This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/05529B76F27B11EF93263D48C4F9AE02.roa File: 05529B76F27B11EF93263D48C4F9AE02.roa (raw, json) Hash identifier: N6l8QOkNyQoBC8wbgsjoyMqZiIfoVcs9FGqJlDKK2jY= Subject key identifier: 96:74:FA:B8:CE:0E:6E:8F:3D:E5:77:97:61:1C:71:5C:76:A6:84:56 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1FFA Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/05529B76F27B11EF93263D48C4F9AE02.roa Signing time: Wed 12 Nov 2025 09:50:20 +0000 ROA not before: Wed 12 Nov 2025 09:50:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140171 IP address blocks: 138.252.110.0/24 maxlen: 24 160.30.214.0/23 maxlen: 24 160.187.82.0/24 maxlen: 24 160.187.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 12:10:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8186 (0x1ffa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Nov 12 09:50:20 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6914585b-31c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:70:24:b6:08:ae:04:7f:53:b0:2e:1f:5d:9f: a4:4d:76:cd:5d:94:73:82:07:18:3b:c0:5c:28:7a: 4f:10:e5:18:7c:1c:8d:b0:ba:b4:31:25:30:56:7a: d2:c9:8c:cc:33:55:ae:e0:91:4b:55:fc:a8:6a:5e: 6a:2f:42:01:c9:76:76:30:09:a4:f7:82:8e:fe:d4: 06:65:1f:9c:d9:9f:ab:90:db:6c:55:3a:9a:5e:63: db:96:87:cc:e2:a4:3b:23:17:99:74:f5:69:7d:7c: 5a:1e:5b:7b:8d:2f:7b:4f:89:5c:98:53:a6:99:04: 41:e7:d1:1e:71:3e:d5:e9:42:32:f9:13:9a:0d:0b: f9:e7:d9:43:69:b6:04:aa:0f:ec:1d:d1:34:d0:7c: 27:a8:5b:c0:a3:d3:ea:a7:6e:8f:b8:68:62:a9:a7: 32:d0:96:43:e7:5b:ce:da:b6:35:e3:12:7d:b6:b9: ad:50:a1:28:3c:c8:b4:74:d4:c6:fe:8d:d8:bb:5b: 2b:6c:53:0d:b9:11:64:bc:bf:6a:38:f5:8b:87:4e: 5a:ec:4a:b0:ea:24:82:65:9a:c6:c1:a1:59:2f:63: ab:09:95:ad:b3:1e:db:e1:70:f5:76:4f:2d:db:e3: 3a:e5:0a:e3:5f:67:a9:f0:f4:a2:6f:e1:ba:e0:4d: 84:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:74:FA:B8:CE:0E:6E:8F:3D:E5:77:97:61:1C:71:5C:76:A6:84:56 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/05529B76F27B11EF93263D48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.110.0/24 160.30.214.0/23 160.187.82.0/23 Signature Algorithm: sha256WithRSAEncryption b6:3f:6f:37:53:a7:8c:9f:2a:2e:0f:0f:c6:b3:87:01:b3:7b: c3:ae:20:b2:56:9d:5a:e5:ce:b4:f2:cb:64:9c:4f:be:22:34: d4:05:f2:40:5d:93:11:e3:25:72:00:d2:77:ac:48:e4:17:ef: b8:69:12:0c:97:6f:e3:6a:b1:df:7f:5f:bc:46:ce:c2:e8:6a: f9:b0:af:64:8d:b4:72:ef:67:b5:b4:fd:ac:7f:3e:44:42:22: a1:2d:2b:3c:06:44:5c:3a:e5:4f:e4:90:d3:a1:85:cd:51:30: 48:00:9b:40:0e:a3:2b:b4:31:1e:83:b6:be:02:da:12:94:20: 6d:74:74:47:86:70:fa:bd:54:f4:2e:d7:dc:ea:c1:fb:ce:8a: ce:76:33:38:ce:19:22:43:2e:4f:3e:a2:df:e9:26:b5:28:1f: 8e:a1:71:b9:3d:83:17:9b:70:03:15:be:19:5b:d8:63:7d:cd: a9:4a:51:e0:bd:fd:28:db:60:8c:8f:91:8a:c3:9f:fe:39:6c: cd:2c:8a:e4:6c:6f:8f:cd:4b:0b:3e:73:e5:ca:21:80:a4:ca: 59:ff:ba:64:e8:6f:9e:f0:e0:24:18:dc:aa:7c:05:99:6e:b5: 7d:82:9d:dc:9e:0b:be:3e:e5:87:83:ef:12:29:84:b2:24:9c: 5b:9c:33:54 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICH/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUxMTEyMDk1MDIwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTE0NTg1Yi0zMWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3AktgiuBH9TsC4fXZ+kTXbNXZRzggcYO8BcKHpPEOUYfByNsLq0MSUwVnrS yYzMM1Wu4JFLVfyoal5qL0IByXZ2MAmk94KO/tQGZR+c2Z+rkNtsVTqaXmPblofM 4qQ7IxeZdPVpfXxaHlt7jS97T4lcmFOmmQRB59EecT7V6UIy+ROaDQv559lDabYE qg/sHdE00HwnqFvAo9Pqp26PuGhiqacy0JZD51vO2rY14xJ9trmtUKEoPMi0dNTG /o3Yu1srbFMNuRFkvL9qOPWLh05a7Eqw6iSCZZrGwaFZL2OrCZWtsx7b4XD1dk8t 2+M65QrjX2ep8PSib+G64E2E0wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJZ0+rjO Dm6PPeV3l2EccVx2poRWMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDU1MjlCNzZG MjdCMTFFRjkzMjYzRDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBACK/G4DBAGgHtYDBAGgu1IwDQYJKoZIhvcNAQELBQADggEB ALY/bzdTp4yfKi4PD8azhwGze8OuILJWnVrlzrTyy2ScT74iNNQF8kBdkxHjJXIA 0nesSOQX77hpEgyXb+Nqsd9/X7xGzsLoavmwr2SNtHLvZ7W0/ax/PkRCIqEtKzwG RFw65U/kkNOhhc1RMEgAm0AOoyu0MR6Dtr4C2hKUIG10dEeGcPq9VPQu19zqwfvO is52MzjOGSJDLk8+ot/pJrUoH46hcbk9gxebcAMVvhlb2GN9zalKUeC9/SjbYIyP kYrDn/45bM0siuRsb4/NSws+c+XKIYCkyln/umTob57w4CQY3Kp8BZlutX2Cndye C74+5YeD7xIphLIknFucM1Q= -----END CERTIFICATE-----Generated at Sat Dec 6 16:00:13 2025 by rpki-client