This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/9BD4B85894D611EE85EDE844C4F9AE02.roa File: 9BD4B85894D611EE85EDE844C4F9AE02.roa (raw, json) Hash identifier: BnhXnmbrZvn4TUpNGo1fZeRsdqCO9c2ErR/1CCvmiV4= Subject key identifier: A2:B4:E7:F9:3B:1C:67:C9:F2:C0:72:13:8B:7B:17:8B:D0:54:10:EA Certificate issuer: /CN=A91237A2/serialNumber=4382F9AA3016FCBF31F924CF132E95BF92709ADD Certificate serial: 0176 Authority key identifier: 43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/9BD4B85894D611EE85EDE844C4F9AE02.roa Signing time: Tue 25 Nov 2025 02:19:42 +0000 ROA not before: Tue 25 Nov 2025 02:19:42 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151986 IP address blocks: 43.248.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:11:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91237A2, serialNumber=4382F9AA3016FCBF31F924CF132E95BF92709ADD Validity Not Before: Nov 25 02:19:42 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6925123e-d2e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5e:d6:82:00:18:46:c0:dd:69:7a:40:eb:40: fc:eb:91:e5:f4:e5:40:29:b5:e5:a4:1e:c3:d7:ef: 87:40:43:d1:74:bd:0a:a3:bb:72:70:ee:3d:5f:9c: b5:40:4e:aa:f7:a9:84:51:5f:b1:4d:d2:86:e6:a9: 2a:6e:88:1b:14:61:1a:0a:8c:f9:a5:b3:fc:36:c9: b9:52:4a:55:6a:12:b1:a1:ef:ae:15:62:4e:0d:d2: 7b:85:8e:92:c5:36:38:68:9d:5e:30:3b:6b:fd:64: ef:80:00:73:0f:5f:a6:17:a9:d3:78:89:9b:a4:c8: b6:eb:3c:d9:0a:84:f7:8d:73:c3:47:a5:d1:93:63: f3:90:60:52:e6:da:f1:6e:29:98:52:21:11:50:e2: 92:be:01:1c:a4:fd:01:84:2c:8b:2e:ad:65:82:be: 21:79:4a:4d:bb:51:7e:f9:30:00:69:46:a6:19:25: 46:b1:35:16:b9:53:f5:82:27:8e:e9:a1:ce:4d:51: 46:56:fe:19:6a:17:73:1c:32:0a:2a:08:d4:01:3c: 3c:61:0c:91:cc:df:b3:18:0f:81:2e:34:a2:73:4e: c6:43:af:17:a4:2e:5b:81:0b:15:1b:d0:6d:da:ec: 47:a1:eb:ed:20:7e:2e:67:00:e4:65:a8:8c:f2:70: cb:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B4:E7:F9:3B:1C:67:C9:F2:C0:72:13:8B:7B:17:8B:D0:54:10:EA X509v3 Authority Key Identifier: keyid:43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/9BD4B85894D611EE85EDE844C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.56.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:47:1e:0b:d9:47:20:20:49:36:ee:0c:fc:69:fc:52:7a:c3: 3e:d7:a0:87:48:98:5f:5c:2f:e6:df:fa:2c:72:3c:3e:f9:6f: c5:21:ec:a3:28:64:8c:3e:24:2c:dd:11:b4:0c:54:23:44:8c: 1a:cc:32:ee:d0:08:95:0f:78:29:fa:5e:9b:1d:a6:f0:48:5f: e5:86:a5:ff:b1:b8:43:21:c6:6a:90:49:e2:7c:53:46:1a:05: 4d:71:ce:d0:75:b9:a7:02:54:a5:00:92:32:cb:38:de:cf:7c: bd:fb:5f:2f:f3:1d:56:44:0a:e8:85:7c:b7:36:d4:f1:eb:e6: 65:fa:33:24:c7:b4:bc:7d:96:46:b1:10:46:b6:4a:15:d6:10: 1c:1a:a3:f5:f8:cf:1a:bc:22:22:ec:f2:29:92:ca:6e:8c:ad: b9:80:f8:e7:32:0e:a6:89:96:9f:69:4a:6c:70:0e:32:97:87: af:3f:b4:c7:51:d3:7d:71:c6:58:cb:29:47:0f:21:d2:6f:af: 07:00:be:52:b7:42:9e:28:6d:9c:27:01:61:7e:3f:31:38:ff: 9d:2f:3a:ed:ab:4a:16:cb:ac:77:c6:a9:99:46:e2:0e:40:a7: bd:96:72:e2:4a:5e:23:2c:25:f1:c4:7f:e1:67:c3:74:7f:59: c7:b6:42:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM3QTIxMTAvBgNVBAUTKDQzODJGOUFBMzAxNkZDQkYzMUY5MjRDRjEzMkU5NUJG OTI3MDlBREQwHhcNMjUxMTI1MDIxOTQyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI1MTIzZS1kMmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5l7WggAYRsDdaXpA60D865Hl9OVAKbXlpB7D1++HQEPRdL0Ko7tycO49X5y1 QE6q96mEUV+xTdKG5qkqbogbFGEaCoz5pbP8Nsm5UkpVahKxoe+uFWJODdJ7hY6S xTY4aJ1eMDtr/WTvgABzD1+mF6nTeImbpMi26zzZCoT3jXPDR6XRk2PzkGBS5trx bimYUiERUOKSvgEcpP0BhCyLLq1lgr4heUpNu1F++TAAaUamGSVGsTUWuVP1gieO 6aHOTVFGVv4ZahdzHDIKKgjUATw8YQyRzN+zGA+BLjSic07GQ68XpC5bgQsVG9Bt 2uxHoevtIH4uZwDkZaiM8nDLhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKK05/k7 HGfJ8sByE4t7F4vQVBDqMB8GA1UdIwQYMBaAFEOC+aowFvy/MfkkzxMulb+ScJrd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzdBMi80OUU2RTNENjkz M0MxMUVFQjQyMTBGMjlDNEY5QUUwMi9RNEw1cWpBV19MOHgtU1RQRXk2VnY1Sndt dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E0TDVxakFXX0w4eC1TVFBFeTZWdjVKd210MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM3QTIvNDlFNkUzRDY5MzNDMTFFRUI0MjEwRjI5QzRGOUFFMDIvOUJENEI4NTg5 NEQ2MTFFRTg1RURFODQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr+DgwDQYJKoZIhvcNAQELBQADggEBAGtHHgvZRyAgSTbu DPxp/FJ6wz7XoIdImF9cL+bf+ixyPD75b8Uh7KMoZIw+JCzdEbQMVCNEjBrMMu7Q CJUPeCn6XpsdpvBIX+WGpf+xuEMhxmqQSeJ8U0YaBU1xztB1uacCVKUAkjLLON7P fL37Xy/zHVZECuiFfLc21PHr5mX6MyTHtLx9lkaxEEa2ShXWEBwao/X4zxq8IiLs 8imSym6MrbmA+OcyDqaJlp9pSmxwDjKXh68/tMdR031xxljLKUcPIdJvrwcAvlK3 Qp4obZwnAWF+PzE4/50vOu2rShbLrHfGqZlG4g5Ap72WcuJKXiMsJfHEf+Fnw3R/ Wce2Qt4= -----END CERTIFICATE-----Generated at Sun Dec 7 07:15:10 2025 by rpki-client