This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/4965F84CAFC011EF82BB1055C4F9AE02.roa File: 4965F84CAFC011EF82BB1055C4F9AE02.roa (raw, json) Hash identifier: 8YAiDz51IhiZ3/LyDkdEcZ6UuqFMuj+zIvbwZUX+Mu4= Subject key identifier: 70:40:40:38:A2:3F:3D:5E:0F:43:5A:1A:B7:7A:6C:87:13:50:7D:D2 Certificate issuer: /CN=A91EE5E5/serialNumber=69236E5996300A2FD785EF85783C5C29C5B4E874 Certificate serial: C6 Authority key identifier: 69:23:6E:59:96:30:0A:2F:D7:85:EF:85:78:3C:5C:29:C5:B4:E8:74 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/4965F84CAFC011EF82BB1055C4F9AE02.roa Signing time: Mon 15 Dec 2025 05:24:58 +0000 ROA not before: Mon 15 Dec 2025 05:24:58 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 153391 IP address blocks: 160.191.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:58:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5, serialNumber=69236E5996300A2FD785EF85783C5C29C5B4E874 Validity Not Before: Dec 15 05:24:58 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=693f9baa-effd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f4:ea:e1:aa:b9:8e:ae:23:b8:8d:b9:bc:d1: 2c:57:b5:20:56:0a:37:4c:81:30:cc:fe:c9:c5:11: 42:23:f0:3f:49:ac:82:cd:f6:84:5b:be:29:42:c9: 73:8b:eb:a8:c1:cb:5b:4a:36:f4:56:fc:3f:de:a9: e0:ca:6b:65:b5:6a:0a:e1:17:bb:0d:c6:79:a5:77: 65:ef:c9:42:eb:6b:ed:3c:1f:65:72:e7:2a:ad:ae: 20:b0:67:31:d0:b1:39:0d:35:ac:b0:25:1a:c7:91: 11:0c:68:e9:04:4f:72:37:2f:c5:69:2f:f0:d0:58: f5:1b:ff:58:13:7d:fd:a2:9d:3a:dc:a4:64:ce:4f: e3:da:3e:86:2a:0d:40:a6:c2:5e:a7:7b:ca:52:b5: 90:e7:fa:54:73:a0:30:24:ad:8c:80:b6:26:05:42: ac:f2:57:8d:5b:6d:1c:79:a0:49:44:b1:47:98:f2: 38:ad:05:69:0b:46:32:a1:2a:d2:67:fd:d7:96:10: a0:93:f5:1d:89:21:e2:28:44:c6:89:6f:4c:f6:80: 11:9e:de:6a:38:ed:40:a6:91:f6:c6:df:fc:4f:c9: 73:b2:e0:92:e6:78:e1:e2:1a:f3:e8:84:1b:88:c4: c0:57:89:75:87:40:4c:ff:1c:80:58:71:5e:37:9d: b1:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:40:40:38:A2:3F:3D:5E:0F:43:5A:1A:B7:7A:6C:87:13:50:7D:D2 X509v3 Authority Key Identifier: keyid:69:23:6E:59:96:30:0A:2F:D7:85:EF:85:78:3C:5C:29:C5:B4:E8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/4965F84CAFC011EF82BB1055C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.156.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:02:91:17:38:bf:5f:82:ba:3a:7e:b1:e9:85:9a:39:e5:87: 23:2d:60:9a:4c:c9:88:03:6e:81:dc:76:39:44:b8:01:89:f3: 75:f0:3b:94:fd:9b:09:d1:0b:48:f2:f1:51:c6:0a:17:cd:fa: 62:f3:30:de:a5:55:1a:24:4d:ef:a3:db:9e:f0:81:2f:5f:76: 17:80:16:d8:36:e0:39:f7:10:61:e2:04:87:ab:23:21:b3:76: 5f:95:e3:7c:b6:9c:7b:30:df:05:80:c0:56:89:7a:bb:a9:b9: eb:21:c1:7b:57:f8:e5:5d:95:3e:a2:67:cb:5d:d0:e7:26:8e: 72:e4:8f:52:e2:50:77:2f:ce:68:1c:29:56:36:89:a5:cb:ea: 3e:98:f6:dd:2a:2f:6d:3a:dd:23:30:d8:7b:85:9a:ab:7d:8c: 07:46:53:26:15:79:ba:9d:10:ce:3c:78:6e:38:6b:b7:b9:53: 82:d7:a3:ae:0c:e8:f1:d7:84:d9:6a:f3:9d:ed:94:69:d0:a0: 70:27:a5:6b:86:1c:40:5e:c8:f7:80:02:13:28:8c:da:52:52: fd:8a:8a:a0:e8:bd:65:05:bc:b5:c0:15:a4:a9:cf:d7:26:83: 13:7e:b3:ed:69:b3:db:51:88:19:82:62:d1:92:a7:c0:1c:27: ba:7e:28:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU1RTUxMTAvBgNVBAUTKDY5MjM2RTU5OTYzMDBBMkZENzg1RUY4NTc4M0M1QzI5 QzVCNEU4NzQwHhcNMjUxMjE1MDUyNDU4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNmOWJhYS1lZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfTq4aq5jq4juI25vNEsV7UgVgo3TIEwzP7JxRFCI/A/SayCzfaEW74pQslz i+uowctbSjb0Vvw/3qngymtltWoK4Re7DcZ5pXdl78lC62vtPB9lcucqra4gsGcx 0LE5DTWssCUax5ERDGjpBE9yNy/FaS/w0Fj1G/9YE339op063KRkzk/j2j6GKg1A psJep3vKUrWQ5/pUc6AwJK2MgLYmBUKs8leNW20ceaBJRLFHmPI4rQVpC0YyoSrS Z/3XlhCgk/UdiSHiKETGiW9M9oARnt5qOO1AppH2xt/8T8lzsuCS5njh4hrz6IQb iMTAV4l1h0BM/xyAWHFeN52xvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHBAQDii Pz1eD0NaGrd6bIcTUH3SMB8GA1UdIwQYMBaAFGkjblmWMAov14XvhXg8XCnFtOh0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTVFNS9GMEU3NkUxMkFG QkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9hU051V1pZd0NpX1hoZS1GZUR4Y0tjVzA2 SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FTTnVXWll3Q2lfWGhlLUZlRHhjS2NXMDZIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUU1RTUvRjBFNzZFMTJBRkJGMTFFRkEyOEEzNjU0QzRGOUFFMDIvNDk2NUY4NENB RkMwMTFFRjgyQkIxMDU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgv5wwDQYJKoZIhvcNAQELBQADggEBAA8CkRc4v1+Cujp+ semFmjnlhyMtYJpMyYgDboHcdjlEuAGJ83XwO5T9mwnRC0jy8VHGChfN+mLzMN6l VRokTe+j257wgS9fdheAFtg24Dn3EGHiBIerIyGzdl+V43y2nHsw3wWAwFaJerup ueshwXtX+OVdlT6iZ8td0OcmjnLkj1LiUHcvzmgcKVY2iaXL6j6Y9t0qL2063SMw 2HuFmqt9jAdGUyYVebqdEM48eG44a7e5U4LXo64M6PHXhNlq853tlGnQoHAnpWuG HEBeyPeAAhMojNpSUv2KiqDovWUFvLXAFaSpz9cmgxN+s+1ps9tRiBmCYtGSp8Ac J7p+KNg= -----END CERTIFICATE-----Generated at Sun Dec 21 02:04:52 2025 by rpki-client