This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/12D4E3D41AA411F0A196BA66C4F9AE02.roa File: 12D4E3D41AA411F0A196BA66C4F9AE02.roa (raw, json) Hash identifier: 1IDxJ7sNd9MACQvg3qLs51nj81OMqpfNo6nMzd4BSuI= Subject key identifier: 6A:AE:B8:6C:FA:72:3C:79:CB:97:41:BE:A4:BE:C9:45:6A:47:92:58 Certificate issuer: /CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Certificate serial: 01FD Authority key identifier: 19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/12D4E3D41AA411F0A196BA66C4F9AE02.roa Signing time: Tue 16 Dec 2025 16:40:54 +0000 ROA not before: Tue 16 Dec 2025 16:40:54 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 197537 IP address blocks: 185.254.242.0/24 maxlen: 24 213.139.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 509 (0x1fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Validity Not Before: Dec 16 16:40:54 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69418b96-f0bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a0:6c:b1:f8:c1:ac:57:c5:c4:48:26:0a:9c: 9e:37:96:2c:fd:cb:cd:fa:4c:ca:d6:95:dc:06:f0: 21:4b:7c:e0:86:50:03:77:90:58:67:2b:2b:99:70: 3b:77:4b:03:dd:ad:7a:e5:19:71:5b:fc:c5:92:aa: 8c:bf:d4:b1:21:b1:b6:b4:09:58:67:b7:e7:12:4f: b6:35:99:89:42:56:5a:32:b4:45:1a:95:dd:96:27: cf:af:11:68:81:f6:04:1a:d2:8c:9c:b2:38:22:43: f3:80:22:ec:ce:c4:0e:c6:70:d5:6c:db:80:d8:94: 38:0d:b2:fb:79:80:ee:5a:f3:0f:7b:34:92:1b:f9: 52:0a:c2:41:22:23:28:cb:64:eb:e7:e8:33:c5:7e: ed:1d:09:25:1a:59:4e:73:ab:e6:6a:df:ac:ae:27: cc:5c:42:be:61:3d:b8:bb:9d:83:11:12:4c:35:b6: c7:b8:75:c9:85:60:a9:4b:ab:3e:cf:4f:0f:d0:e4: f9:49:b9:ea:6b:de:ad:8f:90:d8:2f:8e:c9:0d:8d: 38:e6:11:af:25:9d:fa:aa:48:9a:9a:8e:cd:dd:fd: cb:a3:0d:27:35:90:39:5f:03:c3:dc:b1:98:8b:ff: 35:f8:a1:ab:e2:44:07:7a:68:1e:f9:15:bc:ca:39: cc:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AE:B8:6C:FA:72:3C:79:CB:97:41:BE:A4:BE:C9:45:6A:47:92:58 X509v3 Authority Key Identifier: keyid:19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/12D4E3D41AA411F0A196BA66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.254.242.0/24 213.139.232.0/24 Signature Algorithm: sha256WithRSAEncryption 83:5c:da:9c:fd:f4:f3:0c:31:53:63:e9:c8:2c:58:e4:77:56: 82:85:f2:05:35:c0:78:37:d2:dc:31:2c:66:09:72:56:16:7d: da:f9:a0:88:81:a8:9b:ab:d5:af:10:dd:c9:7e:22:8d:d3:07: c5:6e:ff:38:66:8c:7b:5a:bd:99:c4:54:77:5e:9d:92:6a:11: ec:42:76:2a:6c:ee:c1:3e:47:36:f3:ec:f4:f7:03:8d:1f:6a: 28:26:f9:c5:ac:50:38:77:cc:c7:04:25:4b:44:1a:e0:ca:b5: 79:2d:73:a7:79:ef:67:13:1d:52:31:f4:2c:26:fa:07:95:91: 95:51:8f:11:d5:ed:e8:06:97:e4:4a:74:6d:20:84:5d:f9:df: 4f:4a:33:10:24:6f:0a:b4:fa:b3:56:7b:e0:92:52:7d:f4:e6: bc:da:7e:8f:8b:44:fc:de:b9:42:01:bd:76:03:30:c5:03:2c: b3:b7:16:67:bb:9e:74:b6:3f:fa:d2:8d:71:1d:8f:a5:dd:d1: 13:46:d1:6e:d5:d0:b6:5e:e7:ec:35:ff:a2:82:3c:6e:2d:43: 82:92:7a:4e:63:90:de:4e:92:ad:21:26:c7:75:73:fd:a7:13: 4e:ea:c3:0b:b0:e3:d0:ea:53:d2:df:31:c5:90:37:53:90:5a: f4:d9:11:d0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDE5NTgxMzM4QTlENjNEOTVBOTZEMTcxMTYyM0UyRjY2 MEVCMEZCMTcwHhcNMjUxMjE2MTY0MDU0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQxOGI5Ni1mMGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaBssfjBrFfFxEgmCpyeN5Ys/cvN+kzK1pXcBvAhS3zghlADd5BYZysrmXA7 d0sD3a165RlxW/zFkqqMv9SxIbG2tAlYZ7fnEk+2NZmJQlZaMrRFGpXdlifPrxFo gfYEGtKMnLI4IkPzgCLszsQOxnDVbNuA2JQ4DbL7eYDuWvMPezSSG/lSCsJBIiMo y2Tr5+gzxX7tHQklGllOc6vmat+srifMXEK+YT24u52DERJMNbbHuHXJhWCpS6s+ z08P0OT5Sbnqa96tj5DYL47JDY045hGvJZ36qkiamo7N3f3Low0nNZA5XwPD3LGY i/81+KGr4kQHemge+RW8yjnMEwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGquuGz6 cjx5y5dBvqS+yUVqR5JYMB8GA1UdIwQYMBaAFBlYEzip1j2VqW0XEWI+L2YOsPsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy82MjlFOEIyMDNC MjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9HVmdUT0tuV1BaV3BiUmNSWWo0dlpnNnct eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0dWZ1RPS25XUFpXcGJSY1JZajR2Wmc2dy14Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNjI5RThCMjAzQjIzMTFFRUE0M0IwMjE5QzRGOUFFMDIvMTJENEUzRDQx QUE0MTFGMEExOTZCQTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAC5/vIDBADVi+gwDQYJKoZIhvcNAQELBQADggEBAINc2pz9 9PMMMVNj6cgsWOR3VoKF8gU1wHg30twxLGYJclYWfdr5oIiBqJur1a8Q3cl+Io3T B8Vu/zhmjHtavZnEVHdenZJqEexCdips7sE+Rzbz7PT3A40faigm+cWsUDh3zMcE JUtEGuDKtXktc6d572cTHVIx9Cwm+geVkZVRjxHV7egGl+RKdG0ghF35309KMxAk bwq0+rNWe+CSUn305rzafo+LRPzeuUIBvXYDMMUDLLO3Fme7nnS2P/rSjXEdj6Xd 0RNG0W7V0LZe5+w1/6KCPG4tQ4KSek5jkN5Okq0hJsd1c/2nE07qwwuw49DqU9Lf McWQN1OQWvTZEdA= -----END CERTIFICATE-----Generated at Sat Dec 20 22:51:33 2025 by rpki-client