This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/B4450EF68E5311EBB81E6C70C4F9AE02.roa File: B4450EF68E5311EBB81E6C70C4F9AE02.roa (raw, json) Hash identifier: LPGhf2+lZ/tfy7iMoJQ9mcHsSA792NuIJHPh9NLe0yI= Subject key identifier: A1:63:87:DF:68:B7:A6:AF:C0:91:7C:0D:5A:15:82:9E:8D:04:CF:11 Certificate issuer: /CN=A916814B/serialNumber=0958F097CAE4297DF27282E4183E3AF1424C8F7E Certificate serial: 1687 Authority key identifier: 09:58:F0:97:CA:E4:29:7D:F2:72:82:E4:18:3E:3A:F1:42:4C:8F:7E Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/CVjwl8rkKX3ycoLkGD468UJMj34.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/B4450EF68E5311EBB81E6C70C4F9AE02.roa Signing time: Wed 26 Nov 2025 16:35:24 +0000 ROA not before: Wed 26 Nov 2025 16:35:24 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 55446 IP address blocks: 196.1.105.0/24 maxlen: 24 196.1.106.0/24 maxlen: 24 196.1.110.0/23 maxlen: 23 196.1.110.0/24 maxlen: 24 196.1.111.0/24 maxlen: 24 196.1.111.0/25 maxlen: 25 196.1.111.128/27 maxlen: 27 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/CVjwl8rkKX3ycoLkGD468UJMj34.crl rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/CVjwl8rkKX3ycoLkGD468UJMj34.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/CVjwl8rkKX3ycoLkGD468UJMj34.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5767 (0x1687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916814B, serialNumber=0958F097CAE4297DF27282E4183E3AF1424C8F7E Validity Not Before: Nov 26 16:35:24 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69272c4b-3efc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1d:0a:6f:e1:bb:6f:27:04:5a:02:92:f5:eb: e9:72:a0:d1:9c:10:05:8d:68:8b:fe:77:3d:5e:9a: cb:2d:3a:20:0f:b8:f4:c3:09:c2:8a:68:24:fc:fe: 96:32:c8:cb:f3:6f:9b:90:d1:53:f6:60:15:dd:76: 60:93:15:98:6c:a6:67:54:55:3e:7d:7b:b7:e1:64: e8:e0:a9:c2:4c:b5:ed:9b:38:80:63:b6:19:f0:2d: 39:dc:3a:ff:1e:81:5e:08:6c:04:9e:bf:33:cc:02: 02:ca:eb:63:85:5b:f3:e6:44:c5:bb:7d:06:7a:4d: 3f:cf:40:12:d9:2d:4e:07:b1:24:0b:2d:4a:60:b2: f4:65:dc:67:6c:65:91:5f:aa:3a:4e:66:89:6a:61: a8:c7:e6:9b:56:3e:ed:1e:ff:a2:55:6c:5f:eb:df: 41:99:12:80:74:77:d5:bc:ca:e9:f9:6d:95:e0:d7: de:c5:22:ef:27:aa:98:e1:a4:84:f4:03:95:17:3a: 00:36:28:3b:92:67:e0:d5:a6:1f:50:af:eb:7d:8e: 42:37:78:d4:25:8c:0b:66:eb:58:32:dc:9f:03:a2: 9c:c3:75:cc:c0:c3:15:90:9d:5e:b1:db:ed:c1:14: 78:63:fc:0a:9e:8a:bc:2a:6f:56:41:46:a2:5b:f0: f9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:63:87:DF:68:B7:A6:AF:C0:91:7C:0D:5A:15:82:9E:8D:04:CF:11 X509v3 Authority Key Identifier: keyid:09:58:F0:97:CA:E4:29:7D:F2:72:82:E4:18:3E:3A:F1:42:4C:8F:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/CVjwl8rkKX3ycoLkGD468UJMj34.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/CVjwl8rkKX3ycoLkGD468UJMj34.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/B4450EF68E5311EBB81E6C70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 196.1.105.0-196.1.106.255 196.1.110.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:d4:2d:7b:e4:fc:04:30:2f:d5:d9:05:74:22:dc:74:a0:59: ac:c1:70:0f:c7:93:b0:6c:d2:d4:2b:03:04:e6:98:5f:52:d9: 96:b3:b6:e9:a2:06:c6:97:59:d9:b5:51:f3:0f:04:b5:1f:33: 6c:9f:ad:07:a8:fc:67:e1:e1:70:6a:ff:03:c3:27:0c:18:b4: 12:7a:c7:fb:fc:6b:e1:f7:21:59:de:04:0f:79:c2:33:a3:93: 91:89:77:b5:49:ab:bc:b0:ea:a7:ba:29:54:90:f2:48:c2:4e: 7c:ae:d6:1b:e0:1f:79:2c:d2:0a:c1:01:99:6f:9d:81:04:bb: 87:27:4f:01:a0:d3:e4:16:bd:68:3e:87:1f:39:41:99:23:0f: 3f:c0:c2:fe:e3:3d:c8:68:9c:fb:7f:66:7d:9b:3c:00:d3:8b: ef:41:6c:a2:ba:42:08:af:55:26:1e:71:e2:c9:30:79:f8:a1: 7a:56:25:1c:04:ab:5f:97:cc:28:77:0e:7f:57:f3:59:f2:25: 33:db:c2:4c:44:09:3f:60:af:0c:cc:a0:4d:36:cc:e2:96:55: 0d:b1:d4:1e:8c:ed:3c:b6:c0:1e:84:eb:ff:e7:b8:62:90:38: eb:6f:7e:03:a4:1f:16:7d:00:a2:42:d3:b1:16:78:95:11:a1: 2b:2b:cb:9f -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICFocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxNEIxMTAvBgNVBAUTKDA5NThGMDk3Q0FFNDI5N0RGMjcyODJFNDE4M0UzQUYx NDI0QzhGN0UwHhcNMjUxMTI2MTYzNTI0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI3MmM0Yi0zZWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzR0Kb+G7bycEWgKS9evpcqDRnBAFjWiL/nc9XprLLTogD7j0wwnCimgk/P6W MsjL82+bkNFT9mAV3XZgkxWYbKZnVFU+fXu34WTo4KnCTLXtmziAY7YZ8C053Dr/ HoFeCGwEnr8zzAICyutjhVvz5kTFu30Gek0/z0AS2S1OB7EkCy1KYLL0ZdxnbGWR X6o6TmaJamGox+abVj7tHv+iVWxf699BmRKAdHfVvMrp+W2V4NfexSLvJ6qY4aSE 9AOVFzoANig7kmfg1aYfUK/rfY5CN3jUJYwLZutYMtyfA6Kcw3XMwMMVkJ1esdvt wRR4Y/wKnoq8Km9WQUaiW/D5ywIDAQABo4ICozCCAp8wHQYDVR0OBBYEFKFjh99o t6avwJF8DVoVgp6NBM8RMB8GA1UdIwQYMBaAFAlY8JfK5Cl98nKC5Bg+OvFCTI9+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODE0Qi9GQjYwNkY1NjE2 MkUxMUU4QjhERTI2NjlDNEY5QUUwMi9DVmp3bDhya0tYM3ljb0xrR0Q0NjhVSk1q MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL0NWandsOHJrS1gzeWNvTGtHRDQ2OFVKTWozNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgxNEIvRkI2MDZGNTYxNjJFMTFFOEI4REUyNjY5QzRGOUFFMDIvQjQ0NTBFRjY4 RTUzMTFFQkI4MUU2QzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAMQBaQMEAMQBagMEAcQBbjANBgkqhkiG9w0BAQsFAAOC AQEAfNQte+T8BDAv1dkFdCLcdKBZrMFwD8eTsGzS1CsDBOaYX1LZlrO26aIGxpdZ 2bVR8w8EtR8zbJ+tB6j8Z+HhcGr/A8MnDBi0EnrH+/xr4fchWd4ED3nCM6OTkYl3 tUmrvLDqp7opVJDySMJOfK7WG+AfeSzSCsEBmW+dgQS7hydPAaDT5Ba9aD6HHzlB mSMPP8DC/uM9yGic+39mfZs8ANOL70FsorpCCK9VJh5x4skwefihelYlHASrX5fM KHcOf1fzWfIlM9vCTEQJP2CvDMygTTbM4pZVDbHUHoztPLbAHoTr/+e4YpA4629+ A6QfFn0AokLTsRZ4lRGhKyvLnw== -----END CERTIFICATE-----Generated at Sun Dec 7 11:51:54 2025 by rpki-client