu9HKQdGGnBcfT5rGNsWayS Yqm80WkXGA6gpG7geJVe9zd3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUlyh0hBAp cVUbEm6Gav3RtL2YdZAwHwYDVR0jBBgwFoAU/UmlE0ai96yBGwCtYuvvDpSiobIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MkI1LzY2NzlEOEJFQzVC MjExRjA4NjIyNzkyQkM0RjlBRTAyL19VbWxFMGFpOTZ5Qkd3Q3RZdXZ2RHBTaW9i SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX1VtbEUwYWk5NnlCR3dDdFl1dnZEcFNpb2JJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTJCNS82Njc5RDhCRUM1QjIxMUYwODYyMjc5MkJDNEY5QUUwMi81MzVEQjU2Q0Qx QUYxMUYwQTI3OEMxMENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8YDANBgkqhkiG9w0BAQsFAAOCAQEABCc94oItcrzi1wFt IJ+rypt7t2AMAX8LNRypuvuh23Nmj6L+nfA3ippAFc2BqdQgLw/iEVaVu6tQBEws ebxsHJ0OxHJ58BUtYg3xs1SzKVxxGdgVmy3BJgDtAChK2MPLr8RdXgKnVuGj2kXt p9tIxfHkAkVTBbMQA5zTbGr90zKDqZNt/icp1zBdFisbxN4QkFPY64GUUP89zQBr KJCnA/BRaqtSIYNl1vx6cyfFnk0qqmg3yFn52EE8oCb/ywLTzkfQEUYNE54D8Yfv TwswJcH6ntcBYRbHElVpiE3hMjHY/3n/WtEGQEXEpdP0S4DRRHJE14wMV6AHR2ER wQg0jQ== -----END CERTIFICATE-----Generated at Sat Dec 20 02:20:42 2025 by rpki-client