This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/D2D7B762995611EFADA5D754C4F9AE02.roa File: D2D7B762995611EFADA5D754C4F9AE02.roa (raw, json) Hash identifier: DBuT5pVIx5+DapGoOy/MWoVxejvGW3jQONX5f21P15c= Subject key identifier: 89:34:B3:BF:65:07:FA:FF:E6:A4:4C:F2:67:C8:76:74:26:76:75:15 Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: DF Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/D2D7B762995611EFADA5D754C4F9AE02.roa Signing time: Fri 05 Dec 2025 03:43:54 +0000 ROA not before: Fri 05 Dec 2025 03:43:54 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 136574 IP address blocks: 160.191.154.0/23 maxlen: 23 160.191.154.0/24 maxlen: 24 160.191.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:43:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Dec 5 03:43:54 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=693254fa-10ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ab:23:3c:f1:3c:5f:1b:06:b3:ca:1d:78:14: 35:8e:c1:98:74:e9:1e:b9:9f:31:ff:15:31:5e:c8: 7c:a0:65:74:61:1c:06:5e:12:f6:93:f0:25:5a:e8: 94:03:73:e2:b7:20:4a:9e:c2:b0:48:8e:d8:e2:ac: 0d:cc:b9:9a:73:17:89:72:87:0b:f7:be:e5:dd:35: 74:44:83:d6:32:68:26:c8:79:fb:bb:7c:ee:04:6b: 69:ad:21:a6:27:82:fd:26:f7:4b:d0:15:00:dd:9b: a1:3e:d6:3b:7c:97:f1:42:b9:8a:61:fa:5f:32:c4: 98:ec:11:ba:92:9c:9b:d9:06:f5:35:90:b7:23:62: 99:13:f0:f8:75:88:bc:a7:ec:7a:13:d9:09:39:30: 07:79:58:77:0b:c2:3f:10:e6:b1:cc:86:fe:d5:20: c6:0e:17:c2:cd:af:e8:eb:08:89:ca:1a:e8:e1:2c: 02:6d:2c:10:71:f1:7d:e5:1b:0f:e4:a9:2a:9b:a1: 6a:b1:97:f8:8c:e5:8c:73:e2:98:60:16:81:93:38: 05:b3:86:7e:cf:1a:87:4d:b3:e2:04:d2:da:6e:45: 81:5c:32:2e:94:f7:3e:74:4f:7f:8d:f0:d9:fc:d1: c3:96:72:75:11:6b:99:54:b1:0a:4e:50:0d:a2:44: dc:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:34:B3:BF:65:07:FA:FF:E6:A4:4C:F2:67:C8:76:74:26:76:75:15 X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/D2D7B762995611EFADA5D754C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.154.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:e2:13:b5:84:93:48:a0:1e:7c:e0:35:42:1f:1c:a2:60:b3: 31:f2:ef:b5:08:9e:c4:da:2b:18:97:63:af:cf:2d:f2:4c:30: 15:6b:c9:01:6d:cb:a1:2e:f4:5e:70:4e:e5:e5:84:52:d8:66: ad:fc:46:33:04:9a:2b:f9:6b:3e:4e:5c:08:94:05:6d:23:a4: 7f:70:b0:d6:ff:e1:7e:76:d7:95:a8:5a:c0:5f:00:4c:27:ee: 66:47:34:b1:97:a0:e2:e8:5b:bb:1d:16:69:3c:9e:90:59:80: ce:2b:23:de:64:dd:b8:7a:c5:8a:f3:05:25:4e:9e:43:54:e3: 02:df:3c:2e:62:c8:bd:9d:d8:dd:a8:73:84:41:98:37:49:05: b7:43:ca:e7:a8:0d:6c:7e:d0:70:b0:de:f7:85:1f:9f:10:69: 6d:78:fb:01:3e:e6:93:17:0d:17:ac:11:fa:3f:e3:0a:72:91: b4:3a:ba:ef:42:0d:fd:79:62:d2:c8:f2:b2:ba:ff:d7:d7:d4: c5:e4:a1:8c:62:2c:67:6a:d1:f3:aa:d8:d7:e7:fa:6f:fc:10: 90:61:8a:1c:de:9d:53:f9:f0:c3:9f:fb:7f:8f:2c:6f:63:f7: 21:b6:61:0c:27:04:21:92:f7:e0:eb:c8:4f:8a:e2:59:4b:e2: 59:6d:8a:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjUxMjA1MDM0MzU0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMyNTRmYS0xMGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApasjPPE8XxsGs8odeBQ1jsGYdOkeuZ8x/xUxXsh8oGV0YRwGXhL2k/AlWuiU A3PityBKnsKwSI7Y4qwNzLmacxeJcocL977l3TV0RIPWMmgmyHn7u3zuBGtprSGm J4L9JvdL0BUA3ZuhPtY7fJfxQrmKYfpfMsSY7BG6kpyb2Qb1NZC3I2KZE/D4dYi8 p+x6E9kJOTAHeVh3C8I/EOaxzIb+1SDGDhfCza/o6wiJyhro4SwCbSwQcfF95RsP 5Kkqm6FqsZf4jOWMc+KYYBaBkzgFs4Z+zxqHTbPiBNLabkWBXDIulPc+dE9/jfDZ /NHDlnJ1EWuZVLEKTlANokTcMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIk0s79l B/r/5qRM8mfIdnQmdnUVMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcyREYvMjdFM0VEQTQ5ODMzMTFFRjgzMTg5QTU3QzRGOUFFMDIvRDJEN0I3NjI5 OTU2MTFFRkFEQTVENzU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgv5owDQYJKoZIhvcNAQELBQADggEBAJriE7WEk0igHnzg NUIfHKJgszHy77UInsTaKxiXY6/PLfJMMBVryQFty6Eu9F5wTuXlhFLYZq38RjME miv5az5OXAiUBW0jpH9wsNb/4X5215WoWsBfAEwn7mZHNLGXoOLoW7sdFmk8npBZ gM4rI95k3bh6xYrzBSVOnkNU4wLfPC5iyL2d2N2oc4RBmDdJBbdDyueoDWx+0HCw 3veFH58QaW14+wE+5pMXDResEfo/4wpykbQ6uu9CDf15YtLI8rK6/9fX1MXkoYxi LGdq0fOq2Nfn+m/8EJBhihzenVP58MOf+3+PLG9j9yG2YQwnBCGS9+DryE+K4llL 4lltioc= -----END CERTIFICATE-----Generated at Sat Dec 6 20:30:01 2025 by rpki-client