This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/A8F5426250E311F09F3F2B1BC4F9AE02.roa File: A8F5426250E311F09F3F2B1BC4F9AE02.roa (raw, json) Hash identifier: EV0FyGcK6QhRS2eudKV74ZzYeY1G7bSUxZzFZFCBxAQ= Subject key identifier: 98:5D:3E:64:67:D8:0B:DF:69:DE:E5:CC:53:1D:3D:FA:7E:31:20:B8 Certificate issuer: /CN=A91A4690/serialNumber=02CFF7798F053E9C81FDCCED7962ECBB76C1D21A Certificate serial: FD Authority key identifier: 02:CF:F7:79:8F:05:3E:9C:81:FD:CC:ED:79:62:EC:BB:76:C1:D2:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/As_3eY8FPpyB_czteWLsu3bB0ho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/A8F5426250E311F09F3F2B1BC4F9AE02.roa Signing time: Thu 27 Nov 2025 03:21:59 +0000 ROA not before: Thu 27 Nov 2025 03:21:59 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 36352 IP address blocks: 59.153.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/As_3eY8FPpyB_czteWLsu3bB0ho.crl rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/As_3eY8FPpyB_czteWLsu3bB0ho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/As_3eY8FPpyB_czteWLsu3bB0ho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:14:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4690, serialNumber=02CFF7798F053E9C81FDCCED7962ECBB76C1D21A Validity Not Before: Nov 27 03:21:59 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6927c3d7-f216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:26:f2:95:b1:cd:0a:d2:83:41:f6:fb:2b:5a: 3b:95:ed:b8:b0:e9:be:0e:a8:1a:4b:d3:ba:30:12: 2d:09:7a:cb:64:6b:bf:66:db:22:fa:6b:35:ef:2b: b6:6e:b8:25:fe:54:a3:c5:cd:6e:f3:73:af:a4:8b: 39:6d:d4:71:83:c2:f9:fc:05:9d:7f:f0:59:77:57: db:29:59:cd:56:33:b8:fd:8c:23:26:e9:21:2b:6f: de:75:fb:1c:e9:fe:9b:78:65:e1:b3:0e:75:cd:d8: b3:09:5d:a8:e7:0c:29:78:70:be:11:1f:b1:43:08: 8b:fe:13:7a:9f:37:24:3a:ae:6a:b7:68:ad:f7:40: 74:fe:ff:2d:14:f9:43:fd:40:fa:65:1b:56:c0:03: e1:9d:65:28:39:f1:cd:76:fb:29:08:68:d0:40:0e: b9:b5:6c:07:10:23:4a:47:a1:02:77:50:80:73:2e: 47:6e:df:51:d7:da:25:fa:02:ca:ba:79:75:c5:3a: 7b:f6:0a:a5:01:72:67:4e:a6:da:c3:d0:47:c1:59: 43:0c:02:6a:66:c7:22:6f:83:63:e5:82:03:54:75: f6:c5:d7:92:ba:58:e3:b8:e4:14:92:06:e0:ff:de: 58:bc:d0:72:91:40:b3:66:68:4e:e2:fd:ba:89:bf: 98:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:5D:3E:64:67:D8:0B:DF:69:DE:E5:CC:53:1D:3D:FA:7E:31:20:B8 X509v3 Authority Key Identifier: keyid:02:CF:F7:79:8F:05:3E:9C:81:FD:CC:ED:79:62:EC:BB:76:C1:D2:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/As_3eY8FPpyB_czteWLsu3bB0ho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/As_3eY8FPpyB_czteWLsu3bB0ho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/A8F5426250E311F09F3F2B1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.160.0/22 Signature Algorithm: sha256WithRSAEncryption 25:51:fc:80:e6:5f:1d:63:0e:00:04:34:ae:21:46:49:1e:da: df:f9:74:89:bf:a3:bb:6b:c6:54:ef:fd:f8:f3:0e:c7:cc:3c: 77:cb:04:96:ca:34:6e:37:f1:6b:38:45:2a:36:ef:af:37:e2: 00:8f:09:ea:fe:41:ad:94:7f:82:ad:8f:1a:22:08:36:1d:93: fd:9d:28:af:9b:35:be:22:96:17:73:c9:bd:ea:5a:63:e7:00: 87:8c:e0:f2:79:31:b5:5e:07:8c:13:b3:3d:77:8f:f0:62:46: e8:51:a6:51:8d:6b:76:49:db:87:48:5b:c1:a4:49:a5:df:f4: e4:e2:09:08:90:87:7c:5b:c2:3c:ef:fe:ed:a7:75:8d:5b:b6: b9:77:68:88:52:fb:f3:98:62:6b:10:39:36:33:e2:52:0b:93: 81:72:3c:c6:4d:ea:37:f6:2c:0a:79:49:71:cf:3b:7f:81:68: 21:38:b5:d5:b6:6d:e4:1f:35:1a:63:de:95:eb:bd:67:0d:2b: 66:70:cf:cb:86:35:69:77:ac:52:6f:60:32:55:31:1c:e7:22: 08:94:c6:3f:fb:c8:58:6e:9d:43:77:66:d6:05:c7:92:c4:c5: 6b:dd:51:ed:7a:4d:48:e3:a1:0c:36:e6:ec:1f:01:26:48:dc: 4f:62:34:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2OTAxMTAvBgNVBAUTKDAyQ0ZGNzc5OEYwNTNFOUM4MUZEQ0NFRDc5NjJFQ0JC NzZDMUQyMUEwHhcNMjUxMTI3MDMyMTU5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI3YzNkNy1mMjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCbylbHNCtKDQfb7K1o7le24sOm+DqgaS9O6MBItCXrLZGu/Ztsi+ms17yu2 brgl/lSjxc1u83OvpIs5bdRxg8L5/AWdf/BZd1fbKVnNVjO4/YwjJukhK2/edfsc 6f6beGXhsw51zdizCV2o5wwpeHC+ER+xQwiL/hN6nzckOq5qt2it90B0/v8tFPlD /UD6ZRtWwAPhnWUoOfHNdvspCGjQQA65tWwHECNKR6ECd1CAcy5Hbt9R19ol+gLK unl1xTp79gqlAXJnTqbaw9BHwVlDDAJqZscib4Nj5YIDVHX2xdeSuljjuOQUkgbg /95YvNBykUCzZmhO4v26ib+YNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJhdPmRn 2Avfad7lzFMdPfp+MSC4MB8GA1UdIwQYMBaAFALP93mPBT6cgf3M7Xli7Lt2wdIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY5MC80MDlDOTcwQTVB RTAxMUVGODU4MjcwN0ZDNEY5QUUwMi9Bc18zZVk4RlBweUJfY3p0ZVdMc3UzYkIw aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FzXzNlWThGUHB5Ql9jenRlV0xzdTNiQjBoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ2OTAvNDA5Qzk3MEE1QUUwMTFFRjg1ODI3MDdGQzRGOUFFMDIvQThGNTQyNjI1 MEUzMTFGMDlGM0YyQjFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAI7maAwDQYJKoZIhvcNAQELBQADggEBACVR/IDmXx1jDgAE NK4hRkke2t/5dIm/o7trxlTv/fjzDsfMPHfLBJbKNG438Ws4RSo276834gCPCer+ Qa2Uf4KtjxoiCDYdk/2dKK+bNb4ilhdzyb3qWmPnAIeM4PJ5MbVeB4wTsz13j/Bi RuhRplGNa3ZJ24dIW8GkSaXf9OTiCQiQh3xbwjzv/u2ndY1btrl3aIhS+/OYYmsQ OTYz4lILk4FyPMZN6jf2LAp5SXHPO3+BaCE4tdW2beQfNRpj3pXrvWcNK2Zwz8uG NWl3rFJvYDJVMRznIgiUxj/7yFhunUN3ZtYFx5LExWvdUe16TUjjoQw25uwfASZI 3E9iNFE= -----END CERTIFICATE-----Generated at Sat Dec 6 22:12:02 2025 by rpki-client