This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99C5/FC01E87C5DBB11F09AA17850C4F9AE02/AE31872C5DBD11F083DD7F61C4F9AE02.roa File: AE31872C5DBD11F083DD7F61C4F9AE02.roa (raw, json) Hash identifier: jNtI6MU0sZHqYp7Kk2MVm6eivoJ/pZtQE9T6LQkZ7uY= Subject key identifier: BD:89:78:7E:07:53:EA:B7:EB:A9:2E:C5:4D:B4:00:A9:E7:6E:EC:D6 Certificate issuer: /CN=A91A99C5/serialNumber=564B69178F269EFB96B76916F78170754E8F0C87 Certificate serial: 4D Authority key identifier: 56:4B:69:17:8F:26:9E:FB:96:B7:69:16:F7:81:70:75:4E:8F:0C:87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VktpF48mnvuWt2kW94FwdU6PDIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99C5/FC01E87C5DBB11F09AA17850C4F9AE02/AE31872C5DBD11F083DD7F61C4F9AE02.roa Signing time: Thu 04 Dec 2025 09:21:02 +0000 ROA not before: Thu 04 Dec 2025 09:21:02 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153998 IP address blocks: 165.101.68.0/23 maxlen: 23 165.101.68.0/24 maxlen: 24 165.101.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99C5/FC01E87C5DBB11F09AA17850C4F9AE02/VktpF48mnvuWt2kW94FwdU6PDIc.crl rsync://rpki.apnic.net/member_repository/A91A99C5/FC01E87C5DBB11F09AA17850C4F9AE02/VktpF48mnvuWt2kW94FwdU6PDIc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VktpF48mnvuWt2kW94FwdU6PDIc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:09:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99C5, serialNumber=564B69178F269EFB96B76916F78170754E8F0C87 Validity Not Before: Dec 4 09:21:02 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6931527d-a783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:70:bb:f9:a7:10:dd:54:c6:ac:1d:2d:67:77: 86:68:de:25:bc:30:7c:e3:39:f8:ab:39:e5:0e:2f: 98:9d:1f:2b:cf:04:34:fa:e4:7d:ea:53:56:f3:bf: 36:be:35:71:4f:d1:ec:30:d0:69:64:96:6d:f9:c9: ba:46:01:9b:43:77:af:e1:67:00:88:b8:76:42:9e: 78:7e:bc:6b:d5:fc:7c:22:84:cc:c7:29:bf:5f:81: 84:e9:e6:24:d9:25:5f:60:d4:f1:af:33:97:67:ee: 81:ec:57:ec:43:ec:72:c1:89:18:dd:72:f9:92:b3: a7:c5:20:56:57:8b:72:6d:29:a6:7a:86:c8:bc:2f: 55:a8:3c:fa:9b:21:0e:93:61:a0:5f:62:2c:72:75: f4:da:27:f9:6e:b8:a2:07:9c:16:dc:9b:91:69:cb: ab:9e:83:d9:4b:6e:1a:39:89:4a:7b:84:3e:4f:13: 37:10:b3:69:07:61:31:e2:b7:20:a3:0f:31:43:b2: 57:eb:0b:f5:74:38:2c:ae:37:ac:9c:e1:fb:bc:e2: 2e:e3:66:2d:f8:3d:44:89:56:25:4d:fb:ca:0b:0d: d1:be:52:0e:59:c2:15:6c:60:7c:b5:14:a7:ab:6f: 94:a7:1e:ca:d4:c9:de:c5:03:93:53:14:8e:8f:9b: af:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:89:78:7E:07:53:EA:B7:EB:A9:2E:C5:4D:B4:00:A9:E7:6E:EC:D6 X509v3 Authority Key Identifier: keyid:56:4B:69:17:8F:26:9E:FB:96:B7:69:16:F7:81:70:75:4E:8F:0C:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99C5/FC01E87C5DBB11F09AA17850C4F9AE02/VktpF48mnvuWt2kW94FwdU6PDIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VktpF48mnvuWt2kW94FwdU6PDIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99C5/FC01E87C5DBB11F09AA17850C4F9AE02/AE31872C5DBD11F083DD7F61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.68.0/23 Signature Algorithm: sha256WithRSAEncryption 43:74:b4:19:b6:1e:95:54:f4:66:98:54:12:7b:c2:4c:01:e3: 6f:2a:18:4c:4a:cf:e4:7f:3a:6c:e7:bd:2e:bb:d7:af:00:b1: f1:4c:83:d1:9a:98:2c:77:99:15:2b:a7:76:43:4b:1e:3c:27: c4:8e:c5:ce:7b:f8:8f:70:4a:18:e9:66:53:f8:3e:31:d0:18: e8:39:db:5f:6b:82:b7:d6:df:ca:7c:10:6d:ba:5a:7d:9b:46: 88:21:da:5c:7e:a0:c4:e2:11:bb:b5:64:21:59:34:27:7f:d2: 09:69:29:a4:03:58:05:f9:36:2f:e1:a6:6b:1d:94:66:79:65: 6e:36:b9:aa:1f:9f:73:05:82:d6:1d:82:1e:ed:ea:c6:1e:9c: b7:db:08:04:b8:a2:2c:51:5f:3a:a1:c9:b5:14:fc:3e:8a:a7: 59:cf:00:30:1a:8a:4b:a8:3a:4a:0c:27:4d:b3:14:ea:9a:d6: 8d:0b:d8:af:02:90:1b:52:f3:12:36:ca:7d:14:d5:eb:a7:24: 15:de:51:40:0c:f4:a2:c1:4e:1a:ea:90:76:4d:bb:98:09:50: f4:04:b2:57:55:bb:d0:c9:a5:26:ff:bd:a7:e0:ad:5f:36:79: c7:df:e5:49:18:bc:69:05:ac:22:ad:22:fe:89:49:16:6c:c8: b2:90:bc:15 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlDNTExMC8GA1UEBRMoNTY0QjY5MTc4RjI2OUVGQjk2Qjc2OTE2Rjc4MTcwNzU0 RThGMEM4NzAeFw0yNTEyMDQwOTIxMDJaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MzE1MjdkLWE3ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6cLv5pxDdVMasHS1nd4Zo3iW8MHzjOfirOeUOL5idHyvPBDT65H3qU1bzvza+ NXFP0eww0Glklm35ybpGAZtDd6/hZwCIuHZCnnh+vGvV/HwihMzHKb9fgYTp5iTZ JV9g1PGvM5dn7oHsV+xD7HLBiRjdcvmSs6fFIFZXi3JtKaZ6hsi8L1WoPPqbIQ6T YaBfYixydfTaJ/luuKIHnBbcm5Fpy6ueg9lLbho5iUp7hD5PEzcQs2kHYTHityCj DzFDslfrC/V0OCyuN6yc4fu84i7jZi34PUSJViVN+8oLDdG+Ug5ZwhVsYHy1FKer b5SnHsrUyd7FA5NTFI6Pm6/dAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUvYl4fgdT 6rfrqS7FTbQAqedu7NYwHwYDVR0jBBgwFoAUVktpF48mnvuWt2kW94FwdU6PDIcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUM1L0ZDMDFFODdDNURC QjExRjA5QUExNzg1MEM0RjlBRTAyL1ZrdHBGNDhtbnZ1V3Qya1c5NEZ3ZFU2UERJ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVmt0cEY0OG1udnVXdDJrVzk0RndkVTZQREljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTlDNS9GQzAxRTg3QzVEQkIxMUYwOUFBMTc4NTBDNEY5QUUwMi9BRTMxODcyQzVE QkQxMUYwODNERDdGNjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlRDANBgkqhkiG9w0BAQsFAAOCAQEAQ3S0GbYelVT0ZphU EnvCTAHjbyoYTErP5H86bOe9LrvXrwCx8UyD0ZqYLHeZFSundkNLHjwnxI7Fznv4 j3BKGOlmU/g+MdAY6DnbX2uCt9bfynwQbbpafZtGiCHaXH6gxOIRu7VkIVk0J3/S CWkppANYBfk2L+Gmax2UZnllbja5qh+fcwWC1h2CHu3qxh6ct9sIBLiiLFFfOqHJ tRT8PoqnWc8AMBqKS6g6SgwnTbMU6prWjQvYrwKQG1LzEjbKfRTV66ckFd5RQAz0 osFOGuqQdk27mAlQ9ASyV1W70MmlJv+9p+CtXzZ5x9/lSRi8aQWsIq0i/olJFmzI spC8FQ== -----END CERTIFICATE-----Generated at Sun Dec 7 03:57:24 2025 by rpki-client