This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/E13B045ACAD611F0AB7FEE55C4F9AE02.roa File: E13B045ACAD611F0AB7FEE55C4F9AE02.roa (raw, json) Hash identifier: hN1QiGOiu058mqvwkPVN0CGty1GL6SzSs8DlhHm4rnU= Subject key identifier: B4:EF:74:D0:2C:65:79:47:05:2B:CE:20:0C:B8:A9:07:7D:F3:7C:B1 Certificate issuer: /CN=A91599B5/serialNumber=B52AE1836C61193DEA8BA5BE9D71B8CBB3430398 Certificate serial: 4B Authority key identifier: B5:2A:E1:83:6C:61:19:3D:EA:8B:A5:BE:9D:71:B8:CB:B3:43:03:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSrhg2xhGT3qi6W-nXG4y7NDA5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/E13B045ACAD611F0AB7FEE55C4F9AE02.roa Signing time: Wed 26 Nov 2025 14:47:50 +0000 ROA not before: Wed 26 Nov 2025 14:47:50 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151786 IP address blocks: 202.1.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/tSrhg2xhGT3qi6W-nXG4y7NDA5g.crl rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/tSrhg2xhGT3qi6W-nXG4y7NDA5g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSrhg2xhGT3qi6W-nXG4y7NDA5g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91599B5, serialNumber=B52AE1836C61193DEA8BA5BE9D71B8CBB3430398 Validity Not Before: Nov 26 14:47:50 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69271316-8737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:25:ba:b7:b6:e6:76:ef:38:be:d7:08:f7:3e: 30:70:30:43:8f:71:c6:66:38:74:c2:69:dc:fa:51: ab:d0:1f:37:61:b7:6a:38:46:92:f2:2e:16:1e:3b: 4c:a2:f2:c6:34:ac:64:11:c0:b7:35:70:4e:f6:47: c0:68:71:ab:65:4d:7d:65:ff:ae:5c:78:7d:33:5e: 25:56:c6:e9:ae:9f:6a:d4:7a:95:4c:91:68:d0:7d: 85:68:03:b3:74:8c:30:29:83:57:cf:0e:e7:82:83: 71:7e:42:8d:3e:54:94:a8:25:fb:34:20:be:2e:3d: 1e:ef:dd:00:5e:11:19:27:db:e4:6e:1b:0c:1a:fc: a0:ed:e0:3e:f8:88:89:ab:3e:cd:c6:15:77:07:0a: 7c:81:c8:36:09:ac:2f:fa:a9:2f:8c:c3:a0:23:87: bb:c1:5b:41:92:be:20:b8:a4:b6:d7:57:8d:62:6c: eb:36:d1:a7:63:e8:5a:c4:ba:11:b3:e5:95:e1:3d: 46:d1:31:74:aa:9a:f2:f3:7b:d1:19:37:68:8e:ad: 21:aa:94:d3:7b:22:2e:21:13:19:98:8c:9d:97:ef: bb:75:bb:be:cb:c7:42:9f:8a:20:5f:5c:36:3d:8b: 8c:6e:ee:a7:0b:90:91:ac:01:fd:8e:de:94:df:6d: 5f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:EF:74:D0:2C:65:79:47:05:2B:CE:20:0C:B8:A9:07:7D:F3:7C:B1 X509v3 Authority Key Identifier: keyid:B5:2A:E1:83:6C:61:19:3D:EA:8B:A5:BE:9D:71:B8:CB:B3:43:03:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/tSrhg2xhGT3qi6W-nXG4y7NDA5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSrhg2xhGT3qi6W-nXG4y7NDA5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/E13B045ACAD611F0AB7FEE55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.1.29.0/24 Signature Algorithm: sha256WithRSAEncryption 06:f9:fa:72:87:cd:81:a9:0f:96:e5:54:ea:b4:aa:3a:54:4e: 83:b3:6c:3a:a3:a4:7e:11:da:2a:d7:ec:0d:1f:56:0a:1d:cf: 8f:1e:08:c8:e1:10:82:ae:f5:0d:79:d9:cf:ad:91:ee:3c:6e: 2d:04:b7:27:c5:7e:8c:d7:2f:ec:e5:92:e0:6e:e7:2f:0a:c4: 9f:73:73:06:43:4a:b2:6d:82:ec:b8:44:02:06:07:d1:1e:8f: e6:bf:dc:da:ed:28:05:e9:6a:c6:e9:c5:44:63:b4:c2:94:63: 96:4d:8a:ab:e3:63:b5:c0:07:9c:80:29:6e:8d:6e:e7:10:b4: 91:bd:a7:ac:06:e3:e1:1c:2e:d3:1c:af:a9:2a:55:02:ed:f2: 16:5c:26:5a:4d:1e:1d:d2:95:e4:6d:16:d3:a0:84:55:44:35: 11:80:79:9d:98:b3:f9:9d:1f:29:f3:d3:49:7b:9c:24:bd:52: 7e:71:7e:13:4c:1a:1f:ab:d7:87:a2:7f:c0:78:e9:ea:29:11: 32:54:af:50:64:57:e0:e6:ec:98:3d:22:91:85:fe:88:5b:78: 98:f1:42:7c:a8:d7:f4:1d:59:73:52:2a:30:54:2e:18:6d:47: ad:5d:7e:64:53:51:10:c1:77:ff:1a:be:cf:47:1d:ed:7c:b9: 53:d1:be:83 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OTlCNTExMC8GA1UEBRMoQjUyQUUxODM2QzYxMTkzREVBOEJBNUJFOUQ3MUI4Q0JC MzQzMDM5ODAeFw0yNTExMjYxNDQ3NTBaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MjcxMzE2LTg3MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIJbq3tuZ27zi+1wj3PjBwMEOPccZmOHTCadz6UavQHzdht2o4RpLyLhYeO0yi 8sY0rGQRwLc1cE72R8BocatlTX1l/65ceH0zXiVWxumun2rUepVMkWjQfYVoA7N0 jDApg1fPDueCg3F+Qo0+VJSoJfs0IL4uPR7v3QBeERkn2+RuGwwa/KDt4D74iImr Ps3GFXcHCnyByDYJrC/6qS+Mw6Ajh7vBW0GSviC4pLbXV41ibOs20adj6FrEuhGz 5ZXhPUbRMXSqmvLze9EZN2iOrSGqlNN7Ii4hExmYjJ2X77t1u77Lx0KfiiBfXDY9 i4xu7qcLkJGsAf2O3pTfbV+DAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUtO900Cxl eUcFK84gDLipB33zfLEwHwYDVR0jBBgwFoAUtSrhg2xhGT3qi6W+nXG4y7NDA5gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU5OUI1L0IyMjY2RkQyNkRF NDExRjBCRTAyRjk2MUM0RjlBRTAyL3RTcmhnMnhoR1QzcWk2Vy1uWEc0eTdOREE1 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdFNyaGcyeGhHVDNxaTZXLW5YRzR5N05EQTVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTlCNS9CMjI2NkZEMjZERTQxMUYwQkUwMkY5NjFDNEY5QUUwMi9FMTNCMDQ1QUNB RDYxMUYwQUI3RkVFNTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMoBHTANBgkqhkiG9w0BAQsFAAOCAQEABvn6cofNgakPluVU 6rSqOlROg7NsOqOkfhHaKtfsDR9WCh3Pjx4IyOEQgq71DXnZz62R7jxuLQS3J8V+ jNcv7OWS4G7nLwrEn3NzBkNKsm2C7LhEAgYH0R6P5r/c2u0oBelqxunFRGO0wpRj lk2Kq+NjtcAHnIApbo1u5xC0kb2nrAbj4Rwu0xyvqSpVAu3yFlwmWk0eHdKV5G0W 06CEVUQ1EYB5nZiz+Z0fKfPTSXucJL1SfnF+E0waH6vXh6J/wHjp6ikRMlSvUGRX 4ObsmD0ikYX+iFt4mPFCfKjX9B1Zc1IqMFQuGG1HrV1+ZFNREMF3/xq+z0cd7Xy5 U9G+gw== -----END CERTIFICATE-----Generated at Sat Dec 6 17:34:46 2025 by rpki-client