This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/4C3A869614DF11EEAB46A86DC4F9AE02.roa File: 4C3A869614DF11EEAB46A86DC4F9AE02.roa (raw, json) Hash identifier: DDQFrWham/U59GyXcADDkISHhTPDVVw43nsQI5/mJPk= Subject key identifier: CA:7F:EA:D9:93:99:28:CF:40:DB:0B:10:1E:BD:8A:DA:5F:49:03:43 Certificate issuer: /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Certificate serial: 0244 Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/4C3A869614DF11EEAB46A86DC4F9AE02.roa Signing time: Fri 12 Dec 2025 16:13:29 +0000 ROA not before: Fri 12 Dec 2025 16:13:29 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 2511 IP address blocks: 192.5.216.0/24 maxlen: 24 192.26.94.0/24 maxlen: 24 192.47.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:53:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 580 (0x244) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Validity Not Before: Dec 12 16:13:29 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=693c3f29-499f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:43:80:d0:9b:7d:38:69:d7:e6:87:b0:8e:4e: d4:22:e3:f0:20:bd:0d:6f:a6:6a:df:b3:40:b1:88: ec:64:9f:1f:d5:37:8d:4c:88:05:d3:71:1a:ad:5b: 97:df:b7:2c:a7:38:e0:10:0f:a6:3d:ef:12:aa:c5: 44:6b:40:4d:76:b3:73:2f:f1:84:04:33:88:6c:69: 0d:bb:62:12:1d:ef:0a:7d:f9:f4:d4:31:12:62:1e: fa:fc:30:e8:49:de:ab:53:a9:73:eb:5f:f7:35:55: 9d:a2:9b:c9:57:41:3f:c1:af:d3:69:63:c3:a7:01: 69:f2:d1:f1:6a:dc:d2:d5:66:58:88:c7:14:53:80: 25:9c:80:93:d8:8e:29:9b:e4:0f:9e:1f:8a:25:59: 0c:59:c4:8a:92:61:83:37:25:54:fc:bd:c6:35:63: 72:51:19:c3:92:c2:ab:34:18:0c:b7:f5:a6:02:12: db:91:28:ae:6c:7a:22:2b:cd:5f:35:83:3d:0e:71: 77:81:ff:77:fb:fd:00:12:aa:98:26:f2:25:78:dc: 7d:95:0e:f4:62:cf:bd:d6:28:fe:ed:6d:16:8a:7a: 5f:19:3b:f8:b5:83:0f:5b:4a:d5:2b:64:72:fb:51: de:90:5f:be:98:ab:29:f6:1a:41:72:cf:0d:71:9a: 33:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:7F:EA:D9:93:99:28:CF:40:DB:0B:10:1E:BD:8A:DA:5F:49:03:43 X509v3 Authority Key Identifier: keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/4C3A869614DF11EEAB46A86DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.5.216.0/24 192.26.94.0/24 192.47.167.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:84:f9:2c:52:30:3d:71:b1:01:21:8e:2e:45:67:55:e8:46: f6:dd:9c:53:65:ac:c4:a0:e3:b5:71:4f:e6:49:c7:23:d5:cc: 2a:8b:dc:67:48:6d:33:58:90:73:44:e9:19:f6:90:d3:08:17: 17:c1:97:95:65:be:bc:d8:94:fb:55:8c:bc:49:24:cd:08:b9: 65:f3:90:e4:00:17:e7:06:6b:da:0f:6f:ef:29:2e:c5:78:e9: e1:41:f7:54:6c:6f:7e:57:56:c1:c0:fc:1d:a3:83:86:a6:f3: a9:2a:cf:a3:39:af:d2:ee:78:80:f3:3f:61:92:18:9f:02:d8: 64:88:67:e7:b4:39:61:97:17:3c:93:d4:6d:47:c6:f9:49:c9: ef:07:6c:50:09:f5:91:8a:a3:e3:97:22:c1:dc:d1:3c:7c:f6: 1b:51:c0:ce:08:c6:d9:02:1e:f6:83:f9:d0:d7:eb:e1:77:2a: 56:e7:ed:00:1d:7b:e1:23:f9:32:3b:82:91:d3:64:93:64:27: 96:15:df:42:e4:d4:09:7a:1f:04:12:d8:2f:5f:57:8b:85:f0: 6c:e7:76:5a:cc:06:e6:75:55:96:f7:68:04:98:84:2a:e3:ab: 22:c2:a8:41:4c:3e:b1:ef:99:b3:4a:41:65:1e:0b:4d:74:21: 04:6e:fb:f4 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKDk4NThDRTRCNEJDNzJFNzZFNjY4QzQ3RDQ0ODk4QzA5 MDg5NkFCRUIwHhcNMjUxMjEyMTYxMzI5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNjM2YyOS00OTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9EOA0Jt9OGnX5oewjk7UIuPwIL0Nb6Zq37NAsYjsZJ8f1TeNTIgF03EarVuX 37cspzjgEA+mPe8SqsVEa0BNdrNzL/GEBDOIbGkNu2ISHe8Kffn01DESYh76/DDo Sd6rU6lz61/3NVWdopvJV0E/wa/TaWPDpwFp8tHxatzS1WZYiMcUU4AlnICT2I4p m+QPnh+KJVkMWcSKkmGDNyVU/L3GNWNyURnDksKrNBgMt/WmAhLbkSiubHoiK81f NYM9DnF3gf93+/0AEqqYJvIleNx9lQ70Ys+91ij+7W0WinpfGTv4tYMPW0rVK2Ry +1HekF++mKsp9hpBcs8NcZozlwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMp/6tmT mSjPQNsLEB69itpfSQNDMB8GA1UdIwQYMBaAFJhYzktLxy525mjEfUSJjAkIlqvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS9CNDVGM0ZDNDgx OUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExuYm1hTVI5UkltTUNRaVdx LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Gak9TMHZITG5ibWFNUjlSSW1NQ1FpV3Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRCMUEvQjQ1RjNGQzQ4MTlBMTFFRDhENjFCQTJCQzRGOUFFMDIvNEMzQTg2OTYx NERGMTFFRUFCNDZBODZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADABdgDBADAGl4DBADAL6cwDQYJKoZIhvcNAQELBQADggEB AHqE+SxSMD1xsQEhji5FZ1XoRvbdnFNlrMSg47VxT+ZJxyPVzCqL3GdIbTNYkHNE 6Rn2kNMIFxfBl5VlvrzYlPtVjLxJJM0IuWXzkOQAF+cGa9oPb+8pLsV46eFB91Rs b35XVsHA/B2jg4am86kqz6M5r9LueIDzP2GSGJ8C2GSIZ+e0OWGXFzyT1G1HxvlJ ye8HbFAJ9ZGKo+OXIsHc0Tx89htRwM4IxtkCHvaD+dDX6+F3Klbn7QAde+Ej+TI7 gpHTZJNkJ5YV30Lk1Al6HwQS2C9fV4uF8GzndlrMBuZ1VZb3aASYhCrjqyLCqEFM PrHvmbNKQWUeC010IQRu+/Q= -----END CERTIFICATE-----Generated at Mon Dec 22 06:09:44 2025 by rpki-client