This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/553596D65DB511EE841C151FC4F9AE02.roa File: 553596D65DB511EE841C151FC4F9AE02.roa (raw, json) Hash identifier: 6bEp0DZ/MEb0r+BQ5P+SaYxsRdenisE1IPPbRtFYe5U= Subject key identifier: ED:72:58:AD:09:34:3F:FA:2D:F2:3D:DE:70:E5:0A:1A:F1:35:F5:1D Certificate issuer: /CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Certificate serial: 01B7 Authority key identifier: 3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/553596D65DB511EE841C151FC4F9AE02.roa Signing time: Thu 25 Dec 2025 03:22:55 +0000 ROA not before: Thu 25 Dec 2025 03:22:55 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 133915 IP address blocks: 202.50.140.0/24 maxlen: 24 202.50.141.0/24 maxlen: 24 202.50.142.0/24 maxlen: 24 202.50.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 03:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3399, serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Validity Not Before: Dec 25 03:22:55 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=694cae0f-288f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:e6:93:4c:ad:90:e7:2d:a8:3e:4e:a7:f4:51: 27:3b:57:55:7f:ca:23:6b:3a:7f:a7:5c:a2:42:69: dd:79:68:e1:43:d7:66:6b:b6:6a:f6:c5:cf:bd:dc: cc:21:bd:af:8a:a6:a2:cc:27:07:50:2e:c5:5a:72: 48:1b:9a:aa:14:66:65:f1:31:87:96:c5:a2:15:86: 00:69:25:3d:7b:8f:d9:c5:a5:52:63:4c:6f:3e:1f: 01:5e:68:28:49:4a:5a:96:5f:9c:41:12:b9:4d:21: 83:b4:3b:9f:eb:8e:2f:00:17:36:f8:52:1b:3d:4a: 28:19:b1:7b:45:8c:fa:61:e2:95:16:cd:01:a5:ca: e6:2a:e8:3a:1d:2f:ac:28:61:67:f1:c9:34:71:17: 86:66:08:df:c4:b0:83:1f:be:16:90:96:d0:84:dd: aa:f9:d6:c5:b7:df:c5:78:ea:ec:9c:fe:6e:29:e7: 67:6b:89:a6:f6:97:ff:ba:b9:df:fb:54:7d:fc:52: 93:77:37:7d:6d:dd:47:54:79:2c:47:bf:d7:78:e7: 31:8c:b3:02:31:a4:ba:f6:ec:97:85:c4:ff:57:b6: 1c:cd:80:4b:0d:5e:c7:d9:5c:97:ae:9b:f7:a3:a6: 78:ea:d3:ab:b3:fd:58:0a:05:15:24:93:c5:51:1f: 90:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:72:58:AD:09:34:3F:FA:2D:F2:3D:DE:70:E5:0A:1A:F1:35:F5:1D X509v3 Authority Key Identifier: keyid:3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/553596D65DB511EE841C151FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.50.140.0/22 Signature Algorithm: sha256WithRSAEncryption 01:64:df:42:50:d1:a5:20:3e:ab:d6:59:c9:33:b1:37:ac:e4: 70:e2:cd:94:2d:95:1d:12:b9:3d:98:cc:0b:38:fd:2e:9d:be: df:f9:af:27:f0:33:33:5a:4f:8d:66:9b:20:a5:27:b9:45:0c: e2:4b:56:1b:33:a8:7c:e6:fd:5c:9e:6e:8f:a9:0e:3c:82:30: 16:2d:c9:6f:eb:37:73:ad:80:2e:65:52:8a:e8:d0:a1:b7:d0: b5:ab:a6:79:76:79:fc:f3:0e:49:ae:c8:31:24:d3:b0:40:cf: a9:62:65:ba:9b:1d:5b:ed:c1:98:ab:2b:d7:9a:af:09:51:5f: b1:f4:62:9a:e8:f9:06:3d:9a:0a:c1:81:7b:31:70:fd:de:77: ba:64:15:01:9c:f2:a8:4e:37:eb:0c:ca:1e:62:60:ec:31:b0: 85:8c:22:b7:73:66:0d:73:e5:00:0e:f3:86:03:7b:04:86:24: 38:91:f5:dd:7c:90:61:58:0c:a3:72:b0:85:81:69:7f:f2:2c: 41:6f:3a:04:cd:cd:d2:a6:1b:d9:dd:e8:0e:2b:5d:d3:14:4b: fb:34:b6:64:c7:8b:d8:a7:51:64:e7:07:45:4a:8d:ff:35:2f: 6c:d1:d8:34:ed:d7:78:5f:5b:59:9c:94:af:1b:a3:86:5d:ef: fb:68:5f:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QTMzOTkxMTAvBgNVBAUTKDNEQkREN0VENDEyNDgwRTkzNTVDMjdGM0MxMTNCNTY0 MEQzMTg2QjMwHhcNMjUxMjI1MDMyMjU1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTRjYWUwZi0yODhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5+aTTK2Q5y2oPk6n9FEnO1dVf8ojazp/p1yiQmndeWjhQ9dma7Zq9sXPvdzM Ib2viqaizCcHUC7FWnJIG5qqFGZl8TGHlsWiFYYAaSU9e4/ZxaVSY0xvPh8BXmgo SUpall+cQRK5TSGDtDuf644vABc2+FIbPUooGbF7RYz6YeKVFs0BpcrmKug6HS+s KGFn8ck0cReGZgjfxLCDH74WkJbQhN2q+dbFt9/FeOrsnP5uKedna4mm9pf/urnf +1R9/FKTdzd9bd1HVHksR7/XeOcxjLMCMaS69uyXhcT/V7YczYBLDV7H2VyXrpv3 o6Z46tOrs/1YCgUVJJPFUR+QewIDAQABo4IClTCCApEwHQYDVR0OBBYEFO1yWK0J ND/6LfI93nDlChrxNfUdMB8GA1UdIwQYMBaAFD291+1BJIDpNVwn88ETtWQNMYaz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzM5OS9CQTY4QzMyODVD QjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dPazFYQ2Z6d1JPMVpBMHho ck0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BiM1g3VUVrZ09rMVhDZnp3Uk8xWkEweGhyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTMzOTkvQkE2OEMzMjg1Q0I4MTFFRTg1MjNCQzdBQzRGOUFFMDIvNTUzNTk2RDY1 REI1MTFFRTg0MUMxNTFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKMowwDQYJKoZIhvcNAQELBQADggEBAAFk30JQ0aUgPqvW WckzsTes5HDizZQtlR0SuT2YzAs4/S6dvt/5ryfwMzNaT41mmyClJ7lFDOJLVhsz qHzm/Vyebo+pDjyCMBYtyW/rN3OtgC5lUoro0KG30LWrpnl2efzzDkmuyDEk07BA z6liZbqbHVvtwZirK9earwlRX7H0Ypro+QY9mgrBgXsxcP3ed7pkFQGc8qhON+sM yh5iYOwxsIWMIrdzZg1z5QAO84YDewSGJDiR9d18kGFYDKNysIWBaX/yLEFvOgTN zdKmG9nd6A4rXdMUS/s0tmTHi9inUWTnB0VKjf81L2zR2DTt13hfW1mclK8bo4Zd 7/toXzw= -----END CERTIFICATE-----Generated at Thu Dec 25 19:38:18 2025 by rpki-client