This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/66F91334ED4911ED9A90391BC4F9AE02.roa File: 66F91334ED4911ED9A90391BC4F9AE02.roa (raw, json) Hash identifier: 20mwh4S1N9cV75zDwMEBAcXWu2kbD0NO7KHg8fUiIBs= Subject key identifier: 58:2C:6D:8C:ED:65:96:21:50:50:1B:0E:20:43:CC:29:5B:51:C5:50 Certificate issuer: /CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Certificate serial: 0B1F Authority key identifier: 3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/66F91334ED4911ED9A90391BC4F9AE02.roa Signing time: Sat 06 Dec 2025 19:00:37 +0000 ROA not before: Sat 06 Dec 2025 19:00:37 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 9650 IP address blocks: 131.242.0.0/16 maxlen: 16 131.242.21.0/24 maxlen: 24 131.242.22.0/24 maxlen: 24 131.242.23.0/24 maxlen: 24 131.242.26.0/24 maxlen: 24 131.242.30.0/24 maxlen: 24 131.242.55.0/24 maxlen: 24 131.242.68.0/24 maxlen: 24 131.242.132.0/24 maxlen: 24 131.242.144.0/22 maxlen: 22 131.242.176.0/20 maxlen: 20 131.242.230.0/24 maxlen: 24 131.242.231.0/24 maxlen: 24 147.132.0.0/16 maxlen: 16 161.143.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2847 (0xb1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Validity Not Before: Dec 6 19:00:37 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69347d55-752b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:23:bc:42:6b:65:fa:23:23:cf:1c:95:65:2d: 47:5a:4a:b5:38:4a:56:6f:a6:8a:7e:b7:93:90:f3: 6e:e5:1b:ca:3b:ad:85:4e:b8:d5:00:4f:15:30:15: 76:bc:78:f0:de:0b:a1:0b:10:85:1f:38:28:df:ae: 73:72:01:ac:9e:86:62:af:43:ba:04:85:45:27:19: b5:ee:25:dd:98:0e:2d:96:5a:60:b2:42:3a:97:f8: 2b:00:ae:90:83:bb:76:77:d4:a2:41:2c:9d:d0:0f: 68:ee:0a:fc:54:d6:75:d4:c1:75:6f:26:80:64:e0: 0f:7a:2f:61:86:9b:7a:aa:ce:9f:6c:08:30:83:bb: b6:83:ad:b1:6f:0e:41:a5:ca:65:3d:74:65:2c:6a: 79:2c:c7:84:69:c2:d7:6e:fd:fd:30:02:0e:a6:96: da:85:b7:cc:b8:b5:9a:17:bd:51:1c:c9:39:9e:6d: fa:30:d6:b7:4a:47:4c:1e:36:1a:9b:16:61:e4:23: e4:ca:3f:78:9b:cd:4c:4c:0c:92:29:9b:7d:0a:b6: b2:cf:60:25:c1:53:ed:24:74:f8:51:ec:47:1c:0c: 01:41:9e:7a:e6:a8:d2:01:1c:f9:87:c9:0c:83:8e: 3c:5e:cc:18:d8:68:9e:51:60:b7:25:05:db:9d:92: 5d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:2C:6D:8C:ED:65:96:21:50:50:1B:0E:20:43:CC:29:5B:51:C5:50 X509v3 Authority Key Identifier: keyid:3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/66F91334ED4911ED9A90391BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.242.0.0/16 147.132.0.0/16 161.143.0.0/16 Signature Algorithm: sha256WithRSAEncryption 86:bd:6f:aa:5b:09:4a:47:0c:05:d7:11:8f:d1:14:4b:e9:56: 5e:4e:a0:d4:7f:fd:43:0b:77:aa:97:62:a2:1e:48:1b:9b:08: 3c:38:34:9e:e1:9a:e2:5f:2d:7e:87:d9:73:83:30:11:67:4e: 17:de:23:48:71:5f:28:1f:13:88:34:92:3c:c5:d3:b5:99:21: 04:a5:5c:b1:87:99:95:74:ec:60:de:cd:76:23:9e:b6:78:aa: ed:a6:00:4b:38:55:d5:da:67:35:b9:6a:f6:59:29:99:f9:0d: fa:05:b3:63:c8:82:09:df:bf:fb:e7:4a:1e:45:a9:39:49:9d: ea:6f:36:77:8f:7d:d2:bd:3a:d0:92:27:b5:fd:ef:62:f2:df: 32:34:1d:95:fb:70:d0:04:43:09:95:33:e0:cd:e1:d0:be:de: fb:e3:db:8f:7f:2b:5b:66:29:f8:31:5b:51:7f:b3:4f:1d:bc: ff:ba:c1:f0:f1:a0:11:8a:6d:1e:26:14:05:05:ef:12:05:81: c5:cd:95:1e:69:f5:b4:07:64:82:12:5d:28:e0:71:44:ca:61: 75:a5:2d:d4:a1:d4:9b:3d:fa:a5:9f:30:eb:18:e8:38:3f:8d: 0b:84:b4:95:4e:3d:36:c8:b3:e1:15:8e:f9:18:ea:17:bf:06: e8:65:09:a5 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgICCx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKDNDNkVDMDlCMDk1RkE1RjUxMzYxNTEwOEE1NDQ3Q0FD QjcxQUIxQTEwHhcNMjUxMjA2MTkwMDM3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM0N2Q1NS03NTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCO8Qmtl+iMjzxyVZS1HWkq1OEpWb6aKfreTkPNu5RvKO62FTrjVAE8VMBV2 vHjw3guhCxCFHzgo365zcgGsnoZir0O6BIVFJxm17iXdmA4tllpgskI6l/grAK6Q g7t2d9SiQSyd0A9o7gr8VNZ11MF1byaAZOAPei9hhpt6qs6fbAgwg7u2g62xbw5B pcplPXRlLGp5LMeEacLXbv39MAIOppbahbfMuLWaF71RHMk5nm36MNa3SkdMHjYa mxZh5CPkyj94m81MTAySKZt9Crayz2AlwVPtJHT4UexHHAwBQZ565qjSARz5h8kM g448XswY2GieUWC3JQXbnZJdEwIDAQABo4ICnjCCApowHQYDVR0OBBYEFFgsbYzt ZZYhUFAbDiBDzClbUcVQMB8GA1UdIwQYMBaAFDxuwJsJX6X1E2FRCKVEfKy3GrGh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9DOTUyQUM5RTUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBmVVRZVkVJcFVSOHJMY2Fz YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BHN0Ftd2xmcGZVVFlWRUlwVVI4ckxjYXNhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U0QkEvQzk1MkFDOUU1MkRDMTFFQTgyNjAxQjBGQzRGOUFFMDIvNjZGOTEzMzRF RDQ5MTFFRDlBOTAzOTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKAYIKwYBBQUHAQcBAf8E GTAXMBUEAgABMA8DAwCD8gMDAJOEAwMAoY8wDQYJKoZIhvcNAQELBQADggEBAIa9 b6pbCUpHDAXXEY/RFEvpVl5OoNR//UMLd6qXYqIeSBubCDw4NJ7hmuJfLX6H2XOD MBFnThfeI0hxXygfE4g0kjzF07WZIQSlXLGHmZV07GDezXYjnrZ4qu2mAEs4VdXa ZzW5avZZKZn5DfoFs2PIggnfv/vnSh5FqTlJnepvNnePfdK9OtCSJ7X972Ly3zI0 HZX7cNAEQwmVM+DN4dC+3vvj249/K1tmKfgxW1F/s08dvP+6wfDxoBGKbR4mFAUF 7xIFgcXNlR5p9bQHZIISXSjgcUTKYXWlLdSh1Js9+qWfMOsY6Dg/jQuEtJVOPTbI s+EVjvkY6he/BuhlCaU= -----END CERTIFICATE-----Generated at Sun Dec 7 01:56:06 2025 by rpki-client