This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/5D364EA2C5DC11F0B2B11B60C4F9AE02.roa File: 5D364EA2C5DC11F0B2B11B60C4F9AE02.roa (raw, json) Hash identifier: Q+N7nkL63v9ZAWNH18H4yXxeNCEcfWDs/nxX6jo0OvQ= Subject key identifier: 46:B2:C0:CB:50:23:D1:8D:DD:ED:9B:CD:47:78:4F:DA:D1:E0:D6:38 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0F85 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/5D364EA2C5DC11F0B2B11B60C4F9AE02.roa Signing time: Thu 04 Dec 2025 00:08:22 +0000 ROA not before: Thu 04 Dec 2025 00:08:22 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 7543 IP address blocks: 202.47.204.0/24 maxlen: 24 2403:e800:b00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3973 (0xf85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Dec 4 00:08:22 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6930d0f5-36f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:25:86:ca:c1:ef:a1:c2:b5:17:5f:cd:26:90: 8c:6d:ae:f1:74:43:04:d1:75:e0:55:41:5b:3a:fc: 15:31:63:c0:95:dc:eb:d7:5c:ac:91:87:c4:02:db: 2a:eb:51:6d:c2:48:e5:14:97:45:0a:86:e9:f1:65: e8:60:c9:d4:1e:a4:55:6c:ca:15:26:22:73:68:5c: 2a:d6:ef:a6:ab:9d:82:2d:8a:39:4a:a1:f5:a8:1a: b7:e7:41:a2:4c:a1:a5:94:f2:7d:99:11:aa:a0:ba: 47:e7:db:c4:87:a8:c0:54:40:be:96:db:31:8f:bc: 61:b3:cb:31:b4:33:59:f9:ac:61:01:24:4a:56:6e: 42:02:46:8e:fe:46:6d:ce:20:d0:11:b8:4a:ff:a0: 17:44:f9:a6:1e:70:dc:41:49:47:45:87:b6:c5:9d: a6:11:56:cf:52:3d:35:d7:78:85:e8:21:1e:ca:1a: b4:61:d8:51:a1:04:ac:bc:24:47:3d:a3:e9:8b:e4: 11:2d:53:df:8c:d6:09:34:14:54:5e:cd:c7:a3:fd: c6:d4:58:24:a2:34:72:e5:bf:40:6d:16:85:9a:9f: 49:74:39:ee:3e:5a:14:52:1c:39:d9:a0:04:3d:33: 30:df:e4:b8:8c:e5:cb:97:cf:ca:f5:c3:ff:07:6c: a2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:B2:C0:CB:50:23:D1:8D:DD:ED:9B:CD:47:78:4F:DA:D1:E0:D6:38 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/5D364EA2C5DC11F0B2B11B60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.47.204.0/24 IPv6: 2403:e800:b00::/40 Signature Algorithm: sha256WithRSAEncryption 08:95:97:b4:dd:cc:78:60:81:61:52:03:b1:b4:9a:25:ac:b3: e0:a7:af:56:7b:a5:8b:0c:4d:92:13:62:9e:bc:9b:31:bb:0b: 60:fd:15:09:51:a5:4b:4c:56:f5:df:79:59:c8:6f:95:85:5f: 50:17:f2:d7:7f:b2:22:b8:66:35:82:f3:01:38:1a:14:36:8d: d7:7f:ea:1a:07:af:b4:86:8c:04:ad:b5:d7:70:d7:76:1e:ec: c9:c5:ce:4f:92:13:a4:e8:ed:a2:e9:3c:40:49:15:e9:0a:4a: 36:83:8b:64:6b:25:74:63:ad:ac:14:21:95:54:80:92:6a:d1: b0:28:f5:f5:da:57:71:a6:83:00:58:0e:b9:e0:70:77:3b:48: fd:20:48:dc:c0:93:33:30:b7:3d:48:3f:0e:3a:13:24:e6:f1: 1f:9a:77:f9:19:de:7a:13:f8:83:02:2d:99:fe:1e:d5:a2:b7: 73:9f:5f:b0:b7:f2:a8:40:96:b6:21:48:df:48:2a:a9:88:45: db:cb:08:e2:d2:dd:9a:bf:1d:e3:9a:ae:32:1a:d7:49:26:2a: 2f:8d:81:d6:d0:b0:e4:7c:19:98:c4:e8:91:d4:6c:e0:80:6d: b3:0d:d5:06:a6:a0:24:b4:fb:0c:0f:dd:32:b0:f4:d4:00:56: 19:ee:c5:bd -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICD4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjUxMjA0MDAwODIyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMwZDBmNS0zNmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5iWGysHvocK1F1/NJpCMba7xdEME0XXgVUFbOvwVMWPAldzr11yskYfEAtsq 61FtwkjlFJdFCobp8WXoYMnUHqRVbMoVJiJzaFwq1u+mq52CLYo5SqH1qBq350Gi TKGllPJ9mRGqoLpH59vEh6jAVEC+ltsxj7xhs8sxtDNZ+axhASRKVm5CAkaO/kZt ziDQEbhK/6AXRPmmHnDcQUlHRYe2xZ2mEVbPUj0113iF6CEeyhq0YdhRoQSsvCRH PaPpi+QRLVPfjNYJNBRUXs3Ho/3G1FgkojRy5b9AbRaFmp9JdDnuPloUUhw52aAE PTMw3+S4jOXLl8/K9cP/B2yiPwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEaywMtQ I9GN3e2bzUd4T9rR4NY4MB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvNUQzNjRFQTJD NURDMTFGMEIyQjExQjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBADKL8wwDgQCAAIwCAMGACQD6AALMA0GCSqGSIb3DQEBCwUA A4IBAQAIlZe03cx4YIFhUgOxtJolrLPgp69We6WLDE2SE2KevJsxuwtg/RUJUaVL TFb133lZyG+VhV9QF/LXf7IiuGY1gvMBOBoUNo3Xf+oaB6+0howErbXXcNd2HuzJ xc5PkhOk6O2i6TxASRXpCko2g4tkayV0Y62sFCGVVICSatGwKPX12ldxpoMAWA65 4HB3O0j9IEjcwJMzMLc9SD8OOhMk5vEfmnf5Gd56E/iDAi2Z/h7Vordzn1+wt/Ko QJa2IUjfSCqpiEXbywji0t2avx3jmq4yGtdJJiovjYHW0LDkfBmYxOiR1GzggG2z DdUGpqAktPsMD90ysPTUAFYZ7sW9 -----END CERTIFICATE-----Generated at Sat Dec 6 19:59:39 2025 by rpki-client