This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/218937DC5E5011F0B9404662C4F9AE02.roa File: 218937DC5E5011F0B9404662C4F9AE02.roa (raw, json) Hash identifier: zc++r3Lo/GiMK07k2CpEGDEIsRyhw5JjpIcR6OksmNY= Subject key identifier: FE:D7:E1:0A:AF:C8:BC:3C:28:3D:07:8C:ED:A8:BD:4F:18:84:2B:4A Certificate issuer: /CN=A91A2C5D/serialNumber=08777FA381BF258E0CAC37D509EF0BAC70664844 Certificate serial: 5C Authority key identifier: 08:77:7F:A3:81:BF:25:8E:0C:AC:37:D5:09:EF:0B:AC:70:66:48:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/218937DC5E5011F0B9404662C4F9AE02.roa Signing time: Wed 31 Dec 2025 03:22:34 +0000 ROA not before: Wed 31 Dec 2025 03:22:34 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 152139 IP address blocks: 210.87.70.0/23 maxlen: 23 210.87.70.0/24 maxlen: 24 210.87.71.0/24 maxlen: 24 2001:df3:3e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:48:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2C5D, serialNumber=08777FA381BF258E0CAC37D509EF0BAC70664844 Validity Not Before: Dec 31 03:22:34 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695496fa-432e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b4:0c:89:f6:0a:16:50:7a:df:03:8c:53:a4: ba:21:8e:6f:f0:99:88:1c:51:c4:75:f9:d8:57:ae: 06:30:01:cb:1a:34:2d:4c:fe:01:99:96:7d:0e:3f: c4:e3:50:c8:bf:b3:86:2a:54:fc:57:66:63:e8:94: 16:5e:ab:5c:bf:79:82:21:c6:9e:83:a4:1b:70:96: 29:a6:f7:c1:cb:39:88:be:7a:50:47:14:48:a2:db: 05:13:9e:e9:24:d2:f3:06:b5:8d:3e:e6:4d:4c:7d: 5e:55:02:06:42:c1:e9:d7:7c:96:b3:7e:04:bc:2c: 95:fc:34:95:45:10:29:7e:a6:9e:88:07:e6:f0:15: 01:6c:69:64:8c:a0:c5:40:f5:ea:f3:fd:2a:ab:33: 75:1a:6d:db:57:83:84:bc:d9:8a:65:26:05:a0:79: 20:0f:9b:3a:f3:46:f6:db:23:c2:1a:c4:f4:80:cc: 02:21:93:0f:47:fd:1a:e3:5b:4b:8c:98:b8:a9:58: 68:cf:c5:79:4b:52:2c:51:49:e0:b0:65:99:3b:fb: 11:cd:f4:59:7f:0e:39:23:7f:4c:5b:13:9f:72:12: f5:4e:52:0e:3e:dc:b5:99:03:94:76:6f:29:66:e6: 7c:01:cc:6a:1b:f2:70:b0:d7:41:1f:62:e1:0a:ba: 71:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:D7:E1:0A:AF:C8:BC:3C:28:3D:07:8C:ED:A8:BD:4F:18:84:2B:4A X509v3 Authority Key Identifier: keyid:08:77:7F:A3:81:BF:25:8E:0C:AC:37:D5:09:EF:0B:AC:70:66:48:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/218937DC5E5011F0B9404662C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.87.70.0/23 IPv6: 2001:df3:3e40::/48 Signature Algorithm: sha256WithRSAEncryption 8e:fc:91:5d:30:50:7b:e3:8d:5d:d1:6d:8e:22:32:d9:cb:35: 96:32:1b:ef:a3:2e:5e:ed:6c:85:d5:93:30:d0:04:d4:53:95: 8b:83:ea:0f:62:b4:14:65:c3:09:0c:35:fd:83:a8:f6:ca:20: 36:f0:94:72:eb:4c:9f:b3:1f:eb:6c:3d:cb:ba:69:92:7b:05: c1:fd:ba:2e:5b:b8:96:ca:d1:94:8d:33:c1:db:0c:9b:d1:b8: c1:f7:bf:09:ae:d7:64:e6:2d:23:94:cb:be:a2:6c:4d:98:2b: 81:a8:c1:bf:ed:cb:54:a1:63:5f:d0:ae:21:48:ae:3b:e0:75: d0:33:3d:fd:e1:30:99:96:3f:d9:0b:f5:c4:8c:3d:36:5e:60: 10:01:79:6e:0e:60:19:17:d9:7a:b8:ed:8c:4d:06:37:78:89: c5:ef:15:c6:d1:43:20:7c:2d:23:03:81:15:ec:18:8a:f2:52: 69:43:2f:2f:3b:e4:77:a2:f3:ec:2a:87:fe:94:99:81:86:e5: 10:45:0c:e8:b1:02:a2:1d:33:bc:e7:d3:bf:69:78:a5:dd:1c: 02:a4:dd:5d:5a:b3:bc:5f:9b:0c:fd:e5:5c:ed:8d:de:90:21: f5:50:14:e1:e7:11:c9:59:18:99:a3:fc:d4:1a:e3:02:b8:68: 19:c7:a5:07 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFB MkM1RDExMC8GA1UEBRMoMDg3NzdGQTM4MUJGMjU4RTBDQUMzN0Q1MDlFRjBCQUM3 MDY2NDg0NDAeFw0yNTEyMzEwMzIyMzRaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NTQ5NmZhLTQzMmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgtAyJ9goWUHrfA4xTpLohjm/wmYgcUcR1+dhXrgYwAcsaNC1M/gGZln0OP8Tj UMi/s4YqVPxXZmPolBZeq1y/eYIhxp6DpBtwlimm98HLOYi+elBHFEii2wUTnukk 0vMGtY0+5k1MfV5VAgZCwenXfJazfgS8LJX8NJVFECl+pp6IB+bwFQFsaWSMoMVA 9erz/SqrM3UabdtXg4S82YplJgWgeSAPmzrzRvbbI8IaxPSAzAIhkw9H/RrjW0uM mLipWGjPxXlLUixRSeCwZZk7+xHN9Fl/Djkjf0xbE59yEvVOUg4+3LWZA5R2bylm 5nwBzGob8nCw10EfYuEKunHtAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU/tfhCq/I vDwoPQeM7ai9TxiEK0owHwYDVR0jBBgwFoAUCHd/o4G/JY4MrDfVCe8LrHBmSEQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyQzVELzNCOURENDEwOTJD NDExRUVCNTIxQkI0OUM0RjlBRTAyL0NIZF9vNEdfSlk0TXJEZlZDZThMckhCbVNF US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ0hkX280R19KWTRNckRmVkNlOExySEJtU0VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkM1RC8zQjlERDQxMDkyQzQxMUVFQjUyMUJCNDlDNEY5QUUwMi8yMTg5MzdEQzVF NTAxMUYwQjk0MDQ2NjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAdJXRjAPBAIAAjAJAwcAIAEN8z5AMA0GCSqGSIb3DQEBCwUA A4IBAQCO/JFdMFB7441d0W2OIjLZyzWWMhvvoy5e7WyF1ZMw0ATUU5WLg+oPYrQU ZcMJDDX9g6j2yiA28JRy60yfsx/rbD3LummSewXB/bouW7iWytGUjTPB2wyb0bjB 978Jrtdk5i0jlMu+omxNmCuBqMG/7ctUoWNf0K4hSK474HXQMz394TCZlj/ZC/XE jD02XmAQAXluDmAZF9l6uO2MTQY3eInF7xXG0UMgfC0jA4EV7BiK8lJpQy8vO+R3 ovPsKof+lJmBhuUQRQzosQKiHTO859O/aXil3RwCpN1dWrO8X5sM/eVc7Y3ekCH1 UBTh5xHJWRiZo/zUGuMCuGgZx6UH -----END CERTIFICATE-----Generated at Sun Jan 25 07:52:05 2026 by rpki-client