This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/AD17704445F611EE97DF317CC4F9AE02.roa File: AD17704445F611EE97DF317CC4F9AE02.roa (raw, json) Hash identifier: Clfd7tFcfwoObvQimW3finauT91uWKGe0cqtaB1OpHA= Subject key identifier: 1D:EA:B9:87:58:D5:62:31:78:C0:48:78:25:D7:AF:9A:58:BC:BF:FC Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 0422 Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/AD17704445F611EE97DF317CC4F9AE02.roa Signing time: Wed 10 Dec 2025 23:08:26 +0000 ROA not before: Wed 10 Dec 2025 23:08:26 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137549 IP address blocks: 125.254.120.0/21 maxlen: 21 125.254.120.0/22 maxlen: 22 125.254.124.0/22 maxlen: 22 202.169.16.0/21 maxlen: 21 202.169.16.0/22 maxlen: 22 202.169.16.0/23 maxlen: 23 202.169.18.0/23 maxlen: 23 202.169.20.0/23 maxlen: 23 202.169.20.0/24 maxlen: 24 202.169.21.0/24 maxlen: 24 202.169.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1058 (0x422) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: Dec 10 23:08:26 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6939fd6a-7229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cf:c7:ff:71:7c:43:b7:b0:cf:bf:ab:23:bb: 44:94:74:3b:ba:e0:35:e6:2a:0b:64:34:b4:13:5d: 1e:16:8b:81:98:21:2f:30:47:81:68:2b:cc:bc:f1: bb:70:10:65:9b:79:38:44:6e:7b:d3:25:96:4b:48: 6b:d1:e2:cd:42:b8:2c:91:36:09:c9:ea:bc:f2:b0: d2:18:a5:ab:3a:fa:ef:62:9c:24:86:bf:89:d4:09: 56:fd:15:1a:52:43:18:1e:ea:22:7f:21:38:b2:e2: 6a:f6:95:97:c7:a2:2b:7a:ee:72:5d:b5:62:9d:19: 11:07:04:7a:51:14:98:91:d4:d7:45:a6:ff:93:8f: 7e:ce:c6:20:52:36:3f:51:de:a7:6b:aa:d5:ba:57: 14:8f:10:ce:8c:1c:9f:d2:c8:8c:04:76:35:4e:da: 81:c6:d1:e5:eb:83:2d:33:68:41:f2:46:ef:46:17: f2:71:2b:6e:22:15:04:a2:12:07:3b:b1:84:7b:89: 05:31:94:dc:23:bc:a5:ea:0e:bc:03:10:f1:55:5d: c0:b6:be:1c:7b:3b:75:0c:45:3f:ed:dd:86:4e:df: bf:ab:0d:0a:11:77:73:3e:a8:5a:80:09:58:de:34: bf:f1:32:ee:7d:74:47:1a:50:ba:c4:27:5b:e6:16: 47:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:EA:B9:87:58:D5:62:31:78:C0:48:78:25:D7:AF:9A:58:BC:BF:FC X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/AD17704445F611EE97DF317CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.254.120.0/21 202.169.16.0/21 Signature Algorithm: sha256WithRSAEncryption 20:17:b8:5e:17:9c:e1:a8:9a:3c:64:ed:a8:0b:b8:55:91:96: 0e:8a:7d:ec:7b:26:2f:10:b1:c7:d0:a2:c6:3a:db:f1:c8:12: 9c:be:57:e1:a1:0b:94:3d:1d:c0:14:74:7d:68:6e:f9:90:6f: 1a:86:08:c9:0b:cb:7f:c6:aa:03:05:28:32:3b:cb:04:55:59: bb:aa:b2:03:cf:10:2f:0e:e9:4a:e5:85:ba:fa:7b:4c:4e:7d: 63:fe:b0:95:6a:c9:d2:42:2d:b9:22:ae:a8:4f:99:da:ee:3d: bd:dd:4c:e2:0a:4e:b7:74:ff:14:43:62:c7:5c:e2:e4:0d:3c: ca:26:ec:63:b4:13:76:19:7f:c9:1d:1e:d9:72:18:63:d2:b7: 81:f4:02:c3:cd:3d:9b:20:a9:5e:e6:a1:64:12:22:77:48:41: 41:f6:3f:7f:5b:6d:58:53:c0:e4:d9:19:60:f0:f7:06:ba:d5: 52:77:9a:b2:4b:b0:5c:e3:a8:a1:0f:da:5b:a2:e1:51:0e:14: 2c:b3:64:f8:62:17:b1:4a:fe:32:20:fa:5c:a2:a8:d2:d4:8e: 90:13:7a:cb:79:22:f8:78:f9:2e:59:52:8f:7f:43:86:98:20: 1f:8e:8e:bc:63:19:84:d9:49:a5:df:21:8b:e6:9f:6f:5f:95: 84:43:cc:b5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjUxMjEwMjMwODI2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM5ZmQ2YS03MjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08/H/3F8Q7ewz7+rI7tElHQ7uuA15ioLZDS0E10eFouBmCEvMEeBaCvMvPG7 cBBlm3k4RG570yWWS0hr0eLNQrgskTYJyeq88rDSGKWrOvrvYpwkhr+J1AlW/RUa UkMYHuoifyE4suJq9pWXx6Ireu5yXbVinRkRBwR6URSYkdTXRab/k49+zsYgUjY/ Ud6na6rVulcUjxDOjByf0siMBHY1TtqBxtHl64MtM2hB8kbvRhfycStuIhUEohIH O7GEe4kFMZTcI7yl6g68AxDxVV3Atr4cezt1DEU/7d2GTt+/qw0KEXdzPqhagAlY 3jS/8TLufXRHGlC6xCdb5hZHZwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB3quYdY 1WIxeMBIeCXXr5pYvL/8MB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDEyMTYvREM3ODI2OENCOTRCMTFFQzgzMkI3NDE5QzRGOUFFMDIvQUQxNzcwNDQ0 NUY2MTFFRTk3REYzMTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAN9/ngDBAPKqRAwDQYJKoZIhvcNAQELBQADggEBACAXuF4X nOGomjxk7agLuFWRlg6Kfex7Ji8QscfQosY62/HIEpy+V+GhC5Q9HcAUdH1obvmQ bxqGCMkLy3/GqgMFKDI7ywRVWbuqsgPPEC8O6Urlhbr6e0xOfWP+sJVqydJCLbki rqhPmdruPb3dTOIKTrd0/xRDYsdc4uQNPMom7GO0E3YZf8kdHtlyGGPSt4H0AsPN PZsgqV7moWQSIndIQUH2P39bbVhTwOTZGWDw9wa61VJ3mrJLsFzjqKEP2lui4VEO FCyzZPhiF7FK/jIg+lyiqNLUjpATest5Ivh4+S5ZUo9/Q4aYIB+OjrxjGYTZSaXf IYvmn29flYRDzLU= -----END CERTIFICATE-----Generated at Fri Dec 19 22:40:32 2025 by rpki-client