This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/5C154406988911E991B10838C4F9AE02.roa File: 5C154406988911E991B10838C4F9AE02.roa (raw, json) Hash identifier: 3p0WjHEBpJpj8h8Z2IO+iO7ZAOODzHYWzNEv2oSXw+8= Subject key identifier: 1C:3B:68:0B:C6:4D:98:D8:9D:5C:C0:9A:4F:61:4E:49:72:25:BA:D9 Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0EF8 Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/5C154406988911E991B10838C4F9AE02.roa Signing time: Fri 02 Jan 2026 18:14:49 +0000 ROA not before: Fri 02 Jan 2026 18:14:49 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 23881 IP address blocks: 23.226.0.0/24 maxlen: 24 23.226.1.0/24 maxlen: 24 23.226.2.0/24 maxlen: 24 23.226.3.0/24 maxlen: 24 23.226.4.0/24 maxlen: 24 23.226.5.0/24 maxlen: 24 23.226.6.0/24 maxlen: 24 23.226.7.0/24 maxlen: 24 23.226.8.0/24 maxlen: 24 23.226.9.0/24 maxlen: 24 23.226.10.0/24 maxlen: 24 23.226.11.0/24 maxlen: 24 23.226.12.0/24 maxlen: 24 23.226.13.0/24 maxlen: 24 23.226.14.0/24 maxlen: 24 23.226.15.0/24 maxlen: 24 162.247.0.0/24 maxlen: 24 162.247.1.0/24 maxlen: 24 162.247.2.0/24 maxlen: 24 162.247.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3832 (0xef8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E, serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Validity Not Before: Jan 2 18:14:49 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69580b19-15ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5c:e5:77:ac:c4:4d:ed:ea:fb:fb:59:b5:95: a2:34:ad:68:1f:3b:73:30:4e:12:bc:f4:57:86:8e: f2:fe:6a:d2:a7:78:11:40:d8:49:ac:4d:7b:8e:9d: 31:68:43:67:ca:5b:e9:d6:7f:7d:5e:1f:f3:a0:c7: 01:ac:10:ac:46:b7:10:8a:0d:40:98:9d:d6:ab:78: d4:c9:42:9b:a8:e6:fa:a1:7b:4e:2f:5f:c3:e7:a5: 95:a1:83:ba:5d:21:f1:cc:14:ae:4c:45:10:4d:54: 8a:6c:ae:88:45:6d:37:0c:79:c9:3c:04:24:f3:7e: d2:5d:ca:d5:06:2a:04:ce:b9:40:44:32:6e:01:e8: 96:38:bf:42:99:91:06:73:ab:12:83:74:d9:7c:7f: ac:6f:15:92:c3:fa:16:20:7c:1e:fa:1a:19:08:e0: 8e:2b:a3:f9:d4:00:2e:00:47:3f:2b:4a:f2:3a:5d: c1:78:4c:a8:c1:a1:de:8d:29:b9:b9:ca:89:9b:df: 7c:f2:02:ec:bd:3d:98:6a:1a:3a:b4:ec:d2:ca:0d: 5f:cd:f5:23:5a:4c:1a:b3:74:12:05:78:8d:9f:21: d8:00:e9:2e:a7:3f:ae:ac:5d:30:99:23:ed:b3:7c: 9e:c4:d3:bc:9b:06:54:64:ff:12:b2:04:d5:16:be: 41:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:3B:68:0B:C6:4D:98:D8:9D:5C:C0:9A:4F:61:4E:49:72:25:BA:D9 X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/5C154406988911E991B10838C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 23.226.0.0/20 162.247.0.0/22 Signature Algorithm: sha256WithRSAEncryption 65:ff:6d:33:5b:b0:21:a8:bc:41:5f:ff:d7:40:cf:ca:59:5c: 07:a3:82:6b:0a:0b:e9:48:ea:66:63:42:5f:58:57:7f:bd:0e: 9e:cd:ec:d0:6c:1c:bc:b0:7e:2c:eb:e9:de:34:bc:75:ca:22: 27:f8:c7:4c:25:55:9f:76:f5:1e:d8:a0:12:93:7a:61:48:55: 3e:f0:57:8a:ae:23:a8:7c:70:58:62:fd:48:a8:90:13:f9:1b: b6:35:48:01:54:27:35:f8:b5:62:16:7c:c0:79:af:fa:45:77: 49:75:b7:09:31:bf:c1:eb:41:18:99:26:6d:e3:7b:15:d5:67: bd:ca:24:9d:55:73:bb:d6:a5:e7:40:5d:b5:2a:d7:fb:cc:60: 2f:77:db:e8:5d:f4:4d:35:c0:3d:1c:c0:12:f4:bb:79:97:36: f8:6a:9c:8e:28:0c:b0:e3:76:ce:d0:31:1b:66:cc:c0:5c:68: ca:4a:38:cf:2f:ea:9f:0b:51:43:82:a0:d1:2c:81:66:8d:4b: d6:36:36:51:a4:cb:98:23:c0:e5:37:da:82:4d:47:50:68:43: 48:4b:37:f4:f3:2c:0c:78:e9:fc:69:88:e9:60:f9:82:d4:e1: ed:92:62:96:8e:0d:38:50:8a:1b:22:34:8e:04:c4:43:3c:50: ec:ac:48:5d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjYwMTAyMTgxNDQ5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU4MGIxOS0xNWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlzld6zETe3q+/tZtZWiNK1oHztzME4SvPRXho7y/mrSp3gRQNhJrE17jp0x aENnylvp1n99Xh/zoMcBrBCsRrcQig1AmJ3Wq3jUyUKbqOb6oXtOL1/D56WVoYO6 XSHxzBSuTEUQTVSKbK6IRW03DHnJPAQk837SXcrVBioEzrlARDJuAeiWOL9CmZEG c6sSg3TZfH+sbxWSw/oWIHwe+hoZCOCOK6P51AAuAEc/K0ryOl3BeEyowaHejSm5 ucqJm9988gLsvT2Yaho6tOzSyg1fzfUjWkwas3QSBXiNnyHYAOkupz+urF0wmSPt s3yexNO8mwZUZP8SsgTVFr5BMwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBw7aAvG TZjYnVzAmk9hTklyJbrZMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VGM0UvQ0I3NENGNkU5ODdCMTFFOTgzRUNDRjEzQzRGOUFFMDIvNUMxNTQ0MDY5 ODg5MTFFOTkxQjEwODM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAQX4gADBAKi9wAwDQYJKoZIhvcNAQELBQADggEBAGX/bTNb sCGovEFf/9dAz8pZXAejgmsKC+lI6mZjQl9YV3+9Dp7N7NBsHLywfizr6d40vHXK Iif4x0wlVZ929R7YoBKTemFIVT7wV4quI6h8cFhi/UiokBP5G7Y1SAFUJzX4tWIW fMB5r/pFd0l1twkxv8HrQRiZJm3jexXVZ73KJJ1Vc7vWpedAXbUq1/vMYC932+hd 9E01wD0cwBL0u3mXNvhqnI4oDLDjds7QMRtmzMBcaMpKOM8v6p8LUUOCoNEsgWaN S9Y2NlGky5gjwOU32oJNR1BoQ0hLN/TzLAx46fxpiOlg+YLU4e2SYpaODThQihsi NI4ExEM8UOysSF0= -----END CERTIFICATE-----Generated at Sun Jan 25 17:02:37 2026 by rpki-client