This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/2CE10886A68511EFB0CF9981C4F9AE02.roa File: 2CE10886A68511EFB0CF9981C4F9AE02.roa (raw, json) Hash identifier: TJ/GBu5lvEogZ8tUOv45ZlaDd67cdBKVLZ/FNsJlT7c= Subject key identifier: BC:F5:18:CD:0A:28:CD:FE:AF:B6:30:39:9B:3F:CB:74:88:77:62:A7 Certificate issuer: /CN=A91706E4/serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Certificate serial: D3 Authority key identifier: 17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/2CE10886A68511EFB0CF9981C4F9AE02.roa Signing time: Thu 01 Jan 2026 05:24:36 +0000 ROA not before: Thu 01 Jan 2026 05:24:35 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 141212 IP address blocks: 160.191.228.0/24 maxlen: 24 160.191.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706E4, serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Validity Not Before: Jan 1 05:24:35 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69560513-9b57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:30:b2:90:28:8a:2b:1c:1e:0b:3d:0e:bb:08: 87:63:79:82:2c:cb:fb:89:3e:65:12:35:20:d1:84: 3a:71:f6:a2:df:be:ac:36:71:d9:64:de:d8:88:33: 26:b7:35:ac:f9:68:a3:88:25:64:d4:92:61:b6:3a: ae:57:7a:e5:5d:08:ca:2d:d7:e0:8c:08:40:93:b3: 10:75:b6:57:f0:c7:69:91:98:8b:15:bc:d1:b1:cd: 34:08:f2:44:26:cd:31:a6:17:9b:75:e8:62:79:1a: fb:cf:53:6b:ba:a5:8c:3e:d1:e3:fc:69:d2:31:36: 07:ac:fd:ed:55:ee:8b:16:74:e3:42:09:75:1e:5b: f3:91:a1:59:74:ce:29:c6:31:5c:f6:18:8b:83:1a: 52:27:c7:10:8f:2e:cb:6f:aa:0e:96:b3:64:ac:8b: 3d:05:c8:b6:48:c5:f6:eb:c6:59:7e:d9:05:33:cb: 1b:2f:4b:69:76:c3:42:dc:60:38:a7:fe:88:59:31: 4a:3c:86:30:8c:49:b7:3d:93:84:9c:c1:47:49:2e: 6a:44:b5:2c:f8:d6:54:46:4a:c5:99:d4:2f:71:30: 4b:d7:8e:ad:a6:91:6a:19:c0:db:18:89:0c:6f:f4: 40:14:76:e0:a6:de:8d:69:f6:52:cd:48:1f:1b:86: 8d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F5:18:CD:0A:28:CD:FE:AF:B6:30:39:9B:3F:CB:74:88:77:62:A7 X509v3 Authority Key Identifier: keyid:17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/2CE10886A68511EFB0CF9981C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.228.0/23 Signature Algorithm: sha256WithRSAEncryption c6:f5:33:da:a8:3e:cc:35:49:29:aa:05:a5:09:6b:3b:c8:ca: 4b:bb:5e:c7:80:29:ce:ed:17:c2:82:99:a7:83:e9:e9:3c:27: 77:78:dc:25:c5:44:58:9f:19:b7:2b:b3:76:b2:3f:b0:85:4e: 84:cc:54:b3:e2:18:c7:8b:f3:bf:bf:1d:d0:f1:0c:de:89:a3: 13:1a:69:69:38:55:e7:bc:48:0d:1c:43:25:26:b5:33:29:12: db:a5:41:2d:66:d3:f3:54:ab:fc:84:1e:4f:5a:f9:f2:35:ca: 04:a6:68:1f:c1:07:a2:3b:c0:a6:eb:89:25:fc:b0:02:f9:83: 02:3d:8c:ea:aa:e1:bc:db:90:30:4f:3d:89:03:bc:d0:8d:f5: a8:24:52:4a:af:7c:08:ad:02:f2:c1:72:f0:95:a4:2b:40:b3: 62:37:d8:11:ed:6d:8c:74:4d:a1:8c:2b:b6:f4:30:8e:61:5c: d6:61:d0:1d:b7:7d:f4:7f:f7:89:36:4d:16:f1:4d:93:ef:2a: f6:f4:6e:32:f7:83:2e:b3:02:5c:0c:30:e0:5d:d4:05:1e:64: 79:9a:38:3d:e1:ec:e4:3d:64:a4:aa:62:19:d3:f2:77:74:cc: 87:60:20:d8:cb:96:d6:c0:5a:5c:87:b3:5f:00:d6:ca:ed:c0: f4:6b:55:e4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzA2RTQxMTAvBgNVBAUTKDE3NkJDRTE1Qzg2MkQ0N0JBNzYwQTFGNjY1MzhGODFE NUM0OTNCODEwHhcNMjYwMTAxMDUyNDM1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU2MDUxMy05YjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjCykCiKKxweCz0OuwiHY3mCLMv7iT5lEjUg0YQ6cfai376sNnHZZN7YiDMm tzWs+WijiCVk1JJhtjquV3rlXQjKLdfgjAhAk7MQdbZX8MdpkZiLFbzRsc00CPJE Js0xphebdehieRr7z1NruqWMPtHj/GnSMTYHrP3tVe6LFnTjQgl1HlvzkaFZdM4p xjFc9hiLgxpSJ8cQjy7Lb6oOlrNkrIs9Bci2SMX268ZZftkFM8sbL0tpdsNC3GA4 p/6IWTFKPIYwjEm3PZOEnMFHSS5qRLUs+NZURkrFmdQvcTBL146tppFqGcDbGIkM b/RAFHbgpt6NafZSzUgfG4aNpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLz1GM0K KM3+r7YwOZs/y3SId2KnMB8GA1UdIwQYMBaAFBdrzhXIYtR7p2Ch9mU4+B1cSTuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDZFNC8zMkU5OTNDMEE2 ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi9GMnZPRmNoaTFIdW5ZS0gyWlRqNEhWeEpP NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Yydk9GY2hpMUh1bllLSDJaVGo0SFZ4Sk80RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA2RTQvMzJFOTkzQzBBNjg0MTFFRjhGNUVEMzdGQzRGOUFFMDIvMkNFMTA4ODZB Njg1MTFFRkIwQ0Y5OTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgv+QwDQYJKoZIhvcNAQELBQADggEBAMb1M9qoPsw1SSmq BaUJazvIyku7XseAKc7tF8KCmaeD6ek8J3d43CXFRFifGbcrs3ayP7CFToTMVLPi GMeL87+/HdDxDN6JoxMaaWk4Vee8SA0cQyUmtTMpEtulQS1m0/NUq/yEHk9a+fI1 ygSmaB/BB6I7wKbriSX8sAL5gwI9jOqq4bzbkDBPPYkDvNCN9agkUkqvfAitAvLB cvCVpCtAs2I32BHtbYx0TaGMK7b0MI5hXNZh0B23ffR/94k2TRbxTZPvKvb0bjL3 gy6zAlwMMOBd1AUeZHmaOD3h7OQ9ZKSqYhnT8nd0zIdgINjLltbAWlyHs18A1srt wPRrVeQ= -----END CERTIFICATE-----Generated at Sun Jan 25 21:46:28 2026 by rpki-client