This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C45/876830B8892E11F097AC662FC4F9AE02/8A80B8D69A1011F0AC6E9127C4F9AE02.roa File: 8A80B8D69A1011F0AC6E9127C4F9AE02.roa (raw, json) Hash identifier: 3KtlQ3ZGWpo6lSVpXOhuBEhvmPgoGloVI0nW1v7TibU= Subject key identifier: 90:92:A5:1D:54:DA:AA:72:84:00:68:57:7D:B1:E1:87:6C:A8:3B:67 Certificate issuer: /CN=A91F0C45/serialNumber=0A3C7B384996E1AF57958545394EDB3E20DBEE9E Certificate serial: 3D Authority key identifier: 0A:3C:7B:38:49:96:E1:AF:57:95:85:45:39:4E:DB:3E:20:DB:EE:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Cjx7OEmW4a9XlYVFOU7bPiDb7p4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C45/876830B8892E11F097AC662FC4F9AE02/8A80B8D69A1011F0AC6E9127C4F9AE02.roa Signing time: Sat 13 Dec 2025 07:25:25 +0000 ROA not before: Sat 13 Dec 2025 07:25:25 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 7575 IP address blocks: 139.230.0.0/16 maxlen: 16 139.230.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C45/876830B8892E11F097AC662FC4F9AE02/Cjx7OEmW4a9XlYVFOU7bPiDb7p4.crl rsync://rpki.apnic.net/member_repository/A91F0C45/876830B8892E11F097AC662FC4F9AE02/Cjx7OEmW4a9XlYVFOU7bPiDb7p4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Cjx7OEmW4a9XlYVFOU7bPiDb7p4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 06:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C45, serialNumber=0A3C7B384996E1AF57958545394EDB3E20DBEE9E Validity Not Before: Dec 13 07:25:25 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=693d14e5-de96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f9:af:88:2a:6c:b0:9c:22:33:d6:9e:03:08: 2b:76:07:fe:fe:16:fc:c7:63:75:44:43:ff:4e:44: 2f:54:e6:3e:af:44:3e:5a:07:8c:0d:0a:f2:c2:97: f5:3b:b9:06:b6:ca:28:14:0a:79:5b:2b:53:20:61: b1:a5:df:43:37:3e:58:dc:cb:5a:ab:3e:4a:a6:c3: af:62:7b:6e:e9:f1:41:b0:22:db:59:39:6c:88:9e: 95:5b:fd:1a:aa:77:e4:01:ec:9d:4c:6f:d7:6a:9e: 08:32:dc:61:ad:80:df:94:a5:0c:20:be:d6:4d:13: 01:84:a9:04:7f:27:69:1a:8e:32:ff:5d:ce:02:92: e1:9f:ba:44:11:23:e7:7f:f7:04:c1:10:f4:41:18: 50:8a:fa:fe:21:f1:a6:28:72:9d:e5:6a:dd:2c:ed: f7:60:d5:cb:3e:90:7f:75:d8:d8:94:63:48:4e:4e: b2:fe:a8:a0:6e:25:b3:af:7b:c2:59:9f:48:c1:13: 28:89:2e:9e:1c:90:64:a0:f1:20:b9:ff:30:a0:ed: 47:de:83:eb:c7:ee:9b:5c:07:76:3a:9e:e6:32:c1: 65:ea:e3:3b:ce:14:ad:40:e0:47:e1:52:38:44:5f: fb:18:f2:e2:ec:28:57:87:48:d8:de:4e:5a:30:ef: be:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:92:A5:1D:54:DA:AA:72:84:00:68:57:7D:B1:E1:87:6C:A8:3B:67 X509v3 Authority Key Identifier: keyid:0A:3C:7B:38:49:96:E1:AF:57:95:85:45:39:4E:DB:3E:20:DB:EE:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C45/876830B8892E11F097AC662FC4F9AE02/Cjx7OEmW4a9XlYVFOU7bPiDb7p4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Cjx7OEmW4a9XlYVFOU7bPiDb7p4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C45/876830B8892E11F097AC662FC4F9AE02/8A80B8D69A1011F0AC6E9127C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.230.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2c:97:49:6b:07:c8:42:a0:f1:97:0a:bb:ac:59:08:48:84:2c: 6a:b3:61:da:c3:82:9b:f0:67:f3:91:35:27:b1:ca:a5:16:7a: e5:8c:c0:0c:a2:5f:cb:34:d5:70:57:86:f1:cd:8c:4d:f5:8a: 21:ec:88:d5:23:e3:7a:08:7c:ae:8f:b3:ea:76:72:40:eb:1d: 0a:9d:b3:31:59:ac:0d:79:40:50:44:da:60:66:c5:85:9c:3a: 16:68:94:dc:0c:12:3a:dd:7f:cc:75:9c:e3:3c:80:a0:45:c0: 63:b7:d8:57:5d:9a:d1:ed:f2:3c:c6:9d:1f:9a:62:c6:b3:12: 19:0d:d8:1b:ff:68:17:43:88:49:9c:45:6f:e0:62:2c:43:7e: 99:e2:b8:32:04:a4:52:ad:78:7c:f5:cf:b6:24:04:cc:9e:e2: e9:5d:2a:e3:82:76:aa:9a:0f:ba:42:35:87:22:15:34:08:7d: 1e:5d:02:04:1c:df:c2:a4:16:64:a5:b0:d4:d1:42:08:ec:8d: 87:86:6b:47:93:6c:72:9d:41:1d:78:78:31:5e:28:98:86:93: 7b:12:5f:81:70:68:c8:5d:4c:da:7f:0a:7b:bb:a0:55:0a:c1: d0:63:9a:a9:29:76:8d:c1:ce:2a:a3:bb:50:c0:cf:31:2d:8d: 69:30:d5:6f -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MEM0NTExMC8GA1UEBRMoMEEzQzdCMzg0OTk2RTFBRjU3OTU4NTQ1Mzk0RURCM0Uy MERCRUU5RTAeFw0yNTEyMTMwNzI1MjVaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMMDTY5M2QxNGU1LWRlOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCe+a+IKmywnCIz1p4DCCt2B/7+FvzHY3VEQ/9ORC9U5j6vRD5aB4wNCvLCl/U7 uQa2yigUCnlbK1MgYbGl30M3Pljcy1qrPkqmw69ie27p8UGwIttZOWyInpVb/Rqq d+QB7J1Mb9dqnggy3GGtgN+UpQwgvtZNEwGEqQR/J2kajjL/Xc4CkuGfukQRI+d/ 9wTBEPRBGFCK+v4h8aYocp3lat0s7fdg1cs+kH912NiUY0hOTrL+qKBuJbOve8JZ n0jBEyiJLp4ckGSg8SC5/zCg7Ufeg+vH7ptcB3Y6nuYywWXq4zvOFK1A4EfhUjhE X/sY8uLsKFeHSNjeTlow775FAgMBAAGjggKUMIICkDAdBgNVHQ4EFgQUkJKlHVTa qnKEAGhXfbHhh2yoO2cwHwYDVR0jBBgwFoAUCjx7OEmW4a9XlYVFOU7bPiDb7p4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwQzQ1Lzg3NjgzMEI4ODky RTExRjA5N0FDNjYyRkM0RjlBRTAyL0NqeDdPRW1XNGE5WGxZVkZPVTdiUGlEYjdw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ2p4N09FbVc0YTlYbFlWRk9VN2JQaURiN3A0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM0NS84NzY4MzBCODg5MkUxMUYwOTdBQzY2MkZDNEY5QUUwMi84QTgwQjhENjlB MTAxMUYwQUM2RTkxMjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQP MA0wCwQCAAEwBQMDAIvmMA0GCSqGSIb3DQEBCwUAA4IBAQAsl0lrB8hCoPGXCrus WQhIhCxqs2Haw4Kb8GfzkTUnscqlFnrljMAMol/LNNVwV4bxzYxN9Yoh7IjVI+N6 CHyuj7PqdnJA6x0KnbMxWawNeUBQRNpgZsWFnDoWaJTcDBI63X/MdZzjPICgRcBj t9hXXZrR7fI8xp0fmmLGsxIZDdgb/2gXQ4hJnEVv4GIsQ36Z4rgyBKRSrXh89c+2 JATMnuLpXSrjgnaqmg+6QjWHIhU0CH0eXQIEHN/CpBZkpbDU0UII7I2HhmtHk2xy nUEdeHgxXiiYhpN7El+BcGjIXUzafwp7u6BVCsHQY5qpKXaNwc4qo7tQwM8xLY1p MNVv -----END CERTIFICATE-----Generated at Sun Dec 21 11:29:57 2025 by rpki-client