This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/F4B9363CD97C11F0998DA3C49DD3641D.roa File: F4B9363CD97C11F0998DA3C49DD3641D.roa (raw, json) Hash identifier: iKaGp6aMywsrc3+QJBPct8yxTotntICq1up42PPmt6M= Subject key identifier: A1:49:84:34:D6:C2:CD:9B:2E:4A:6E:67:CD:ED:FE:C7:28:17:06:57 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 22AC Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/F4B9363CD97C11F0998DA3C49DD3641D.roa Signing time: Mon 15 Dec 2025 06:11:55 +0000 ROA not before: Mon 15 Dec 2025 06:11:55 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 135402 IP address blocks: 220.158.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8876 (0x22ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Dec 15 06:11:55 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=693fa6ab-82a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:85:41:a6:89:47:fb:6a:7c:6a:a5:a7:24:ab: 8f:f8:59:e3:3d:2b:8d:57:fd:fe:77:3c:98:f8:35: 9b:37:d5:59:54:fe:32:24:2d:8a:9c:19:79:1d:72: 9a:da:ae:62:08:ec:bf:bf:28:87:62:1c:4d:8f:da: 15:6e:a2:87:07:3a:1e:1d:1b:2d:39:44:eb:e9:b1: 9a:fe:b0:d5:f9:07:04:12:62:8e:f3:e0:2f:85:dd: 26:b7:74:b1:7d:92:44:b2:f9:c1:40:0f:29:68:e9: 81:8f:3f:7e:9d:e5:1b:39:7c:1d:41:72:a4:6d:3f: b2:4f:f0:cf:9f:0e:5e:87:7f:5a:98:96:95:b3:28: 34:62:87:de:53:90:e5:7e:a9:f2:d2:bf:bc:2e:16: 89:5b:0c:33:28:cf:6e:23:55:9c:33:6c:53:76:3a: fb:0e:0e:f5:45:8f:b9:88:80:04:59:22:87:38:e0: c7:45:92:52:9e:77:b7:38:7f:e8:9c:93:00:a5:cb: 35:ed:54:6e:81:87:6e:3e:75:41:f9:aa:51:9c:d8: 59:50:25:d7:ca:53:0a:c7:04:99:32:21:7d:e8:79: b3:33:e0:3b:44:01:f8:4f:4d:b3:f9:e3:6a:3a:f0: 68:12:9a:ba:e4:d0:5c:32:6c:3e:1c:fc:be:1c:70: 8e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:49:84:34:D6:C2:CD:9B:2E:4A:6E:67:CD:ED:FE:C7:28:17:06:57 X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/F4B9363CD97C11F0998DA3C49DD3641D.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.158.205.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:c7:2a:be:e6:94:a5:67:e8:06:3a:15:ea:cb:6c:83:eb:9b: c7:36:fe:7c:59:31:3a:b7:d4:b8:61:bb:2d:14:2b:a3:c3:6c: 61:eb:99:b4:2a:64:5f:9d:b4:08:22:8b:c9:0d:63:1b:4f:08: 2a:14:e2:0d:ef:0e:1d:ba:97:2c:89:a3:92:f9:56:42:52:7b: 13:ca:ee:a6:ee:94:71:cc:93:74:db:09:b1:af:e9:24:5c:ca: d1:98:59:1a:77:f6:bf:fa:8d:bb:4a:f4:f2:5a:60:59:e0:4a: fa:f8:5f:c5:7b:f4:0a:63:21:33:f4:7f:8d:ea:21:ef:dd:5e: 1e:84:83:a9:83:a9:24:58:8d:b2:e6:af:ac:9f:a2:b3:40:d9: f0:6c:78:ae:7b:5c:34:78:38:43:c4:b2:44:2d:9d:e8:07:d1: 74:0f:21:12:c7:d7:44:ee:40:10:a4:c2:21:ef:8d:10:0b:de: 32:ba:cc:93:2a:1e:39:7e:52:9d:ac:0b:4a:ac:54:5d:e1:ec: a3:6c:17:72:63:95:8e:3c:81:85:1c:87:35:06:88:74:b5:61: d9:4c:7b:6e:ea:a8:81:be:53:46:30:d3:af:e0:b3:d1:fa:b0: b8:2c:ae:1f:56:34:78:83:56:ec:d9:14:26:88:c9:c0:8a:62: 13:17:ee:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjUxMjE1MDYxMTU1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNmYTZhYi04MmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14VBpolH+2p8aqWnJKuP+FnjPSuNV/3+dzyY+DWbN9VZVP4yJC2KnBl5HXKa 2q5iCOy/vyiHYhxNj9oVbqKHBzoeHRstOUTr6bGa/rDV+QcEEmKO8+Avhd0mt3Sx fZJEsvnBQA8paOmBjz9+neUbOXwdQXKkbT+yT/DPnw5eh39amJaVsyg0YofeU5Dl fqny0r+8LhaJWwwzKM9uI1WcM2xTdjr7Dg71RY+5iIAEWSKHOODHRZJSnne3OH/o nJMApcs17VRugYduPnVB+apRnNhZUCXXylMKxwSZMiF96HmzM+A7RAH4T02z+eNq OvBoEpq65NBcMmw+HPy+HHCOwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKFJhDTW ws2bLkpuZ83t/scoFwZXMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ4NDUvNDAwMTUzQjZEMkVCMTFFNUI0RDE1QTRFQzRGOUFFMDIvRjRCOTM2M0NE OTdDMTFGMDk5OERBM0M0OUREMzY0MUQucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADcns0wDQYJKoZIhvcNAQELBQADggEBACzHKr7mlKVn6AY6 FerLbIPrm8c2/nxZMTq31Lhhuy0UK6PDbGHrmbQqZF+dtAgii8kNYxtPCCoU4g3v Dh26lyyJo5L5VkJSexPK7qbulHHMk3TbCbGv6SRcytGYWRp39r/6jbtK9PJaYFng Svr4X8V79ApjITP0f43qIe/dXh6Eg6mDqSRYjbLmr6yforNA2fBseK57XDR4OEPE skQtnegH0XQPIRLH10TuQBCkwiHvjRAL3jK6zJMqHjl+Up2sC0qsVF3h7KNsF3Jj lY48gYUchzUGiHS1YdlMe27qqIG+U0Yw06/gs9H6sLgsrh9WNHiDVuzZFCaIycCK YhMX7oo= -----END CERTIFICATE-----Generated at Fri Dec 19 23:21:47 2025 by rpki-client