This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/B32F80267BD111EBBB223C84C4F9AE02.roa File: B32F80267BD111EBBB223C84C4F9AE02.roa (raw, json) Hash identifier: HnpT4gDgOpNn3TrEeZ8S7zV9lp/fr3lI5Q/IA+j07KU= Subject key identifier: 80:52:51:0D:93:FA:CB:AE:70:45:12:3D:C8:09:66:84:8F:02:34:35 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 07D7 Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/B32F80267BD111EBBB223C84C4F9AE02.roa Signing time: Thu 11 Dec 2025 11:05:27 +0000 ROA not before: Thu 11 Dec 2025 11:05:27 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 21859 IP address blocks: 129.227.17.0/24 maxlen: 24 129.227.18.0/24 maxlen: 24 129.227.19.0/24 maxlen: 24 129.227.29.0/24 maxlen: 24 129.227.30.0/24 maxlen: 24 129.227.31.0/24 maxlen: 24 129.227.63.0/24 maxlen: 24 129.227.176.0/23 maxlen: 24 129.227.192.0/24 maxlen: 24 129.227.193.0/24 maxlen: 24 129.227.194.0/23 maxlen: 24 156.59.16.0/22 maxlen: 24 156.59.48.0/23 maxlen: 24 156.59.50.0/23 maxlen: 24 156.59.52.0/22 maxlen: 24 156.59.73.0/24 maxlen: 24 156.59.80.0/21 maxlen: 24 156.59.94.0/23 maxlen: 24 156.59.108.0/24 maxlen: 24 156.59.123.0/24 maxlen: 24 156.59.128.0/21 maxlen: 24 156.59.136.0/21 maxlen: 24 156.59.146.0/24 maxlen: 24 156.59.216.0/24 maxlen: 24 156.59.224.0/24 maxlen: 24 156.59.225.0/24 maxlen: 24 156.59.241.0/24 maxlen: 24 156.59.255.0/24 maxlen: 24 162.128.43.0/24 maxlen: 24 162.128.44.0/24 maxlen: 24 162.128.53.0/24 maxlen: 24 162.128.54.0/24 maxlen: 24 162.128.55.0/24 maxlen: 24 162.128.56.0/24 maxlen: 24 162.128.57.0/24 maxlen: 24 162.128.58.0/24 maxlen: 24 162.128.59.0/24 maxlen: 24 162.128.60.0/24 maxlen: 24 162.128.61.0/24 maxlen: 24 162.128.62.0/24 maxlen: 24 162.128.63.0/24 maxlen: 24 162.128.140.0/24 maxlen: 24 162.128.149.0/24 maxlen: 24 162.128.150.0/24 maxlen: 24 162.128.151.0/24 maxlen: 24 162.128.186.0/24 maxlen: 24 162.128.196.0/24 maxlen: 24 162.128.197.0/24 maxlen: 24 162.128.198.0/24 maxlen: 24 162.128.199.0/24 maxlen: 24 162.128.200.0/24 maxlen: 24 162.128.201.0/24 maxlen: 24 162.128.202.0/24 maxlen: 24 162.128.203.0/24 maxlen: 24 162.128.204.0/24 maxlen: 24 162.128.205.0/24 maxlen: 24 162.128.206.0/24 maxlen: 24 162.128.207.0/24 maxlen: 24 162.128.208.0/24 maxlen: 24 162.128.209.0/24 maxlen: 24 162.128.210.0/24 maxlen: 24 162.128.211.0/24 maxlen: 24 162.128.213.0/24 maxlen: 24 162.128.214.0/24 maxlen: 24 162.128.217.0/24 maxlen: 24 162.128.218.0/24 maxlen: 24 162.128.219.0/24 maxlen: 24 162.128.220.0/24 maxlen: 24 162.128.221.0/24 maxlen: 24 162.128.222.0/24 maxlen: 24 162.128.223.0/24 maxlen: 24 162.128.224.0/24 maxlen: 24 162.128.225.0/24 maxlen: 24 162.128.226.0/24 maxlen: 24 162.128.227.0/24 maxlen: 24 162.128.228.0/24 maxlen: 24 162.128.229.0/24 maxlen: 24 162.128.230.0/24 maxlen: 24 162.128.231.0/24 maxlen: 24 162.128.232.0/24 maxlen: 24 162.128.233.0/24 maxlen: 24 162.128.234.0/24 maxlen: 24 162.128.235.0/24 maxlen: 24 162.128.237.0/24 maxlen: 24 162.128.238.0/24 maxlen: 24 162.128.239.0/24 maxlen: 24 162.128.240.0/24 maxlen: 24 162.128.241.0/24 maxlen: 24 162.128.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2007 (0x7d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Dec 11 11:05:27 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=693aa577-bee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5a:ec:2a:92:03:39:b9:0e:95:37:3f:2b:dc: 9f:40:17:06:99:49:c4:df:55:23:fc:85:a4:69:ca: c0:8e:ea:10:ac:5d:2a:c0:a7:8a:d8:fa:f1:65:4c: d0:08:c2:2c:f5:e4:8a:26:dd:c3:3c:d2:18:78:63: 31:6c:a9:b1:f9:61:f4:a3:7c:5c:da:1e:2e:e2:8a: d5:19:86:b3:20:ef:bf:7a:3d:b3:5b:d1:fc:51:f9: df:51:80:9f:26:35:25:66:c7:29:ef:95:2b:48:a6: 9b:2e:87:7c:d3:27:e3:30:00:22:63:15:8c:ac:9c: 16:07:c8:35:63:ec:48:18:71:3d:d1:7c:52:fd:75: 29:ed:f5:9a:6f:be:85:49:31:f8:ca:77:cf:2d:d9: c7:5f:c0:20:bf:9d:a0:ce:92:fd:03:3f:32:7d:8c: d4:5a:f2:8f:fb:44:36:48:b5:a0:f9:89:39:71:37: e1:d3:1c:3c:c6:ea:40:6a:df:79:3e:f4:e6:9b:1c: 00:25:2f:97:d6:55:49:9c:1f:3e:2a:2d:e4:35:0c: 68:e1:a9:fb:16:c4:5f:f5:38:56:93:d5:4e:0f:c3: 21:6b:ec:ff:73:68:92:a8:ed:c1:9e:bc:07:78:10: 76:83:b9:eb:4d:42:b2:d1:c8:c6:b9:98:84:1d:e3: 18:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:52:51:0D:93:FA:CB:AE:70:45:12:3D:C8:09:66:84:8F:02:34:35 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/B32F80267BD111EBBB223C84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 129.227.17.0-129.227.19.255 129.227.29.0-129.227.31.255 129.227.63.0/24 129.227.176.0/23 129.227.192.0/22 156.59.16.0/22 156.59.48.0/21 156.59.73.0/24 156.59.80.0/21 156.59.94.0/23 156.59.108.0/24 156.59.123.0/24 156.59.128.0/20 156.59.146.0/24 156.59.216.0/24 156.59.224.0/23 156.59.241.0/24 156.59.255.0/24 162.128.43.0-162.128.44.255 162.128.53.0-162.128.63.255 162.128.140.0/24 162.128.149.0-162.128.151.255 162.128.186.0/24 162.128.196.0-162.128.211.255 162.128.213.0-162.128.214.255 162.128.217.0-162.128.235.255 162.128.237.0-162.128.241.255 162.128.254.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:21:4c:42:7d:a0:f0:d9:1c:8e:6f:3c:2f:e0:3b:10:27:e0: 11:b9:28:ad:bc:8f:6f:c1:7a:97:8d:ca:4b:28:1c:57:80:eb: 17:8d:9a:19:ca:c5:64:5a:5c:ab:06:90:6c:5b:5a:b3:70:9a: c7:9d:4d:8c:10:9e:92:9b:00:58:61:80:9e:88:49:cd:7f:77: 44:73:ee:2e:2d:72:dc:9b:41:d6:b1:40:66:ca:13:68:dc:83: 98:45:76:8e:b0:b3:14:57:a7:15:ff:a5:56:ad:b0:b1:0e:31: 4f:f3:11:b5:90:1a:43:d1:3e:79:28:1e:ce:a4:53:8b:40:39: 04:55:59:4f:7c:4f:1c:06:5d:32:12:35:5e:b1:68:00:12:39: dc:8d:72:17:1d:a0:9a:bf:b1:f8:98:3f:a9:83:b7:33:9e:b4: 08:1f:38:26:98:04:cf:f4:b9:2a:72:33:bb:93:13:36:3a:15: ee:67:2b:58:14:ea:e7:cf:0d:e7:b1:06:1f:1d:e7:b3:f0:c1: 69:7f:a6:86:79:83:9c:f5:c7:ca:7d:e5:b8:0b:d3:f9:a1:a2: 82:eb:46:69:b8:ee:1b:f5:3e:04:29:14:70:74:e3:2d:86:b6: 8c:ef:04:ad:22:18:38:7c:0e:0a:92:19:fb:e1:ca:1b:3f:fd: f5:29:7f:32 -----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgICB9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjUxMjExMTEwNTI3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNhYTU3Ny1iZWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FrsKpIDObkOlTc/K9yfQBcGmUnE31Uj/IWkacrAjuoQrF0qwKeK2PrxZUzQ CMIs9eSKJt3DPNIYeGMxbKmx+WH0o3xc2h4u4orVGYazIO+/ej2zW9H8UfnfUYCf JjUlZscp75UrSKabLod80yfjMAAiYxWMrJwWB8g1Y+xIGHE90XxS/XUp7fWab76F STH4ynfPLdnHX8Agv52gzpL9Az8yfYzUWvKP+0Q2SLWg+Yk5cTfh0xw8xupAat95 PvTmmxwAJS+X1lVJnB8+Ki3kNQxo4an7FsRf9ThWk9VOD8Mha+z/c2iSqO3BnrwH eBB2g7nrTUKy0cjGuZiEHeMYlQIDAQABo4IDhTCCA4EwHQYDVR0OBBYEFIBSUQ2T +suucEUSPcgJZoSPAjQ1MB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvQjMyRjgwMjY3 QkQxMTFFQkJCMjIzQzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggENBggrBgEFBQcBBwEB /wSB/TCB+jCB9wQCAAEwgfAwDAMEAIHjEQMEAoHjEDAMAwQAgeMdAwQFgeMAAwQA geM/AwQBgeOwAwQCgePAAwQCnDsQAwQDnDswAwQAnDtJAwQDnDtQAwQBnDteAwQA nDtsAwQAnDt7AwQEnDuAAwQAnDuSAwQAnDvYAwQBnDvgAwQAnDvxAwQAnDv/MAwD BACigCsDBACigCwwDAMEAKKANQMEBqKAAAMEAKKAjDAMAwQAooCVAwQDooCQAwQA ooC6MAwDBAKigMQDBAKigNAwDAMEAKKA1QMEAKKA1jAMAwQAooDZAwQCooDoMAwD BACigO0DBAGigPADBACigP4wDQYJKoZIhvcNAQELBQADggEBAJwhTEJ9oPDZHI5v PC/gOxAn4BG5KK28j2/BepeNyksoHFeA6xeNmhnKxWRaXKsGkGxbWrNwmsedTYwQ npKbAFhhgJ6ISc1/d0Rz7i4tctybQdaxQGbKE2jcg5hFdo6wsxRXpxX/pVatsLEO MU/zEbWQGkPRPnkoHs6kU4tAOQRVWU98TxwGXTISNV6xaAASOdyNchcdoJq/sfiY P6mDtzOetAgfOCaYBM/0uSpyM7uTEzY6Fe5nK1gU6ufPDeexBh8d57PwwWl/poZ5 g5z1x8p95bgL0/mhooLrRmm47hv1PgQpFHB04y2GtozvBK0iGDh8DgqSGfvhyhs/ /fUpfzI= -----END CERTIFICATE-----Generated at Sun Dec 21 18:07:49 2025 by rpki-client