This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/D56B4ABED54E11EFAD8C4E52C4F9AE02.roa File: D56B4ABED54E11EFAD8C4E52C4F9AE02.roa (raw, json) Hash identifier: A43/xgJTGYeraFwPZtUL84bZHCq+gEn3dFwYExX8W/g= Subject key identifier: 79:E8:E0:C0:CB:0A:22:ED:3A:99:62:22:39:96:F7:7B:6B:FE:E8:B0 Certificate issuer: /CN=A91F1446/serialNumber=B5D33A7A32A5082D336B6B05B7965F307470A276 Certificate serial: 03A5 Authority key identifier: B5:D3:3A:7A:32:A5:08:2D:33:6B:6B:05:B7:96:5F:30:74:70:A2:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/D56B4ABED54E11EFAD8C4E52C4F9AE02.roa Signing time: Fri 28 Nov 2025 23:26:18 +0000 ROA not before: Fri 28 Nov 2025 23:26:18 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 153494 IP address blocks: 43.241.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.crl rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 933 (0x3a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1446, serialNumber=B5D33A7A32A5082D336B6B05B7965F307470A276 Validity Not Before: Nov 28 23:26:18 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692a2f99-fdcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bb:ed:95:39:ad:e5:2a:43:cf:49:c0:74:c9: e2:1b:7e:e3:82:1d:59:22:9a:71:95:a9:97:52:0b: de:ec:07:82:80:70:3f:d3:d4:38:45:dc:04:10:2c: 02:16:7c:88:d4:a9:dd:e3:55:76:67:e7:69:ed:d3: 79:d2:e0:23:9f:ca:7f:cf:5d:42:dd:26:ca:16:ff: b6:b6:ae:3e:1c:ad:52:45:64:7b:a3:e2:85:e8:c8: 83:61:f0:4f:59:db:e1:5a:08:28:68:b7:22:b2:8c: a8:35:f4:da:2e:a5:e7:e7:1d:df:ab:52:6b:2f:0c: f3:61:cf:c8:47:90:c8:46:34:cd:5a:cd:9d:4e:fa: b7:0a:f8:55:b8:31:f4:51:e9:5d:51:18:b0:25:f6: f1:f9:0e:7e:4f:aa:fc:20:43:9f:26:c8:11:64:eb: b5:a0:a4:8b:f7:3c:40:fb:ce:6c:a6:7b:fd:57:ce: 1e:d3:ba:ed:d6:fc:1b:4a:5b:3e:f9:64:db:79:7b: 98:ff:80:b2:1c:cc:7b:ef:8d:fa:37:d4:14:3e:4e: 5a:48:22:5c:3d:cd:71:2d:9a:cc:d5:30:59:47:90: e3:21:37:ff:07:20:a5:64:e1:1a:d3:f7:c3:ac:a0: 07:e0:ae:4b:18:ba:f6:57:39:09:b2:6c:f0:b9:e5: 70:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:E8:E0:C0:CB:0A:22:ED:3A:99:62:22:39:96:F7:7B:6B:FE:E8:B0 X509v3 Authority Key Identifier: keyid:B5:D3:3A:7A:32:A5:08:2D:33:6B:6B:05:B7:96:5F:30:74:70:A2:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/D56B4ABED54E11EFAD8C4E52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.252.0/22 Signature Algorithm: sha256WithRSAEncryption 51:f2:52:e1:68:90:48:0c:91:58:70:08:0c:fe:98:d9:f9:e9: 27:88:e2:97:80:03:61:2f:c9:d3:f4:16:04:ac:0c:20:45:36: f2:1c:bb:e7:17:c2:25:ce:33:31:d7:87:7f:bb:50:cc:39:38: 46:98:ea:a7:17:f3:dd:95:fd:da:b5:fc:ec:31:84:b6:3a:88: b2:20:6d:cc:2e:c8:9b:4b:5d:10:c6:4b:13:38:44:1e:e1:31: ce:0c:38:b2:30:40:b1:a3:45:83:a6:30:84:01:f1:22:1c:91: 3c:06:04:3a:f1:3b:e9:7f:56:ce:d0:4b:0d:69:63:cf:8f:16: 21:f7:8d:92:de:b6:d5:ee:65:bb:4d:0b:1b:33:e5:30:f4:12: b1:ca:f8:ce:53:0b:34:4e:8b:81:b9:38:b3:e3:85:db:9a:bf: 83:5f:00:73:9e:44:ec:d1:29:f7:70:65:80:1c:0b:97:9a:1d: 1a:b4:19:82:21:20:dc:c0:4b:85:aa:05:fd:d6:19:ae:c0:6c: 38:ac:81:76:38:48:82:8c:8f:56:3c:a8:e3:cd:98:ad:3e:44: 20:e0:61:0b:d8:a5:c6:03:61:88:28:2f:44:de:48:d7:b5:47: 85:79:f8:ee:94:a7:39:c7:01:17:a0:5a:a4:20:6d:1d:73:28: 24:f2:2a:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0NDYxMTAvBgNVBAUTKEI1RDMzQTdBMzJBNTA4MkQzMzZCNkIwNUI3OTY1RjMw NzQ3MEEyNzYwHhcNMjUxMTI4MjMyNjE4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJhMmY5OS1mZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7vtlTmt5SpDz0nAdMniG37jgh1ZIppxlamXUgve7AeCgHA/09Q4RdwEECwC FnyI1Knd41V2Z+dp7dN50uAjn8p/z11C3SbKFv+2tq4+HK1SRWR7o+KF6MiDYfBP WdvhWggoaLcisoyoNfTaLqXn5x3fq1JrLwzzYc/IR5DIRjTNWs2dTvq3CvhVuDH0 UeldURiwJfbx+Q5+T6r8IEOfJsgRZOu1oKSL9zxA+85spnv9V84e07rt1vwbSls+ +WTbeXuY/4CyHMx77436N9QUPk5aSCJcPc1xLZrM1TBZR5DjITf/ByClZOEa0/fD rKAH4K5LGLr2VzkJsmzwueVwNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHno4MDL CiLtOpliIjmW93tr/uiwMB8GA1UdIwQYMBaAFLXTOnoypQgtM2trBbeWXzB0cKJ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ0Ni8yQTFGRjU2RUM1 MzUxMUVDOEU1QTAzMTNDNEY5QUUwMi90ZE02ZWpLbENDMHphMnNGdDVaZk1IUndv blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RkTTZlaktsQ0MwemEyc0Z0NVpmTUhSd29uWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE0NDYvMkExRkY1NkVDNTM1MTFFQzhFNUEwMzEzQzRGOUFFMDIvRDU2QjRBQkVE NTRFMTFFRkFEOEM0RTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr8fwwDQYJKoZIhvcNAQELBQADggEBAFHyUuFokEgMkVhw CAz+mNn56SeI4peAA2EvydP0FgSsDCBFNvIcu+cXwiXOMzHXh3+7UMw5OEaY6qcX 892V/dq1/OwxhLY6iLIgbcwuyJtLXRDGSxM4RB7hMc4MOLIwQLGjRYOmMIQB8SIc kTwGBDrxO+l/Vs7QSw1pY8+PFiH3jZLettXuZbtNCxsz5TD0ErHK+M5TCzROi4G5 OLPjhduav4NfAHOeROzRKfdwZYAcC5eaHRq0GYIhINzAS4WqBf3WGa7AbDisgXY4 SIKMj1Y8qOPNmK0+RCDgYQvYpcYDYYgoL0TeSNe1R4V5+O6UpznHARegWqQgbR1z KCTyKgs= -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:36 2025 by rpki-client