This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/5C9E3A00E83111F0B570A08B79EE528E.roa File: 5C9E3A00E83111F0B570A08B79EE528E.roa (raw, json) Hash identifier: s/UhkyPyKTMHGbvjJlgXfdwpVyieYATdESrNaRuG6IQ= Subject key identifier: DF:CC:38:C4:17:C3:13:57:40:2C:02:27:AD:3C:58:38:5D:31:69:9B Certificate issuer: /CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Certificate serial: 05CB Authority key identifier: FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/5C9E3A00E83111F0B570A08B79EE528E.roa Signing time: Mon 05 Jan 2026 05:19:49 +0000 ROA not before: Mon 05 Jan 2026 05:19:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 2697 IP address blocks: 202.41.64.0/19 maxlen: 24 202.41.96.0/20 maxlen: 24 202.141.128.0/19 maxlen: 24 2001:e30:1100::/40 maxlen: 40 2001:e30:1111::/48 maxlen: 48 2001:e30:1200::/40 maxlen: 40 2001:e30:1300::/40 maxlen: 40 2001:e30:1400::/40 maxlen: 40 2001:e30:1500::/40 maxlen: 40 2001:e30:1600::/40 maxlen: 40 2001:e30:1800::/40 maxlen: 40 2001:e30:187c::/48 maxlen: 48 2001:e30:1a00::/40 maxlen: 40 2001:e30:1b00::/40 maxlen: 40 2001:e30:1b06::/48 maxlen: 48 2001:e30:1c1e::/48 maxlen: 48 2001:e30:1e00::/40 maxlen: 40 2001:e30:1f00::/40 maxlen: 40 2001:e30:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1483 (0x5cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91853D3, serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Validity Not Before: Jan 5 05:19:49 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=695b49f5-cabd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4b:78:fc:a7:89:09:57:6a:61:b6:7f:54:bf: 91:5b:66:ee:1b:11:c9:77:f9:57:34:9b:7a:f3:e3: 59:e5:ab:8b:a3:82:e0:95:3a:db:fb:34:46:bf:9a: 06:db:ab:83:6a:a4:cd:a6:9f:50:39:9b:90:13:3a: 65:d7:b7:93:22:13:a9:37:d1:78:53:a7:69:b0:a1: 45:42:da:33:23:81:30:f1:9a:21:e8:af:c4:ae:f4: 9f:a9:6a:cf:32:9b:f0:a2:85:85:bf:b7:70:e2:11: 1d:a9:5a:15:75:77:0f:35:67:b6:bb:57:ff:56:ca: 70:76:1d:c0:8c:07:db:36:17:aa:e2:b4:73:ed:3f: 75:97:3d:36:92:54:b3:52:e5:e5:1d:59:e0:13:c5: f1:08:98:91:f8:7a:ef:59:c0:1c:8a:60:7e:66:9b: b3:e7:ae:f5:d3:73:70:98:23:12:eb:e9:da:57:69: 4d:59:51:96:9d:44:66:7e:f9:76:e8:d3:e1:78:3b: be:17:b4:2a:67:3d:cf:10:6e:c5:1f:fe:58:f0:53: e9:d8:8f:29:e4:ac:90:26:6a:00:9f:29:88:d2:92: c9:0c:46:eb:e6:94:af:c2:52:ae:7c:ce:4e:8c:db: e2:6a:ee:5a:e7:08:86:ae:35:be:01:40:dd:be:fc: 57:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:CC:38:C4:17:C3:13:57:40:2C:02:27:AD:3C:58:38:5D:31:69:9B X509v3 Authority Key Identifier: keyid:FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/5C9E3A00E83111F0B570A08B79EE528E.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.41.64.0-202.41.111.255 202.141.128.0/19 IPv6: 2001:e30:1100::-2001:e30:16ff:ffff:ffff:ffff:ffff:ffff 2001:e30:1800::/40 2001:e30:1a00::/39 2001:e30:1c1e::/48 2001:e30:1e00::-2001:e30:20ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a3:8e:6b:c7:cc:cf:1c:38:20:9b:cc:49:36:51:7e:e4:60:ef: 2d:86:ec:47:64:7f:a7:e0:7b:72:d0:05:ec:26:65:e2:c0:9a: be:12:5d:c7:a4:a6:1f:67:3f:cc:8f:2a:a0:16:53:41:6a:14: 8c:23:68:8f:d2:9d:18:d2:45:4e:aa:53:97:d7:33:b7:f9:e0: 95:98:51:02:04:c0:ce:42:ad:6a:95:68:21:62:11:7d:40:81: 9c:c5:a5:b1:f5:65:96:d2:8e:57:f4:e6:db:61:1b:f8:ad:bd: 05:12:a9:24:9f:2a:21:af:4b:aa:a6:25:67:07:86:d4:eb:3f: b2:9d:b0:e8:03:b3:9a:b9:89:8f:3e:d5:c7:08:1d:7b:f3:ef: 2c:67:5d:22:68:2a:10:39:d3:e8:69:7e:f7:e8:13:e0:cf:0e: 2d:1f:39:e1:ea:e3:52:75:67:e8:88:42:ce:4c:fa:e5:ac:dd: 27:32:eb:39:4a:e1:d7:6f:df:21:22:3a:77:ba:8f:84:a2:32: 57:59:23:ab:03:6e:68:01:83:a6:17:3e:f5:83:ac:5f:f5:5c: bd:0c:37:6e:35:7d:bd:b0:ee:db:cf:ba:b0:90:01:73:e2:c4: 39:ea:0f:e2:5f:79:7a:98:35:8f:f1:57:39:1a:49:e8:5b:f7: 22:e6:a5:d7 -----BEGIN CERTIFICATE----- MIIFxDCCBKygAwIBAgICBcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx ODUzRDMxMTAvBgNVBAUTKEZBMDQ1QzYzMDJCODczRTg4MzY1RkE5QTAyMTQ5OUI0 RjNDNTg2ODgwHhcNMjYwMTA1MDUxOTQ5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTViNDlmNS1jYWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkt4/KeJCVdqYbZ/VL+RW2buGxHJd/lXNJt68+NZ5auLo4LglTrb+zRGv5oG 26uDaqTNpp9QOZuQEzpl17eTIhOpN9F4U6dpsKFFQtozI4Ew8Zoh6K/ErvSfqWrP MpvwooWFv7dw4hEdqVoVdXcPNWe2u1f/Vspwdh3AjAfbNheq4rRz7T91lz02klSz UuXlHVngE8XxCJiR+HrvWcAcimB+Zpuz567103NwmCMS6+naV2lNWVGWnURmfvl2 6NPheDu+F7QqZz3PEG7FH/5Y8FPp2I8p5KyQJmoAnymI0pLJDEbr5pSvwlKufM5O jNviau5a5wiGrjW+AUDdvvxXAwIDAQABo4IC6DCCAuQwHQYDVR0OBBYEFN/MOMQX wxNXQCwCJ608WDhdMWmbMB8GA1UdIwQYMBaAFPoEXGMCuHPog2X6mgIUmbTzxYaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTNEMy82RUMwRTM2ODAw MEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMtaURaZnFhQWhTWnRQUEZo b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nUmNZd0s0Yy1pRFpmcWFBaFNadFBQRmhvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODUzRDMvNkVDMEUzNjgwMDBBMTFFQzhDMjg3MjUyQzRGOUFFMDIvNUM5RTNBMDBF ODMxMTFGMEI1NzBBMDhCNzlFRTUyOEUucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwcgYIKwYBBQUHAQcBAf8E YzBhMBoEAgABMBQwDAMEBsopQAMEBMopYAMEBcqNgDBDBAIAAjA9MBADBgAgAQ4w EQMGACABDjAWAwYAIAEOMBgDBgEgAQ4wGgMHACABDjAcHjAQAwYBIAEOMB4DBgAg AQ4wIDANBgkqhkiG9w0BAQsFAAOCAQEAo45rx8zPHDggm8xJNlF+5GDvLYbsR2R/ p+B7ctAF7CZl4sCavhJdx6SmH2c/zI8qoBZTQWoUjCNoj9KdGNJFTqpTl9czt/ng lZhRAgTAzkKtapVoIWIRfUCBnMWlsfVlltKOV/Tm22Eb+K29BRKpJJ8qIa9LqqYl ZweG1Os/sp2w6AOzmrmJjz7Vxwgde/PvLGddImgqEDnT6Gl+9+gT4M8OLR854erj UnVn6IhCzkz65azdJzLrOUrh12/fISI6d7qPhKIyV1kjqwNuaAGDphc+9YOsX/Vc vQw3bjV9vbDu28+6sJABc+LEOeoP4l95epg1j/FXORpJ6Fv3Iual1w== -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:19 2026 by rpki-client