This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/59C7E67C77CC11EAB764ED34C4F9AE02.roa File: 59C7E67C77CC11EAB764ED34C4F9AE02.roa (raw, json) Hash identifier: NHP7YmzXvbtiTmaemnIKXJJ4ezTLaSJNHiaTdh9Q74U= Subject key identifier: A0:CC:2B:4F:6D:35:CE:1F:BB:D9:49:CF:C8:73:8A:8E:44:2F:73:BB Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0FA3 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/59C7E67C77CC11EAB764ED34C4F9AE02.roa Signing time: Wed 14 Jan 2026 18:14:59 +0000 ROA not before: Wed 14 Jan 2026 18:14:59 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 14969 IP address blocks: 210.57.21.0/24 maxlen: 24 210.57.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4003 (0xfa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:14:59 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6967dd22-b473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:df:3a:52:72:ca:75:7b:2e:ae:5e:63:37:5a: d5:5b:4e:c5:e9:6e:ba:72:54:42:70:11:5a:21:24: f7:9b:7f:7d:63:16:a8:4e:ca:38:d7:50:e0:43:f3: 5c:64:6f:a2:91:b3:f5:c0:37:2e:57:00:c8:ba:cd: cf:2a:46:59:b4:ef:a5:47:e5:42:02:58:a8:3c:ce: 14:0a:9a:c4:8b:05:dd:2f:78:ed:66:c1:27:64:89: f1:f3:49:f1:f4:f7:ec:23:cf:9d:5c:c1:f1:8f:46: 33:7d:f3:c3:23:c4:0c:4d:7c:8e:8a:40:53:ee:5e: be:e4:42:89:1f:87:23:a6:cd:cd:88:d0:2b:fd:b6: ca:cb:c7:4a:65:79:88:c7:2e:3d:0c:9d:c8:7f:bc: 1c:38:d1:55:ca:49:e4:a3:67:24:85:20:ec:27:ac: e8:08:4e:51:78:99:d8:cf:c4:a5:be:b0:57:c6:49: fa:ea:bb:b8:c6:9a:df:97:9b:ce:17:df:a8:12:61: ea:cb:06:c1:30:42:70:12:a2:b5:d2:d5:a5:e5:75: b3:c8:ef:4c:2b:eb:8f:03:8b:cf:64:73:ca:f9:68: de:94:cd:3b:5f:da:e6:cf:fc:57:5d:ab:56:f0:d3: fc:01:f7:45:51:c6:aa:f3:a2:40:7d:29:45:13:3d: 47:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:CC:2B:4F:6D:35:CE:1F:BB:D9:49:CF:C8:73:8A:8E:44:2F:73:BB X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/59C7E67C77CC11EAB764ED34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.57.21.0/24 210.57.63.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:c4:28:4d:0c:a2:02:c9:52:98:9c:78:ab:61:a7:ae:3e:a9: 27:de:7a:ad:85:b4:9d:e8:b8:eb:c4:6a:9b:9b:fb:b2:de:8a: 7e:64:4d:64:48:09:b7:12:9a:6c:75:36:fe:e0:bf:67:c1:c9: 59:1b:17:bf:95:2a:4c:9a:fe:fa:87:47:23:48:23:ea:32:ff: b8:8c:67:63:47:d9:80:ff:4c:09:30:6f:65:4d:37:47:1c:ee: 07:f4:2f:b5:33:d3:9b:d4:af:71:ce:35:e8:b8:a3:09:a7:bc: 7b:37:04:54:1f:e8:4b:b6:88:3f:7c:a6:1c:b8:76:17:0b:6c: 47:45:cd:47:c7:7f:c5:1a:0a:27:72:e7:84:c0:31:78:85:8e: c5:2e:0a:d6:67:d6:1a:32:7f:a0:47:88:ff:14:ec:b4:d0:c8: d8:7d:59:19:b5:df:c0:fc:bd:ed:d8:5d:ca:bf:6a:9f:19:15: 2d:e5:e4:10:52:e5:67:27:15:46:61:90:25:b4:b7:16:3c:f3: cc:03:b4:12:91:ec:de:87:28:bc:12:73:fc:73:76:e5:39:c4: 91:2a:b8:83:c3:34:a7:7a:8e:42:3a:75:b8:de:93:52:81:96: 1b:6e:e4:bc:75:f3:df:cd:ae:23:c1:68:45:76:bc:f1:40:2f: 3d:18:43:f2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICD6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjYwMTE0MTgxNDU5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY3ZGQyMi1iNDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqt86UnLKdXsurl5jN1rVW07F6W66clRCcBFaIST3m399YxaoTso411DgQ/Nc ZG+ikbP1wDcuVwDIus3PKkZZtO+lR+VCAlioPM4UCprEiwXdL3jtZsEnZInx80nx 9PfsI8+dXMHxj0YzffPDI8QMTXyOikBT7l6+5EKJH4cjps3NiNAr/bbKy8dKZXmI xy49DJ3If7wcONFVyknko2ckhSDsJ6zoCE5ReJnYz8SlvrBXxkn66ru4xprfl5vO F9+oEmHqywbBMEJwEqK10tWl5XWzyO9MK+uPA4vPZHPK+WjelM07X9rmz/xXXatW 8NP8AfdFUcaq86JAfSlFEz1HoQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKDMK09t Nc4fu9lJz8hzio5EL3O7MB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvNTlDN0U2N0M3 N0NDMTFFQUI3NjRFRDM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADSORUDBADSOT8wDQYJKoZIhvcNAQELBQADggEBAE3EKE0M ogLJUpiceKthp64+qSfeeq2FtJ3ouOvEapub+7Lein5kTWRICbcSmmx1Nv7gv2fB yVkbF7+VKkya/vqHRyNII+oy/7iMZ2NH2YD/TAkwb2VNN0cc7gf0L7Uz05vUr3HO Nei4owmnvHs3BFQf6Eu2iD98phy4dhcLbEdFzUfHf8UaCidy54TAMXiFjsUuCtZn 1hoyf6BHiP8U7LTQyNh9WRm138D8ve3YXcq/ap8ZFS3l5BBS5WcnFUZhkCW0txY8 88wDtBKR7N6HKLwSc/xzduU5xJEquIPDNKd6jkI6dbjek1KBlhtu5Lx189/NriPB aEV2vPFALz0YQ/I= -----END CERTIFICATE-----Generated at Sun Jan 25 15:24:10 2026 by rpki-client