This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/EC1B43EA393111EAA1873746C4F9AE02.roa File: EC1B43EA393111EAA1873746C4F9AE02.roa (raw, json) Hash identifier: fMJYRNYu9EHrc5oKc1TxPlzepBubKFgRR2gCF/JM5ZQ= Subject key identifier: 1B:0A:A7:ED:66:7E:A6:84:7A:1E:8C:B7:BA:13:11:9C:E4:8D:DB:3E Certificate issuer: /CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC Certificate serial: 1CCA Authority key identifier: 36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/EC1B43EA393111EAA1873746C4F9AE02.roa Signing time: Thu 18 Dec 2025 16:13:49 +0000 ROA not before: Thu 18 Dec 2025 16:13:49 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45773 IP address blocks: 45.64.24.0/22 maxlen: 24 103.4.92.0/22 maxlen: 24 111.68.96.0/20 maxlen: 24 121.52.144.0/20 maxlen: 24 2400:fc00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 15:58:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7370 (0x1cca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A70FA, serialNumber=363952B7F417820609300AE8914812184B8FC3DC Validity Not Before: Dec 18 16:13:49 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6944283d-ba9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d9:19:e7:2b:a0:38:b2:48:e0:14:65:2a:d9: 70:c6:2d:0b:0f:93:b0:5f:fb:fa:f9:88:f8:32:fb: 72:3a:1e:d5:24:d2:28:40:f4:cf:4b:64:21:ce:da: 48:96:41:5e:63:9e:c8:99:57:a5:83:94:7e:c0:c9: b0:1b:b8:e7:79:94:69:22:ef:87:74:b3:d4:85:50: ab:29:06:24:4f:de:18:e3:2a:b4:52:2e:dc:af:c7: ed:a9:98:4c:0c:73:f0:86:5e:b5:0e:af:be:e8:15: af:1d:71:49:71:cd:5d:fb:39:50:dc:25:73:f9:14: 46:a0:ae:e1:f2:3b:22:0c:e9:35:ba:5f:ce:43:c6: 38:cb:c1:6f:3e:1c:dd:06:05:4e:7a:40:96:d4:5c: 60:dd:5f:ca:72:83:1a:ea:f8:ce:a0:9e:78:74:33: ae:7b:36:c7:7e:0d:08:73:c3:43:fa:41:2d:7a:04: 62:b7:f2:c7:14:3e:de:e0:2f:fa:b9:b0:bf:f3:87: 38:45:2f:17:44:03:2a:31:35:3a:dd:50:5f:8e:07: 53:d7:7e:17:f7:ba:6e:c8:c2:7f:66:26:57:a7:f3: 17:d7:37:39:7c:ae:c4:2a:a3:ca:51:5a:11:7f:34: 7b:02:84:5e:25:ef:eb:f6:f3:47:90:bf:1c:5c:e9: 59:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:0A:A7:ED:66:7E:A6:84:7A:1E:8C:B7:BA:13:11:9C:E4:8D:DB:3E X509v3 Authority Key Identifier: keyid:36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/EC1B43EA393111EAA1873746C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.24.0/22 103.4.92.0/22 111.68.96.0/20 121.52.144.0/20 IPv6: 2400:fc00::/32 Signature Algorithm: sha256WithRSAEncryption 8a:ba:ba:3b:6c:2a:be:19:b6:e6:7d:55:5d:20:74:5f:ba:f2: 0d:2a:4c:c0:10:e7:c4:3c:8c:e8:b2:03:2c:09:20:77:97:29: 32:3f:73:43:b8:40:fe:2f:0d:d0:c6:b0:5e:d4:9e:e6:a4:5a: cb:76:75:58:30:7e:36:58:1a:3a:b9:c5:85:8f:f0:f2:d1:03: 2c:a2:1e:c2:f7:c6:ff:c2:7d:88:c0:69:fe:af:2b:dc:d3:67: 3f:d4:04:1a:8b:fc:64:4b:64:1e:c3:37:bb:93:0b:16:a2:f9: 08:11:87:90:ce:42:4e:ae:b4:0a:58:ef:a3:5a:08:60:6e:94: ed:87:90:6d:47:43:25:42:44:12:9e:5e:35:18:5d:a8:9a:f5: 93:4f:8c:41:15:9b:55:01:70:49:19:7e:e8:bb:a3:19:39:c7: 1e:e6:0b:45:11:bb:f6:72:ef:cc:35:5b:99:d5:b4:81:40:10: 81:e2:68:39:c8:62:a3:1a:9e:b5:6f:67:8f:b4:97:d4:b5:1f: a2:f4:a0:0d:bf:5a:2b:96:3c:6e:c0:c3:af:11:9b:a5:56:75: 33:84:b5:e7:4b:03:57:61:9f:01:33:5c:80:47:e0:6e:f5:0a: fc:ef:40:12:ae:cd:21:35:c3:88:67:96:5e:56:32:f9:de:b8: 85:e2:d7:e4 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICHMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcwRkExMTAvBgNVBAUTKDM2Mzk1MkI3RjQxNzgyMDYwOTMwMEFFODkxNDgxMjE4 NEI4RkMzREMwHhcNMjUxMjE4MTYxMzQ5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ0MjgzZC1iYTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5dkZ5yugOLJI4BRlKtlwxi0LD5OwX/v6+Yj4MvtyOh7VJNIoQPTPS2QhztpI lkFeY57ImVelg5R+wMmwG7jneZRpIu+HdLPUhVCrKQYkT94Y4yq0Ui7cr8ftqZhM DHPwhl61Dq++6BWvHXFJcc1d+zlQ3CVz+RRGoK7h8jsiDOk1ul/OQ8Y4y8FvPhzd BgVOekCW1Fxg3V/KcoMa6vjOoJ54dDOuezbHfg0Ic8ND+kEtegRit/LHFD7e4C/6 ubC/84c4RS8XRAMqMTU63VBfjgdT134X97puyMJ/ZiZXp/MX1zc5fK7EKqPKUVoR fzR7AoReJe/r9vNHkL8cXOlZTQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFBsKp+1m fqaEeh6Mt7oTEZzkjds+MB8GA1UdIwQYMBaAFDY5Urf0F4IGCTAK6JFIEhhLj8Pc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzBGQS82NEZCN0UxQ0Uz QTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdnWUpNQXJva1VnU0dFdVB3 OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05qbFN0X1FYZ2dZSk1Bcm9rVWdTR0V1UHc5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcwRkEvNjRGQjdFMUNFM0E3MTFFNkE1QjIwMTc4QzRGOUFFMDIvRUMxQjQzRUEz OTMxMTFFQUExODczNzQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAItQBgDBAJnBFwDBARvRGADBAR5NJAwDQQCAAIwBwMFACQA /AAwDQYJKoZIhvcNAQELBQADggEBAIq6ujtsKr4ZtuZ9VV0gdF+68g0qTMAQ58Q8 jOiyAywJIHeXKTI/c0O4QP4vDdDGsF7UnuakWst2dVgwfjZYGjq5xYWP8PLRAyyi HsL3xv/CfYjAaf6vK9zTZz/UBBqL/GRLZB7DN7uTCxai+QgRh5DOQk6utApY76Na CGBulO2HkG1HQyVCRBKeXjUYXaia9ZNPjEEVm1UBcEkZfui7oxk5xx7mC0URu/Zy 78w1W5nVtIFAEIHiaDnIYqManrVvZ4+0l9S1H6L0oA2/WiuWPG7Aw68Rm6VWdTOE tedLA1dhnwEzXIBH4G71CvzvQBKuzSE1w4hnll5WMvneuIXi1+Q= -----END CERTIFICATE-----Generated at Tue Dec 30 09:41:57 2025 by rpki-client