This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/5042D03ED2EF11EFBA610425C4F9AE02.roa File: 5042D03ED2EF11EFBA610425C4F9AE02.roa (raw, json) Hash identifier: WZrBwoOurpDQ7WWhSutjgFaenWEpcVR+50/xxPnjbM0= Subject key identifier: 57:BA:EE:01:46:53:3B:60:8D:76:12:45:FD:D4:80:0E:12:1B:A4:29 Certificate issuer: /CN=A9198553/serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Certificate serial: C8 Authority key identifier: 93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/5042D03ED2EF11EFBA610425C4F9AE02.roa Signing time: Fri 23 Jan 2026 05:25:12 +0000 ROA not before: Fri 23 Jan 2026 05:25:11 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 153525 IP address blocks: 161.248.186.0/24 maxlen: 24 161.248.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198553, serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Validity Not Before: Jan 23 05:25:11 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69730637-9e2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:35:d7:fb:fe:c3:23:bd:21:ac:f1:ef:6f:36: d9:a5:cd:1b:29:53:45:c7:0f:a4:96:c1:92:fb:da: 12:d1:26:92:a7:71:0b:c6:3f:5e:38:e6:18:0b:d5: d4:ef:46:3d:82:51:f2:01:0c:ac:8e:bf:27:8a:33: e0:80:86:78:84:bd:14:e1:b5:d9:e9:61:4d:a6:6b: 73:db:80:94:60:d0:51:48:7b:13:65:4b:17:b2:23: ae:96:b5:8a:cf:a6:24:85:99:00:e8:4e:76:1a:36: 44:24:a4:c7:e3:52:4f:27:ce:00:6a:a3:70:d6:c9: 59:e1:ca:0b:ea:6b:0d:7a:55:4c:00:b3:35:46:cd: 57:d8:9c:e1:62:20:a3:ec:ad:24:99:e8:4f:ec:6c: 70:79:04:ca:4d:fd:37:5a:fd:12:8e:e5:94:10:26: 91:aa:1e:26:92:88:12:98:7d:ee:9b:96:9e:8b:92: c6:d0:04:c6:58:6f:b7:f5:29:cd:49:16:46:cd:5a: 11:00:2d:b1:60:72:9f:0a:96:d3:5e:0c:a6:9b:6f: 88:54:e3:c5:a3:cb:41:07:69:3b:2b:cf:ad:d3:46: 4c:4b:e4:10:b0:c9:c0:d7:34:16:f0:f9:fc:d6:47: 81:23:49:05:d8:48:f9:5e:12:27:e6:84:d4:da:83: 8c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:BA:EE:01:46:53:3B:60:8D:76:12:45:FD:D4:80:0E:12:1B:A4:29 X509v3 Authority Key Identifier: keyid:93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/5042D03ED2EF11EFBA610425C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.186.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:2b:35:c8:0f:94:a8:a5:d8:94:61:4c:b1:18:7d:88:47:3c: a8:7b:cd:de:c6:69:de:1a:a0:65:23:f6:5b:f8:b1:55:72:b6: f4:93:2c:80:95:1f:3f:3e:42:cc:41:d9:60:97:ef:ad:90:11: 12:bb:41:8c:e1:14:35:3f:b4:da:a6:78:09:21:42:86:80:52: 26:70:ec:09:d3:2b:84:f3:43:40:45:d8:30:67:db:7f:84:44: bb:41:53:d1:16:6c:13:1f:34:38:30:d6:1e:df:41:3f:c1:1c: 93:83:89:d9:30:a0:0a:7c:1e:e8:09:97:98:e1:81:5e:bb:3f: 8a:a8:e1:9c:30:e4:0c:93:37:2d:64:f0:c7:8e:1c:38:cb:24: 7c:da:6f:18:47:f3:16:4a:6b:ea:4c:93:ad:22:ee:2a:3d:fb: f1:a4:1c:a2:78:d2:70:b0:fb:a3:ae:9e:87:5f:81:8f:9c:cf: db:68:1a:52:02:ba:ca:d2:24:b9:81:50:ee:fd:3a:6b:83:8c: 22:b9:d8:11:7f:3c:5f:db:59:b8:e7:0d:89:49:fb:7d:64:e2: c2:85:a4:ba:b4:6c:7a:50:f6:d3:d2:6a:3a:f2:a8:57:d5:f0: b3:0e:d4:91:f4:46:9b:21:2b:d1:01:c4:5b:b0:34:f8:38:f5: b5:49:bd:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTg1NTMxMTAvBgNVBAUTKDkzMERERjQxMDEwNjkwM0JFQjk5MTlDOTlCREUwMTYz ODcwNjU1QUUwHhcNMjYwMTIzMDUyNTExWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTczMDYzNy05ZTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkzXX+/7DI70hrPHvbzbZpc0bKVNFxw+klsGS+9oS0SaSp3ELxj9eOOYYC9XU 70Y9glHyAQysjr8nijPggIZ4hL0U4bXZ6WFNpmtz24CUYNBRSHsTZUsXsiOulrWK z6YkhZkA6E52GjZEJKTH41JPJ84AaqNw1slZ4coL6msNelVMALM1Rs1X2JzhYiCj 7K0kmehP7GxweQTKTf03Wv0SjuWUECaRqh4mkogSmH3um5aei5LG0ATGWG+39SnN SRZGzVoRAC2xYHKfCpbTXgymm2+IVOPFo8tBB2k7K8+t00ZMS+QQsMnA1zQW8Pn8 1keBI0kF2Ej5XhIn5oTU2oOMfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFe67gFG UztgjXYSRf3UgA4SG6QpMB8GA1UdIwQYMBaAFJMN30EBBpA765kZyZveAWOHBlWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODU1My9BNTlCRkZFNEQy RUQxMUVGOERFRTUxMjBDNEY5QUUwMi9rdzNmUVFFR2tEdnJtUm5KbTk0Qlk0Y0dW YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t3M2ZRUUVHa0R2cm1SbkptOTRCWTRjR1ZhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTg1NTMvQTU5QkZGRTREMkVEMTFFRjhERUU1MTIwQzRGOUFFMDIvNTA0MkQwM0VE MkVGMTFFRkJBNjEwNDI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+LowDQYJKoZIhvcNAQELBQADggEBAF8rNcgPlKil2JRh TLEYfYhHPKh7zd7Gad4aoGUj9lv4sVVytvSTLICVHz8+QsxB2WCX762QERK7QYzh FDU/tNqmeAkhQoaAUiZw7AnTK4TzQ0BF2DBn23+ERLtBU9EWbBMfNDgw1h7fQT/B HJODidkwoAp8HugJl5jhgV67P4qo4Zww5AyTNy1k8MeOHDjLJHzabxhH8xZKa+pM k60i7io9+/GkHKJ40nCw+6OunodfgY+cz9toGlICusrSJLmBUO79OmuDjCK52BF/ PF/bWbjnDYlJ+31k4sKFpLq0bHpQ9tPSajryqFfV8LMO1JH0RpshK9EBxFuwNPg4 9bVJvWk= -----END CERTIFICATE-----Generated at Sun Jan 25 19:00:50 2026 by rpki-client