This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa File: D91E3ADC498E11EF908FD222C4F9AE02.roa (raw, json) Hash identifier: ZZDdEUCyxIX0Eybvqkeb03mNWg+YxSkSpegb3mdW8RE= Subject key identifier: 00:90:7D:0D:33:67:73:5D:17:25:88:13:41:27:B5:8A:E4:F3:40:74 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: FF Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa Signing time: Fri 07 Nov 2025 01:10:32 +0000 ROA not before: Fri 07 Nov 2025 01:10:32 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 1851 IP address blocks: 130.220.0.0/16 maxlen: 16 130.220.208.0/24 maxlen: 24 130.220.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Nov 7 01:10:32 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690d4708-85e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a0:7a:17:cc:77:dd:c7:47:88:08:3e:ef:f0: da:ea:84:ed:72:a9:89:b2:c2:04:f6:8e:64:ce:63: de:4d:80:04:9c:67:d2:5e:89:ef:04:38:1a:b2:0a: cb:12:f4:43:0c:10:00:75:ae:d9:2d:f4:ea:83:ee: 5a:e6:3d:78:95:9f:b1:ec:63:fd:99:a2:bc:d5:61: 5e:50:bf:b9:89:5b:c8:47:36:a7:f7:d6:22:69:c6: 6c:ec:e8:09:dc:38:56:8f:68:ac:c8:46:24:ad:3f: 0b:c5:36:df:d7:56:d6:de:ef:1e:e4:d8:2e:6f:91: 67:3a:d1:77:5a:4b:0a:25:48:f3:2e:60:38:d2:50: 00:f5:80:0b:85:84:c4:f1:da:71:44:55:0a:6e:a4: fa:82:56:3e:b4:70:5c:2f:27:11:d6:38:1d:01:20: ca:38:db:f3:32:99:f9:f0:ad:5c:24:a6:cf:28:e5: 92:d6:bb:c0:98:69:f4:dc:5d:5e:9f:93:97:c4:c9: 6a:f8:45:48:af:f1:f3:81:52:c3:c2:9a:ea:f7:e6: 06:0c:8a:d5:2b:08:ef:3d:07:09:80:94:d8:65:ef: b1:15:19:de:1e:86:ef:9b:de:5f:bd:43:cc:65:62: ba:ba:95:eb:cf:63:ce:49:0b:b4:f6:64:27:92:6e: ad:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:90:7D:0D:33:67:73:5D:17:25:88:13:41:27:B5:8A:E4:F3:40:74 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.220.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1b:78:0c:74:cf:64:f0:07:87:d7:96:c7:9f:84:fd:d9:60:0c: 12:77:7e:73:89:e1:ab:06:e8:e6:5e:da:25:6f:f4:fc:6d:09: 3e:f9:ec:4a:32:3f:a1:fc:0a:6f:66:b3:46:93:6b:d0:e5:f9: 64:aa:14:45:e7:f5:39:38:e9:64:f0:d6:a4:f8:15:fe:80:84: d6:1c:f9:02:6e:d5:1f:2b:cf:b5:a2:c7:1c:7a:30:af:c8:14: 60:e3:cd:32:27:a1:2e:fd:55:90:f1:20:32:89:17:2a:64:11: d5:4b:19:89:d2:81:5d:9f:fa:80:02:1f:80:d7:4b:1a:af:d4: de:21:52:27:e0:c0:12:e6:d7:f5:f8:a0:f8:b0:a0:e3:9e:1b: ce:b5:fd:2c:da:a0:33:54:e8:97:56:b2:21:f9:d6:70:94:fb: 9b:98:ee:06:e5:5a:07:62:f1:aa:61:53:67:e8:a3:76:5f:2f: 13:c1:af:d3:42:c6:ce:67:97:f6:fb:ee:80:35:24:db:47:65: 59:6c:1e:03:93:a6:a4:7f:50:14:d0:a6:01:c4:4b:5b:9f:6f: c1:cd:01:68:e7:7b:00:c3:55:9e:99:fc:fd:9b:03:df:ed:48: 51:9d:19:c1:cb:b9:4c:d7:24:41:78:d2:14:8d:c9:39:26:25: da:a3:b7:69 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjUxMTA3MDExMDMyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBkNDcwOC04NWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6B6F8x33cdHiAg+7/Da6oTtcqmJssIE9o5kzmPeTYAEnGfSXonvBDgasgrL EvRDDBAAda7ZLfTqg+5a5j14lZ+x7GP9maK81WFeUL+5iVvIRzan99YiacZs7OgJ 3DhWj2isyEYkrT8LxTbf11bW3u8e5Ngub5FnOtF3WksKJUjzLmA40lAA9YALhYTE 8dpxRFUKbqT6glY+tHBcLycR1jgdASDKONvzMpn58K1cJKbPKOWS1rvAmGn03F1e n5OXxMlq+EVIr/HzgVLDwprq9+YGDIrVKwjvPQcJgJTYZe+xFRneHobvm95fvUPM ZWK6upXrz2POSQu09mQnkm6tKQIDAQABo4IClDCCApAwHQYDVR0OBBYEFACQfQ0z Z3NdFyWIE0EntYrk80B0MB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkYzQjYvNTBGMDExQzg0OEJBMTFFRkJENDUxNjNEQzRGOUFFMDIvRDkxRTNBREM0 OThFMTFFRjkwOEZEMjIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCC3DANBgkqhkiG9w0BAQsFAAOCAQEAG3gMdM9k8AeH15bH n4T92WAMEnd+c4nhqwbo5l7aJW/0/G0JPvnsSjI/ofwKb2azRpNr0OX5ZKoURef1 OTjpZPDWpPgV/oCE1hz5Am7VHyvPtaLHHHowr8gUYOPNMiehLv1VkPEgMokXKmQR 1UsZidKBXZ/6gAIfgNdLGq/U3iFSJ+DAEubX9fig+LCg454bzrX9LNqgM1Tol1ay IfnWcJT7m5juBuVaB2LxqmFTZ+ijdl8vE8Gv00LGzmeX9vvugDUk20dlWWweA5Om pH9QFNCmAcRLW59vwc0BaOd7AMNVnpn8/ZsD3+1IUZ0Zwcu5TNckQXjSFI3JOSYl 2qO3aQ== -----END CERTIFICATE-----Generated at Sun Dec 7 01:38:24 2025 by rpki-client