This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/7D8845C43DD911EB8DA0EE5FC4F9AE02.roa File: 7D8845C43DD911EB8DA0EE5FC4F9AE02.roa (raw, json) Hash identifier: yytJ+U7j5/cF7gdiB6l+jChZ/8SOJfQJwmsZpZx4a1U= Subject key identifier: 05:72:B8:17:A4:50:3C:D1:30:37:EB:85:18:24:5D:1F:E0:F0:04:7A Certificate issuer: /CN=A91CB816/serialNumber=BD06BDBF8B0EEDBC9F07395A65254FCB8583989D Certificate serial: 077A Authority key identifier: BD:06:BD:BF:8B:0E:ED:BC:9F:07:39:5A:65:25:4F:CB:85:83:98:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQa9v4sO7byfBzlaZSVPy4WDmJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/7D8845C43DD911EB8DA0EE5FC4F9AE02.roa Signing time: Tue 02 Dec 2025 20:54:18 +0000 ROA not before: Tue 02 Dec 2025 20:54:18 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 38017 IP address blocks: 202.59.128.0/20 maxlen: 22 202.59.128.0/24 maxlen: 24 202.59.129.0/24 maxlen: 24 202.59.130.0/24 maxlen: 24 202.59.131.0/24 maxlen: 24 202.59.132.0/24 maxlen: 24 202.59.133.0/24 maxlen: 24 202.59.134.0/24 maxlen: 24 202.59.135.0/24 maxlen: 24 202.59.136.0/24 maxlen: 24 202.59.137.0/24 maxlen: 24 202.59.138.0/24 maxlen: 24 202.59.139.0/24 maxlen: 24 202.59.140.0/24 maxlen: 24 202.59.141.0/24 maxlen: 24 202.59.142.0/24 maxlen: 24 202.59.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/vQa9v4sO7byfBzlaZSVPy4WDmJ0.crl rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/vQa9v4sO7byfBzlaZSVPy4WDmJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQa9v4sO7byfBzlaZSVPy4WDmJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1914 (0x77a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB816, serialNumber=BD06BDBF8B0EEDBC9F07395A65254FCB8583989D Validity Not Before: Dec 2 20:54:18 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=692f51fa-b2e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:16:ef:cf:82:90:96:c6:39:c1:9c:8a:0a:bc: 32:b6:31:20:f9:18:73:af:31:c6:f6:0b:e2:45:34: 4a:73:fe:b7:5a:dc:63:40:8c:57:26:f3:69:de:ec: dd:59:b3:b3:05:e7:35:d5:ed:cc:aa:33:1e:b3:13: d2:ec:ef:48:b7:61:4a:73:c4:58:94:34:ea:aa:8b: 7c:95:4d:bb:9c:ca:e1:e0:76:fa:e2:53:13:8b:e2: b5:74:a8:e4:f6:51:eb:27:ee:5b:08:49:4c:f7:25: 1b:63:79:03:55:f2:d6:e9:c2:b1:b8:a7:c2:2e:98: 7c:c4:5e:6d:84:cd:8d:cc:0a:2f:1b:3a:94:81:3c: 79:a4:8c:e2:54:cc:20:36:b9:45:2b:91:cf:98:a5: 55:3b:d9:64:e9:61:c1:15:99:70:a7:5c:ce:69:42: 76:92:50:bb:70:39:7b:fc:61:6a:a4:fe:3e:03:9e: 57:90:71:e3:f1:7a:2c:7b:c9:ff:fc:84:0d:40:72: e1:70:18:77:dc:ad:29:6e:a3:20:ce:8c:20:02:d5: 47:7a:31:be:41:99:c1:3f:21:a1:4e:dd:4b:44:0e: 5f:69:3e:74:31:8d:ee:bd:34:23:4d:49:ff:4a:6f: 6b:fc:cf:0d:ee:34:1d:b7:35:92:39:ef:46:c8:63: a2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:72:B8:17:A4:50:3C:D1:30:37:EB:85:18:24:5D:1F:E0:F0:04:7A X509v3 Authority Key Identifier: keyid:BD:06:BD:BF:8B:0E:ED:BC:9F:07:39:5A:65:25:4F:CB:85:83:98:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/vQa9v4sO7byfBzlaZSVPy4WDmJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQa9v4sO7byfBzlaZSVPy4WDmJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/7D8845C43DD911EB8DA0EE5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.59.128.0/20 Signature Algorithm: sha256WithRSAEncryption 70:9b:0a:be:7f:7f:1d:d9:67:13:42:15:93:a1:c2:a9:ce:55: e8:08:5f:de:75:55:3d:00:fd:02:66:4c:ef:96:d2:4d:5f:b0: 53:82:ba:a7:7e:3f:7a:09:9b:f1:be:65:1f:07:90:35:a1:4f: 3a:17:ff:51:2e:f1:1a:c3:ad:6f:df:50:b7:67:9a:35:07:35: 55:31:c0:7a:c1:ee:14:4d:32:9d:09:60:62:8b:fb:78:d9:67: 02:67:98:78:a6:d8:0a:df:bb:41:9c:23:cc:2a:83:42:fa:7f: 96:4e:41:a5:e2:23:ca:b8:6b:80:e9:ec:65:07:52:af:72:cc: be:34:6c:59:0d:ee:8b:db:9f:e1:a2:1d:6f:47:fd:ac:63:c8: 0d:9b:d5:68:ee:d0:06:55:f4:45:f4:4f:70:ab:00:fa:3a:38: 04:e8:ad:d4:54:e9:49:ae:e8:51:f4:18:18:a1:0e:a8:fb:96: 5b:f9:7b:fe:06:4d:20:58:6c:99:67:99:ca:94:f0:26:b2:29: 0f:9f:59:27:a3:6b:ba:56:bc:a5:67:0f:d9:42:d6:44:c9:b2: a4:a4:f4:a3:a3:49:30:7e:0a:fe:9b:b9:c9:4f:a3:28:40:04: 1f:7e:54:c8:d2:8f:32:f8:24:88:b4:6d:e9:90:c3:c7:f7:58: 7a:97:71:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4MTYxMTAvBgNVBAUTKEJEMDZCREJGOEIwRUVEQkM5RjA3Mzk1QTY1MjU0RkNC ODU4Mzk4OUQwHhcNMjUxMjAyMjA1NDE4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmNTFmYS1iMmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxbvz4KQlsY5wZyKCrwytjEg+RhzrzHG9gviRTRKc/63WtxjQIxXJvNp3uzd WbOzBec11e3MqjMesxPS7O9It2FKc8RYlDTqqot8lU27nMrh4Hb64lMTi+K1dKjk 9lHrJ+5bCElM9yUbY3kDVfLW6cKxuKfCLph8xF5thM2NzAovGzqUgTx5pIziVMwg NrlFK5HPmKVVO9lk6WHBFZlwp1zOaUJ2klC7cDl7/GFqpP4+A55XkHHj8Xose8n/ /IQNQHLhcBh33K0pbqMgzowgAtVHejG+QZnBPyGhTt1LRA5faT50MY3uvTQjTUn/ Sm9r/M8N7jQdtzWSOe9GyGOiDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAVyuBek UDzRMDfrhRgkXR/g8AR6MB8GA1UdIwQYMBaAFL0Gvb+LDu28nwc5WmUlT8uFg5id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjgxNi82MTA0NjYxMDNE RDYxMUVCQTA2MDJDNUJDNEY5QUUwMi92UWE5djRzTzdieWZCemxhWlNWUHk0V0Rt SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZRYTl2NHNPN2J5ZkJ6bGFaU1ZQeTRXRG1KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I4MTYvNjEwNDY2MTAzREQ2MTFFQkEwNjAyQzVCQzRGOUFFMDIvN0Q4ODQ1QzQz REQ5MTFFQjhEQTBFRTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKO4AwDQYJKoZIhvcNAQELBQADggEBAHCbCr5/fx3ZZxNC FZOhwqnOVegIX951VT0A/QJmTO+W0k1fsFOCuqd+P3oJm/G+ZR8HkDWhTzoX/1Eu 8RrDrW/fULdnmjUHNVUxwHrB7hRNMp0JYGKL+3jZZwJnmHim2Arfu0GcI8wqg0L6 f5ZOQaXiI8q4a4Dp7GUHUq9yzL40bFkN7ovbn+GiHW9H/axjyA2b1Wju0AZV9EX0 T3CrAPo6OATordRU6Umu6FH0GBihDqj7llv5e/4GTSBYbJlnmcqU8CayKQ+fWSej a7pWvKVnD9lC1kTJsqSk9KOjSTB+Cv6buclPoyhABB9+VMjSjzL4JIi0bemQw8f3 WHqXcZc= -----END CERTIFICATE-----Generated at Sat Dec 6 22:18:45 2025 by rpki-client