This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/66E400CACB4C11EE8E404546C4F9AE02.roa File: 66E400CACB4C11EE8E404546C4F9AE02.roa (raw, json) Hash identifier: CoD/shnMXHae3KWicHEdMLYrMD7W2jQx0eFVueG1ZyQ= Subject key identifier: EE:AF:DB:CD:18:3F:A3:3B:88:A9:AA:E0:E2:2C:56:B1:1B:67:15:B7 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0AF2 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/66E400CACB4C11EE8E404546C4F9AE02.roa Signing time: Mon 08 Dec 2025 19:03:21 +0000 ROA not before: Mon 08 Dec 2025 19:03:21 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 2914 IP address blocks: 27.110.64.0/21 maxlen: 21 203.78.192.0/20 maxlen: 20 203.78.196.0/32 maxlen: 32 203.131.240.0/20 maxlen: 20 203.131.244.0/22 maxlen: 22 2001:218::/32 maxlen: 32 2001:218:2002::/48 maxlen: 48 2001:218:8000::/38 maxlen: 38 2001:218:e000::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2802 (0xaf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493, serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Dec 8 19:03:21 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=693720f8-fe9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d5:3c:b1:1a:c3:99:d9:f5:bc:cd:55:d2:71: 0e:86:87:d1:a7:5c:03:7d:f4:28:4e:6a:51:ab:be: 40:43:87:64:75:e4:07:bd:c1:aa:74:b9:c7:e4:dd: 0f:7a:60:0b:03:2f:f8:9e:8f:75:a6:48:1c:e9:b5: 47:f7:0f:38:3e:c8:26:06:65:a3:6f:1c:f6:5a:8f: d0:b3:a2:13:cb:73:37:6a:ce:67:ff:0f:fb:f4:97: dd:22:ea:90:da:c5:7a:df:6e:23:76:1d:26:a0:7b: 80:ad:fb:f5:ef:7b:c4:b0:22:aa:e6:5a:5c:1a:5b: 1f:15:dd:80:a0:50:d7:3e:42:cc:70:3d:98:3f:06: 32:f8:be:c9:3a:a6:a2:09:d3:f1:36:34:cd:2a:32: dc:07:83:01:fd:6e:86:38:ae:ed:dd:f9:88:18:ab: 35:54:3e:50:01:07:0d:be:3d:7f:2c:a4:5e:66:f6: 37:63:ef:60:5f:4d:af:3f:b7:c8:10:97:55:4b:87: e1:a9:31:23:0b:65:8f:fa:5e:4a:ce:86:93:62:17: 95:86:94:5d:a3:de:f8:cc:37:1a:c1:e9:07:95:83: 60:f0:69:b6:d6:0a:92:1d:c4:4c:eb:62:3d:29:b7: 6b:08:ca:30:74:3d:b1:52:ba:de:74:05:ed:79:21: f5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:AF:DB:CD:18:3F:A3:3B:88:A9:AA:E0:E2:2C:56:B1:1B:67:15:B7 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/66E400CACB4C11EE8E404546C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.110.64.0/21 203.78.192.0/20 203.131.240.0/20 IPv6: 2001:218::/32 Signature Algorithm: sha256WithRSAEncryption 98:54:a5:98:12:85:a2:8c:4c:f5:4e:cc:68:a1:9a:7b:6a:03: bf:7b:6f:03:35:1d:ec:f6:4f:cf:84:a6:e3:45:b5:62:83:90: e4:ad:77:05:fb:45:35:99:53:e4:46:7f:61:11:2a:14:b1:f1: 1c:0f:3c:f5:b6:44:f0:cc:38:d1:27:7c:4a:bc:87:e6:d1:99: fa:bd:ac:12:be:73:37:89:24:31:32:b8:3c:11:66:79:cc:3d: 39:91:4d:78:b2:ce:32:9e:bb:04:9c:36:5d:82:74:63:ee:5a: 2b:10:7b:ac:d2:d6:23:ea:4e:78:4a:7a:09:c9:9b:80:21:93: bc:83:7a:ec:4d:fe:4a:a5:b1:4f:8c:53:42:cf:1d:0f:78:b4: f4:c0:df:47:5a:2a:4f:83:b3:2b:6d:43:b3:b0:bc:a7:67:df: 2f:ef:f9:3f:13:c3:f3:9f:4d:6e:b4:4b:91:99:66:09:20:cf: 0f:90:ec:ee:1a:f9:92:0d:12:e6:34:a2:81:6e:c5:d8:f0:c2: 50:48:af:18:38:8a:17:75:84:23:0b:6e:9b:12:85:a6:e1:f3: f5:6a:46:8e:c8:5a:ed:1a:13:bc:95:a8:94:30:38:c8:52:b9: cb:bc:a0:07:92:74:4a:23:4d:01:d3:53:51:01:fb:6b:cb:d3: 7d:b1:ba:a9 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICCvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjUxMjA4MTkwMzIxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OTM3MjBmOC1mZTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NU8sRrDmdn1vM1V0nEOhofRp1wDffQoTmpRq75AQ4dkdeQHvcGqdLnH5N0P emALAy/4no91pkgc6bVH9w84PsgmBmWjbxz2Wo/Qs6ITy3M3as5n/w/79JfdIuqQ 2sV6324jdh0moHuArfv173vEsCKq5lpcGlsfFd2AoFDXPkLMcD2YPwYy+L7JOqai CdPxNjTNKjLcB4MB/W6GOK7t3fmIGKs1VD5QAQcNvj1/LKReZvY3Y+9gX02vP7fI EJdVS4fhqTEjC2WP+l5KzoaTYheVhpRdo974zDcawekHlYNg8Gm21gqSHcRM62I9 KbdrCMowdD2xUrredAXteSH11QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFO6v280Y P6M7iKmq4OIsVrEbZxW3MB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvNjZFNDAwQ0FD QjRDMTFFRThFNDA0NTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAMbbkADBATLTsADBATLg/AwDQQCAAIwBwMFACABAhgwDQYJ KoZIhvcNAQELBQADggEBAJhUpZgShaKMTPVOzGihmntqA797bwM1Hez2T8+EpuNF tWKDkOStdwX7RTWZU+RGf2ERKhSx8RwPPPW2RPDMONEnfEq8h+bRmfq9rBK+czeJ JDEyuDwRZnnMPTmRTXiyzjKeuwScNl2CdGPuWisQe6zS1iPqTnhKegnJm4Ahk7yD euxN/kqlsU+MU0LPHQ94tPTA30daKk+DsyttQ7OwvKdn3y/v+T8Tw/OfTW60S5GZ Zgkgzw+Q7O4a+ZINEuY0ooFuxdjwwlBIrxg4ihd1hCMLbpsShabh8/VqRo7IWu0a E7yVqJQwOMhSucu8oAeSdEojTQHTU1EB+2vL032xuqk= -----END CERTIFICATE-----Generated at Sun Dec 21 19:52:36 2025 by rpki-client