This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF3F8690721A11EFBDE87567C4F9AE02.roa File: EF3F8690721A11EFBDE87567C4F9AE02.roa (raw, json) Hash identifier: iJRZEjtlBQcivsCV1nsgRQtkp3c4pjvIDonlSF0KE+Y= Subject key identifier: EE:5B:C0:B2:3F:09:BC:E3:31:3B:B4:3C:22:87:DB:02:6B:7B:2A:72 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 01D5 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF3F8690721A11EFBDE87567C4F9AE02.roa Signing time: Wed 31 Dec 2025 04:24:49 +0000 ROA not before: Wed 31 Dec 2025 04:24:49 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 55488 IP address blocks: 202.29.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 04:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:49 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6954a591-04ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a2:05:25:ca:46:c3:b2:f6:a7:ed:cd:ec:49: 5f:fc:7b:77:ce:0b:2a:8b:2d:d8:03:53:5d:6a:af: da:b0:ce:c2:cb:e4:14:e2:fe:ad:b6:9c:92:1b:f3: 18:85:9c:da:3d:3f:d0:d1:8c:78:e5:b8:1a:c1:9e: 14:75:9f:1b:75:d2:a9:04:bd:71:9d:c0:71:82:10: 54:fd:eb:87:bf:ed:70:96:9b:c7:1e:07:f8:09:fc: 3d:5f:a7:ef:c1:65:2d:65:2d:42:f9:7c:f5:1f:84: a7:bb:0d:0b:25:c2:81:00:93:a3:c8:5e:f4:12:e8: 33:79:5b:65:72:c5:17:37:04:ee:1f:2b:78:78:5b: 47:c2:93:4c:90:bb:ac:a7:8d:6e:6e:01:6d:87:7d: f3:f4:d9:10:83:36:40:da:ea:32:5c:7c:17:28:d7: 36:40:90:c2:7c:8e:ef:7e:7d:5c:17:39:20:01:54: 52:cf:92:b8:6d:8e:26:a9:da:39:47:51:5a:6d:c5: ed:c8:a3:d8:7a:78:5b:3a:4f:d8:ca:d9:97:34:30: 51:cc:9e:af:ef:56:8d:bb:22:a6:54:9b:13:b1:a1: e2:f3:5d:f9:a9:94:a4:05:01:9f:4f:61:66:01:70: 92:ce:50:d2:61:87:81:1a:9a:2e:0f:53:09:19:9a: 1e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:5B:C0:B2:3F:09:BC:E3:31:3B:B4:3C:22:87:DB:02:6B:7B:2A:72 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EF3F8690721A11EFBDE87567C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.4.0/24 Signature Algorithm: sha256WithRSAEncryption 27:63:8e:be:d8:53:2f:9d:0f:80:d2:04:40:a5:fd:01:27:7b: b9:4f:65:3e:0a:46:16:66:94:83:44:d9:3e:6f:97:be:7e:22: 20:69:c0:be:11:7a:7c:54:34:a7:01:c0:f3:61:76:fc:6a:e3: 0e:80:4c:b2:5d:e3:52:47:90:d0:4b:56:ab:1b:e6:92:9e:fe: 18:1d:72:de:cb:e9:f6:4e:a3:cf:e9:da:dc:4f:74:c7:9e:81: 53:89:61:6a:a0:4f:4d:7b:88:44:3e:d9:52:19:19:0d:e8:e2: 28:17:dc:89:45:50:2e:8a:38:9a:d7:15:66:ba:76:b3:6c:07: 87:35:98:7b:9f:a0:c6:b4:42:70:d9:c0:22:7c:32:52:38:a1: 39:ba:29:16:33:54:37:5a:a8:36:78:bc:25:5e:55:d2:54:c6: 6c:79:56:1e:21:97:7d:ab:b5:03:cf:6a:f4:b9:45:7d:db:05: 12:c6:09:72:38:e3:2c:a0:1f:ff:4e:e3:92:fe:60:ea:e5:8c: 06:9d:4f:4e:a5:71:7c:58:7d:f3:73:5f:6e:11:3d:29:26:47: 71:4e:79:35:5d:b4:db:67:42:78:2b:1b:23:03:b5:91:5c:19: cd:56:3c:e3:fd:42:6b:26:4e:31:26:be:c9:8e:78:e7:6f:0b: b2:2b:55:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDQ5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU0YTU5MS0wNGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4qIFJcpGw7L2p+3N7Elf/Ht3zgsqiy3YA1Ndaq/asM7Cy+QU4v6ttpySG/MY hZzaPT/Q0Yx45bgawZ4UdZ8bddKpBL1xncBxghBU/euHv+1wlpvHHgf4Cfw9X6fv wWUtZS1C+Xz1H4Snuw0LJcKBAJOjyF70EugzeVtlcsUXNwTuHyt4eFtHwpNMkLus p41ubgFth33z9NkQgzZA2uoyXHwXKNc2QJDCfI7vfn1cFzkgAVRSz5K4bY4mqdo5 R1FabcXtyKPYenhbOk/YytmXNDBRzJ6v71aNuyKmVJsTsaHi8135qZSkBQGfT2Fm AXCSzlDSYYeBGpouD1MJGZoe9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFO5bwLI/ CbzjMTu0PCKH2wJreypyMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRUYzRjg2OTA3 MjFBMTFFRkJERTg3NTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHQQwDQYJKoZIhvcNAQELBQADggEBACdjjr7YUy+dD4DS BECl/QEne7lPZT4KRhZmlINE2T5vl75+IiBpwL4RenxUNKcBwPNhdvxq4w6ATLJd 41JHkNBLVqsb5pKe/hgdct7L6fZOo8/p2txPdMeegVOJYWqgT017iEQ+2VIZGQ3o 4igX3IlFUC6KOJrXFWa6drNsB4c1mHufoMa0QnDZwCJ8MlI4oTm6KRYzVDdaqDZ4 vCVeVdJUxmx5Vh4hl32rtQPPavS5RX3bBRLGCXI44yygH/9O45L+YOrljAadT06l cXxYffNzX24RPSkmR3FOeTVdtNtnQngrGyMDtZFcGc1WPOP9QmsmTjEmvsmOeOdv C7IrVZ4= -----END CERTIFICATE-----Generated at Thu Jan 1 07:37:24 2026 by rpki-client