This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa File: C27C0758916B11EF81BBB521C4F9AE02.roa (raw, json) Hash identifier: knvAEFQICzy9UWNTf7//TLhnGWTxbYH6LZgck2OeM7A= Subject key identifier: F0:AF:3E:A6:78:6E:55:87:C2:99:C2:70:D5:F9:A0:95:AE:72:06:CF Certificate issuer: /CN=A91A7169/serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E Certificate serial: 01EC Authority key identifier: E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa Signing time: Thu 11 Dec 2025 02:01:50 +0000 ROA not before: Thu 11 Dec 2025 02:01:50 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 53813 IP address blocks: 101.2.192.0/24 maxlen: 24 101.2.193.0/24 maxlen: 24 101.2.194.0/24 maxlen: 24 101.2.195.0/24 maxlen: 24 101.2.196.0/24 maxlen: 24 101.2.197.0/24 maxlen: 24 101.2.198.0/24 maxlen: 24 101.2.199.0/24 maxlen: 24 101.2.200.0/24 maxlen: 24 101.2.201.0/24 maxlen: 24 101.2.202.0/23 maxlen: 24 101.2.204.0/23 maxlen: 24 101.2.206.0/24 maxlen: 24 101.2.207.0/24 maxlen: 24 101.2.208.0/24 maxlen: 24 101.2.209.0/24 maxlen: 24 101.2.214.0/24 maxlen: 24 101.2.215.0/24 maxlen: 24 101.2.216.0/23 maxlen: 24 101.2.218.0/23 maxlen: 24 101.2.220.0/23 maxlen: 24 101.2.222.0/23 maxlen: 24 101.2.224.0/23 maxlen: 24 101.2.226.0/23 maxlen: 24 101.2.228.0/23 maxlen: 24 101.2.230.0/23 maxlen: 24 101.2.232.0/23 maxlen: 24 101.2.234.0/23 maxlen: 24 101.2.236.0/23 maxlen: 24 101.2.238.0/23 maxlen: 24 101.2.240.0/24 maxlen: 24 101.2.241.0/24 maxlen: 24 175.107.128.0/23 maxlen: 24 175.107.130.0/23 maxlen: 24 175.107.132.0/23 maxlen: 24 175.107.134.0/24 maxlen: 24 175.107.140.0/23 maxlen: 24 175.107.142.0/23 maxlen: 24 175.107.144.0/23 maxlen: 24 175.107.146.0/23 maxlen: 24 175.107.148.0/23 maxlen: 24 175.107.150.0/23 maxlen: 24 175.107.152.0/23 maxlen: 24 175.107.154.0/23 maxlen: 24 175.107.156.0/23 maxlen: 24 175.107.158.0/23 maxlen: 24 175.107.160.0/23 maxlen: 24 175.107.162.0/23 maxlen: 24 175.107.164.0/23 maxlen: 24 175.107.166.0/23 maxlen: 24 175.107.190.0/24 maxlen: 24 2400:7aa0:1200::/40 maxlen: 48 2400:7aa0:1300::/40 maxlen: 48 2400:7aa0:1400::/40 maxlen: 48 2400:7aa0:1500::/40 maxlen: 48 2400:7aa0:1600::/40 maxlen: 48 2400:7aa0:1700::/40 maxlen: 48 2400:7aa0:1800::/40 maxlen: 48 2400:7aa0:1900::/40 maxlen: 48 2400:7aa0:1a00::/40 maxlen: 48 2400:7aa0:1b00::/40 maxlen: 48 2400:7aa0:1c00::/40 maxlen: 48 2400:7aa0:1d00::/40 maxlen: 40 2400:7aa0:1e00::/40 maxlen: 48 2400:7aa0:1f00::/40 maxlen: 48 2400:7aa0:2200::/40 maxlen: 48 2400:7aa0:2300::/40 maxlen: 48 2400:7aa0:2400::/40 maxlen: 48 2400:7aa0:2500::/40 maxlen: 48 2400:7aa0:2600::/40 maxlen: 48 2400:7aa0:2800::/40 maxlen: 48 2400:7aa0:2900::/40 maxlen: 48 2400:7aa0:2b00::/40 maxlen: 48 2400:7aa0:2c00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:31:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E Validity Not Before: Dec 11 02:01:50 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=693a260e-9da6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a9:e9:a1:cf:bf:89:1b:d9:19:00:51:09:fa: a4:33:cd:d0:ad:7f:d5:49:59:b2:af:4f:3b:55:dc: 27:56:d5:1a:f7:e9:d7:f5:9b:70:c7:42:1f:e7:5d: b8:4d:90:d9:40:23:2f:72:63:6e:20:d4:16:31:9f: 7b:95:51:f4:bf:a4:8e:fb:fe:7e:ea:7b:92:94:b4: 2a:c9:10:79:0d:0b:b0:df:f5:e0:7b:24:53:79:cd: aa:b6:f8:6d:7a:c2:aa:91:63:6d:ab:cd:74:d2:fb: 58:56:a4:6c:8e:a3:cb:86:db:2c:17:34:dc:2f:dd: fa:04:df:05:96:69:4d:85:b6:eb:d5:63:d7:84:f0: f3:47:e7:74:2e:b5:4c:b6:bf:c5:ae:8a:76:a8:b4: 10:f1:7f:de:33:af:c4:3f:56:d2:1b:5e:bc:70:8c: 13:a7:c3:b3:b1:ec:ae:aa:a0:31:19:f7:c4:e3:e2: 0c:22:53:ab:7c:20:37:92:93:2d:2f:36:0a:2d:70: 27:3a:4f:e5:13:b1:73:26:63:40:a3:1f:82:2b:8b: c7:77:88:ef:ea:59:fd:d9:b0:c3:f2:ca:5c:44:14: a4:cc:ae:ab:6b:03:38:9f:79:ff:0a:cc:05:a4:61: 52:be:54:62:32:f5:b8:6a:76:ad:78:20:12:6a:80: 86:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:AF:3E:A6:78:6E:55:87:C2:99:C2:70:D5:F9:A0:95:AE:72:06:CF X509v3 Authority Key Identifier: keyid:E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.2.192.0-101.2.209.255 101.2.214.0-101.2.241.255 175.107.128.0-175.107.134.255 175.107.140.0-175.107.167.255 175.107.190.0/24 IPv6: 2400:7aa0:1200::-2400:7aa0:1fff:ffff:ffff:ffff:ffff:ffff 2400:7aa0:2200::-2400:7aa0:26ff:ffff:ffff:ffff:ffff:ffff 2400:7aa0:2800::/39 2400:7aa0:2b00::-2400:7aa0:2cff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 56:a4:5a:71:08:85:f5:65:9f:3d:59:c4:d4:a3:c0:2c:81:88: 36:88:c3:94:b3:af:4d:f0:cd:bb:da:16:9f:9a:e5:a8:5e:77: 3d:60:e8:99:1b:da:a6:1e:7e:d6:2b:bb:74:7c:6e:b5:7c:10: b2:ad:1c:64:3c:f1:bc:de:eb:9f:11:ac:8a:c0:3b:25:df:b7: 36:49:d1:e8:bb:a0:87:24:9b:f5:69:74:46:45:cb:ba:29:72: 63:46:aa:dc:af:66:9c:8e:8d:03:06:47:4e:eb:9f:fe:ff:b1: ae:22:91:12:64:68:97:57:29:ff:89:02:22:87:45:18:1f:a7: d4:b4:48:e6:52:91:b8:2c:13:7f:10:18:51:97:9f:c3:70:7a: 01:14:0e:09:75:59:cd:99:92:c0:ea:46:af:20:09:46:fb:a5: 59:ea:dd:e0:6e:e7:11:4b:30:73:7e:8a:e6:36:75:fe:9f:d4: 60:f4:ec:ce:cb:9d:da:8d:d6:8c:d5:76:e8:7d:3a:9d:dd:d6: 50:b3:d5:b3:4e:85:b7:74:7b:90:63:6e:71:6c:60:13:7a:d2: 27:bb:1f:12:6b:04:fe:6f:6a:ad:42:76:ee:56:1a:7d:1a:ac: 15:1d:8f:bc:8b:2f:d5:a3:a8:ef:e4:9a:7f:e6:01:36:2f:ed: da:07:b0:c2 -----BEGIN CERTIFICATE----- MIIF8jCCBNqgAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKEU1MENCMjUwQkZBRDA4NjNFODVDMjkwMkVBMDIxOUQ1 M0NDMDgxMkUwHhcNMjUxMjExMDIwMTUwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNhMjYwZS05ZGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqnpoc+/iRvZGQBRCfqkM83QrX/VSVmyr087VdwnVtUa9+nX9Ztwx0If5124 TZDZQCMvcmNuINQWMZ97lVH0v6SO+/5+6nuSlLQqyRB5DQuw3/XgeyRTec2qtvht esKqkWNtq8100vtYVqRsjqPLhtssFzTcL936BN8FlmlNhbbr1WPXhPDzR+d0LrVM tr/Frop2qLQQ8X/eM6/EP1bSG168cIwTp8OzseyuqqAxGffE4+IMIlOrfCA3kpMt LzYKLXAnOk/lE7FzJmNAox+CK4vHd4jv6ln92bDD8spcRBSkzK6rawM4n3n/CswF pGFSvlRiMvW4anateCASaoCG4QIDAQABo4IDFjCCAxIwHQYDVR0OBBYEFPCvPqZ4 blWHwpnCcNX5oJWucgbPMB8GA1UdIwQYMBaAFOUMslC/rQhj6FwpAuoCGdU8wIEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82QjdGOTkzQ0VC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi81UXl5VUwtdENHUG9YQ2tDNmdJWjFUekFn UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVReXlVTC10Q0dQb1hDa0M2Z0laMVR6QWdTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNkI3Rjk5M0NFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvQzI3QzA3NTg5 MTZCMTFFRjgxQkJCNTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgZ8GCCsGAQUFBwEHAQH/ BIGPMIGMMEQEAgABMD4wDAMEBmUCwAMEAWUC0DAMAwQBZQLWAwQBZQLwMAwDBAev a4ADBACva4YwDAMEAq9rjAMEA69roAMEAK9rvjBEBAIAAjA+MBADBgEkAHqgEgMG BSQAeqAAMBADBgEkAHqgIgMGACQAeqAmAwYBJAB6oCgwEAMGACQAeqArAwYAJAB6 oCwwDQYJKoZIhvcNAQELBQADggEBAFakWnEIhfVlnz1ZxNSjwCyBiDaIw5Szr03w zbvaFp+a5ahedz1g6Jkb2qYeftYru3R8brV8ELKtHGQ88bze658RrIrAOyXftzZJ 0ei7oIckm/VpdEZFy7opcmNGqtyvZpyOjQMGR07rn/7/sa4ikRJkaJdXKf+JAiKH RRgfp9S0SOZSkbgsE38QGFGXn8NwegEUDgl1Wc2ZksDqRq8gCUb7pVnq3eBu5xFL MHN+iuY2df6f1GD07M7LndqN1ozVduh9Op3d1lCz1bNOhbd0e5BjbnFsYBN60ie7 HxJrBP5vaq1Cdu5WGn0arBUdj7yLL9WjqO/kmn/mATYv7doHsMI= -----END CERTIFICATE-----Generated at Sat Dec 20 20:12:03 2025 by rpki-client