This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/BFABA2D6BECE11F0B218C045C4F9AE02.roa File: BFABA2D6BECE11F0B218C045C4F9AE02.roa (raw, json) Hash identifier: +zivxHqwMOkGSscAdHd++lg164OtYFNCzxhSNcI5zb8= Subject key identifier: 40:4C:81:BD:B9:07:F0:05:ED:05:0A:3E:7D:C1:1A:9A:7E:84:8F:46 Certificate issuer: /CN=A91CEBCA/serialNumber=FE826EE9BC12DAAD3B197471B0413F1EB2082635 Certificate serial: 350C Authority key identifier: FE:82:6E:E9:BC:12:DA:AD:3B:19:74:71:B0:41:3F:1E:B2:08:26:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_oJu6bwS2q07GXRxsEE_HrIIJjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/BFABA2D6BECE11F0B218C045C4F9AE02.roa Signing time: Tue 11 Nov 2025 07:19:24 +0000 ROA not before: Tue 11 Nov 2025 07:19:24 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 17666 IP address blocks: 43.246.164.0/24 maxlen: 24 43.246.166.0/24 maxlen: 24 43.246.167.0/24 maxlen: 24 111.67.32.0/24 maxlen: 24 111.67.33.0/24 maxlen: 24 111.67.34.0/24 maxlen: 24 111.67.35.0/24 maxlen: 24 111.67.38.0/24 maxlen: 24 111.67.39.0/24 maxlen: 24 111.67.42.0/24 maxlen: 24 111.67.43.0/24 maxlen: 24 111.67.44.0/24 maxlen: 24 111.67.45.0/24 maxlen: 24 111.67.46.0/24 maxlen: 24 111.67.47.0/24 maxlen: 24 202.9.96.0/22 maxlen: 22 202.9.100.0/24 maxlen: 24 202.9.101.0/24 maxlen: 24 202.9.102.0/24 maxlen: 24 202.9.103.0/24 maxlen: 24 202.9.104.0/23 maxlen: 24 202.9.106.0/24 maxlen: 24 202.9.107.0/24 maxlen: 24 202.87.96.0/22 maxlen: 22 202.87.96.0/24 maxlen: 24 202.87.97.0/24 maxlen: 24 202.87.98.0/24 maxlen: 24 202.87.99.0/24 maxlen: 24 202.87.104.0/24 maxlen: 24 202.87.105.0/24 maxlen: 24 202.87.106.0/24 maxlen: 24 202.87.107.0/24 maxlen: 24 202.87.108.0/24 maxlen: 24 202.87.109.0/24 maxlen: 24 202.87.110.0/24 maxlen: 24 202.87.111.0/24 maxlen: 24 202.87.124.0/24 maxlen: 24 202.87.125.0/24 maxlen: 24 202.87.126.0/24 maxlen: 24 202.87.127.0/24 maxlen: 24 2401:200::/32 maxlen: 32 2401:200::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/_oJu6bwS2q07GXRxsEE_HrIIJjU.crl rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/_oJu6bwS2q07GXRxsEE_HrIIJjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_oJu6bwS2q07GXRxsEE_HrIIJjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13580 (0x350c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEBCA, serialNumber=FE826EE9BC12DAAD3B197471B0413F1EB2082635 Validity Not Before: Nov 11 07:19:24 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6912e37b-f979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f1:fb:49:ee:4e:57:37:c6:10:d6:0d:92:bc: 22:a3:3d:5b:b3:7e:75:6c:91:b1:23:97:2f:39:5a: f9:ff:a0:bb:88:13:48:62:6c:7a:f6:68:bf:b1:20: 16:cc:50:6a:c8:ee:d2:6e:ce:64:52:a7:1e:f9:42: b4:6a:2b:bd:7b:91:a3:96:07:d0:e4:de:f5:64:1d: dc:9b:f5:97:bc:07:48:62:3f:ea:05:ed:ea:11:0f: 88:1b:2e:3d:17:5f:24:2b:b3:54:3d:4a:e8:31:e3: a1:4c:81:29:45:a3:b8:fb:66:f3:1d:13:12:bb:20: d7:0a:0b:df:a3:81:e8:c8:ba:e0:fe:6b:3e:0c:91: ad:6b:fa:c5:ee:03:31:e8:54:4b:c4:94:b0:ba:35: a1:52:9e:b2:bc:4b:8f:84:5d:ef:10:2d:bd:76:f5: 0e:34:dd:d1:1c:a6:4d:c1:df:fc:b2:d3:ce:35:85: e6:1e:cb:56:e0:11:51:10:9e:c9:d3:38:17:53:69: 6f:ee:ed:21:40:6c:8b:64:d9:0d:cd:97:a4:63:bc: 2b:f7:50:1b:47:da:3e:eb:6a:c7:86:ce:82:fb:cf: dc:cb:29:49:d1:cd:02:dd:09:38:6f:2d:e9:3f:87: dc:5d:7a:f1:61:98:43:4d:0a:0d:d8:74:2f:d3:5a: 1c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4C:81:BD:B9:07:F0:05:ED:05:0A:3E:7D:C1:1A:9A:7E:84:8F:46 X509v3 Authority Key Identifier: keyid:FE:82:6E:E9:BC:12:DA:AD:3B:19:74:71:B0:41:3F:1E:B2:08:26:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/_oJu6bwS2q07GXRxsEE_HrIIJjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_oJu6bwS2q07GXRxsEE_HrIIJjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/BFABA2D6BECE11F0B218C045C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.164.0/24 43.246.166.0/23 111.67.32.0/22 111.67.38.0/23 111.67.42.0-111.67.47.255 202.9.96.0-202.9.107.255 202.87.96.0/22 202.87.104.0/21 202.87.124.0/22 IPv6: 2401:200::/32 Signature Algorithm: sha256WithRSAEncryption 50:47:c3:8f:3f:f9:ed:ff:12:2c:41:1e:f7:63:0b:56:9d:a3: ac:7a:bf:1a:15:f7:33:dd:4e:94:26:58:e7:0e:8e:34:37:6c: ff:26:f4:92:5a:9f:de:07:b2:10:e0:84:63:97:a1:27:b2:a5: 0c:60:c1:fb:ee:7c:58:8d:04:ba:7a:b9:0a:7b:06:27:d0:f3: ed:1d:47:c0:4b:ac:ee:13:50:d3:40:3e:96:5d:41:c2:9e:bd: 64:a9:e8:3a:25:c6:f8:6e:98:96:26:f5:23:31:7c:91:2a:8c: cd:97:f6:ce:a6:ab:cc:3e:21:37:cf:15:8d:a9:5a:61:d9:93: ff:76:84:e4:38:1f:b5:42:bd:3b:56:17:ba:58:1e:75:dd:85: b7:8a:76:73:6c:6f:f1:21:d4:98:c1:8b:a1:e7:15:21:22:7e: 51:e6:a5:b9:fc:45:92:80:0b:10:93:94:4f:77:bf:49:06:16: 9f:3b:51:ca:fa:23:49:16:4c:99:09:a2:21:b1:e7:0c:61:43: b9:e8:1c:c6:f1:29:14:ff:a5:eb:94:ec:46:c7:ef:06:1b:6f: cf:a7:e6:e1:48:fc:b7:60:21:47:bc:03:42:68:cc:cf:fe:27: cb:c4:7a:28:9a:55:39:c6:5e:70:00:2f:3e:6d:93:be:a9:b9: f8:d5:30:5e -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgICNQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VCQ0ExMTAvBgNVBAUTKEZFODI2RUU5QkMxMkRBQUQzQjE5NzQ3MUIwNDEzRjFF QjIwODI2MzUwHhcNMjUxMTExMDcxOTI0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OTEyZTM3Yi1mOTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPH7Se5OVzfGENYNkrwioz1bs351bJGxI5cvOVr5/6C7iBNIYmx69mi/sSAW zFBqyO7Sbs5kUqce+UK0aiu9e5GjlgfQ5N71ZB3cm/WXvAdIYj/qBe3qEQ+IGy49 F18kK7NUPUroMeOhTIEpRaO4+2bzHRMSuyDXCgvfo4HoyLrg/ms+DJGta/rF7gMx 6FRLxJSwujWhUp6yvEuPhF3vEC29dvUONN3RHKZNwd/8stPONYXmHstW4BFREJ7J 0zgXU2lv7u0hQGyLZNkNzZekY7wr91AbR9o+62rHhs6C+8/cyylJ0c0C3Qk4by3p P4fcXXrxYZhDTQoN2HQv01ocoQIDAQABo4IC5DCCAuAwHQYDVR0OBBYEFEBMgb25 B/AF7QUKPn3BGpp+hI9GMB8GA1UdIwQYMBaAFP6Cbum8EtqtOxl0cbBBPx6yCCY1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUJDQS9CNTg4QjRBNjFE ODgxMUUyOENBRThGRTEwOEIwMkNEMi9fb0p1NmJ3UzJxMDdHWFJ4c0VFX0hySUlK alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19vSnU2YndTMnEwN0dYUnhzRUVfSHJJSUpqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VCQ0EvQjU4OEI0QTYxRDg4MTFFMjhDQUU4RkUxMDhCMDJDRDIvQkZBQkEyRDZC RUNFMTFGMEIyMThDMDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbgYIKwYBBQUHAQcBAf8E XzBdMEwEAgABMEYDBAAr9qQDBAEr9qYDBAJvQyADBAFvQyYwDAMEAW9DKgMEBG9D IDAMAwQFyglgAwQCygloAwQCyldgAwQDyldoAwQCyld8MA0EAgACMAcDBQAkAQIA MA0GCSqGSIb3DQEBCwUAA4IBAQBQR8OPP/nt/xIsQR73YwtWnaOser8aFfcz3U6U JljnDo40N2z/JvSSWp/eB7IQ4IRjl6EnsqUMYMH77nxYjQS6erkKewYn0PPtHUfA S6zuE1DTQD6WXUHCnr1kqeg6Jcb4bpiWJvUjMXyRKozNl/bOpqvMPiE3zxWNqVph 2ZP/doTkOB+1Qr07Vhe6WB513YW3inZzbG/xIdSYwYuh5xUhIn5R5qW5/EWSgAsQ k5RPd79JBhafO1HK+iNJFkyZCaIhsecMYUO56BzG8SkU/6XrlOxGx+8GG2/Pp+bh SPy3YCFHvANCaMzP/ifLxHoomlU5xl5wAC8+bZO+qbn41TBe -----END CERTIFICATE-----Generated at Sun Dec 7 00:11:00 2025 by rpki-client