This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/99341DD6663D11EE8CBBAE7CC4F9AE02.roa File: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (raw, json) Hash identifier: Kt+JRZe4NSSBGcnDuKjJxIa0JojNpdBSE93Vqrzpq7E= Subject key identifier: 57:3D:D8:D2:E4:2E:9C:31:F2:C9:C6:75:91:8F:CC:6D:D3:8E:27:22 Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 01D1 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/99341DD6663D11EE8CBBAE7CC4F9AE02.roa Signing time: Thu 13 Nov 2025 04:53:28 +0000 ROA not before: Thu 13 Nov 2025 04:53:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9466 IP address blocks: 203.5.217.0/24 maxlen: 24 203.6.31.0/24 maxlen: 24 203.6.32.0/24 maxlen: 24 203.6.33.0/24 maxlen: 24 203.6.36.0/22 maxlen: 22 203.6.64.0/21 maxlen: 21 203.6.72.0/21 maxlen: 21 203.6.118.0/24 maxlen: 24 203.6.119.0/24 maxlen: 24 203.6.120.0/24 maxlen: 24 203.6.121.0/24 maxlen: 24 203.10.217.0/24 maxlen: 24 203.11.0.0/24 maxlen: 24 2401:6bff::/40 maxlen: 40 2401:6bff:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:39:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Nov 13 04:53:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69156447-96c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7e:12:f1:61:a1:dd:01:2f:21:d3:65:d1:2a: f2:1d:ff:ee:19:dd:bf:00:eb:62:5a:3c:cb:3b:7d: 65:87:5d:16:57:e3:e3:9d:f3:e4:66:7b:f7:3e:50: f9:2e:18:b2:08:4b:4c:1e:da:5d:23:0b:55:c6:7f: e2:92:40:f1:33:58:84:d4:9b:03:ff:b2:d4:0d:70: 74:b1:b6:c7:c2:d8:70:cc:8a:81:0a:80:64:00:4a: 29:a2:86:25:6d:3a:d6:f6:43:4a:f0:d2:09:bd:68: e5:3a:a2:58:d9:2c:e9:e9:81:37:07:3c:4a:28:73: 1f:c3:00:24:5d:0d:1b:20:e2:f7:70:97:3f:56:53: a4:02:0a:ef:06:61:1d:84:55:51:34:7a:6d:43:44: 60:e3:0c:11:21:21:51:2a:d3:3f:af:a0:0e:00:d9: 22:68:6c:83:dd:8d:39:46:65:43:54:72:a4:ee:7b: 42:9e:25:ed:6b:66:63:f3:7f:f6:c0:22:13:fb:ac: 4d:d9:6e:54:df:40:d4:13:b9:7f:5a:08:d1:ad:28: 17:e1:52:7a:fe:4a:73:dc:3a:a8:62:9b:85:ed:ab: 9d:e0:e4:3b:81:20:ba:9a:8e:db:5b:0d:60:f6:91: c2:2f:d0:ad:bb:6e:79:28:59:a4:88:2b:b3:e5:df: 1c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:3D:D8:D2:E4:2E:9C:31:F2:C9:C6:75:91:8F:CC:6D:D3:8E:27:22 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/99341DD6663D11EE8CBBAE7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.5.217.0/24 203.6.31.0-203.6.33.255 203.6.36.0/22 203.6.64.0/20 203.6.118.0-203.6.121.255 203.10.217.0/24 203.11.0.0/24 IPv6: 2401:6bff::/40 2401:6bff:8000::/40 Signature Algorithm: sha256WithRSAEncryption 60:f5:f0:10:c2:ce:18:bc:ca:a5:d4:bb:44:b7:0e:10:c4:92: 06:12:86:39:59:5a:ac:b1:fa:fb:d4:04:8b:d3:d8:6b:7b:31: 50:20:0a:80:56:be:07:c8:8f:b2:c9:d1:a3:02:c0:9b:02:31: a8:23:f9:19:75:c1:64:93:a6:88:e7:27:df:46:90:50:6a:35: 12:07:c4:54:7c:d1:c1:85:49:6d:1d:24:d2:a8:76:d9:c5:a1: 5b:c2:5a:7d:46:9a:21:18:df:22:c5:dc:74:15:71:4e:54:c1: 4e:15:39:38:26:4b:3e:75:eb:08:da:fc:3e:e9:86:fd:ec:59: 89:5b:e5:0f:81:8d:d6:f2:c2:68:68:2c:7c:af:ab:5d:fa:09: 24:bd:92:56:27:5a:d1:29:f8:34:ba:b3:49:b8:63:87:3d:1b: 3a:68:75:fa:78:6e:4d:5d:ac:0e:b3:6a:33:17:dc:e6:d6:00: 60:99:2a:cd:cd:1c:e2:40:d1:3f:19:41:4d:8c:f7:7c:13:02: 3d:ff:78:aa:ae:95:e4:ca:f6:95:a3:01:9c:fc:c1:d2:77:97: 6e:fe:b6:05:7b:80:2f:20:ab:c4:46:08:03:7f:ba:e4:72:8c: d3:94:71:c1:99:9f:9e:81:a3:4b:d1:49:98:90:f3:0c:35:87: 29:77:eb:56 -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjUxMTEzMDQ1MzI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTE1NjQ0Ny05NmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA434S8WGh3QEvIdNl0SryHf/uGd2/AOtiWjzLO31lh10WV+PjnfPkZnv3PlD5 LhiyCEtMHtpdIwtVxn/ikkDxM1iE1JsD/7LUDXB0sbbHwthwzIqBCoBkAEopooYl bTrW9kNK8NIJvWjlOqJY2Szp6YE3BzxKKHMfwwAkXQ0bIOL3cJc/VlOkAgrvBmEd hFVRNHptQ0Rg4wwRISFRKtM/r6AOANkiaGyD3Y05RmVDVHKk7ntCniXta2Zj83/2 wCIT+6xN2W5U30DUE7l/WgjRrSgX4VJ6/kpz3DqoYpuF7aud4OQ7gSC6mo7bWw1g 9pHCL9Ctu255KFmkiCuz5d8csQIDAQABo4IC4TCCAt0wHQYDVR0OBBYEFFc92NLk Lpwx8snGdZGPzG3TjiciMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzlFODIvRUE3RTVGQTY2MzZGMTFFRTk3Qzc0QjVDQzRGOUFFMDIvOTkzNDFERDY2 NjNEMTFFRThDQkJBRTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwawYIKwYBBQUHAQcBAf8E XDBaMEAEAgABMDoDBADLBdkwDAMEAMsGHwMEAcsGIAMEAssGJAMEBMsGQDAMAwQB ywZ2AwQBywZ4AwQAywrZAwQAywsAMBYEAgACMBADBgAkAWv/AAMGACQBa/+AMA0G CSqGSIb3DQEBCwUAA4IBAQBg9fAQws4YvMql1LtEtw4QxJIGEoY5WVqssfr71ASL 09hrezFQIAqAVr4HyI+yydGjAsCbAjGoI/kZdcFkk6aI5yffRpBQajUSB8RUfNHB hUltHSTSqHbZxaFbwlp9RpohGN8ixdx0FXFOVMFOFTk4Jks+desI2vw+6Yb97FmJ W+UPgY3W8sJoaCx8r6td+gkkvZJWJ1rRKfg0urNJuGOHPRs6aHX6eG5NXawOs2oz F9zm1gBgmSrNzRziQNE/GUFNjPd8EwI9/3iqrpXkyvaVowGc/MHSd5du/rYFe4Av IKvERggDf7rkcozTlHHBmZ+egaNL0UmYkPMMNYcpd+tW -----END CERTIFICATE-----Generated at Sat Dec 6 19:16:26 2025 by rpki-client