This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A043A/5C8C4AB6C96E11F0A6689F5FC4F9AE02/FFF07186C96F11F0A8412D65C4F9AE02.roa File: FFF07186C96F11F0A8412D65C4F9AE02.roa (raw, json) Hash identifier: u3nlcUJo8jYHLRoEnszpBE9VPEEnfZI4g6WRykevg0Q= Subject key identifier: 18:48:C7:E1:4B:B0:C3:6C:FC:19:60:1C:A6:CC:5A:B4:9B:49:34:F4 Certificate issuer: /CN=A91A043A/serialNumber=E63428A21AB1EBEB9841AFCCE77BCD27A8845258 Certificate serial: 10 Authority key identifier: E6:34:28:A2:1A:B1:EB:EB:98:41:AF:CC:E7:7B:CD:27:A8:84:52:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jQoohqx6-uYQa_M53vNJ6iEUlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A043A/5C8C4AB6C96E11F0A6689F5FC4F9AE02/FFF07186C96F11F0A8412D65C4F9AE02.roa Signing time: Wed 03 Dec 2025 19:38:22 +0000 ROA not before: Wed 03 Dec 2025 19:38:22 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151645 IP address blocks: 116.66.240.0/24 maxlen: 24 116.66.241.0/24 maxlen: 24 116.66.242.0/24 maxlen: 24 116.66.243.0/24 maxlen: 24 116.66.244.0/24 maxlen: 24 116.66.245.0/24 maxlen: 24 116.66.246.0/24 maxlen: 24 116.66.247.0/24 maxlen: 24 2407:7180::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A043A/5C8C4AB6C96E11F0A6689F5FC4F9AE02/5jQoohqx6-uYQa_M53vNJ6iEUlg.crl rsync://rpki.apnic.net/member_repository/A91A043A/5C8C4AB6C96E11F0A6689F5FC4F9AE02/5jQoohqx6-uYQa_M53vNJ6iEUlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jQoohqx6-uYQa_M53vNJ6iEUlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:53:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A043A, serialNumber=E63428A21AB1EBEB9841AFCCE77BCD27A8845258 Validity Not Before: Dec 3 19:38:22 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=693091ad-6788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9b:c0:41:fb:9a:46:ec:4b:57:a8:6f:89:eb: 48:96:32:a5:9c:2e:32:20:9e:c6:7e:0e:4f:ea:21: db:6a:b1:97:95:4b:56:c6:31:b6:9c:5c:57:b4:70: 41:8e:ab:a3:29:ee:72:03:de:c1:f9:1d:74:6f:58: 82:de:5f:6d:b3:63:8c:60:fc:fb:4e:45:31:82:6f: 08:59:4c:96:5e:85:2f:ad:8d:81:ed:c2:68:3d:b2: 0e:23:a5:28:0b:90:a1:5c:d3:af:f8:12:6d:a4:8b: 0c:91:f6:44:b1:97:b3:97:ff:ad:65:a2:3a:7c:cf: 65:ca:05:1d:be:ec:e3:16:49:2a:5b:2a:f1:ce:2e: 72:56:a0:cc:41:5f:33:88:34:56:90:d6:ae:17:46: cb:57:85:0a:38:82:82:98:ec:74:4e:26:01:67:85: 77:38:5a:d1:86:d0:8d:94:5b:c2:6c:0d:8b:ab:f5: f7:0c:d5:8a:9c:46:b8:eb:33:59:b1:2f:9b:ca:3e: 9b:d5:d0:81:a8:4a:f3:01:64:93:80:9a:08:57:86: e4:eb:36:ad:c5:db:4b:93:17:81:55:46:27:05:60: 93:39:0e:8a:79:0f:49:6a:b3:56:56:81:a5:75:b2: c3:4a:eb:18:8a:08:ea:28:43:0d:f4:4c:bd:99:80: 1c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:48:C7:E1:4B:B0:C3:6C:FC:19:60:1C:A6:CC:5A:B4:9B:49:34:F4 X509v3 Authority Key Identifier: keyid:E6:34:28:A2:1A:B1:EB:EB:98:41:AF:CC:E7:7B:CD:27:A8:84:52:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A043A/5C8C4AB6C96E11F0A6689F5FC4F9AE02/5jQoohqx6-uYQa_M53vNJ6iEUlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jQoohqx6-uYQa_M53vNJ6iEUlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A043A/5C8C4AB6C96E11F0A6689F5FC4F9AE02/FFF07186C96F11F0A8412D65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.66.240.0/21 IPv6: 2407:7180::/32 Signature Algorithm: sha256WithRSAEncryption 48:50:8b:cc:67:2f:a3:d1:b8:2c:6d:4f:03:1d:b4:db:26:63: 74:db:04:a5:72:ff:f5:68:8a:9c:51:f8:9e:af:41:7a:ef:f0: 5f:4d:67:e6:bf:4b:19:36:37:77:09:16:3e:4b:38:df:37:ed: d5:54:0d:f7:75:c0:1b:ac:38:95:bb:ac:b2:c2:c3:8b:4a:a5: 82:13:0e:bd:fb:51:29:36:93:31:4b:a2:14:ea:ac:f3:95:5a: a5:e0:6d:99:b7:e4:da:17:ff:6d:4d:36:06:5f:08:18:ea:f9: dd:f1:30:c0:20:a5:65:a6:e9:68:cc:49:d9:36:14:08:09:28: d2:7b:35:a7:37:a6:01:00:95:13:5b:91:b1:1c:8a:72:4b:03: 7a:eb:91:3b:3c:33:bd:66:d8:11:64:9f:9b:61:aa:7b:9a:96: 38:40:8a:01:aa:51:6a:5f:d7:b0:43:2e:df:c5:f0:83:5d:f5: 08:35:9d:94:54:2a:03:a3:44:58:41:34:c5:1e:64:dd:1b:63: e9:b4:f3:8e:c6:55:4c:ee:7c:09:8c:74:00:ed:9d:7e:63:b7: 65:23:83:79:02:2a:f0:80:3c:93:12:cc:ac:1c:25:46:c7:4f: 87:65:3d:23:7b:92:9f:d0:24:b9:e1:be:01:82:42:b9:01:22: 5f:a3:58:9a -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MDQzQTExMC8GA1UEBRMoRTYzNDI4QTIxQUIxRUJFQjk4NDFBRkNDRTc3QkNEMjdB ODg0NTI1ODAeFw0yNTEyMDMxOTM4MjJaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MzA5MWFkLTY3ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4m8BB+5pG7EtXqG+J60iWMqWcLjIgnsZ+Dk/qIdtqsZeVS1bGMbacXFe0cEGO q6Mp7nID3sH5HXRvWILeX22zY4xg/PtORTGCbwhZTJZehS+tjYHtwmg9sg4jpSgL kKFc06/4Em2kiwyR9kSxl7OX/61lojp8z2XKBR2+7OMWSSpbKvHOLnJWoMxBXzOI NFaQ1q4XRstXhQo4goKY7HROJgFnhXc4WtGG0I2UW8JsDYur9fcM1YqcRrjrM1mx L5vKPpvV0IGoSvMBZJOAmghXhuTrNq3F20uTF4FVRicFYJM5Dop5D0lqs1ZWgaV1 ssNK6xiKCOooQw30TL2ZgBwvAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUGEjH4Uuw w2z8GWAcpsxatJtJNPQwHwYDVR0jBBgwFoAU5jQoohqx6+uYQa/M53vNJ6iEUlgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwNDNBLzVDOEM0QUI2Qzk2 RTExRjBBNjY4OUY1RkM0RjlBRTAyLzVqUW9vaHF4Ni11WVFhX001M3ZOSjZpRVVs Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNWpRb29ocXg2LXVZUWFfTTUzdk5KNmlFVWxnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDQzQS81QzhDNEFCNkM5NkUxMUYwQTY2ODlGNUZDNEY5QUUwMi9GRkYwNzE4NkM5 NkYxMUYwQTg0MTJENjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEA3RC8DANBAIAAjAHAwUAJAdxgDANBgkqhkiG9w0BAQsFAAOC AQEASFCLzGcvo9G4LG1PAx202yZjdNsEpXL/9WiKnFH4nq9Beu/wX01n5r9LGTY3 dwkWPks43zft1VQN93XAG6w4lbusssLDi0qlghMOvftRKTaTMUuiFOqs85VapeBt mbfk2hf/bU02Bl8IGOr53fEwwCClZabpaMxJ2TYUCAko0ns1pzemAQCVE1uRsRyK cksDeuuROzwzvWbYEWSfm2Gqe5qWOECKAapRal/XsEMu38Xwg131CDWdlFQqA6NE WEE0xR5k3Rtj6bTzjsZVTO58CYx0AO2dfmO3ZSODeQIq8IA8kxLMrBwlRsdPh2U9 I3uSn9AkueG+AYJCuQEiX6NYmg== -----END CERTIFICATE-----Generated at Sat Dec 6 16:36:52 2025 by rpki-client