This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/21C0B7E23BD311F0B1BF6C56C4F9AE02.roa File: 21C0B7E23BD311F0B1BF6C56C4F9AE02.roa (raw, json) Hash identifier: tRzHmoCM5bp0eiCAe2WTWAhqYkb98p9OjQpa6ZuzTto= Subject key identifier: 14:D9:A0:64:90:E5:F6:C3:1E:C4:79:C2:1D:24:7B:3A:C6:10:0F:C9 Certificate issuer: /CN=A91AA48F/serialNumber=BE0E7A890F7281C654632E8BE80EBBF9FFB56503 Certificate serial: 3530 Authority key identifier: BE:0E:7A:89:0F:72:81:C6:54:63:2E:8B:E8:0E:BB:F9:FF:B5:65:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/21C0B7E23BD311F0B1BF6C56C4F9AE02.roa Signing time: Mon 10 Nov 2025 15:00:39 +0000 ROA not before: Mon 10 Nov 2025 15:00:39 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 3758 IP address blocks: 111.65.100.0/24 maxlen: 24 111.65.101.0/24 maxlen: 24 111.65.102.0/23 maxlen: 23 111.65.104.0/21 maxlen: 22 111.65.112.0/20 maxlen: 20 202.78.52.0/22 maxlen: 22 202.78.55.0/24 maxlen: 24 2400:1c00:13::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.crl rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 14:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13616 (0x3530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA48F, serialNumber=BE0E7A890F7281C654632E8BE80EBBF9FFB56503 Validity Not Before: Nov 10 15:00:39 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6911fe17-eebb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:47:80:35:2f:7a:02:b1:3d:86:9c:51:50:4c: 54:a7:06:67:60:4b:1b:9c:2e:9d:0f:a5:d8:32:93: 98:82:39:af:7b:4e:d0:46:de:42:4b:1b:d9:58:d2: 55:83:74:f7:dd:74:e1:6d:87:5f:89:35:ca:d1:76: 47:cd:cd:95:38:4a:47:2a:74:29:4a:8a:53:39:e5: 71:0a:e3:c2:32:eb:3c:aa:5b:fa:d6:89:2e:c1:62: 39:e3:62:cc:7b:74:df:fe:25:dc:61:90:a8:fe:3e: 40:72:e0:f6:ac:71:d1:0d:39:f1:20:16:56:4b:08: ad:ea:7f:7b:62:17:b1:88:52:48:45:85:ef:75:4f: f2:ea:60:c4:71:37:4c:b6:74:36:ce:90:c8:78:c2: 17:7a:f8:84:21:ef:b2:dd:dc:21:0c:45:74:67:a4: 37:8e:2a:0b:32:97:33:65:c5:f1:e8:e0:e7:d8:13: 76:8d:68:36:50:4c:55:7d:c3:96:a9:1b:8d:3c:0c: 8a:48:d5:70:43:5f:50:30:cd:36:41:92:fd:7f:1b: 8c:35:4a:a6:a9:da:6f:9c:11:37:62:3c:cc:ba:66: 29:3f:4f:ff:3f:8d:3b:98:ce:74:1c:c6:cb:1d:96: d3:cd:71:14:bd:03:4c:87:e4:75:16:da:b3:8b:62: 61:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D9:A0:64:90:E5:F6:C3:1E:C4:79:C2:1D:24:7B:3A:C6:10:0F:C9 X509v3 Authority Key Identifier: keyid:BE:0E:7A:89:0F:72:81:C6:54:63:2E:8B:E8:0E:BB:F9:FF:B5:65:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/21C0B7E23BD311F0B1BF6C56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.65.100.0-111.65.127.255 202.78.52.0/22 IPv6: 2400:1c00:13::/48 Signature Algorithm: sha256WithRSAEncryption 37:ea:05:11:37:95:1d:59:31:82:d3:01:c5:41:2b:34:97:05: ff:8b:97:4b:ce:94:25:50:90:6b:af:89:cc:5f:62:69:f1:10: b6:67:8a:8f:29:0c:2c:4e:49:a9:c3:ad:d1:d3:90:10:95:23: 58:ab:1d:10:f8:e9:6e:d0:ba:5b:9c:6a:4d:29:e9:a8:33:55: 40:96:61:14:4a:ae:96:3b:3d:67:5f:d4:04:af:a0:89:04:28: db:fb:dc:c7:ee:c3:c8:fb:99:04:bf:69:e2:9c:da:95:19:2e: 44:ad:af:1b:3b:2f:66:d1:e0:30:56:c1:fe:51:bb:52:3b:1b: 46:ec:83:11:e9:e0:f5:9a:6f:29:ef:77:63:b2:d7:a4:d4:79: e4:7d:85:c2:0f:c2:19:14:9d:5b:ac:13:f6:a2:61:83:fb:99: 53:fd:cf:ec:23:e8:a8:34:f4:d2:4b:07:f3:63:d5:be:37:6f: a2:61:0f:93:73:43:35:c1:e1:46:56:85:cf:8d:d8:31:30:a2: a2:5b:0f:ac:57:37:c0:65:2a:18:3f:46:bf:94:15:c7:5f:24: 85:82:18:f6:98:c8:e5:f0:0f:1c:67:24:38:d1:4f:f3:05:60: 08:24:e5:b2:ca:48:5d:8e:15:61:a1:26:cd:7a:35:3e:8f:7e: aa:ea:9a:01 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgICNTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE0OEYxMTAvBgNVBAUTKEJFMEU3QTg5MEY3MjgxQzY1NDYzMkU4QkU4MEVCQkY5 RkZCNTY1MDMwHhcNMjUxMTEwMTUwMDM5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTExZmUxNy1lZWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUeANS96ArE9hpxRUExUpwZnYEsbnC6dD6XYMpOYgjmve07QRt5CSxvZWNJV g3T33XThbYdfiTXK0XZHzc2VOEpHKnQpSopTOeVxCuPCMus8qlv61okuwWI542LM e3Tf/iXcYZCo/j5AcuD2rHHRDTnxIBZWSwit6n97YhexiFJIRYXvdU/y6mDEcTdM tnQ2zpDIeMIXeviEIe+y3dwhDEV0Z6Q3jioLMpczZcXx6ODn2BN2jWg2UExVfcOW qRuNPAyKSNVwQ19QMM02QZL9fxuMNUqmqdpvnBE3YjzMumYpP0//P407mM50HMbL HZbTzXEUvQNMh+R1Ftqzi2JhJwIDAQABo4ICtDCCArAwHQYDVR0OBBYEFBTZoGSQ 5fbDHsR5wh0kezrGEA/JMB8GA1UdIwQYMBaAFL4OeokPcoHGVGMui+gOu/n/tWUD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTQ4Ri84QzgxQTg1NjFE OEQxMUUyODY2QzUwRUIwOEIwMkNEMi92ZzU2aVE5eWdjWlVZeTZMNkE2Ny1mLTFa UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZnNTZpUTl5Z2NaVVl5Nkw2QTY3LWYtMVpRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE0OEYvOEM4MUE4NTYxRDhEMTFFMjg2NkM1MEVCMDhCMDJDRDIvMjFDMEI3RTIz QkQzMTFGMEIxQkY2QzU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPgYIKwYBBQUHAQcBAf8E LzAtMBoEAgABMBQwDAMEAm9BZAMEB29BAAMEAspONDAPBAIAAjAJAwcAJAAcAAAT MA0GCSqGSIb3DQEBCwUAA4IBAQA36gURN5UdWTGC0wHFQSs0lwX/i5dLzpQlUJBr r4nMX2Jp8RC2Z4qPKQwsTkmpw63R05AQlSNYqx0Q+Olu0LpbnGpNKemoM1VAlmEU Sq6WOz1nX9QEr6CJBCjb+9zH7sPI+5kEv2ninNqVGS5Era8bOy9m0eAwVsH+UbtS OxtG7IMR6eD1mm8p73djstek1HnkfYXCD8IZFJ1brBP2omGD+5lT/c/sI+ioNPTS SwfzY9W+N2+iYQ+Tc0M1weFGVoXPjdgxMKKiWw+sVzfAZSoYP0a/lBXHXySFghj2 mMjl8A8cZyQ40U/zBWAIJOWyykhdjhVhoSbNejU+j36q6poB -----END CERTIFICATE-----Generated at Sat Dec 6 16:29:42 2025 by rpki-client