This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/F84FF96A493911ED805EB686C4F9AE02.roa File: F84FF96A493911ED805EB686C4F9AE02.roa (raw, json) Hash identifier: f59w4KNNHVLVSPY41PNCHFmAKbVOo50ZTpTbEaeHS6A= Subject key identifier: 64:C0:F3:2E:37:0E:89:23:C0:2D:47:58:9B:32:8B:44:0D:45:6C:BE Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 02E1 Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/F84FF96A493911ED805EB686C4F9AE02.roa Signing time: Wed 31 Dec 2025 01:20:49 +0000 ROA not before: Wed 31 Dec 2025 01:20:49 +0000 ROA not after: Thu 30 Apr 2026 00:00:00 +0000 asID: 32787 IP address blocks: 140.168.240.0/24 maxlen: 24 140.168.241.0/24 maxlen: 24 140.168.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 737 (0x2e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Dec 31 01:20:49 2025 GMT Not After : Apr 30 00:00:00 2026 GMT Subject: CN=69547a71-8140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c3:8a:3c:2e:d3:c6:2c:76:f6:79:a4:a6:99: 69:01:33:2b:8a:85:26:5f:f1:8a:9d:6d:df:ff:c1: d2:58:98:0f:37:85:3b:06:f2:f7:21:0e:67:e7:f4: 4b:4f:23:77:f1:00:4a:8d:c1:a0:6a:68:f4:3d:49: 1a:7f:e6:af:21:f8:d5:8a:55:62:ba:3f:0b:52:c5: d4:e5:8e:a1:f3:64:dd:11:5f:67:a0:2c:83:f1:c1: 79:c1:ed:e2:81:91:be:33:66:e6:e7:90:c0:c2:3c: fc:54:15:1c:f8:1f:19:55:11:a4:80:0c:f5:0d:0f: 79:e6:10:e5:de:db:c1:ed:fc:dc:4a:2a:3c:f5:a3: 77:13:ea:c0:19:87:06:fc:98:c8:50:f1:1c:79:94: 0f:be:de:6e:e9:60:4d:dc:c4:4c:53:e6:5d:3e:06: 67:b5:a6:c9:0d:6d:fc:05:ad:7a:40:37:2f:65:e8: a8:11:2a:23:b5:f0:ef:b3:96:3b:7d:d9:4d:c4:41: 8a:af:b9:07:ea:13:46:60:4a:b6:95:24:c7:3f:f4: 21:ac:00:b5:89:a6:db:e3:1e:2a:62:1a:e6:31:68: 0f:b8:20:a3:41:71:f4:b4:70:ec:87:18:4d:23:38: 8c:f9:ba:c3:ec:8e:aa:c6:fe:44:8a:f2:20:a5:53: 72:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C0:F3:2E:37:0E:89:23:C0:2D:47:58:9B:32:8B:44:0D:45:6C:BE X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/F84FF96A493911ED805EB686C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.240.0/23 140.168.243.0/24 Signature Algorithm: sha256WithRSAEncryption 35:8a:66:5b:ea:ea:72:33:4d:d5:fa:3a:40:68:af:06:d2:81: e6:36:33:b5:3a:dd:60:0f:e6:dc:25:da:55:47:11:18:fa:8b: 3f:e1:df:5a:65:e5:db:c5:3e:d2:ef:e0:b3:5a:22:3f:79:ae: 14:8d:74:f8:93:27:09:a0:06:4d:9c:78:85:46:08:52:2a:42: 0b:c2:30:ef:36:11:31:34:d3:73:50:09:0b:bb:57:44:4c:db: 5d:f7:fc:a9:2b:c9:6d:6f:21:e6:19:8e:f1:0d:43:fe:db:e6: 27:d4:aa:19:98:60:cc:55:e3:af:6e:24:67:03:9e:42:a0:b1: 9b:4e:39:da:51:3b:7b:6a:6d:cb:0d:74:ca:ea:08:5f:a2:b7: 3a:8e:a3:7c:6c:0e:85:f8:4d:89:64:3c:ca:2e:bb:83:30:9d: 88:76:60:46:3e:78:62:a4:84:dd:a6:70:5f:b9:c9:14:7f:77: ba:0b:fc:eb:d6:a4:31:80:42:95:96:e0:6a:b5:c8:d8:38:79: 91:3b:1a:36:4f:8c:15:95:58:81:82:f7:a4:8e:46:ca:7e:c4: 4e:0c:52:7b:90:0b:01:ca:7c:f2:8b:74:16:b9:40:21:46:72: cb:86:01:7c:cc:f4:ee:2f:9c:5f:5d:9f:3e:52:ff:d5:e7:e9: d5:4c:e3:30 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUxMjMxMDEyMDQ5WhcNMjYwNDMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU0N2E3MS04MTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssOKPC7Txix29nmkpplpATMrioUmX/GKnW3f/8HSWJgPN4U7BvL3IQ5n5/RL TyN38QBKjcGgamj0PUkaf+avIfjVilViuj8LUsXU5Y6h82TdEV9noCyD8cF5we3i gZG+M2bm55DAwjz8VBUc+B8ZVRGkgAz1DQ955hDl3tvB7fzcSio89aN3E+rAGYcG /JjIUPEceZQPvt5u6WBN3MRMU+ZdPgZntabJDW38Ba16QDcvZeioESojtfDvs5Y7 fdlNxEGKr7kH6hNGYEq2lSTHP/QhrAC1iabb4x4qYhrmMWgPuCCjQXH0tHDshxhN IziM+brD7I6qxv5EivIgpVNy1QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGTA8y43 DokjwC1HWJsyi0QNRWy+MB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvRjg0RkY5NkE0 OTM5MTFFRDgwNUVCNjg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGMqPADBACMqPMwDQYJKoZIhvcNAQELBQADggEBADWKZlvq 6nIzTdX6OkBorwbSgeY2M7U63WAP5twl2lVHERj6iz/h31pl5dvFPtLv4LNaIj95 rhSNdPiTJwmgBk2ceIVGCFIqQgvCMO82ETE003NQCQu7V0RM2133/KkryW1vIeYZ jvENQ/7b5ifUqhmYYMxV469uJGcDnkKgsZtOOdpRO3tqbcsNdMrqCF+itzqOo3xs DoX4TYlkPMouu4MwnYh2YEY+eGKkhN2mcF+5yRR/d7oL/OvWpDGAQpWW4Gq1yNg4 eZE7GjZPjBWVWIGC96SORsp+xE4MUnuQCwHKfPKLdBa5QCFGcsuGAXzM9O4vnF9d nz5S/9Xn6dVM4zA= -----END CERTIFICATE-----Generated at Sun Jan 25 10:44:39 2026 by rpki-client