This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/1A0D44FA3B5411EABAC6EE18C4F9AE02.roa File: 1A0D44FA3B5411EABAC6EE18C4F9AE02.roa (raw, json) Hash identifier: M0IwLj/xH026H0t6T0vGOFmJMiOXNEIts7DE9pu76dk= Subject key identifier: 73:4A:C6:3F:89:B8:D9:40:DD:95:DE:86:6F:06:E3:34:55:CA:E0:4C Certificate issuer: /CN=A91EA198/serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Certificate serial: 1E91 Authority key identifier: 5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/1A0D44FA3B5411EABAC6EE18C4F9AE02.roa Signing time: Fri 12 Dec 2025 16:13:52 +0000 ROA not before: Fri 12 Dec 2025 16:13:52 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 37963 IP address blocks: 8.128.0.0/10 maxlen: 15 8.128.0.0/16 maxlen: 24 8.129.0.0/16 maxlen: 24 8.130.0.0/16 maxlen: 24 8.131.0.0/16 maxlen: 24 8.132.0.0/16 maxlen: 24 8.133.0.0/16 maxlen: 24 8.134.0.0/16 maxlen: 24 8.135.0.0/16 maxlen: 24 8.136.0.0/16 maxlen: 24 8.137.0.0/16 maxlen: 24 8.138.0.0/16 maxlen: 24 8.139.0.0/16 maxlen: 24 8.140.0.0/16 maxlen: 24 8.141.0.0/16 maxlen: 24 8.142.0.0/16 maxlen: 24 8.143.0.0/16 maxlen: 24 8.144.0.0/16 maxlen: 24 8.145.0.0/16 maxlen: 24 8.146.0.0/16 maxlen: 24 8.147.0.0/16 maxlen: 24 8.148.0.0/16 maxlen: 24 8.149.0.0/16 maxlen: 24 8.150.0.0/16 maxlen: 24 8.151.0.0/16 maxlen: 24 8.152.0.0/16 maxlen: 24 8.153.0.0/16 maxlen: 24 8.154.0.0/16 maxlen: 24 8.155.0.0/16 maxlen: 24 8.156.0.0/16 maxlen: 24 8.157.0.0/16 maxlen: 24 8.158.0.0/16 maxlen: 24 8.159.0.0/16 maxlen: 24 8.160.0.0/16 maxlen: 24 8.161.0.0/16 maxlen: 24 8.162.0.0/16 maxlen: 24 8.163.0.0/16 maxlen: 24 8.164.0.0/16 maxlen: 24 8.165.0.0/16 maxlen: 24 8.166.0.0/16 maxlen: 24 8.167.0.0/16 maxlen: 24 8.168.0.0/16 maxlen: 24 8.169.0.0/16 maxlen: 24 8.170.0.0/16 maxlen: 24 8.171.0.0/16 maxlen: 24 8.172.0.0/16 maxlen: 24 8.173.0.0/16 maxlen: 24 8.174.0.0/16 maxlen: 24 8.175.0.0/16 maxlen: 24 8.176.0.0/16 maxlen: 24 8.178.0.0/16 maxlen: 24 8.179.0.0/16 maxlen: 24 8.180.0.0/16 maxlen: 24 8.181.0.0/16 maxlen: 24 8.182.0.0/16 maxlen: 24 8.183.0.0/16 maxlen: 24 8.184.0.0/16 maxlen: 24 8.185.0.0/16 maxlen: 24 8.186.0.0/16 maxlen: 24 8.187.0.0/16 maxlen: 24 8.188.0.0/16 maxlen: 24 8.189.0.0/16 maxlen: 24 8.190.0.0/16 maxlen: 24 8.191.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:56:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7825 (0x1e91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Validity Not Before: Dec 12 16:13:52 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=693c3f40-9628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:8e:e5:94:c0:b2:92:9d:a9:72:95:19:bf:62: e5:7f:26:d9:77:9a:92:b9:39:e5:17:08:2c:a4:9c: c4:2e:f2:e6:5e:b2:65:7a:5e:43:93:f2:fc:1c:2a: d5:6e:97:52:cd:45:65:ac:e9:50:c0:29:33:2f:6c: 3f:03:bd:ab:d9:97:ac:ae:71:5a:39:1d:a2:0c:bb: 2f:6a:11:15:d2:08:fd:ec:58:ca:66:69:bd:0c:2f: ce:b2:07:99:16:44:6e:e4:82:35:12:71:65:20:4e: 48:f8:db:9b:b2:f8:19:6f:88:0e:6a:74:02:e6:97: 5c:a2:6c:eb:53:d9:79:e7:ce:d8:fd:7a:61:fd:fb: 43:16:4e:64:86:f9:2a:4b:4a:c0:e1:d3:6b:9e:95: cf:ad:03:81:5d:b1:5f:87:76:35:22:5c:8c:18:84: 47:e0:bc:59:d2:1e:c5:8e:e8:81:9b:15:5b:81:ed: f4:c9:c4:5c:68:6b:b3:ff:b0:02:6a:26:30:c4:53: 1a:c9:ad:d0:f0:fc:6f:4c:12:75:1f:7a:6d:3d:c2: 7c:d8:3e:13:86:48:5a:50:8e:bb:7b:cf:27:e0:f5: b5:1f:8d:ac:62:31:35:26:20:09:e8:ec:cf:5f:d5: 27:8d:7d:27:95:e9:d7:42:e1:4c:15:54:0f:c4:ce: 1f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:4A:C6:3F:89:B8:D9:40:DD:95:DE:86:6F:06:E3:34:55:CA:E0:4C X509v3 Authority Key Identifier: keyid:5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/1A0D44FA3B5411EABAC6EE18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 8.128.0.0/10 Signature Algorithm: sha256WithRSAEncryption c8:d5:0c:5c:b8:bd:7f:7c:4b:d4:10:ba:2d:81:40:e9:ab:6c: 27:2b:d8:2a:60:5b:ab:f8:60:47:e9:71:31:d7:d7:ba:1f:11: 04:31:d9:b5:b6:53:b3:02:b0:44:ed:d3:b3:eb:a9:c9:b8:7f: c4:87:76:83:00:d7:a5:89:ec:2e:df:7c:4e:87:dd:20:10:5d: c8:1f:df:56:44:77:00:57:54:b1:be:cc:6c:14:8b:97:b8:a6: 43:2d:05:31:ab:48:1d:16:9a:3e:0b:01:37:9e:c8:79:50:8e: ef:02:ba:10:31:dd:39:4a:49:d8:2c:09:7a:3d:03:f7:05:34: 79:71:8f:f2:6f:17:66:8e:fe:75:f3:9b:56:bf:73:30:10:08: ca:ce:c3:29:f6:37:03:46:31:78:17:d1:6e:06:0b:84:eb:92: 8f:5a:12:07:58:81:4b:71:80:eb:10:28:30:db:0b:6b:cd:15: df:c7:c1:82:da:13:a6:26:6c:57:f4:8f:38:35:f9:9a:11:2d: 8e:c8:5a:48:36:d8:e7:3f:3e:d5:c7:f0:f7:54:bb:24:93:95: 69:58:2a:d6:ff:a1:7a:44:5e:4e:44:f4:f1:c1:96:d5:07:24: c9:fa:6f:80:b1:f4:29:10:7e:3d:91:f1:1b:7a:48:10:9b:d4: 9e:20:01:58 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICHpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDVGRUVERTlEMzgyNTQzRjA1MTUyN0ZBNTMzRDQ3QTkx NzA3N0U2MzIwHhcNMjUxMjEyMTYxMzUyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNjM2Y0MC05NjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmo7llMCykp2pcpUZv2LlfybZd5qSuTnlFwgspJzELvLmXrJlel5Dk/L8HCrV bpdSzUVlrOlQwCkzL2w/A72r2ZesrnFaOR2iDLsvahEV0gj97FjKZmm9DC/OsgeZ FkRu5II1EnFlIE5I+NubsvgZb4gOanQC5pdcomzrU9l5587Y/Xph/ftDFk5khvkq S0rA4dNrnpXPrQOBXbFfh3Y1IlyMGIRH4LxZ0h7FjuiBmxVbge30ycRcaGuz/7AC aiYwxFMaya3Q8PxvTBJ1H3ptPcJ82D4ThkhaUI67e88n4PW1H42sYjE1JiAJ6OzP X9UnjX0nlenXQuFMFVQPxM4fMwIDAQABo4IClDCCApAwHQYDVR0OBBYEFHNKxj+J uNlA3ZXehm8G4zRVyuBMMB8GA1UdIwQYMBaAFF/u3p04JUPwUVJ/pTPUepFwd+Yy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC9BRDYyOTIyMkI1 MjUxMUU2QUY2Qzg5NUVDNEY5QUUwMi9YLTdlblRnbFFfQlJVbi1sTTlSNmtYQjM1 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1gtN2VuVGdsUV9CUlVuLWxNOVI2a1hCMzVqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvQUQ2MjkyMjJCNTI1MTFFNkFGNkM4OTVFQzRGOUFFMDIvMUEwRDQ0RkEz QjU0MTFFQUJBQzZFRTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwYIgDANBgkqhkiG9w0BAQsFAAOCAQEAyNUMXLi9f3xL1BC6 LYFA6atsJyvYKmBbq/hgR+lxMdfXuh8RBDHZtbZTswKwRO3Ts+upybh/xId2gwDX pYnsLt98TofdIBBdyB/fVkR3AFdUsb7MbBSLl7imQy0FMatIHRaaPgsBN57IeVCO 7wK6EDHdOUpJ2CwJej0D9wU0eXGP8m8XZo7+dfObVr9zMBAIys7DKfY3A0YxeBfR bgYLhOuSj1oSB1iBS3GA6xAoMNsLa80V38fBgtoTpiZsV/SPODX5mhEtjshaSDbY 5z8+1cfw91S7JJOVaVgq1v+hekReTkT08cGW1QckyfpvgLH0KRB+PZHxG3pIEJvU niABWA== -----END CERTIFICATE-----Generated at Sun Dec 21 04:28:12 2025 by rpki-client