This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27B9/84BA7482F0CE11EA891B2C76C4F9AE02/C8BD376C3ADF11EC85EB255FC4F9AE02.roa File: C8BD376C3ADF11EC85EB255FC4F9AE02.roa (raw, json) Hash identifier: TSiEeadhDUJoSMwAUqYhtuLIX4q41FceDd825B0nJzY= Subject key identifier: A8:CE:EA:6D:68:6E:68:BE:42:C2:8C:6A:1F:E1:9B:F9:C3:57:4B:4D Certificate issuer: /CN=A91E27B9/serialNumber=BADB699FA02A9572E6EF49F4F91A1FE0A73C2C8D Certificate serial: 086D Authority key identifier: BA:DB:69:9F:A0:2A:95:72:E6:EF:49:F4:F9:1A:1F:E0:A7:3C:2C:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uttpn6AqlXLm70n0-Rof4Kc8LI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27B9/84BA7482F0CE11EA891B2C76C4F9AE02/C8BD376C3ADF11EC85EB255FC4F9AE02.roa Signing time: Mon 08 Dec 2025 20:01:14 +0000 ROA not before: Mon 08 Dec 2025 20:01:14 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 24321 IP address blocks: 202.73.8.0/22 maxlen: 22 202.87.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27B9/84BA7482F0CE11EA891B2C76C4F9AE02/uttpn6AqlXLm70n0-Rof4Kc8LI0.crl rsync://rpki.apnic.net/member_repository/A91E27B9/84BA7482F0CE11EA891B2C76C4F9AE02/uttpn6AqlXLm70n0-Rof4Kc8LI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uttpn6AqlXLm70n0-Rof4Kc8LI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2157 (0x86d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27B9, serialNumber=BADB699FA02A9572E6EF49F4F91A1FE0A73C2C8D Validity Not Before: Dec 8 20:01:14 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69372e8a-0de8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:74:f8:36:04:35:cb:bf:9a:6f:9f:18:00:7c: 38:8a:15:f8:80:1c:ff:ef:cd:3a:8b:39:18:18:7c: f7:23:81:3b:c5:96:b1:85:0e:b9:24:4b:fe:da:6e: a4:88:c3:a7:78:0b:54:f6:66:4e:09:37:95:c7:ce: e0:74:78:c2:2f:9a:70:8f:21:6e:64:dc:9e:97:47: 01:1a:61:72:c2:9b:31:65:1b:16:4e:7c:45:a8:21: 17:5c:ef:da:9f:e2:06:48:11:bd:dc:fc:79:6e:6e: 26:84:9c:e1:f9:5f:81:29:e9:f0:eb:d1:a8:c0:97: 47:e1:2e:13:ec:e5:83:3b:34:4e:32:99:12:ea:c5: dd:ca:77:7d:5a:1b:c5:6d:d0:f3:03:af:40:b1:a5: 1e:2b:26:55:e2:ea:9a:e6:ed:6d:3a:f0:d3:d8:16: 64:26:91:19:3f:ff:82:eb:5c:38:4d:14:dd:50:e8: ed:cd:9e:f2:a8:26:fb:36:57:8a:d4:bd:0c:ff:11: 74:08:22:92:ac:3b:e5:ba:9b:c7:74:08:0c:8d:fe: 47:c2:1a:2c:b6:ac:42:03:b5:fa:41:05:c1:41:6c: b3:7c:da:09:ed:33:a8:b7:31:1d:4b:26:7b:99:cb: cb:e7:0b:9d:f9:9e:c8:2a:bf:71:74:68:e4:00:ee: 14:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:CE:EA:6D:68:6E:68:BE:42:C2:8C:6A:1F:E1:9B:F9:C3:57:4B:4D X509v3 Authority Key Identifier: keyid:BA:DB:69:9F:A0:2A:95:72:E6:EF:49:F4:F9:1A:1F:E0:A7:3C:2C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27B9/84BA7482F0CE11EA891B2C76C4F9AE02/uttpn6AqlXLm70n0-Rof4Kc8LI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uttpn6AqlXLm70n0-Rof4Kc8LI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27B9/84BA7482F0CE11EA891B2C76C4F9AE02/C8BD376C3ADF11EC85EB255FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.73.8.0/22 202.87.216.0/22 Signature Algorithm: sha256WithRSAEncryption 56:1a:3c:ac:c0:5a:af:74:73:5e:b6:0b:fe:87:94:40:a1:42: 30:ec:80:64:0d:d6:8d:ae:53:11:04:9a:8f:c6:4c:63:6e:45: ad:f1:eb:3c:56:01:0f:e3:1f:d5:95:ef:f7:08:32:86:a2:32: 10:3d:78:14:5f:63:00:ee:71:3d:26:ee:ef:de:df:6c:40:bc: 2a:50:0c:49:a9:c5:3c:06:fe:6e:bb:e8:c6:e4:2b:a0:88:48: a3:aa:52:f5:7e:47:6d:de:81:b3:87:95:e3:2a:d8:ff:50:12: b0:40:f9:ef:fc:5c:81:38:ed:3a:f3:9b:80:aa:53:b6:1a:1b: 1f:8c:bc:4d:3c:e6:b3:f9:b0:00:fe:9f:e9:93:f2:7c:07:ef: ff:2f:43:52:20:f6:89:02:3b:47:c1:8b:40:2b:21:64:90:a1: 86:9b:d2:1c:75:04:97:f8:e7:45:6c:9b:e7:ef:e9:be:c9:05: f7:a1:9c:8e:4d:92:37:90:e5:d7:4b:74:a0:52:a0:3e:0f:ee: c6:ce:7c:de:c1:4a:44:a7:0a:a4:62:fe:92:55:d2:26:c0:a0: 32:6e:d7:26:f2:a3:2b:c1:85:ed:5d:ff:9d:fc:fb:e4:e2:0a: d5:be:a6:da:31:d7:f1:6d:0f:97:5b:70:bd:80:de:65:f6:46: 2d:6e:a4:2d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3QjkxMTAvBgNVBAUTKEJBREI2OTlGQTAyQTk1NzJFNkVGNDlGNEY5MUExRkUw QTczQzJDOEQwHhcNMjUxMjA4MjAwMTE0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM3MmU4YS0wZGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnT4NgQ1y7+ab58YAHw4ihX4gBz/7806izkYGHz3I4E7xZaxhQ65JEv+2m6k iMOneAtU9mZOCTeVx87gdHjCL5pwjyFuZNyel0cBGmFywpsxZRsWTnxFqCEXXO/a n+IGSBG93Px5bm4mhJzh+V+BKenw69GowJdH4S4T7OWDOzROMpkS6sXdynd9WhvF bdDzA69AsaUeKyZV4uqa5u1tOvDT2BZkJpEZP/+C61w4TRTdUOjtzZ7yqCb7NleK 1L0M/xF0CCKSrDvlupvHdAgMjf5HwhostqxCA7X6QQXBQWyzfNoJ7TOotzEdSyZ7 mcvL5wud+Z7IKr9xdGjkAO4UxwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKjO6m1o bmi+QsKMah/hm/nDV0tNMB8GA1UdIwQYMBaAFLrbaZ+gKpVy5u9J9PkaH+CnPCyN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdCOS84NEJBNzQ4MkYw Q0UxMUVBODkxQjJDNzZDNEY5QUUwMi91dHRwbjZBcWxYTG03MG4wLVJvZjRLYzhM STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V0dHBuNkFxbFhMbTcwbjAtUm9mNEtjOExJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI3QjkvODRCQTc0ODJGMENFMTFFQTg5MUIyQzc2QzRGOUFFMDIvQzhCRDM3NkMz QURGMTFFQzg1RUIyNTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBALKSQgDBALKV9gwDQYJKoZIhvcNAQELBQADggEBAFYaPKzA Wq90c162C/6HlEChQjDsgGQN1o2uUxEEmo/GTGNuRa3x6zxWAQ/jH9WV7/cIMoai MhA9eBRfYwDucT0m7u/e32xAvCpQDEmpxTwG/m676MbkK6CISKOqUvV+R23egbOH leMq2P9QErBA+e/8XIE47Trzm4CqU7YaGx+MvE085rP5sAD+n+mT8nwH7/8vQ1Ig 9okCO0fBi0ArIWSQoYab0hx1BJf450Vsm+fv6b7JBfehnI5NkjeQ5ddLdKBSoD4P 7sbOfN7BSkSnCqRi/pJV0ibAoDJu1ybyoyvBhe1d/538++TiCtW+ptox1/FtD5db cL2A3mX2Ri1upC0= -----END CERTIFICATE-----Generated at Sat Dec 20 01:34:44 2025 by rpki-client