This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/F008FF08C22111ECB9FFB964C4F9AE02.roa File: F008FF08C22111ECB9FFB964C4F9AE02.roa (raw, json) Hash identifier: 5z8ER6WnikpG6Kb7zcPtjooJGjRJCOfjPOvKgbZyId8= Subject key identifier: 30:49:41:F8:DD:E0:AB:0D:F0:53:55:B5:5E:FB:6D:B7:BE:67:A8:5C Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 069F Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/F008FF08C22111ECB9FFB964C4F9AE02.roa Signing time: Tue 16 Dec 2025 07:22:43 +0000 ROA not before: Tue 16 Dec 2025 07:22:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45758 IP address blocks: 14.207.0.0/16 maxlen: 17 27.130.0.0/16 maxlen: 17 27.130.0.0/24 maxlen: 24 43.245.144.0/22 maxlen: 23 49.48.0.0/15 maxlen: 17 103.16.204.0/22 maxlen: 23 110.164.0.0/16 maxlen: 17 110.164.11.0/24 maxlen: 24 110.164.14.0/24 maxlen: 24 110.164.17.0/24 maxlen: 24 110.164.21.0/24 maxlen: 24 110.164.28.0/24 maxlen: 24 171.4.0.0/14 maxlen: 17 180.183.0.0/16 maxlen: 17 183.88.0.0/15 maxlen: 17 223.204.0.0/14 maxlen: 17 2403:6200::/32 maxlen: 33 2403:6200:8810::/44 maxlen: 44 2403:6200:8820::/44 maxlen: 44 2403:6200:8830::/44 maxlen: 44 2403:6200:8840::/44 maxlen: 44 2403:6200:8850::/44 maxlen: 44 2403:6200:8860::/44 maxlen: 44 2403:6200:8870::/44 maxlen: 44 2403:6200:8880::/44 maxlen: 44 2403:6200:8890::/44 maxlen: 44 2403:6200:88a0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:38:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1695 (0x69f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561, serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Dec 16 07:22:43 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=694108c2-08da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:2c:c3:4c:84:77:aa:cd:af:c2:1a:34:54:ef: c3:82:81:2e:2a:9b:fb:74:36:38:af:ff:b2:06:89: 80:5b:cc:c4:d4:20:06:99:f0:df:3f:dd:70:c2:53: 82:e4:01:74:4e:9a:ff:8f:19:b4:1c:47:fd:df:fa: 14:7a:91:d8:2c:f2:54:77:e7:00:27:4f:82:30:4c: cd:d1:d3:cd:9c:b3:68:0b:fb:c0:98:5a:75:44:84: 4e:3c:64:53:2b:dd:f3:83:ed:e1:a6:ca:5c:06:1d: 36:f4:4e:81:c2:03:8d:48:bf:30:93:df:69:0b:48: 70:a8:b1:d3:a5:4b:fd:8f:5b:b7:17:c9:28:14:10: fb:c4:ed:75:04:8e:d5:3e:0a:9e:66:a4:7e:03:78: 02:56:59:58:a5:4c:ff:1e:94:bc:ed:4b:13:b1:50: f1:41:a1:28:c4:46:be:3e:b5:09:06:38:94:4e:c8: fe:a1:4f:47:4b:57:86:45:a4:89:ab:58:b5:e5:30: 3f:72:77:a9:7e:2d:a5:e0:84:33:6d:11:7c:bf:51: e8:0f:82:ee:c1:b3:3d:32:3a:e9:fe:d4:49:e1:9e: 95:9e:47:9d:e6:65:dd:1f:63:6c:b2:4d:56:b6:34: d8:69:83:20:e5:8c:fd:68:b6:db:84:2e:9e:e3:aa: 5a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:49:41:F8:DD:E0:AB:0D:F0:53:55:B5:5E:FB:6D:B7:BE:67:A8:5C X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/F008FF08C22111ECB9FFB964C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.207.0.0/16 27.130.0.0/16 43.245.144.0/22 49.48.0.0/15 103.16.204.0/22 110.164.0.0/16 171.4.0.0/14 180.183.0.0/16 183.88.0.0/15 223.204.0.0/14 IPv6: 2403:6200::/32 Signature Algorithm: sha256WithRSAEncryption 0a:4f:3c:19:dc:f7:e9:bf:a6:72:95:7b:00:97:d7:cf:b5:7c: 5c:e4:8c:72:f9:97:40:20:6a:b1:76:a3:6c:b6:55:9f:d5:4d: d6:84:f4:52:b1:86:7c:70:a2:d0:81:8b:d8:b7:f4:15:50:e5: bf:2d:d6:a4:64:5f:e1:1f:03:30:14:9d:0b:dc:e7:5d:fb:aa: 67:14:78:b0:1f:d4:54:2f:db:db:a4:dc:67:9e:95:b6:10:96: 78:2c:92:01:75:a0:83:88:d6:76:63:37:bb:44:43:97:37:82: 28:60:6e:87:cc:9b:c6:aa:33:19:48:3f:e8:9a:4b:b0:93:4c: e8:5b:c4:f8:62:f7:94:47:1e:1c:c0:91:10:57:4d:4e:fa:5d: b1:fa:7c:28:5c:9c:74:9c:e9:00:10:59:43:b5:0d:43:61:17: 61:8a:4a:ae:3c:5b:f7:73:99:42:43:29:0c:4c:e6:35:31:e0: e4:bb:23:5e:c7:db:27:08:f0:af:92:85:b9:d1:70:46:98:07: 06:34:a7:a5:99:88:89:a2:a3:1f:27:a0:a8:7b:9d:89:d4:f0: 5c:32:a0:00:67:1e:5e:ae:9e:57:c9:c8:23:c3:fc:7a:38:88: af:5d:a1:3e:e0:ad:32:52:60:eb:1e:c0:df:b7:10:95:ac:d1: 2a:d7:4c:56 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgICBp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjUxMjE2MDcyMjQzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQxMDhjMi0wOGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6izDTIR3qs2vwho0VO/DgoEuKpv7dDY4r/+yBomAW8zE1CAGmfDfP91wwlOC 5AF0Tpr/jxm0HEf93/oUepHYLPJUd+cAJ0+CMEzN0dPNnLNoC/vAmFp1RIROPGRT K93zg+3hpspcBh029E6BwgONSL8wk99pC0hwqLHTpUv9j1u3F8koFBD7xO11BI7V PgqeZqR+A3gCVllYpUz/HpS87UsTsVDxQaEoxEa+PrUJBjiUTsj+oU9HS1eGRaSJ q1i15TA/cnepfi2l4IQzbRF8v1HoD4LuwbM9Mjrp/tRJ4Z6Vnked5mXdH2Nssk1W tjTYaYMg5Yz9aLbbhC6e46papwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFDBJQfjd 4KsN8FNVtV77bbe+Z6hcMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvRjAwOEZGMDhD MjIxMTFFQ0I5RkZCOTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXAYIKwYBBQUHAQcBAf8E TTBLMDoEAgABMDQDAwAOzwMDABuCAwQCK/WQAwMBMTADBAJnEMwDAwBupAMDAqsE AwMAtLcDAwG3WAMDAt/MMA0EAgACMAcDBQAkA2IAMA0GCSqGSIb3DQEBCwUAA4IB AQAKTzwZ3Pfpv6ZylXsAl9fPtXxc5Ixy+ZdAIGqxdqNstlWf1U3WhPRSsYZ8cKLQ gYvYt/QVUOW/LdakZF/hHwMwFJ0L3Odd+6pnFHiwH9RUL9vbpNxnnpW2EJZ4LJIB daCDiNZ2Yze7REOXN4IoYG6HzJvGqjMZSD/omkuwk0zoW8T4YveURx4cwJEQV01O +l2x+nwoXJx0nOkAEFlDtQ1DYRdhikquPFv3c5lCQykMTOY1MeDkuyNex9snCPCv koW50XBGmAcGNKelmYiJoqMfJ6Coe52J1PBcMqAAZx5erp5Xycgjw/x6OIivXaE+ 4K0yUmDrHsDftxCVrNEq10xW -----END CERTIFICATE-----Generated at Sat Dec 20 22:49:32 2025 by rpki-client