This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/1495D7EE854B11EAACB2FE39C4F9AE02.roa File: 1495D7EE854B11EAACB2FE39C4F9AE02.roa (raw, json) Hash identifier: TRw0tsM5xQJHUayQe9gKdCXvZmKc3p8c5KxT4AdfP34= Subject key identifier: 4C:FC:21:A4:AB:62:B4:D3:D5:8F:3D:8A:A3:82:00:CA:D1:B4:F6:95 Certificate issuer: /CN=A91274A4/serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Certificate serial: 0C3C Authority key identifier: 59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/1495D7EE854B11EAACB2FE39C4F9AE02.roa Signing time: Sat 20 Dec 2025 19:15:59 +0000 ROA not before: Sat 20 Dec 2025 19:15:59 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 23856 IP address blocks: 61.13.192.0/18 maxlen: 18 61.16.48.0/20 maxlen: 20 61.16.48.0/24 maxlen: 24 61.16.49.0/24 maxlen: 24 61.16.50.0/24 maxlen: 24 61.16.52.0/24 maxlen: 24 61.16.53.0/24 maxlen: 24 61.16.64.0/18 maxlen: 18 61.16.72.0/24 maxlen: 24 61.16.101.0/24 maxlen: 24 61.16.110.0/24 maxlen: 24 61.16.116.0/24 maxlen: 24 103.77.140.0/22 maxlen: 22 116.206.204.0/22 maxlen: 22 116.206.207.0/24 maxlen: 24 203.149.192.0/19 maxlen: 19 203.149.196.0/24 maxlen: 24 203.149.224.0/20 maxlen: 20 203.149.225.0/24 maxlen: 24 2407:9880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:26:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3132 (0xc3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91274A4, serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Validity Not Before: Dec 20 19:15:59 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6946f5ef-8e0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:be:bb:96:ab:91:d3:51:6f:8a:c5:e2:89:3a: dd:af:51:9c:05:be:2b:ec:68:7d:91:32:5d:1a:b4: 9c:f9:17:7d:b7:13:b5:02:dc:9f:d4:54:a4:5a:1c: 09:fa:27:e7:52:b8:6f:f0:f6:96:85:a7:67:8d:f0: 1d:73:e1:16:c3:08:58:8a:12:07:b6:5d:8c:8a:1e: 8d:35:17:76:76:eb:de:3f:16:04:17:63:67:ef:cb: e9:5c:36:fa:5d:9f:7f:77:72:74:f5:3a:00:4d:12: 6a:e6:d6:37:6a:b7:a0:6a:cf:0d:01:35:e7:c5:1a: ff:e3:78:e5:dd:5e:bd:2a:55:e9:71:b1:54:34:66: 05:0b:84:1c:0c:61:f4:57:8f:5f:ea:a1:21:da:1e: c7:15:03:ed:18:aa:7a:e2:37:bb:bb:24:d3:21:b2: 3f:47:80:3c:3e:47:0a:82:62:79:4d:c5:04:44:07: 8b:c7:7f:e3:f3:e6:79:1b:a7:16:99:33:05:b8:74: b3:2b:47:0e:4b:88:f5:9e:37:8f:a3:5f:b5:5b:90: 07:23:95:2a:f5:d4:87:17:0e:40:1d:43:e2:91:ed: 9e:0c:73:af:bb:bc:20:55:49:58:21:98:41:fa:4b: a1:9e:e2:44:ec:8e:bb:f4:ee:8a:1c:c8:97:b7:ee: 95:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:FC:21:A4:AB:62:B4:D3:D5:8F:3D:8A:A3:82:00:CA:D1:B4:F6:95 X509v3 Authority Key Identifier: keyid:59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/1495D7EE854B11EAACB2FE39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.13.192.0/18 61.16.48.0-61.16.127.255 103.77.140.0/22 116.206.204.0/22 203.149.192.0-203.149.239.255 IPv6: 2407:9880::/32 Signature Algorithm: sha256WithRSAEncryption 60:79:03:b0:69:c8:75:13:92:7f:8a:a1:bf:1b:bc:47:13:20: 10:53:77:fb:6a:ec:b7:bb:3d:66:d9:c3:90:ad:f0:d9:72:1d: 7f:a0:27:12:c3:c0:e0:18:7e:44:cc:be:44:c8:03:a6:52:75: 77:e2:e5:7a:c3:90:71:8a:18:a1:4c:c3:13:e5:1f:86:05:98: 6c:a9:06:38:2d:0e:c2:10:82:0b:03:97:5d:c5:dd:33:22:8a: 55:7d:09:ae:35:0d:44:b2:1d:e3:b6:59:0d:00:02:5d:f3:03: 31:e9:84:69:c3:7e:de:4a:a7:a8:b4:77:a3:bc:4a:c6:fb:44: 5f:e6:83:65:97:34:b4:b1:04:98:43:f5:ba:27:a8:54:b7:67: 9b:e2:00:02:9b:a7:30:fc:6c:33:71:62:e5:b2:4a:a3:e3:d6: 4e:7b:ba:f8:4d:35:f6:30:bc:2f:22:00:22:0e:cd:f2:da:11: b2:1c:fe:1f:83:3d:23:ae:1a:60:51:25:0c:52:5f:68:57:fc: 73:ab:29:1b:fb:78:e1:7f:46:3c:2d:3c:31:01:53:84:59:25: 9b:5e:40:b8:54:3f:00:94:7c:3d:28:50:77:1a:2c:a5:79:2e: a5:87:e3:86:be:92:bf:d2:48:e3:88:b4:68:53:56:a3:4c:8e: 1c:cb:f0:42 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICDDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Mjc0QTQxMTAvBgNVBAUTKDU5NTY2NUZGODVFNEU0NzczNzFGNzU0MUY3MjA5REMy NDRFNjBDQTUwHhcNMjUxMjIwMTkxNTU5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ2ZjVlZi04ZTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnr67lquR01FvisXiiTrdr1GcBb4r7Gh9kTJdGrSc+Rd9txO1Atyf1FSkWhwJ +ifnUrhv8PaWhadnjfAdc+EWwwhYihIHtl2Mih6NNRd2duvePxYEF2Nn78vpXDb6 XZ9/d3J09ToATRJq5tY3aregas8NATXnxRr/43jl3V69KlXpcbFUNGYFC4QcDGH0 V49f6qEh2h7HFQPtGKp64je7uyTTIbI/R4A8PkcKgmJ5TcUERAeLx3/j8+Z5G6cW mTMFuHSzK0cOS4j1njePo1+1W5AHI5Uq9dSHFw5AHUPike2eDHOvu7wgVUlYIZhB +kuhnuJE7I679O6KHMiXt+6VJQIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFEz8IaSr YrTT1Y89iqOCAMrRtPaVMB8GA1UdIwQYMBaAFFlWZf+F5OR3Nx91QfcgncJE5gyl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzRBNC9EREJFNDIwQTMw RjAxMUVBOTg1OUFFNTNDNEY5QUUwMi9XVlpsXzRYazVIYzNIM1ZCOXlDZHdrVG1E S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dWWmxfNFhrNUhjM0gzVkI5eUNkd2tUbURLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc0QTQvRERCRTQyMEEzMEYwMTFFQTk4NTlBRTUzQzRGOUFFMDIvMTQ5NUQ3RUU4 NTRCMTFFQUFDQjJGRTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMDQEAgABMC4DBAY9DcAwDAMEBD0QMAMEBz0QAAMEAmdNjAMEAnTOzDAMAwQG y5XAAwQEy5XgMA0EAgACMAcDBQAkB5iAMA0GCSqGSIb3DQEBCwUAA4IBAQBgeQOw ach1E5J/iqG/G7xHEyAQU3f7auy3uz1m2cOQrfDZch1/oCcSw8DgGH5EzL5EyAOm UnV34uV6w5BxihihTMMT5R+GBZhsqQY4LQ7CEIILA5ddxd0zIopVfQmuNQ1Esh3j tlkNAAJd8wMx6YRpw37eSqeotHejvErG+0Rf5oNllzS0sQSYQ/W6J6hUt2eb4gAC m6cw/GwzcWLlskqj49ZOe7r4TTX2MLwvIgAiDs3y2hGyHP4fgz0jrhpgUSUMUl9o V/xzqykb+3jhf0Y8LTwxAVOEWSWbXkC4VD8AlHw9KFB3GiyleS6lh+OGvpK/0kjj iLRoU1ajTI4cy/BC -----END CERTIFICATE-----Generated at Sun Jan 25 12:23:11 2026 by rpki-client