This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/B8BA4E603B5211EAA0D53F12C4F9AE02.roa File: B8BA4E603B5211EAA0D53F12C4F9AE02.roa (raw, json) Hash identifier: j/ajHdeg0X7dlj/Rcn6ptql8neD8yJ/Pvjoo4MQmzOc= Subject key identifier: 86:7F:DB:A8:05:D3:F3:DA:1F:8B:11:7F:C0:20:1C:FB:61:C7:15:74 Certificate issuer: /CN=A91EA198/serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Certificate serial: 1E92 Authority key identifier: 5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/B8BA4E603B5211EAA0D53F12C4F9AE02.roa Signing time: Fri 12 Dec 2025 16:13:53 +0000 ROA not before: Fri 12 Dec 2025 16:13:53 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 45102 IP address blocks: 8.128.0.0/10 maxlen: 18 8.208.0.0/12 maxlen: 15 8.208.0.0/16 maxlen: 24 8.209.0.0/16 maxlen: 24 8.210.0.0/16 maxlen: 24 8.211.0.0/16 maxlen: 24 8.212.0.0/16 maxlen: 24 8.213.0.0/16 maxlen: 24 8.214.0.0/16 maxlen: 24 8.215.0.0/16 maxlen: 24 8.216.0.0/16 maxlen: 24 8.217.0.0/16 maxlen: 24 8.218.0.0/16 maxlen: 24 8.219.0.0/16 maxlen: 24 8.220.0.0/16 maxlen: 24 8.221.0.0/16 maxlen: 24 8.222.0.0/16 maxlen: 24 8.223.0.0/16 maxlen: 24 149.129.0.0/16 maxlen: 24 161.117.0.0/16 maxlen: 24 170.33.0.0/16 maxlen: 16 170.33.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7826 (0x1e92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Validity Not Before: Dec 12 16:13:53 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=693c3f40-8d3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9c:0c:44:48:17:93:78:c6:cd:3c:27:f5:52: 9c:e0:1d:5b:22:db:79:61:1b:19:71:ff:7e:48:23: 58:3b:94:35:8f:75:a8:91:b9:79:d7:17:ce:f4:ea: d4:ae:08:90:f0:0c:66:18:5f:fc:bb:a9:92:25:0d: 9c:f5:91:b2:75:99:43:e8:9d:c5:f0:5c:78:c4:92: a8:f7:50:38:0e:c2:92:1b:c5:e2:2a:d4:bb:81:c1: 01:3a:b4:21:b9:a0:88:61:9c:4c:1e:06:4c:24:63: 64:ec:2e:d9:3d:db:c4:47:d0:34:2e:62:83:22:4f: 00:6b:23:57:b5:fa:38:f4:44:a7:23:b0:9c:29:c3: 80:6f:b2:4a:f6:ce:67:a7:da:28:4b:95:fa:ec:fb: 9a:f4:49:eb:d6:01:c7:84:db:4a:5c:d0:7d:31:c3: 15:2e:f0:3b:27:31:9b:9f:95:90:2d:65:a2:9b:86: 02:db:69:3d:3a:6d:b9:15:0c:22:36:2a:6b:2d:27: 91:97:76:5b:5e:62:91:88:36:ce:29:08:21:54:34: fb:2d:33:2f:87:f6:f1:0d:6b:bc:af:4e:1e:4f:a4: 4b:61:b6:54:9c:3b:7f:e7:6a:87:d0:91:de:60:22: 81:cf:01:47:50:a6:b5:ab:09:0a:03:84:7e:ec:6e: 85:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:7F:DB:A8:05:D3:F3:DA:1F:8B:11:7F:C0:20:1C:FB:61:C7:15:74 X509v3 Authority Key Identifier: keyid:5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/B8BA4E603B5211EAA0D53F12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 8.128.0.0/10 8.208.0.0/12 149.129.0.0/16 161.117.0.0/16 170.33.0.0/16 Signature Algorithm: sha256WithRSAEncryption 50:13:38:f5:80:60:5d:47:d0:dd:ff:47:c7:2b:66:17:3a:98: 61:60:5d:a1:93:0d:f8:f0:44:e7:ca:16:f8:36:70:96:86:3b: 0e:d6:25:3b:1c:81:eb:bf:4e:52:a5:dd:9d:27:f7:b2:ce:e0: d3:13:aa:96:9d:5e:65:ef:59:d3:5f:05:fc:ff:bb:e0:48:cc: f8:41:3c:2b:86:46:48:7b:c9:9b:70:0b:9b:0e:e9:05:3d:b1: e3:55:35:7b:a2:7c:a1:6f:89:02:98:a2:cc:72:1e:eb:8b:a2: 40:b2:37:8e:86:dd:b7:94:e1:d1:a2:70:1b:92:74:05:82:32: 7a:b8:96:e9:82:56:34:54:44:5c:66:c7:dc:d9:b4:37:70:98: 1b:c9:0c:5b:9b:6d:d7:a6:c5:32:99:72:e2:67:ab:f4:c1:1d: 65:3e:ab:d0:69:fa:d2:ee:72:04:5e:54:86:68:e0:e4:6d:cf: 8c:48:60:ee:40:e3:45:f2:9c:5d:81:76:85:67:b5:9f:1e:c6: d2:a4:b8:bf:a2:88:67:5e:b6:f9:6c:19:6e:b4:ac:32:04:8d: c7:ac:45:b7:53:f6:a2:59:f3:bf:08:a9:3a:f8:5c:f5:52:20: db:03:2e:22:9f:3e:39:a1:e9:17:22:77:7d:72:5b:98:d8:bf: 32:6f:d0:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDVGRUVERTlEMzgyNTQzRjA1MTUyN0ZBNTMzRDQ3QTkx NzA3N0U2MzIwHhcNMjUxMjEyMTYxMzUzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNjM2Y0MC04ZDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJwMREgXk3jGzTwn9VKc4B1bItt5YRsZcf9+SCNYO5Q1j3Wokbl51xfO9OrU rgiQ8AxmGF/8u6mSJQ2c9ZGydZlD6J3F8Fx4xJKo91A4DsKSG8XiKtS7gcEBOrQh uaCIYZxMHgZMJGNk7C7ZPdvER9A0LmKDIk8AayNXtfo49ESnI7CcKcOAb7JK9s5n p9ooS5X67Pua9Enr1gHHhNtKXNB9McMVLvA7JzGbn5WQLWWim4YC22k9Om25FQwi NiprLSeRl3ZbXmKRiDbOKQghVDT7LTMvh/bxDWu8r04eT6RLYbZUnDt/52qH0JHe YCKBzwFHUKa1qwkKA4R+7G6FGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZ/26gF 0/PaH4sRf8AgHPthxxV0MB8GA1UdIwQYMBaAFF/u3p04JUPwUVJ/pTPUepFwd+Yy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC9BRDYyOTIyMkI1 MjUxMUU2QUY2Qzg5NUVDNEY5QUUwMi9YLTdlblRnbFFfQlJVbi1sTTlSNmtYQjM1 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1gtN2VuVGdsUV9CUlVuLWxNOVI2a1hCMzVqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvQUQ2MjkyMjJCNTI1MTFFNkFGNkM4OTVFQzRGOUFFMDIvQjhCQTRFNjAz QjUyMTFFQUEwRDUzRjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMB8EAgABMBkDAwYIgAMDBAjQAwMAlYEDAwChdQMDAKohMA0GCSqGSIb3DQEB CwUAA4IBAQBQEzj1gGBdR9Dd/0fHK2YXOphhYF2hkw348ETnyhb4NnCWhjsO1iU7 HIHrv05Spd2dJ/eyzuDTE6qWnV5l71nTXwX8/7vgSMz4QTwrhkZIe8mbcAubDukF PbHjVTV7onyhb4kCmKLMch7ri6JAsjeOht23lOHRonAbknQFgjJ6uJbpglY0VERc Zsfc2bQ3cJgbyQxbm23XpsUymXLiZ6v0wR1lPqvQafrS7nIEXlSGaODkbc+MSGDu QONF8pxdgXaFZ7WfHsbSpLi/oohnXrb5bBlutKwyBI3HrEW3U/aiWfO/CKk6+Fz1 UiDbAy4inz45oekXInd9cluY2L8yb9Db -----END CERTIFICATE-----Generated at Sun Dec 21 02:34:31 2025 by rpki-client