This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/96AD16C6B5FA11F0A1583C84C4F9AE02.roa File: 96AD16C6B5FA11F0A1583C84C4F9AE02.roa (raw, json) Hash identifier: 0qBnUzysqGQg67Ra8ArxlbofQac6pmf9MQe1rQL2Oe8= Subject key identifier: 99:76:C5:01:C2:8E:F4:EA:8B:2D:82:D4:EC:C4:05:7B:4C:8B:0A:27 Certificate issuer: /CN=A91139AB/serialNumber=C1424C4CCC59C9A031BE1ACDF7982D87AB57D068 Certificate serial: 19 Authority key identifier: C1:42:4C:4C:CC:59:C9:A0:31:BE:1A:CD:F7:98:2D:87:AB:57:D0:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUJMTMxZyaAxvhrN95gth6tX0Gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/96AD16C6B5FA11F0A1583C84C4F9AE02.roa Signing time: Tue 02 Dec 2025 20:53:30 +0000 ROA not before: Tue 02 Dec 2025 20:53:30 +0000 ROA not after: Mon 30 Mar 2026 00:00:00 +0000 asID: 4857 IP address blocks: 202.147.96.0/20 maxlen: 20 202.147.112.0/20 maxlen: 24 203.82.160.0/20 maxlen: 24 203.82.176.0/20 maxlen: 24 203.201.64.0/20 maxlen: 24 203.201.80.0/20 maxlen: 24 203.201.96.0/20 maxlen: 20 203.201.112.0/20 maxlen: 24 221.120.128.0/20 maxlen: 24 221.120.144.0/24 maxlen: 24 221.120.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/wUJMTMxZyaAxvhrN95gth6tX0Gg.crl rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/wUJMTMxZyaAxvhrN95gth6tX0Gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUJMTMxZyaAxvhrN95gth6tX0Gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 20:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91139AB, serialNumber=C1424C4CCC59C9A031BE1ACDF7982D87AB57D068 Validity Not Before: Dec 2 20:53:30 2025 GMT Not After : Mar 30 00:00:00 2026 GMT Subject: CN=692f51c9-140c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:13:e1:ca:da:1f:47:55:e3:d8:5f:78:a8:9e: 6b:c1:3a:5d:a5:d3:f8:0e:00:2e:0a:18:9f:52:a1: a3:06:8a:de:cd:79:5c:44:ea:e2:58:0a:d4:34:61: e8:bd:51:cf:ae:8a:45:6e:df:33:d4:b6:78:de:9b: 4d:da:35:a2:0e:11:e2:f8:e8:3b:92:02:49:de:62: 06:f3:5d:50:5f:73:68:c7:0b:55:08:13:c0:55:60: dd:ea:95:f7:67:70:8e:8a:c7:30:ce:ca:72:bd:b5: 3b:22:a0:b3:c1:b0:c8:3f:cc:1c:37:82:78:04:56: c6:0d:58:2c:16:71:5d:d8:b0:b0:2c:53:df:c1:48: 75:a5:22:10:0f:78:e1:fc:f1:b1:e7:d0:09:e1:3c: 54:63:d6:b5:ea:0e:3b:b4:07:7e:9f:35:91:87:2c: 17:3e:83:07:71:1a:2b:e0:29:0f:0c:93:5b:da:6d: 4c:b9:52:56:59:cd:47:94:44:95:37:c5:33:93:10: 1b:67:74:b8:bc:a6:ae:37:69:8c:2c:c7:06:d1:c6: 7e:4e:f3:8a:34:5a:bd:ba:f5:07:5a:92:b0:93:1b: 59:d6:89:0d:71:8c:07:54:98:01:f3:68:9f:15:70: 4e:60:7e:b9:80:91:75:5b:c1:b5:86:32:53:6d:d7: d8:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:76:C5:01:C2:8E:F4:EA:8B:2D:82:D4:EC:C4:05:7B:4C:8B:0A:27 X509v3 Authority Key Identifier: keyid:C1:42:4C:4C:CC:59:C9:A0:31:BE:1A:CD:F7:98:2D:87:AB:57:D0:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/wUJMTMxZyaAxvhrN95gth6tX0Gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUJMTMxZyaAxvhrN95gth6tX0Gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/96AD16C6B5FA11F0A1583C84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.147.96.0/19 203.82.160.0/19 203.201.64.0/18 221.120.128.0-221.120.145.255 Signature Algorithm: sha256WithRSAEncryption 17:ca:bd:fc:51:09:2f:f9:93:fc:01:fa:51:87:e9:07:1d:a5: cf:34:8c:82:37:b7:f8:4a:82:d9:0c:38:a3:07:3e:4e:5b:8e: 98:b2:32:8e:d2:90:6e:80:f5:80:ae:89:e4:8b:5c:10:78:ae: dc:85:65:8e:62:70:b7:52:f4:fa:ce:1c:fe:39:9b:25:28:37: 8a:60:ae:85:6a:c9:99:32:f7:9e:78:f8:b8:a5:5b:d9:7e:15: 46:b4:d4:b9:12:ba:be:0b:2c:a7:7c:f9:1f:ff:20:39:5a:96: a5:c0:5a:84:89:08:54:43:c5:66:73:a4:14:73:89:76:4a:8b: 3f:11:0f:ad:fb:b3:e9:53:88:4a:81:47:8d:4f:2a:dd:3e:f2: 68:8f:d8:46:e9:7c:0a:aa:e7:08:18:d9:7b:f5:ac:92:10:f4: 6e:3e:d8:b6:6d:96:77:f3:5d:49:d0:92:ea:7e:86:27:31:ee: 4e:71:a0:1c:1e:e5:12:9f:23:b6:7a:7e:4e:82:70:8f:92:6b: d4:62:e1:2f:2d:0d:85:6e:f1:b2:f2:96:2a:40:ab:d9:09:d7: 4a:18:de:d5:33:7c:7a:e3:e7:51:4b:54:2f:7e:aa:ae:92:98: 2a:ac:84:db:46:9f:68:4f:3e:ca:d7:21:e7:42:11:81:1c:df: 2e:4f:41:45 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MzlBQjExMC8GA1UEBRMoQzE0MjRDNENDQzU5QzlBMDMxQkUxQUNERjc5ODJEODdB QjU3RDA2ODAeFw0yNTEyMDIyMDUzMzBaFw0yNjAzMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MmY1MWM5LTE0MGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDpE+HK2h9HVePYX3ionmvBOl2l0/gOAC4KGJ9SoaMGit7NeVxE6uJYCtQ0Yei9 Uc+uikVu3zPUtnjem03aNaIOEeL46DuSAkneYgbzXVBfc2jHC1UIE8BVYN3qlfdn cI6KxzDOynK9tTsioLPBsMg/zBw3gngEVsYNWCwWcV3YsLAsU9/BSHWlIhAPeOH8 8bHn0AnhPFRj1rXqDju0B36fNZGHLBc+gwdxGivgKQ8Mk1vabUy5UlZZzUeURJU3 xTOTEBtndLi8pq43aYwsxwbRxn5O84o0Wr269QdakrCTG1nWiQ1xjAdUmAHzaJ8V cE5gfrmAkXVbwbWGMlNt19jlAgMBAAGjggKvMIICqzAdBgNVHQ4EFgQUmXbFAcKO 9OqLLYLU7MQFe0yLCicwHwYDVR0jBBgwFoAUwUJMTMxZyaAxvhrN95gth6tX0Ggw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEzOUFCLzE1OEQ0OTA2MjU1 QjExRUJBOUY1NjAxQUM0RjlBRTAyL3dVSk1UTXhaeWFBeHZock45NWd0aDZ0WDBH Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd1VKTVRNeFp5YUF4dmhyTjk1Z3RoNnRYMEdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzlBQi8xNThENDkwNjI1NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi85NkFEMTZDNkI1 RkExMUYwQTE1ODNDODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA5BggrBgEFBQcBBwEB/wQq MCgwJgQCAAEwIAMEBcqTYAMEBctSoAMEBsvJQDAMAwQH3XiAAwQB3XiQMA0GCSqG SIb3DQEBCwUAA4IBAQAXyr38UQkv+ZP8AfpRh+kHHaXPNIyCN7f4SoLZDDijBz5O W46YsjKO0pBugPWAronki1wQeK7chWWOYnC3UvT6zhz+OZslKDeKYK6FasmZMvee ePi4pVvZfhVGtNS5Erq+CyynfPkf/yA5WpalwFqEiQhUQ8Vmc6QUc4l2Sos/EQ+t +7PpU4hKgUeNTyrdPvJoj9hG6XwKqucIGNl79aySEPRuPti2bZZ3811J0JLqfoYn Me5OcaAcHuUSnyO2en5OgnCPkmvUYuEvLQ2FbvGy8pYqQKvZCddKGN7VM3x64+dR S1QvfqqukpgqrITbRp9oTz7K1yHnQhGBHN8uT0FF -----END CERTIFICATE-----Generated at Mon Dec 22 03:02:53 2025 by rpki-client