This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/A54CA35E853B11EFB513D149C4F9AE02.roa File: A54CA35E853B11EFB513D149C4F9AE02.roa (raw, json) Hash identifier: 2KKCuwPRzvtxCM2tfqPBKgcx+LBlA+mjEQsE3gjTcg0= Subject key identifier: AD:23:CE:C2:C2:4E:BD:95:3E:96:19:4C:16:18:CF:96:C6:BD:C6:67 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: E8 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/A54CA35E853B11EFB513D149C4F9AE02.roa Signing time: Fri 05 Dec 2025 03:44:06 +0000 ROA not before: Fri 05 Dec 2025 03:44:06 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150154 IP address blocks: 160.187.184.0/23 maxlen: 23 160.187.184.0/24 maxlen: 24 160.187.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Dec 5 03:44:06 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69325505-1065 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e8:f4:6c:cd:70:73:89:44:85:36:78:c7:dd: ff:64:d2:f3:72:9e:48:4e:9b:1a:4b:a0:42:f2:d7: 3a:c7:99:3b:49:09:4d:3d:38:79:a4:65:11:b0:6b: 68:71:25:e5:8e:eb:50:2a:8f:3a:3f:ef:1f:24:aa: 04:cb:09:34:16:94:f2:89:37:4f:62:00:7c:77:0a: dc:8e:8f:e0:2f:a9:8a:3b:58:13:3a:af:2e:0d:a1: ba:66:1d:5e:33:b9:4e:a5:48:95:30:c7:8a:cc:8e: 5c:56:92:54:fb:b6:07:21:7c:55:1a:2d:3f:34:ef: ff:5d:ac:a5:f3:6b:cd:7f:d3:39:f7:32:7f:53:18: 32:22:2a:14:12:84:59:51:2f:f8:53:00:03:99:59: ab:eb:d8:d4:19:d8:cc:19:6a:99:b5:78:65:39:41: db:77:d0:10:1e:1c:75:d5:32:c8:e0:c8:2f:85:43: d7:69:5a:ca:48:0a:f3:d1:20:be:86:3a:9a:9a:a5: 53:15:bb:14:db:e3:bb:4d:d3:fa:5d:ab:1c:c8:64: 28:80:ce:d4:ca:ed:a5:0a:1d:fa:31:5c:11:b1:9f: fb:78:d8:1b:88:8f:39:96:c1:31:44:90:db:66:26: a5:cb:ae:6d:c8:bc:38:80:3c:9b:8b:e3:42:2e:a1: 7a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:23:CE:C2:C2:4E:BD:95:3E:96:19:4C:16:18:CF:96:C6:BD:C6:67 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/A54CA35E853B11EFB513D149C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.184.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:16:fe:f6:5e:77:16:66:be:36:a9:6f:16:ae:cf:d5:eb:b9: 2e:5f:54:20:cb:70:90:59:16:51:16:0b:66:4e:28:fd:29:20: 69:69:1d:e8:6a:81:d3:22:98:d8:ab:50:df:96:48:3b:cc:e8: 95:ec:d3:1f:3a:1e:74:fb:66:23:bb:90:76:72:e5:06:f0:5f: 4b:01:13:1a:aa:a8:51:32:5c:3c:83:4a:83:4b:fb:f0:c6:ad: 06:ba:9d:b2:17:6c:be:f2:78:d0:d5:bf:53:58:ae:4e:01:6f: eb:e3:c9:5a:ea:1c:b3:08:46:32:e5:1a:9c:9b:46:92:eb:04: f3:6b:2d:cf:d9:47:bb:c0:97:c9:3d:b4:a8:8e:7d:c9:4c:bf: 16:f8:57:d2:16:5d:37:dc:8a:aa:f2:f3:8d:9b:16:7e:7c:f8: 52:3a:2b:98:d6:3b:3e:06:f7:39:ac:69:38:6e:e2:6d:5d:84: 1f:82:c7:b5:35:d8:25:d5:23:41:85:d4:3c:49:1b:6b:77:98: a5:41:ea:bd:66:fd:3f:29:0a:b8:47:8e:e3:88:8d:2e:b2:bc: cb:b4:d4:c1:b2:76:8c:71:3e:d4:d3:ce:58:6a:ee:c3:27:71: f2:8a:90:4a:7a:b6:34:4e:3c:95:18:2f:b1:9e:3f:30:12:24: 6d:72:89:e9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjUxMjA1MDM0NDA2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMyNTUwNS0xMDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+j0bM1wc4lEhTZ4x93/ZNLzcp5ITpsaS6BC8tc6x5k7SQlNPTh5pGURsGto cSXljutQKo86P+8fJKoEywk0FpTyiTdPYgB8dwrcjo/gL6mKO1gTOq8uDaG6Zh1e M7lOpUiVMMeKzI5cVpJU+7YHIXxVGi0/NO//Xayl82vNf9M59zJ/UxgyIioUEoRZ US/4UwADmVmr69jUGdjMGWqZtXhlOUHbd9AQHhx11TLI4MgvhUPXaVrKSArz0SC+ hjqamqVTFbsU2+O7TdP6XascyGQogM7Uyu2lCh36MVwRsZ/7eNgbiI85lsExRJDb Zialy65tyLw4gDybi+NCLqF6kQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK0jzsLC Tr2VPpYZTBYYz5bGvcZnMB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBFRUQvMzc0MDJBREU4NTNCMTFFRkEzMDcyMzQ5QzRGOUFFMDIvQTU0Q0EzNUU4 NTNCMTFFRkI1MTNEMTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgu7gwDQYJKoZIhvcNAQELBQADggEBAFwW/vZedxZmvjap bxauz9XruS5fVCDLcJBZFlEWC2ZOKP0pIGlpHehqgdMimNirUN+WSDvM6JXs0x86 HnT7ZiO7kHZy5QbwX0sBExqqqFEyXDyDSoNL+/DGrQa6nbIXbL7yeNDVv1NYrk4B b+vjyVrqHLMIRjLlGpybRpLrBPNrLc/ZR7vAl8k9tKiOfclMvxb4V9IWXTfciqry 842bFn58+FI6K5jWOz4G9zmsaThu4m1dhB+Cx7U12CXVI0GF1DxJG2t3mKVB6r1m /T8pCrhHjuOIjS6yvMu01MGydoxxPtTTzlhq7sMncfKKkEp6tjROPJUYL7GePzAS JG1yiek= -----END CERTIFICATE-----Generated at Sat Dec 6 19:17:28 2025 by rpki-client