This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/192418F6AA1811EA97BC574CC4F9AE02.roa File: 192418F6AA1811EA97BC574CC4F9AE02.roa (raw, json) Hash identifier: 50LilFdBJbezb7tEZ8nsCEOtBU33AYgM2/+xtSJDySI= Subject key identifier: 1E:A1:7E:0A:86:35:33:7C:5F:4A:A6:72:1C:D4:15:F8:7D:B8:E1:DE Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Certificate serial: 1F4D Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/192418F6AA1811EA97BC574CC4F9AE02.roa Signing time: Fri 12 Dec 2025 16:13:47 +0000 ROA not before: Fri 12 Dec 2025 16:13:47 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 24429 IP address blocks: 43.91.0.0/16 maxlen: 24 43.102.128.0/20 maxlen: 24 43.102.144.0/20 maxlen: 24 43.109.0.0/16 maxlen: 24 2404:2280:100::/40 maxlen: 48 2404:2280:200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8013 (0x1f4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Validity Not Before: Dec 12 16:13:47 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=693c3f3b-94c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e3:10:ef:48:75:74:e0:10:67:e9:e4:e3:01: b9:6a:f3:59:54:24:bd:1b:92:60:bd:e6:2a:87:0e: d1:da:79:4c:c8:10:4e:77:c1:62:59:25:c1:ae:52: 6d:6b:dc:31:cc:3f:0c:56:b3:b9:ab:a7:3d:43:45: 46:3d:39:df:3e:20:c0:87:85:c5:94:b9:8d:86:2c: 1a:86:cd:83:90:5e:10:84:c1:65:41:0b:a9:9a:5b: b9:f8:cb:b1:d1:f2:e4:46:9b:11:54:f5:d3:04:da: d0:1a:72:f6:79:f0:11:7e:af:ee:30:83:6a:d5:7a: ad:74:5b:0b:a9:b2:06:1c:3a:83:96:a3:8c:f4:e6: bc:cc:03:ed:d5:93:6e:c6:1d:40:2c:0d:79:a5:49: b8:97:37:92:96:83:bb:0c:a2:01:45:7a:bf:98:51: a5:ed:23:85:ec:76:64:ad:58:0e:5c:e9:06:9b:e0: 81:5b:bd:89:64:41:b1:4e:4c:d7:c2:d6:30:17:ca: a1:ef:49:ed:fc:98:3e:f0:f2:74:d1:6e:d9:1a:a3: f3:2d:5d:61:44:27:cc:8a:f0:73:0c:46:e0:db:36: 29:cb:9f:ce:88:de:8a:b6:09:ab:b1:df:92:fa:78: 62:b7:2b:61:4c:8c:ab:46:a3:e1:f6:8c:00:88:78: 7c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A1:7E:0A:86:35:33:7C:5F:4A:A6:72:1C:D4:15:F8:7D:B8:E1:DE X509v3 Authority Key Identifier: keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/192418F6AA1811EA97BC574CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.91.0.0/16 43.102.128.0/19 43.109.0.0/16 IPv6: 2404:2280:100::-2404:2280:2ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption ac:55:51:9c:4e:d1:68:c9:0d:a1:23:c6:a8:98:36:bf:1f:b7: f8:f6:67:da:44:4f:6a:f1:9e:94:4a:dd:53:7c:7d:58:b0:24: b5:bc:9a:66:1a:8a:7d:55:ed:8f:c7:0d:7c:e9:df:ce:57:ac: b5:91:bc:ea:de:c1:05:de:f6:13:b2:80:3f:89:29:3b:de:44: 52:87:6f:d9:c5:52:8b:db:1c:0c:bf:b7:e6:e4:05:f4:3c:2d: fb:6c:a9:c1:19:5b:b3:ff:c9:fc:04:e2:69:55:4b:c1:1e:a8: 8a:f7:90:40:6b:66:2f:91:db:08:66:94:f5:3d:79:08:53:5b: d2:0b:2c:c6:71:f0:6b:68:f4:9e:2c:4b:11:6b:68:fd:d6:79: b5:13:e8:2c:98:73:df:76:87:59:31:5e:5c:29:1e:81:14:eb: 47:f5:c8:64:6a:7e:53:02:cb:df:6b:8b:0e:6d:70:f0:95:d0: 3f:93:40:bf:b9:c1:09:b0:0a:0b:5f:dd:42:da:a2:9f:6f:c8: 64:01:e6:67:2a:e3:5a:4a:24:04:77:bc:09:25:19:35:c8:cb: b8:47:16:60:bc:63:9a:d8:cb:4d:36:58:57:49:54:06:ec:a8: b2:98:eb:f8:b8:01:a6:7e:c9:df:32:8c:02:03:1b:51:0e:b1: b9:ea:5c:51 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICH00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDlFMUMzNTMxRDAwNDVFQTM4OUI2OENGRjkyODZBMDhG QkNCQkQ4QkQwHhcNMjUxMjEyMTYxMzQ3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNjM2YzYi05NGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uMQ70h1dOAQZ+nk4wG5avNZVCS9G5JgveYqhw7R2nlMyBBOd8FiWSXBrlJt a9wxzD8MVrO5q6c9Q0VGPTnfPiDAh4XFlLmNhiwahs2DkF4QhMFlQQupmlu5+Mux 0fLkRpsRVPXTBNrQGnL2efARfq/uMINq1XqtdFsLqbIGHDqDlqOM9Oa8zAPt1ZNu xh1ALA15pUm4lzeSloO7DKIBRXq/mFGl7SOF7HZkrVgOXOkGm+CBW72JZEGxTkzX wtYwF8qh70nt/Jg+8PJ00W7ZGqPzLV1hRCfMivBzDEbg2zYpy5/OiN6Ktgmrsd+S +nhitythTIyrRqPh9owAiHh8KQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFB6hfgqG NTN8X0qmchzUFfh9uOHeMB8GA1UdIwQYMBaAFJ4cNTHQBF6jibaM/5KGoI+8u9i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC85OTNGMjA5MEFC QzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhxT0p0b3pfa29hZ2o3eTcy TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odzFNZEFFWHFPSnRvel9rb2Fnajd5NzJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvOTkzRjIwOTBBQkM0MTFFNkJENkJFRDE0QzRGOUFFMDIvMTkyNDE4RjZB QTE4MTFFQTk3QkM1NzRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMBYEAgABMBADAwArWwMEBStmgAMDACttMBgEAgACMBIwEAMGACQEIoABAwYA JAQigAIwDQYJKoZIhvcNAQELBQADggEBAKxVUZxO0WjJDaEjxqiYNr8ft/j2Z9pE T2rxnpRK3VN8fViwJLW8mmYain1V7Y/HDXzp385XrLWRvOrewQXe9hOygD+JKTve RFKHb9nFUovbHAy/t+bkBfQ8LftsqcEZW7P/yfwE4mlVS8EeqIr3kEBrZi+R2whm lPU9eQhTW9ILLMZx8Gto9J4sSxFraP3WebUT6CyYc992h1kxXlwpHoEU60f1yGRq flMCy99riw5tcPCV0D+TQL+5wQmwCgtf3ULaop9vyGQB5mcq41pKJAR3vAklGTXI y7hHFmC8Y5rYy002WFdJVAbsqLKY6/i4AaZ+yd8yjAIDG1EOsbnqXFE= -----END CERTIFICATE-----Generated at Sat Dec 20 02:05:56 2025 by rpki-client