This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/5420A28C7F5211ED8A16EF81C4F9AE02.roa File: 5420A28C7F5211ED8A16EF81C4F9AE02.roa (raw, json) Hash identifier: vbYFC6gCyDs/e9kJtd3p8hTC7XpM+OZ2Y3//6IjJkSs= Subject key identifier: A5:08:07:E4:C5:80:4F:BF:7F:2A:F7:F6:B4:49:93:E8:17:52:5D:BA Certificate issuer: /CN=A91A3E3F/serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Certificate serial: 024D Authority key identifier: 94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/5420A28C7F5211ED8A16EF81C4F9AE02.roa Signing time: Wed 17 Dec 2025 02:21:22 +0000 ROA not before: Wed 17 Dec 2025 02:21:22 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 45139 IP address blocks: 167.220.226.0/23 maxlen: 23 167.220.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 589 (0x24d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F, serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Validity Not Before: Dec 17 02:21:22 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=694213a2-1f8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3f:17:77:6c:37:ca:37:35:18:5a:ef:d5:cc: 99:24:e2:90:9b:87:15:1e:54:dd:34:8a:a3:36:95: 14:5d:e4:a0:d9:11:82:f4:b4:1c:19:2c:28:31:19: b8:4d:8d:50:bb:9d:b2:cf:d1:7f:6c:62:47:36:01: f9:ce:91:f0:99:7f:da:a4:da:86:1e:2a:27:bf:93: 82:23:42:e1:01:af:12:78:77:1c:8d:bd:13:74:79: 76:aa:76:07:75:ce:b1:cd:c6:9a:f1:5d:b3:f6:c6: 71:18:1e:f1:02:ea:84:d9:8c:8a:61:e0:8e:55:dc: 56:5a:a0:1e:e6:7e:a9:3b:1c:dd:96:c8:f0:20:63: c1:2a:3e:81:a0:d4:ac:c3:d3:cd:6a:15:0b:3b:3a: fa:63:4b:85:06:5b:96:6e:24:bf:2b:6d:e4:fb:70: 54:b3:92:d3:f2:9a:19:a7:60:c3:2f:a1:54:ec:cd: dd:ab:55:70:bb:0f:d8:4a:ff:01:f9:07:ed:94:3e: ea:93:5f:0d:93:f1:0f:56:e3:c1:f3:ff:4f:f4:a4: ac:3a:4e:d2:a4:41:6d:c5:fa:db:40:25:30:34:c6: a9:e9:9c:98:80:9b:03:ab:70:fd:25:ca:fd:b1:41: 9d:7a:a4:12:9d:19:01:df:ed:23:e3:b8:6d:d4:5c: ee:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:08:07:E4:C5:80:4F:BF:7F:2A:F7:F6:B4:49:93:E8:17:52:5D:BA X509v3 Authority Key Identifier: keyid:94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/5420A28C7F5211ED8A16EF81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.220.226.0/23 Signature Algorithm: sha256WithRSAEncryption a8:b0:7c:c3:ea:b2:30:9d:d6:d9:86:44:c3:77:57:9a:b8:36: 6b:2e:e4:2d:32:87:6b:96:4a:39:88:60:84:8a:9c:d6:ce:d3: 4a:80:bc:8e:9b:dc:bc:89:11:77:35:8a:0f:24:14:1c:58:c3: 7c:9d:0c:30:3b:9e:a5:d5:6d:86:ec:c3:44:76:f2:d7:1e:34: 63:f7:1b:31:d6:c3:68:d8:4f:95:be:7e:69:3d:67:df:a7:6e: e3:75:07:2e:57:4c:d1:05:67:f5:b4:1e:1b:2c:62:74:71:99: 79:6c:4d:48:84:64:56:19:81:a5:85:1a:2e:b3:c0:fa:7c:1a: 52:0c:ac:7c:59:b6:88:66:fd:ef:90:ff:82:5d:a4:69:35:b4: 7f:15:8f:e8:e7:25:cc:48:f6:ed:82:c0:46:5a:16:13:3e:d9: fc:0e:35:19:8d:f4:1b:7f:b2:23:61:d3:b3:a8:10:c2:4c:e7: 59:ea:d6:60:60:00:27:0b:0e:72:55:a1:28:4f:eb:16:fe:1b: 6a:e4:36:24:4a:38:bd:bb:d2:0b:1b:ff:e6:2e:6a:70:88:47: 5a:f2:fb:c4:ed:19:0e:13:d9:67:33:46:3c:b1:ef:e2:78:0e: 3c:a6:86:da:41:2b:0a:ed:54:d4:6c:09:71:b4:d1:c9:b5:93: f6:2d:92:64 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDk0M0QzRTEwQjhCQkUxMzhCNDc3MzQ1NTRCNjkwNTMx MTBENDVCRTMwHhcNMjUxMjE3MDIyMTIyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQyMTNhMi0xZjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzD8Xd2w3yjc1GFrv1cyZJOKQm4cVHlTdNIqjNpUUXeSg2RGC9LQcGSwoMRm4 TY1Qu52yz9F/bGJHNgH5zpHwmX/apNqGHionv5OCI0LhAa8SeHccjb0TdHl2qnYH dc6xzcaa8V2z9sZxGB7xAuqE2YyKYeCOVdxWWqAe5n6pOxzdlsjwIGPBKj6BoNSs w9PNahULOzr6Y0uFBluWbiS/K23k+3BUs5LT8poZp2DDL6FU7M3dq1Vwuw/YSv8B +QftlD7qk18Nk/EPVuPB8/9P9KSsOk7SpEFtxfrbQCUwNMap6ZyYgJsDq3D9Jcr9 sUGdeqQSnRkB3+0j47ht1FzuTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKUIB+TF gE+/fyr39rRJk+gXUl26MB8GA1UdIwQYMBaAFJQ9PhC4u+E4tHc0VUtpBTEQ1Fvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi8zMDVFQjg3NjdD REIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRUaTBkelJWUzJrRk1SRFVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xEMC1FTGk3NFRpMGR6UlZTMmtGTVJEVVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvMzA1RUI4NzY3Q0RCMTFFREFCODQ0QzE5QzRGOUFFMDIvNTQyMEEyOEM3 RjUyMTFFRDhBMTZFRjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGn3OIwDQYJKoZIhvcNAQELBQADggEBAKiwfMPqsjCd1tmG RMN3V5q4Nmsu5C0yh2uWSjmIYISKnNbO00qAvI6b3LyJEXc1ig8kFBxYw3ydDDA7 nqXVbYbsw0R28tceNGP3GzHWw2jYT5W+fmk9Z9+nbuN1By5XTNEFZ/W0HhssYnRx mXlsTUiEZFYZgaWFGi6zwPp8GlIMrHxZtohm/e+Q/4JdpGk1tH8Vj+jnJcxI9u2C wEZaFhM+2fwONRmN9Bt/siNh07OoEMJM51nq1mBgACcLDnJVoShP6xb+G2rkNiRK OL270gsb/+YuanCIR1ry+8TtGQ4T2WczRjyx7+J4DjymhtpBKwrtVNRsCXG00cm1 k/YtkmQ= -----END CERTIFICATE-----Generated at Sat Dec 20 09:29:58 2025 by rpki-client