This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/83CA613CF55611EE8CE6274DC4F9AE02.roa File: 83CA613CF55611EE8CE6274DC4F9AE02.roa (raw, json) Hash identifier: kcREcr0H0jCGOhIccZ0JE/pjap1r2+uBwBwncwagIzw= Subject key identifier: 00:BE:BB:90:21:C5:7E:4A:9B:A2:F9:64:79:AF:90:E2:7F:1B:DE:E5 Certificate issuer: /CN=A91AB055/serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Certificate serial: 0133 Authority key identifier: 99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/83CA613CF55611EE8CE6274DC4F9AE02.roa Signing time: Tue 25 Nov 2025 02:49:49 +0000 ROA not before: Tue 25 Nov 2025 02:49:49 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 13896 IP address blocks: 45.252.184.0/23 maxlen: 23 45.252.186.0/23 maxlen: 23 103.197.96.0/23 maxlen: 23 103.197.98.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:36:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB055, serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Validity Not Before: Nov 25 02:49:49 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6925194c-ca7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:87:6e:23:29:ab:4e:55:03:88:63:83:42:d1: 1f:91:ea:60:08:48:53:b6:b8:47:be:da:53:6b:4d: d6:59:79:ec:c9:a5:3a:aa:8b:f1:70:50:b1:b8:4a: b2:67:c0:24:18:20:6f:60:d5:5f:77:b0:ff:80:f0: 60:e9:b4:ec:33:c5:8a:53:a1:f2:b5:5f:3b:55:07: 10:6f:6c:ec:56:92:87:fe:e1:d0:98:49:f0:a3:f6: 62:2a:aa:93:20:1c:8f:b8:df:55:01:9d:c1:30:1e: 18:04:72:a2:b7:bb:ff:fc:ce:d9:de:f5:cf:48:2e: 5a:f7:6c:6b:45:fb:02:c8:4a:20:32:5e:81:51:44: 23:41:20:ef:05:d4:50:5e:4e:1d:1b:7c:c9:9f:bf: 1b:ea:e2:94:70:86:1d:12:65:12:09:fd:9d:6f:7d: 42:4f:30:f2:25:ba:20:41:7a:a5:9f:14:94:f8:2a: ba:40:17:a8:28:a7:d6:9c:50:04:a4:67:f5:d9:23: 50:c6:99:e6:7b:64:91:a3:4d:16:e9:c5:43:ba:b9: e6:cc:1a:f8:0b:87:22:f3:c2:d7:81:14:68:77:6c: a2:41:aa:f3:29:96:7a:18:91:1d:b1:9e:01:91:6b: 46:de:29:99:38:b6:c6:dd:bd:f1:b9:ba:a9:92:10: cc:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:BE:BB:90:21:C5:7E:4A:9B:A2:F9:64:79:AF:90:E2:7F:1B:DE:E5 X509v3 Authority Key Identifier: keyid:99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/83CA613CF55611EE8CE6274DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.252.184.0/22 103.197.96.0/22 Signature Algorithm: sha256WithRSAEncryption 51:e2:d0:52:36:55:a7:78:d1:ca:09:c7:41:23:f0:07:42:d4: 06:71:a1:cf:48:84:b0:f4:65:62:70:63:de:0d:e7:11:c4:0b: 10:92:ba:b9:bd:dd:b6:1b:fa:7f:d4:d5:a2:61:28:8d:9c:ba: f0:77:54:3c:2d:af:d7:d3:51:13:0b:48:55:be:f7:92:6e:e4: 0f:b3:13:f6:9d:44:4c:36:7d:ff:1a:ab:8d:eb:53:b7:92:79: 37:7a:96:99:a9:61:72:2d:8d:75:bb:af:75:14:3b:c8:35:11: 89:e3:cc:4e:bf:b6:13:83:2d:2b:b5:2a:f4:fd:e5:bb:1c:0e: e2:13:8f:70:ed:66:7f:be:2a:ff:00:60:e9:54:0c:66:04:a4: ef:bf:fe:93:cd:2a:d2:06:fa:af:54:16:33:8a:72:3a:a4:85: ed:78:86:92:0e:a3:dd:1a:57:46:65:2d:f7:22:8a:64:7c:b9: cb:d7:87:0b:c7:56:68:47:6b:42:d4:c8:22:52:e6:43:46:34: 0a:f5:81:e4:75:f8:9d:54:be:5d:43:45:dc:fe:40:09:a7:c1: 2b:7d:9e:df:01:a1:d3:9a:34:28:1c:0f:b4:5d:71:16:28:d7: 75:c3:7f:43:31:24:0c:fc:97:62:ce:7d:a3:b8:4d:7e:28:a6: a7:1f:bb:1c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwNTUxMTAvBgNVBAUTKDk5OUIyRjY1MzlDMjNFQUVCNDY5RTY3NTM5RkIyREM5 MzNEOTgwNDAwHhcNMjUxMTI1MDI0OTQ5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI1MTk0Yy1jYTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8IduIymrTlUDiGODQtEfkepgCEhTtrhHvtpTa03WWXnsyaU6qovxcFCxuEqy Z8AkGCBvYNVfd7D/gPBg6bTsM8WKU6HytV87VQcQb2zsVpKH/uHQmEnwo/ZiKqqT IByPuN9VAZ3BMB4YBHKit7v//M7Z3vXPSC5a92xrRfsCyEogMl6BUUQjQSDvBdRQ Xk4dG3zJn78b6uKUcIYdEmUSCf2db31CTzDyJbogQXqlnxSU+Cq6QBeoKKfWnFAE pGf12SNQxpnme2SRo00W6cVDurnmzBr4C4ci88LXgRRod2yiQarzKZZ6GJEdsZ4B kWtG3imZOLbG3b3xubqpkhDMJQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAC+u5Ah xX5Km6L5ZHmvkOJ/G97lMB8GA1UdIwQYMBaAFJmbL2U5wj6utGnmdTn7Lckz2YBA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjA1NS80QUJCQzAxQ0Y1 NTUxMUVFQUNGMTIzNEJDNEY5QUUwMi9tWnN2WlRuQ1BxNjBhZVoxT2ZzdHlUUFpn RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21ac3ZaVG5DUHE2MGFlWjFPZnN0eVRQWmdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIwNTUvNEFCQkMwMUNGNTU1MTFFRUFDRjEyMzRCQzRGOUFFMDIvODNDQTYxM0NG NTU2MTFFRThDRTYyNzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIt/LgDBAJnxWAwDQYJKoZIhvcNAQELBQADggEBAFHi0FI2 Vad40coJx0Ej8AdC1AZxoc9IhLD0ZWJwY94N5xHECxCSurm93bYb+n/U1aJhKI2c uvB3VDwtr9fTURMLSFW+95Ju5A+zE/adREw2ff8aq43rU7eSeTd6lpmpYXItjXW7 r3UUO8g1EYnjzE6/thODLSu1KvT95bscDuITj3DtZn++Kv8AYOlUDGYEpO+//pPN KtIG+q9UFjOKcjqkhe14hpIOo90aV0ZlLfciimR8ucvXhwvHVmhHa0LUyCJS5kNG NAr1geR1+J1Uvl1DRdz+QAmnwSt9nt8BodOaNCgcD7RdcRYo13XDf0MxJAz8l2LO faO4TX4opqcfuxw= -----END CERTIFICATE-----Generated at Sat Dec 6 18:52:04 2025 by rpki-client