This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2F4FE7325B7C11EDAAFAB831C4F9AE02.roa File: 2F4FE7325B7C11EDAAFAB831C4F9AE02.roa (raw, json) Hash identifier: D00bDpMh+cW/Qzc6/dMWdbqZVHtANjfQGL8nJUYZI+A= Subject key identifier: 1F:B7:53:D9:99:24:25:63:F6:D9:75:5C:7A:66:DD:79:52:F5:90:73 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 02E3 Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2F4FE7325B7C11EDAAFAB831C4F9AE02.roa Signing time: Wed 31 Dec 2025 01:20:51 +0000 ROA not before: Wed 31 Dec 2025 01:20:51 +0000 ROA not after: Thu 30 Apr 2026 00:00:00 +0000 asID: 65501 IP address blocks: 140.168.244.0/22 maxlen: 22 140.168.244.0/24 maxlen: 24 140.168.245.0/24 maxlen: 24 140.168.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 739 (0x2e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Dec 31 01:20:51 2025 GMT Not After : Apr 30 00:00:00 2026 GMT Subject: CN=69547a73-6b77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d7:c4:1d:79:0f:10:73:43:08:88:ef:d4:56: 46:ed:57:82:c1:c3:b2:a8:81:15:bd:06:e2:a9:27: f1:ab:1d:d2:77:b4:dc:79:dd:3a:46:ae:e9:cb:7b: 19:92:00:b3:d9:40:d2:45:b5:d8:5c:c5:f0:0d:94: 22:7e:89:e0:46:58:c1:1a:a5:96:d4:d2:09:82:18: c4:e7:bf:72:c8:db:c1:e5:03:a9:a8:ea:24:76:ec: 55:f5:25:30:76:eb:6f:89:d8:ee:db:ed:9c:c9:d1: f3:cb:04:09:7e:fd:c4:57:4f:c5:07:26:0c:4e:9d: ff:0d:1f:25:9c:70:31:a9:f7:c6:96:aa:0a:22:9c: a6:41:62:12:e0:eb:8f:2b:21:bd:78:45:f3:8f:1a: 2e:8f:01:58:a1:6b:87:d1:9f:90:cb:11:a8:d0:0f: c8:72:9b:63:7f:2f:d7:bd:4e:5b:45:a0:6c:44:a8: 61:ff:a5:17:43:b1:67:98:3d:95:48:53:e0:f1:14: 5b:3a:1c:26:26:80:c9:f4:38:60:8d:2a:86:88:16: 7d:4b:f4:17:3e:a7:86:ff:92:f3:2d:b3:9d:cd:5f: 53:a1:90:b0:7e:49:b6:ca:4e:67:54:ac:a6:79:3b: e8:a5:2d:94:80:ad:97:8a:af:0d:05:df:c9:41:dd: 15:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:B7:53:D9:99:24:25:63:F6:D9:75:5C:7A:66:DD:79:52:F5:90:73 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2F4FE7325B7C11EDAAFAB831C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.244.0/22 Signature Algorithm: sha256WithRSAEncryption a7:95:9d:4a:c5:df:93:73:35:63:6e:d1:a4:f9:d2:86:8c:1c: d0:89:37:d9:65:d3:16:c8:5b:19:5b:cb:67:74:35:e9:0d:fc: 0f:66:76:f5:da:7e:69:5e:24:69:37:65:14:6b:34:71:ba:c2: 1e:18:17:4d:24:5c:cd:79:42:d1:a4:8e:16:76:c5:49:b5:94: 1b:0d:f7:d4:b9:1e:ba:7c:95:1c:b4:4c:c0:8e:0b:28:7a:95: 7a:28:cf:92:36:bc:e1:e0:0d:13:fd:c3:37:65:ca:1e:43:21: ee:ec:a4:4b:32:ff:fa:05:b7:3c:09:7f:7d:17:79:d5:f6:28: dd:42:f9:f9:75:4f:db:1c:b1:1e:50:f4:60:bf:eb:62:5d:28: c1:a0:ca:6c:c4:a2:43:e5:b7:43:04:d1:37:1d:43:a0:f9:75: 76:45:79:af:4a:f4:36:12:46:20:27:f4:8d:7b:ed:00:ab:f8: c1:f2:85:bb:b4:4e:61:da:7b:ce:03:b7:71:47:b5:4b:ba:f2: ea:27:03:39:2e:80:5a:8b:1e:0f:8a:2b:8f:29:af:0d:b0:78: 26:82:fd:d5:d0:2b:64:ed:ab:43:10:d9:2f:09:66:12:c8:bf: a4:27:7d:fd:c8:5a:bd:96:71:a7:35:f5:9a:75:f3:84:9b:aa: 4d:9d:f5:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUxMjMxMDEyMDUxWhcNMjYwNDMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU0N2E3My02Yjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNfEHXkPEHNDCIjv1FZG7VeCwcOyqIEVvQbiqSfxqx3Sd7Tced06Rq7py3sZ kgCz2UDSRbXYXMXwDZQifongRljBGqWW1NIJghjE579yyNvB5QOpqOokduxV9SUw dutvidju2+2cydHzywQJfv3EV0/FByYMTp3/DR8lnHAxqffGlqoKIpymQWIS4OuP KyG9eEXzjxoujwFYoWuH0Z+QyxGo0A/Icptjfy/XvU5bRaBsRKhh/6UXQ7FnmD2V SFPg8RRbOhwmJoDJ9DhgjSqGiBZ9S/QXPqeG/5LzLbOdzV9ToZCwfkm2yk5nVKym eTvopS2UgK2Xiq8NBd/JQd0VMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB+3U9mZ JCVj9tl1XHpm3XlS9ZBzMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvMkY0RkU3MzI1 QjdDMTFFREFBRkFCODMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKMqPQwDQYJKoZIhvcNAQELBQADggEBAKeVnUrF35NzNWNu 0aT50oaMHNCJN9ll0xbIWxlby2d0NekN/A9mdvXafmleJGk3ZRRrNHG6wh4YF00k XM15QtGkjhZ2xUm1lBsN99S5Hrp8lRy0TMCOCyh6lXooz5I2vOHgDRP9wzdlyh5D Ie7spEsy//oFtzwJf30XedX2KN1C+fl1T9scsR5Q9GC/62JdKMGgymzEokPlt0ME 0TcdQ6D5dXZFea9K9DYSRiAn9I177QCr+MHyhbu0TmHae84Dt3FHtUu68uonAzku gFqLHg+KK48prw2weCaC/dXQK2Ttq0MQ2S8JZhLIv6Qnff3IWr2Wcac19Zp184Sb qk2d9Uc= -----END CERTIFICATE-----Generated at Sun Jan 25 15:31:47 2026 by rpki-client