This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/B757FF4EAB8311EA9983D717C4F9AE02.roa File: B757FF4EAB8311EA9983D717C4F9AE02.roa (raw, json) Hash identifier: vF+3jtePHsbwMW7GFk7Eys2kw6qOXJ50sYtNC1K6B7c= Subject key identifier: DB:AF:AB:56:34:91:E0:C2:47:40:A5:DC:97:1F:27:F7:57:E3:FB:BE Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 0979 Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/B757FF4EAB8311EA9983D717C4F9AE02.roa Signing time: Thu 22 Jan 2026 20:16:36 +0000 ROA not before: Thu 22 Jan 2026 20:16:36 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 10109 IP address blocks: 119.40.96.0/21 maxlen: 21 119.40.96.0/24 maxlen: 24 119.40.97.0/24 maxlen: 24 119.40.98.0/24 maxlen: 24 119.40.99.0/24 maxlen: 24 119.40.100.0/24 maxlen: 24 119.40.101.0/24 maxlen: 24 119.40.102.0/24 maxlen: 24 119.40.103.0/24 maxlen: 24 2400:d4e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2425 (0x979) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: Jan 22 20:16:36 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697285a4-fa24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:29:fb:5d:23:eb:04:ea:c8:1e:59:7f:2a:ce: 0a:f4:69:10:f9:91:5c:b0:d3:2a:e8:1a:b1:4c:dd: 20:9b:0b:91:25:3d:a7:82:53:e6:1e:13:b8:69:1c: fc:83:66:c6:ea:58:a8:a8:21:61:c3:2c:de:af:01: 1d:dd:1d:7c:a9:aa:6d:be:44:08:a1:72:d5:d3:e2: 0f:e7:de:5a:d6:36:dc:06:33:70:83:e0:8f:fb:97: cb:43:eb:a4:1b:55:c9:db:1f:a4:0f:a9:41:c4:06: 06:9a:f4:81:ff:77:67:83:cc:ff:dd:3c:be:d1:78: 47:51:8d:2f:c4:0e:94:67:72:ce:14:16:ef:49:36: 6e:74:46:26:e6:0d:8e:94:c9:81:70:30:f5:f8:48: bf:a1:94:8b:31:10:7d:67:38:ee:8b:4a:5e:d1:e8: a5:b7:06:08:83:d3:bd:f3:37:c0:c9:f9:17:f3:68: 3e:e9:6a:89:62:e2:c9:ca:74:31:e8:e2:7b:0c:ae: 8e:d4:6b:53:1e:a9:54:96:5a:c3:90:d2:9e:d6:1b: 16:9b:1b:8b:5f:74:2c:fa:33:92:f6:14:88:96:05: 12:aa:17:31:c2:0f:44:87:0e:e6:74:30:8c:00:4d: 73:f2:88:c1:c6:eb:8a:d0:56:8e:d0:aa:63:f1:70: f7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:AF:AB:56:34:91:E0:C2:47:40:A5:DC:97:1F:27:F7:57:E3:FB:BE X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/B757FF4EAB8311EA9983D717C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.40.96.0/21 IPv6: 2400:d4e0::/32 Signature Algorithm: sha256WithRSAEncryption 54:4f:42:75:96:d6:a5:bb:79:60:92:16:9f:f8:bb:30:56:b9: 9e:4e:a2:a2:95:1d:f7:57:87:5b:b6:62:fd:10:ad:09:7e:2b: 06:4d:28:10:22:8e:5a:25:96:b7:88:bb:e1:2d:43:fd:a0:3d: 0e:49:b2:ca:05:5a:bb:cf:21:22:b2:40:57:73:45:b2:ae:8a: 3d:8b:2f:9c:f3:77:9a:96:20:38:74:19:84:10:85:2f:a6:42: fb:a6:33:29:5f:01:12:0e:bc:68:d3:b1:bf:b7:e5:40:6b:c3: 3c:16:78:ae:20:df:e5:5a:82:88:64:ed:2a:14:fd:7a:a9:fc: 77:7c:cb:52:85:9f:1a:f0:60:ef:04:b3:75:81:ae:79:f1:dc: 34:73:88:1c:53:f0:74:8a:d1:01:b3:88:4c:11:41:f4:33:88: 7c:8e:d9:9b:52:04:57:de:d9:79:00:c8:2f:15:52:aa:98:05: 27:a2:c2:b5:f6:eb:82:1d:f1:2b:fc:6d:88:b0:10:32:ad:0e: 0f:24:15:88:78:57:12:32:f8:af:e2:dc:fd:ba:63:d5:70:ee: 8f:2e:be:a5:3c:0e:81:55:8f:70:95:52:91:06:7c:36:dc:db: 75:12:d0:32:79:ca:e7:5f:6a:a3:fc:d5:88:a0:47:d4:19:83: db:06:9b:5a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjYwMTIyMjAxNjM2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTcyODVhNC1mYTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxin7XSPrBOrIHll/Ks4K9GkQ+ZFcsNMq6BqxTN0gmwuRJT2nglPmHhO4aRz8 g2bG6lioqCFhwyzerwEd3R18qaptvkQIoXLV0+IP595a1jbcBjNwg+CP+5fLQ+uk G1XJ2x+kD6lBxAYGmvSB/3dng8z/3Ty+0XhHUY0vxA6UZ3LOFBbvSTZudEYm5g2O lMmBcDD1+Ei/oZSLMRB9Zzjui0pe0eiltwYIg9O98zfAyfkX82g+6WqJYuLJynQx 6OJ7DK6O1GtTHqlUllrDkNKe1hsWmxuLX3Qs+jOS9hSIlgUSqhcxwg9Ehw7mdDCM AE1z8ojBxuuK0FaO0Kpj8XD3iQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNuvq1Y0 keDCR0Cl3JcfJ/dX4/u+MB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkNGMzEvQUY3RkVENjJBQTRFMTFFQTlEOEVDNzgyQzRGOUFFMDIvQjc1N0ZGNEVB QjgzMTFFQTk5ODNENzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAN3KGAwDQQCAAIwBwMFACQA1OAwDQYJKoZIhvcNAQELBQAD ggEBAFRPQnWW1qW7eWCSFp/4uzBWuZ5OoqKVHfdXh1u2Yv0QrQl+KwZNKBAijlol lreIu+EtQ/2gPQ5JssoFWrvPISKyQFdzRbKuij2LL5zzd5qWIDh0GYQQhS+mQvum MylfARIOvGjTsb+35UBrwzwWeK4g3+Vagohk7SoU/Xqp/Hd8y1KFnxrwYO8Es3WB rnnx3DRziBxT8HSK0QGziEwRQfQziHyO2ZtSBFfe2XkAyC8VUqqYBSeiwrX264Id 8Sv8bYiwEDKtDg8kFYh4VxIy+K/i3P26Y9Vw7o8uvqU8DoFVj3CVUpEGfDbc23US 0DJ5yudfaqP81YigR9QZg9sGm1o= -----END CERTIFICATE-----Generated at Mon Jan 26 05:37:32 2026 by rpki-client