This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/2E96A63A690A11EF9525E980C4F9AE02.roa File: 2E96A63A690A11EF9525E980C4F9AE02.roa (raw, json) Hash identifier: yMhdBQQvGbqE0RC7d05HJwGImZzCC5UDP7/8RhbBn8Q= Subject key identifier: FD:35:9B:95:5F:7D:F6:74:06:C4:82:97:C4:88:19:C8:EC:1C:81:25 Certificate issuer: /CN=A9157D7A/serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Certificate serial: 0803 Authority key identifier: 40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/2E96A63A690A11EF9525E980C4F9AE02.roa Signing time: Thu 27 Nov 2025 13:08:27 +0000 ROA not before: Thu 27 Nov 2025 13:08:27 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 45820 IP address blocks: 14.194.0.0/18 maxlen: 24 14.194.64.0/18 maxlen: 24 14.194.128.0/18 maxlen: 24 14.194.208.0/20 maxlen: 24 14.194.240.0/20 maxlen: 24 14.195.0.0/18 maxlen: 24 14.195.64.0/19 maxlen: 24 14.195.96.0/19 maxlen: 24 14.195.128.0/18 maxlen: 24 14.195.192.0/20 maxlen: 24 14.195.208.0/20 maxlen: 24 14.195.240.0/20 maxlen: 24 49.200.0.0/14 maxlen: 14 49.200.0.0/19 maxlen: 24 49.200.40.0/21 maxlen: 24 49.200.48.0/21 maxlen: 24 49.200.56.0/22 maxlen: 24 49.200.60.0/22 maxlen: 24 49.200.96.0/21 maxlen: 24 49.200.104.0/21 maxlen: 24 49.200.112.0/21 maxlen: 24 49.202.208.0/24 maxlen: 24 49.249.0.0/17 maxlen: 24 49.249.128.0/18 maxlen: 24 115.160.217.0/24 maxlen: 24 182.156.0.0/18 maxlen: 22 182.156.0.0/22 maxlen: 24 182.156.4.0/23 maxlen: 24 182.156.8.0/21 maxlen: 24 182.156.16.0/22 maxlen: 24 182.156.22.0/23 maxlen: 24 182.156.24.0/21 maxlen: 23 182.156.24.0/23 maxlen: 24 182.156.28.0/22 maxlen: 24 182.156.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2051 (0x803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D7A, serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Validity Not Before: Nov 27 13:08:27 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69284d4b-2894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:64:18:60:8d:72:80:66:11:9c:35:4a:43:fb: 28:92:09:b7:d1:98:42:36:0a:b7:95:2f:fc:92:49: 51:87:d3:b0:86:e7:47:3f:77:18:af:ad:2a:c0:87: de:07:68:aa:e4:f4:94:b7:9e:5b:9c:c6:5f:38:71: 48:1a:f2:56:c4:64:42:4f:de:b5:64:88:18:d8:44: 3e:dc:c8:7b:b8:87:65:8b:32:e6:ca:c5:d9:03:27: 24:9f:06:77:dd:98:23:05:3a:e2:43:9b:2b:2f:8d: b3:4f:cf:d4:76:26:06:f4:9d:48:dd:60:6b:c0:fe: 85:20:f4:e5:86:b5:be:c2:81:42:fd:86:eb:74:e7: d5:62:78:c1:79:fa:9f:c8:7d:ca:1d:cc:a3:20:08: 6f:80:6f:c8:19:ca:ee:6b:81:6d:c6:53:6f:5f:7a: ae:33:1a:4c:60:e8:3b:b5:d8:9d:d7:9b:e7:91:5d: 3f:dd:61:59:99:7f:9e:6f:75:26:44:05:94:8f:70: 27:01:3b:95:5b:65:c7:7b:3e:09:9c:c8:15:62:5f: e0:7b:6b:eb:ee:0a:61:6a:c2:fd:25:fe:f7:1f:29: 96:ac:3c:16:7f:e0:b3:bf:70:f3:ec:58:43:46:90: 53:03:93:25:74:b7:65:cc:30:d4:01:49:ac:ce:87: 65:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:35:9B:95:5F:7D:F6:74:06:C4:82:97:C4:88:19:C8:EC:1C:81:25 X509v3 Authority Key Identifier: keyid:40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/2E96A63A690A11EF9525E980C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.194.0.0-14.194.191.255 14.194.208.0/20 14.194.240.0-14.195.223.255 14.195.240.0/20 49.200.0.0/14 49.249.0.0-49.249.191.255 115.160.217.0/24 182.156.0.0/18 Signature Algorithm: sha256WithRSAEncryption b7:50:d4:b1:ab:ad:c2:79:6e:1d:5c:a8:1b:b4:67:68:06:e4: a0:93:75:8e:80:73:3d:f9:d5:e6:5d:66:fe:78:e7:00:73:0e: f2:99:9f:d2:6c:0a:aa:0a:50:49:cb:c6:05:2f:0f:83:e1:46: 83:c6:52:05:ff:22:b7:ea:db:0d:2c:f5:0b:de:8c:f5:7e:24: 7e:07:e6:3b:01:1f:54:62:9b:2a:d6:6d:7b:21:90:05:2f:43: 2d:fe:64:27:5b:e5:4d:1f:ed:b3:e7:3f:1c:b4:04:83:89:cb: f0:ca:2e:a7:49:5f:a6:f9:be:8c:b0:31:82:5b:25:b9:bb:1a: 07:05:2c:fd:2a:e8:34:40:2e:86:bc:c0:c2:dc:4d:94:02:24: 70:10:4e:46:bd:05:90:b7:29:b1:99:b3:44:96:0d:d5:d9:4e: a4:7b:3c:03:02:3f:45:2f:ea:a0:0c:83:6c:14:52:08:3e:46: e3:a8:2e:a8:2d:58:f2:78:94:f7:f3:92:74:48:7d:a2:6f:37: 15:ff:0f:22:19:4b:48:3b:fd:01:ea:f9:7f:72:1e:14:2b:33: 3b:71:09:3a:7c:68:d8:56:cf:5c:c7:1e:97:72:7a:b8:5e:06: 4f:78:3d:14:bd:b4:b7:bd:15:d5:18:3d:7c:85:07:11:3a:4f: 3b:77:3f:15 -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgICCAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEN0ExMTAvBgNVBAUTKDQwMUI0Mjk5MDZDOTBFQTAzRUNGQzYxQjE1QkE0RUYx MjM5MDMzNzkwHhcNMjUxMTI3MTMwODI3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OTI4NGQ0Yi0yODk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGQYYI1ygGYRnDVKQ/sokgm30ZhCNgq3lS/8kklRh9OwhudHP3cYr60qwIfe B2iq5PSUt55bnMZfOHFIGvJWxGRCT961ZIgY2EQ+3Mh7uIdlizLmysXZAycknwZ3 3ZgjBTriQ5srL42zT8/UdiYG9J1I3WBrwP6FIPTlhrW+woFC/YbrdOfVYnjBefqf yH3KHcyjIAhvgG/IGcrua4FtxlNvX3quMxpMYOg7tdid15vnkV0/3WFZmX+eb3Um RAWUj3AnATuVW2XHez4JnMgVYl/ge2vr7gphasL9Jf73HymWrDwWf+Czv3Dz7FhD RpBTA5MldLdlzDDUAUmszodl1QIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFP01m5Vf ffZ0BsSCl8SIGcjsHIElMB8GA1UdIwQYMBaAFEAbQpkGyQ6gPs/GGxW6TvEjkDN5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q3QS81RERDQ0NDNjk5 MTUxMUVCOTY3MjcyNDNDNEY5QUUwMi9RQnRDbVFiSkRxQS16OFliRmJwTzhTT1FN M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCdENtUWJKRHFBLXo4WWJGYnBPOFNPUU0zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEN0EvNUREQ0NDQzY5OTE1MTFFQjk2NzI3MjQzQzRGOUFFMDIvMkU5NkE2M0E2 OTBBMTFFRjk1MjVFOTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXgYIKwYBBQUHAQcBAf8E TzBNMEsEAgABMEUwCwMDAQ7CAwQGDsKAAwQEDsLQMAwDBAQOwvADBAUOw8ADBAQO w/ADAwIxyDALAwMAMfkDBAYx+YADBABzoNkDBAa2nAAwDQYJKoZIhvcNAQELBQAD ggEBALdQ1LGrrcJ5bh1cqBu0Z2gG5KCTdY6Acz351eZdZv545wBzDvKZn9JsCqoK UEnLxgUvD4PhRoPGUgX/Irfq2w0s9QvejPV+JH4H5jsBH1RimyrWbXshkAUvQy3+ ZCdb5U0f7bPnPxy0BIOJy/DKLqdJX6b5voywMYJbJbm7GgcFLP0q6DRALoa8wMLc TZQCJHAQTka9BZC3KbGZs0SWDdXZTqR7PAMCP0Uv6qAMg2wUUgg+RuOoLqgtWPJ4 lPfzknRIfaJvNxX/DyIZS0g7/QHq+X9yHhQrMztxCTp8aNhWz1zHHpdyerheBk94 PRS9tLe9FdUYPXyFBxE6Tzt3PxU= -----END CERTIFICATE-----Generated at Sat Dec 6 23:44:57 2025 by rpki-client