This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/B32F80267BD111EBBB223C84C4F9AE02.roa File: B32F80267BD111EBBB223C84C4F9AE02.roa (raw, json) Hash identifier: 9xxfFQj9VcRGVKn72JJkh2kUlC310SJGWCHPDEZwjH0= Subject key identifier: D2:D7:F1:FF:72:6D:D0:33:66:00:C9:CF:1E:9F:2B:14:73:CD:A2:DC Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 07E1 Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/B32F80267BD111EBBB223C84C4F9AE02.roa Signing time: Fri 26 Dec 2025 03:11:17 +0000 ROA not before: Fri 26 Dec 2025 03:11:17 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 21859 IP address blocks: 129.227.17.0/24 maxlen: 24 129.227.18.0/24 maxlen: 24 129.227.19.0/24 maxlen: 24 129.227.29.0/24 maxlen: 24 129.227.30.0/24 maxlen: 24 129.227.31.0/24 maxlen: 24 129.227.63.0/24 maxlen: 24 129.227.176.0/23 maxlen: 24 129.227.192.0/24 maxlen: 24 129.227.193.0/24 maxlen: 24 129.227.194.0/23 maxlen: 24 156.59.16.0/22 maxlen: 24 156.59.48.0/23 maxlen: 24 156.59.50.0/23 maxlen: 24 156.59.52.0/22 maxlen: 24 156.59.73.0/24 maxlen: 24 156.59.80.0/21 maxlen: 24 156.59.94.0/23 maxlen: 24 156.59.108.0/24 maxlen: 24 156.59.123.0/24 maxlen: 24 156.59.128.0/21 maxlen: 24 156.59.136.0/21 maxlen: 24 156.59.146.0/24 maxlen: 24 156.59.216.0/24 maxlen: 24 156.59.224.0/24 maxlen: 24 156.59.225.0/24 maxlen: 24 156.59.241.0/24 maxlen: 24 156.59.255.0/24 maxlen: 24 162.128.43.0/24 maxlen: 24 162.128.44.0/24 maxlen: 24 162.128.53.0/24 maxlen: 24 162.128.54.0/24 maxlen: 24 162.128.55.0/24 maxlen: 24 162.128.56.0/24 maxlen: 24 162.128.57.0/24 maxlen: 24 162.128.58.0/24 maxlen: 24 162.128.59.0/24 maxlen: 24 162.128.60.0/24 maxlen: 24 162.128.61.0/24 maxlen: 24 162.128.62.0/24 maxlen: 24 162.128.63.0/24 maxlen: 24 162.128.140.0/24 maxlen: 24 162.128.149.0/24 maxlen: 24 162.128.150.0/24 maxlen: 24 162.128.151.0/24 maxlen: 24 162.128.186.0/24 maxlen: 24 162.128.196.0/24 maxlen: 24 162.128.197.0/24 maxlen: 24 162.128.198.0/24 maxlen: 24 162.128.199.0/24 maxlen: 24 162.128.200.0/24 maxlen: 24 162.128.201.0/24 maxlen: 24 162.128.202.0/24 maxlen: 24 162.128.203.0/24 maxlen: 24 162.128.204.0/24 maxlen: 24 162.128.205.0/24 maxlen: 24 162.128.206.0/24 maxlen: 24 162.128.207.0/24 maxlen: 24 162.128.208.0/24 maxlen: 24 162.128.209.0/24 maxlen: 24 162.128.210.0/24 maxlen: 24 162.128.211.0/24 maxlen: 24 162.128.213.0/24 maxlen: 24 162.128.214.0/24 maxlen: 24 162.128.217.0/24 maxlen: 24 162.128.218.0/24 maxlen: 24 162.128.219.0/24 maxlen: 24 162.128.220.0/24 maxlen: 24 162.128.221.0/24 maxlen: 24 162.128.222.0/24 maxlen: 24 162.128.223.0/24 maxlen: 24 162.128.224.0/24 maxlen: 24 162.128.225.0/24 maxlen: 24 162.128.226.0/24 maxlen: 24 162.128.227.0/24 maxlen: 24 162.128.228.0/24 maxlen: 24 162.128.229.0/24 maxlen: 24 162.128.230.0/24 maxlen: 24 162.128.231.0/24 maxlen: 24 162.128.232.0/24 maxlen: 24 162.128.233.0/24 maxlen: 24 162.128.234.0/24 maxlen: 24 162.128.235.0/24 maxlen: 24 162.128.237.0/24 maxlen: 24 162.128.238.0/24 maxlen: 24 162.128.239.0/24 maxlen: 24 162.128.240.0/24 maxlen: 24 162.128.241.0/24 maxlen: 24 162.128.242.0/24 maxlen: 24 162.128.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 21:15:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2017 (0x7e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Dec 26 03:11:17 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=694dfcd5-3efa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:05:51:c7:b3:5e:11:8f:d0:aa:e4:24:d1:b0: 40:b0:37:3b:bd:8e:b1:ac:b8:f6:32:1c:5b:2d:2f: bb:98:60:5a:92:5c:40:e6:62:b5:97:cf:bb:2e:e2: 16:e4:65:cf:d9:96:43:52:ec:94:35:e9:f5:60:fc: cd:02:b7:7e:83:d5:a1:64:de:0b:cb:93:d0:df:b3: da:60:3a:9b:83:09:60:bf:31:1e:a9:e1:b8:81:b8: 83:3c:88:f2:1b:2a:c9:4a:03:b8:62:c1:e1:4e:7d: d9:3a:db:d2:91:6d:fd:b8:33:c0:d6:99:dc:5a:f7: a2:42:79:2a:0c:6b:f7:a3:61:d8:b2:58:69:d5:f5: 37:47:dc:91:66:9d:ef:ae:b6:86:a9:61:42:52:92: 72:70:f3:27:dd:59:fd:b7:65:53:ab:1e:3e:e0:c4: f4:0d:13:07:d5:db:7f:f7:ce:d5:9c:00:6b:4b:16: 66:33:ca:58:88:f8:7e:9c:cb:c2:4a:f5:43:ac:fe: ff:57:51:a1:5d:0d:27:79:bb:78:46:58:3b:68:71: 22:df:fc:67:4b:99:2b:b3:ca:cf:71:8e:d0:f3:ea: 32:c7:f0:a7:ed:4b:d3:1b:20:66:cf:08:9a:c1:31: bc:81:f4:28:8d:bb:75:c5:52:2a:03:58:27:4a:4e: 85:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D7:F1:FF:72:6D:D0:33:66:00:C9:CF:1E:9F:2B:14:73:CD:A2:DC X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/B32F80267BD111EBBB223C84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 129.227.17.0-129.227.19.255 129.227.29.0-129.227.31.255 129.227.63.0/24 129.227.176.0/23 129.227.192.0/22 156.59.16.0/22 156.59.48.0/21 156.59.73.0/24 156.59.80.0/21 156.59.94.0/23 156.59.108.0/24 156.59.123.0/24 156.59.128.0/20 156.59.146.0/24 156.59.216.0/24 156.59.224.0/23 156.59.241.0/24 156.59.255.0/24 162.128.43.0-162.128.44.255 162.128.53.0-162.128.63.255 162.128.140.0/24 162.128.149.0-162.128.151.255 162.128.186.0/24 162.128.196.0-162.128.211.255 162.128.213.0-162.128.214.255 162.128.217.0-162.128.235.255 162.128.237.0-162.128.242.255 162.128.254.0/24 Signature Algorithm: sha256WithRSAEncryption 01:e8:16:39:f5:72:fa:f1:d9:d4:97:87:d9:1b:87:44:70:92: 30:5e:00:ae:83:72:8d:24:6d:eb:d2:97:3c:2e:da:4e:da:58: 3f:83:6b:da:83:19:6a:a2:4b:0a:4e:09:ef:10:8e:00:a6:cb: 8c:61:8d:75:6b:b6:ae:e9:e9:73:a6:93:76:a3:a6:68:a1:56: db:e0:e0:bb:be:a4:63:64:44:f6:10:0c:46:89:7d:76:9c:83: 38:64:db:a0:f2:c2:e3:e4:a4:1f:f9:73:da:8b:e0:75:8c:1e: fa:58:7e:e1:ca:16:b2:42:5e:0a:fb:9d:80:b1:e4:8b:b1:a2: b0:5a:2f:d1:11:ed:ba:9a:b5:4b:b4:4a:c2:ee:82:c9:0d:b9: 8e:a3:16:b4:bf:01:d2:53:80:19:ae:1a:b9:74:69:75:75:d3: 33:6e:4b:b1:21:c2:56:d9:f0:8c:e3:40:66:e1:45:3f:3a:79: 73:4f:7e:de:fb:f7:e2:f7:06:42:06:47:a0:50:08:c9:99:a6: 11:4f:0c:a0:2b:21:90:56:e8:1b:49:f8:e6:0f:2a:3d:d6:8d: 76:e5:60:9c:fb:10:08:c9:b1:7d:77:f3:83:b8:df:76:d2:9b: 06:81:7d:02:3a:ee:2d:2a:47:fc:da:1c:f1:40:a3:62:bf:08: f5:90:ff:db -----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgICB+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjUxMjI2MDMxMTE3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTRkZmNkNS0zZWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wVRx7NeEY/QquQk0bBAsDc7vY6xrLj2MhxbLS+7mGBaklxA5mK1l8+7LuIW 5GXP2ZZDUuyUNen1YPzNArd+g9WhZN4Ly5PQ37PaYDqbgwlgvzEeqeG4gbiDPIjy GyrJSgO4YsHhTn3ZOtvSkW39uDPA1pncWveiQnkqDGv3o2HYslhp1fU3R9yRZp3v rraGqWFCUpJycPMn3Vn9t2VTqx4+4MT0DRMH1dt/987VnABrSxZmM8pYiPh+nMvC SvVDrP7/V1GhXQ0nebt4Rlg7aHEi3/xnS5krs8rPcY7Q8+oyx/Cn7UvTGyBmzwia wTG8gfQojbt1xVIqA1gnSk6FjwIDAQABo4IDhTCCA4EwHQYDVR0OBBYEFNLX8f9y bdAzZgDJzx6fKxRzzaLcMB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvQjMyRjgwMjY3 QkQxMTFFQkJCMjIzQzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggENBggrBgEFBQcBBwEB /wSB/TCB+jCB9wQCAAEwgfAwDAMEAIHjEQMEAoHjEDAMAwQAgeMdAwQFgeMAAwQA geM/AwQBgeOwAwQCgePAAwQCnDsQAwQDnDswAwQAnDtJAwQDnDtQAwQBnDteAwQA nDtsAwQAnDt7AwQEnDuAAwQAnDuSAwQAnDvYAwQBnDvgAwQAnDvxAwQAnDv/MAwD BACigCsDBACigCwwDAMEAKKANQMEBqKAAAMEAKKAjDAMAwQAooCVAwQDooCQAwQA ooC6MAwDBAKigMQDBAKigNAwDAMEAKKA1QMEAKKA1jAMAwQAooDZAwQCooDoMAwD BACigO0DBACigPIDBACigP4wDQYJKoZIhvcNAQELBQADggEBAAHoFjn1cvrx2dSX h9kbh0RwkjBeAK6Dco0kbevSlzwu2k7aWD+Da9qDGWqiSwpOCe8QjgCmy4xhjXVr tq7p6XOmk3ajpmihVtvg4Lu+pGNkRPYQDEaJfXacgzhk26DywuPkpB/5c9qL4HWM HvpYfuHKFrJCXgr7nYCx5IuxorBaL9ER7bqatUu0SsLugskNuY6jFrS/AdJTgBmu Grl0aXV10zNuS7EhwlbZ8IzjQGbhRT86eXNPft779+L3BkIGR6BQCMmZphFPDKAr IZBW6BtJ+OYPKj3WjXblYJz7EAjJsX1384O433bSmwaBfQI67i0qR/zaHPFAo2K/ CPWQ/9s= -----END CERTIFICATE-----Generated at Tue Jan 13 03:43:40 2026 by rpki-client