This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/CEB2CA5686E011EF81BE1A7FC4F9AE02.roa File: CEB2CA5686E011EF81BE1A7FC4F9AE02.roa (raw, json) Hash identifier: svxCNz/PtUeVtTEkfJI0UGnsP9Tbd78MIluuCyhiaVA= Subject key identifier: 02:08:C7:BD:6E:EA:69:FE:A0:4D:ED:BD:20:41:12:A8:7A:34:AB:57 Certificate issuer: /CN=A91C2F8C/serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Certificate serial: D5 Authority key identifier: 01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/CEB2CA5686E011EF81BE1A7FC4F9AE02.roa Signing time: Tue 25 Nov 2025 03:51:32 +0000 ROA not before: Tue 25 Nov 2025 03:51:32 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 153320 IP address blocks: 160.187.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2F8C, serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Validity Not Before: Nov 25 03:51:32 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692527c4-1efa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:74:e7:28:d3:2d:e7:99:c8:dd:bc:8d:d1:21: 82:b6:e9:16:02:b5:57:59:86:14:45:02:40:93:7f: e3:61:d6:00:6e:b9:d8:58:2c:50:a7:9c:50:9f:c2: e8:91:2f:a6:c2:61:c7:68:a2:8c:b7:ac:d9:b7:dc: 43:42:4c:91:47:3c:6c:c0:21:ea:2f:d8:94:f9:96: 51:47:ad:6e:76:7a:6a:17:f0:45:91:ae:26:64:42: a6:3e:4f:5b:2e:25:7f:65:e9:e1:c8:e8:02:6c:d9: 1e:c5:63:0b:a0:17:43:a8:69:71:7f:15:aa:1d:c9: 25:ab:60:e0:63:7d:1d:47:bb:53:ee:06:20:bf:db: e6:97:6a:a7:a1:39:b8:ec:30:92:08:a5:58:e9:ce: c8:15:0b:7f:32:2f:be:36:fd:05:eb:d6:74:68:8c: c3:43:2e:fe:87:de:25:1b:b9:3d:49:fa:e1:dc:6e: 0e:a9:1e:eb:6d:9a:43:ab:8a:6c:2c:53:17:bd:a8: 5d:68:71:6d:f3:58:c3:63:c5:d2:a8:2d:21:ed:0c: 15:3b:02:b9:ef:d2:c3:dd:32:58:08:97:83:b5:5d: b6:71:a5:a8:b7:57:b5:9e:c5:b3:cf:e8:83:32:fa: 6d:42:32:6b:2d:d3:31:1e:d5:e8:a1:fa:ef:2f:e2: 37:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:08:C7:BD:6E:EA:69:FE:A0:4D:ED:BD:20:41:12:A8:7A:34:AB:57 X509v3 Authority Key Identifier: keyid:01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/CEB2CA5686E011EF81BE1A7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.170.0/23 Signature Algorithm: sha256WithRSAEncryption a0:08:c5:5e:64:a0:25:86:be:01:1a:2d:7c:71:a9:9a:2a:40: a2:1e:5b:dd:66:d0:e4:dd:7b:2a:fc:78:14:c9:79:8d:da:01: e3:0d:13:41:54:2d:b6:4e:4e:18:a9:0a:79:b9:2e:d7:12:f3: d6:32:f9:26:48:8c:6c:2d:bc:aa:3a:67:80:ec:97:8c:bf:1d: 7f:aa:78:d7:b8:ff:cf:cb:da:ee:0a:ec:ed:4b:d5:77:6f:6e: 78:be:1a:89:b8:fb:f4:5e:78:ba:b5:98:1d:2a:e2:4c:d3:5e: bc:74:58:1e:bf:54:05:6d:73:dd:02:95:4c:fa:61:97:eb:d5: 6a:b0:38:7d:36:2c:ce:b4:60:63:42:8f:1e:bf:11:71:13:15: 41:8a:40:84:37:ad:a2:97:bb:bb:1c:ca:8d:4b:b9:a5:3f:08: fd:cd:74:2b:ac:85:38:0c:a4:f9:3f:af:28:67:86:5b:35:72: 82:39:25:a5:df:86:51:1c:14:ae:8a:8f:6b:6a:b3:24:9a:1e: 2e:9c:a5:ea:a6:e1:d4:97:a6:fd:62:92:fc:7d:b4:00:7d:e0: c6:af:96:6c:43:72:49:63:ae:07:66:98:a9:39:d7:92:99:bf: ab:37:17:76:3c:d9:ab:39:84:96:d3:09:08:ac:68:3c:63:c7: 1c:53:ca:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJGOEMxMTAvBgNVBAUTKDAxN0Q4REI4QTc4ODc0QUIyRjlBRDk3REU1N0FGREUx QkUxNjdENDQwHhcNMjUxMTI1MDM1MTMyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI1MjdjNC0xZWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHTnKNMt55nI3byN0SGCtukWArVXWYYURQJAk3/jYdYAbrnYWCxQp5xQn8Lo kS+mwmHHaKKMt6zZt9xDQkyRRzxswCHqL9iU+ZZRR61udnpqF/BFka4mZEKmPk9b LiV/ZenhyOgCbNkexWMLoBdDqGlxfxWqHcklq2DgY30dR7tT7gYgv9vml2qnoTm4 7DCSCKVY6c7IFQt/Mi++Nv0F69Z0aIzDQy7+h94lG7k9Sfrh3G4OqR7rbZpDq4ps LFMXvahdaHFt81jDY8XSqC0h7QwVOwK579LD3TJYCJeDtV22caWot1e1nsWzz+iD MvptQjJrLdMxHtXoofrvL+I3HwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAIIx71u 6mn+oE3tvSBBEqh6NKtXMB8GA1UdIwQYMBaAFAF9jbiniHSrL5rZfeV6/eG+Fn1E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkY4Qy81NTc5QjlCMDg2 RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9BWDJOdUtlSWRLc3ZtdGw5NVhyOTRiNFdm VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FYMk51S2VJZEtzdm10bDk1WHI5NGI0V2ZVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJGOEMvNTU3OUI5QjA4NkUwMTFFRjlCNkIxNzdFQzRGOUFFMDIvQ0VCMkNBNTY4 NkUwMTFFRjgxQkUxQTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgu6owDQYJKoZIhvcNAQELBQADggEBAKAIxV5koCWGvgEa LXxxqZoqQKIeW91m0OTdeyr8eBTJeY3aAeMNE0FULbZOThipCnm5LtcS89Yy+SZI jGwtvKo6Z4Dsl4y/HX+qeNe4/8/L2u4K7O1L1Xdvbni+Gom4+/ReeLq1mB0q4kzT Xrx0WB6/VAVtc90ClUz6YZfr1WqwOH02LM60YGNCjx6/EXETFUGKQIQ3raKXu7sc yo1LuaU/CP3NdCushTgMpPk/ryhnhls1coI5JaXfhlEcFK6Kj2tqsySaHi6cpeqm 4dSXpv1ikvx9tAB94MavlmxDckljrgdmmKk515KZv6s3F3Y82as5hJbTCQisaDxj xxxTygA= -----END CERTIFICATE-----Generated at Sun Dec 7 01:54:25 2025 by rpki-client