This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/535DB56CD1AF11F0A278C10CC4F9AE02.roa File: 535DB56CD1AF11F0A278C10CC4F9AE02.roa (raw, json) Hash identifier: 5Choimwgt2phq6hvlC8nhRyZ6jjS+RqFeCS4pX9ivgE= Subject key identifier: AF:DD:0F:D5:12:14:48:B5:BD:E8:6B:E7:53:33:B4:92:96:A7:9F:78 Certificate issuer: /CN=A91652B5/serialNumber=FD49A51346A2F7AC811B00AD62EBEF0E94A2A1B2 Certificate serial: 0E Authority key identifier: FD:49:A5:13:46:A2:F7:AC:81:1B:00:AD:62:EB:EF:0E:94:A2:A1:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/535DB56CD1AF11F0A278C10CC4F9AE02.roa Signing time: Fri 05 Dec 2025 08:16:46 +0000 ROA not before: Fri 05 Dec 2025 08:16:46 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154315 IP address blocks: 138.252.96.0/23 maxlen: 23 138.252.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.crl rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 08:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91652B5, serialNumber=FD49A51346A2F7AC811B00AD62EBEF0E94A2A1B2 Validity Not Before: Dec 5 08:16:46 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=693294ee-07a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ef:62:60:98:a3:45:4d:36:86:0a:f8:b1:dc: 70:07:d0:47:31:69:6f:66:48:1b:98:90:c1:57:0e: 1a:c1:30:df:f9:a4:0f:6f:78:79:03:03:df:f7:a5: e4:e6:f5:ce:88:e2:d2:31:59:70:86:f7:95:51:35: ac:61:8f:53:be:8e:89:e6:5d:e3:a4:59:b6:7e:b9: 03:0c:19:3e:b7:7a:43:3c:0b:26:d1:08:ad:d4:73: 5a:ca:94:a9:79:31:50:76:82:d2:c4:b7:44:92:d4: d9:fe:85:37:9b:d3:8b:f6:d1:78:51:ac:d8:cb:9a: 5f:14:01:a9:b9:e9:65:89:af:d1:6d:d4:20:79:a1: 2b:67:47:cf:e9:e0:8a:e2:7b:d0:29:75:f1:f9:78: de:27:de:17:1d:cf:a9:7d:4c:1a:9d:84:60:04:96: 85:b2:fd:e2:a2:39:ef:25:02:eb:0b:f6:f5:01:22: d4:2b:d8:b9:6e:38:be:0a:0b:ba:51:51:2d:10:d9: 56:7f:0a:38:ff:a9:7b:8b:a8:59:9c:b3:4d:06:93: 8c:b0:db:3a:b8:3e:6e:70:ac:af:73:48:e8:8c:af: 9f:a5:f4:77:74:e8:53:c5:10:43:ee:4b:0e:19:42: b2:f1:e0:6e:1d:63:aa:7f:16:1a:89:10:84:8a:46: 5c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:DD:0F:D5:12:14:48:B5:BD:E8:6B:E7:53:33:B4:92:96:A7:9F:78 X509v3 Authority Key Identifier: keyid:FD:49:A5:13:46:A2:F7:AC:81:1B:00:AD:62:EB:EF:0E:94:A2:A1:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/535DB56CD1AF11F0A278C10CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.96.0/23 Signature Algorithm: sha256WithRSAEncryption 59:a2:9d:b9:54:ca:e2:43:df:40:2c:4f:06:91:b9:da:4b:3c: 1e:93:bc:1f:9e:88:c8:3f:1c:32:4c:3b:15:bc:46:e6:03:f5: 68:25:b2:8c:3f:88:bb:77:b8:bd:36:16:03:5e:9a:07:bf:88: b5:22:7a:85:77:e2:2b:65:81:67:3e:66:2f:bb:2d:26:aa:80: ae:9a:3b:03:7d:e7:51:b4:7c:07:4f:8a:c5:b3:d9:8a:45:4c: 3e:33:b0:c9:84:c6:13:a2:2a:7e:c5:01:e2:0b:1b:25:29:f5: 4a:e4:5d:f3:87:3c:85:52:7f:14:79:b0:16:b5:67:a3:6e:ea: 47:63:6e:9b:dc:02:de:64:8b:b8:4c:95:fb:20:92:4e:a6:6e: 18:84:3e:c2:34:30:87:8f:9f:ab:ce:a8:c6:3a:ef:c6:4a:21: fd:16:01:06:9b:cd:cb:6c:9b:10:09:3c:f1:6c:05:9d:36:63: 26:8d:3a:9d:8d:dc:af:79:c5:0a:7e:b1:a0:01:cb:3d:9d:9a: 31:be:55:8c:75:d3:6a:86:39:1d:22:ec:26:28:65:a9:e0:ea: 3e:01:9c:68:27:b7:c5:4c:b0:8a:eb:85:4a:46:4d:f6:af:51: bd:ff:ee:0f:37:b5:42:a8:bc:38:c1:80:0e:28:e9:d5:17:50: 86:b4:14:02 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTJCNTExMC8GA1UEBRMoRkQ0OUE1MTM0NkEyRjdBQzgxMUIwMEFENjJFQkVGMEU5 NEEyQTFCMjAeFw0yNTEyMDUwODE2NDZaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MzI5NGVlLTA3YTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDm72JgmKNFTTaGCvix3HAH0EcxaW9mSBuYkMFXDhrBMN/5pA9veHkDA9/3peTm 9c6I4tIxWXCG95VRNaxhj1O+jonmXeOkWbZ+uQMMGT63ekM8CybRCK3Uc1rKlKl5 MVB2gtLEt0SS1Nn+hTeb04v20XhRrNjLml8UAam56WWJr9Ft1CB5oStnR8/p4Iri e9ApdfH5eN4n3hcdz6l9TBqdhGAEloWy/eKiOe8lAusL9vUBItQr2LluOL4KC7pR US0Q2VZ/Cjj/qXuLqFmcs00Gk4yw2zq4Pm5wrK9zSOiMr5+l9Hd06FPFEEPuSw4Z QrLx4G4dY6p/FhqJEISKRlwbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUr90P1RIU SLW96GvnUzO0kpann3gwHwYDVR0jBBgwFoAU/UmlE0ai96yBGwCtYuvvDpSiobIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MkI1LzY2NzlEOEJFQzVC MjExRjA4NjIyNzkyQkM0RjlBRTAyL19VbWxFMGFpOTZ5Qkd3Q3RZdXZ2RHBTaW9i SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX1VtbEUwYWk5NnlCR3dDdFl1dnZEcFNpb2JJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTJCNS82Njc5RDhCRUM1QjIxMUYwODYyMjc5MkJDNEY5QUUwMi81MzVEQjU2Q0Qx QUYxMUYwQTI3OEMxMENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8YDANBgkqhkiG9w0BAQsFAAOCAQEAWaKduVTK4kPfQCxP BpG52ks8HpO8H56IyD8cMkw7FbxG5gP1aCWyjD+Iu3e4vTYWA16aB7+ItSJ6hXfi K2WBZz5mL7stJqqArpo7A33nUbR8B0+KxbPZikVMPjOwyYTGE6IqfsUB4gsbJSn1 SuRd84c8hVJ/FHmwFrVno27qR2Num9wC3mSLuEyV+yCSTqZuGIQ+wjQwh4+fq86o xjrvxkoh/RYBBpvNy2ybEAk88WwFnTZjJo06nY3cr3nFCn6xoAHLPZ2aMb5VjHXT aoY5HSLsJihlqeDqPgGcaCe3xUywiuuFSkZN9q9Rvf/uDze1Qqi8OMGADijp1RdQ hrQUAg== -----END CERTIFICATE-----Generated at Sun Dec 7 00:35:18 2025 by rpki-client