This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/A3815188C9D211EFB961F44DC4F9AE02.roa File: A3815188C9D211EFB961F44DC4F9AE02.roa (raw, json) Hash identifier: rsQ//q2SD6Vk129PjMScu6/rNHcB9r6Zk2ktoIOYaYQ= Subject key identifier: 13:B3:D6:BB:C3:24:77:78:71:C7:BA:F3:EF:0C:F2:C4:18:62:AC:A4 Certificate issuer: /CN=A91B23D9/serialNumber=BE8B4733B1AE8A4736B7E9132733D654091E3D2B Certificate serial: C7 Authority key identifier: BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/A3815188C9D211EFB961F44DC4F9AE02.roa Signing time: Sat 17 Jan 2026 05:24:26 +0000 ROA not before: Sat 17 Jan 2026 05:24:26 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 140641 IP address blocks: 160.250.204.0/24 maxlen: 24 160.250.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23D9, serialNumber=BE8B4733B1AE8A4736B7E9132733D654091E3D2B Validity Not Before: Jan 17 05:24:26 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=696b1d0a-7c01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fc:77:c7:31:8c:8b:be:03:10:8d:6f:70:ab: d7:36:28:f6:6b:ea:44:3a:97:61:f2:ad:33:b2:09: e7:db:f0:63:dc:9d:8f:70:f9:7d:37:c3:44:f0:81: cb:88:73:6a:69:8f:8a:75:9b:39:40:bc:96:6a:3e: cf:28:c9:b8:b9:01:99:91:eb:1e:68:56:26:ce:7f: 4d:f5:4b:0a:ab:e7:5b:c1:68:6e:67:e4:80:a2:b9: 25:05:ec:1c:5e:ba:0b:fa:d9:8f:6e:96:69:21:11: e6:23:97:cf:16:02:01:c9:f3:16:6a:9b:7b:05:27: 70:fd:8c:5b:45:51:41:ad:99:fb:82:d8:82:f6:59: 91:ad:7c:b9:ae:2b:88:84:31:2f:c1:75:96:08:a0: 9c:87:28:65:f0:cd:6e:a2:31:fe:77:92:f3:17:01: ad:43:b9:b4:3b:9f:02:e6:5b:f8:08:9f:ae:c2:b8: 6e:e7:15:25:4f:d9:95:8f:db:4f:5a:e4:cd:ba:50: 2f:25:90:98:9e:15:0e:16:ec:c8:4f:bf:f5:1c:7a: ac:5e:7b:f3:41:08:dc:d0:fe:49:f5:bd:f8:c6:fd: da:8e:4e:fc:3f:a0:7b:1c:48:7f:04:8c:38:a1:84: 2e:fa:9b:8e:39:f8:4f:36:8b:14:64:a4:e7:9b:d6: be:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:B3:D6:BB:C3:24:77:78:71:C7:BA:F3:EF:0C:F2:C4:18:62:AC:A4 X509v3 Authority Key Identifier: keyid:BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/A3815188C9D211EFB961F44DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.204.0/23 Signature Algorithm: sha256WithRSAEncryption 95:d8:42:cd:76:48:94:bf:33:74:f4:35:60:0f:7a:37:d6:be: e2:2a:35:25:35:8f:7b:48:57:12:2a:01:cb:44:55:e5:7b:75: da:fb:34:2a:cf:33:bf:30:72:9d:34:cd:2e:f3:c0:12:7c:03: 68:bf:2a:54:dc:20:16:41:a6:28:84:0a:9b:67:e0:51:15:c3: 4f:22:1c:34:51:83:94:4a:e0:36:97:82:61:c4:1a:52:fa:87: e0:8a:fd:ed:bc:37:5a:67:4a:85:40:b9:81:5f:4f:79:04:e8: df:ed:d8:31:34:b3:c8:cc:27:21:bc:6b:ac:74:2d:e6:bf:ad: da:5f:8b:a9:04:b5:62:ad:be:b4:59:5a:8b:db:02:45:c6:a0: bb:84:a5:d9:ca:f5:a1:d1:cb:6c:39:33:22:b9:15:70:b4:70: 1d:7a:ac:ff:ac:f3:13:03:95:90:85:3a:2b:c7:f2:13:dc:63: d6:44:07:3f:14:1c:a5:30:79:c1:cf:2f:34:5d:3b:eb:df:3f: d1:37:0a:d7:43:bb:1b:ec:b5:6b:bb:02:f9:eb:80:c7:10:90: 1f:fd:13:22:6e:c5:3c:5d:c2:9c:dd:d8:5d:82:ec:81:9f:52: eb:30:44:e4:7e:5b:69:24:74:36:2a:d3:b4:e9:3d:83:09:58: bc:8e:61:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QjIzRDkxMTAvBgNVBAUTKEJFOEI0NzMzQjFBRThBNDczNkI3RTkxMzI3MzNENjU0 MDkxRTNEMkIwHhcNMjYwMTE3MDUyNDI2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTZiMWQwYS03YzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/x3xzGMi74DEI1vcKvXNij2a+pEOpdh8q0zsgnn2/Bj3J2PcPl9N8NE8IHL iHNqaY+KdZs5QLyWaj7PKMm4uQGZkeseaFYmzn9N9UsKq+dbwWhuZ+SAorklBewc XroL+tmPbpZpIRHmI5fPFgIByfMWapt7BSdw/YxbRVFBrZn7gtiC9lmRrXy5riuI hDEvwXWWCKCchyhl8M1uojH+d5LzFwGtQ7m0O58C5lv4CJ+uwrhu5xUlT9mVj9tP WuTNulAvJZCYnhUOFuzIT7/1HHqsXnvzQQjc0P5J9b34xv3ajk78P6B7HEh/BIw4 oYQu+puOOfhPNosUZKTnm9a+uQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBOz1rvD JHd4cce68+8M8sQYYqykMB8GA1UdIwQYMBaAFL6LRzOxropHNrfpEycz1lQJHj0r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNEOS83QjhCRDZDQ0M5 RDExMUVGOTc1QkRDNEJDNEY5QUUwMi92b3RITTdHdWlrYzJ0LWtUSnpQV1ZBa2VQ U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZvdEhNN0d1aWtjMnQta1RKelBXVkFrZVBTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjIzRDkvN0I4QkQ2Q0NDOUQxMTFFRjk3NUJEQzRCQzRGOUFFMDIvQTM4MTUxODhD OUQyMTFFRkI5NjFGNDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGg+swwDQYJKoZIhvcNAQELBQADggEBAJXYQs12SJS/M3T0 NWAPejfWvuIqNSU1j3tIVxIqActEVeV7ddr7NCrPM78wcp00zS7zwBJ8A2i/KlTc IBZBpiiECptn4FEVw08iHDRRg5RK4DaXgmHEGlL6h+CK/e28N1pnSoVAuYFfT3kE 6N/t2DE0s8jMJyG8a6x0Lea/rdpfi6kEtWKtvrRZWovbAkXGoLuEpdnK9aHRy2w5 MyK5FXC0cB16rP+s8xMDlZCFOivH8hPcY9ZEBz8UHKUwecHPLzRdO+vfP9E3CtdD uxvstWu7AvnrgMcQkB/9EyJuxTxdwpzd2F2C7IGfUuswROR+W2kkdDYq07TpPYMJ WLyOYbU= -----END CERTIFICATE-----Generated at Sun Jan 25 13:40:53 2026 by rpki-client