This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B6B/75A92230FE3F11EF8FA27752C4F9AE02/CBB83D902F1E11F09BFFB056C4F9AE02.roa File: CBB83D902F1E11F09BFFB056C4F9AE02.roa (raw, json) Hash identifier: K/IvCMryqqcd164l2HeaqkRV83k4fzKQngkzaAFm7Q4= Subject key identifier: 47:F1:EE:50:47:D4:F0:62:9E:DF:80:14:AA:1A:D0:25:C3:27:EC:7C Certificate issuer: /CN=A91D0B6B/serialNumber=C1EE69AA6AA1ACBA32E16764DA81BF7A4168A60D Certificate serial: A7 Authority key identifier: C1:EE:69:AA:6A:A1:AC:BA:32:E1:67:64:DA:81:BF:7A:41:68:A6:0D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/we5pqmqhrLoy4Wdk2oG_ekFopg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B6B/75A92230FE3F11EF8FA27752C4F9AE02/CBB83D902F1E11F09BFFB056C4F9AE02.roa Signing time: Fri 23 Jan 2026 05:25:46 +0000 ROA not before: Fri 23 Jan 2026 05:25:46 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 153518 IP address blocks: 161.248.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B6B/75A92230FE3F11EF8FA27752C4F9AE02/we5pqmqhrLoy4Wdk2oG_ekFopg0.crl rsync://rpki.apnic.net/member_repository/A91D0B6B/75A92230FE3F11EF8FA27752C4F9AE02/we5pqmqhrLoy4Wdk2oG_ekFopg0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/we5pqmqhrLoy4Wdk2oG_ekFopg0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:26:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B6B, serialNumber=C1EE69AA6AA1ACBA32E16764DA81BF7A4168A60D Validity Not Before: Jan 23 05:25:46 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6973065a-5d6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:58:51:71:d7:de:91:a3:f6:5d:3f:80:b2:dc: 6a:3b:96:12:9a:1b:39:f1:24:39:86:d9:db:d6:f8: f1:cd:90:69:72:d3:68:93:e2:f6:6e:74:03:6a:e1: e9:1e:ea:00:18:0a:5b:68:5a:6a:c9:46:70:19:69: ac:55:a3:ff:2a:ab:56:ef:39:cd:e6:be:7a:c2:7e: 8a:31:af:14:30:99:16:4d:3b:76:4d:a0:f1:e8:e4: 18:be:14:52:e3:88:07:be:4d:16:68:3e:15:5d:ce: b7:78:57:de:7e:0a:30:0d:bb:e8:01:4a:63:fa:e1: 39:df:e3:92:56:6c:f7:d7:57:f7:99:aa:f5:72:87: c5:d6:25:34:44:dd:13:ea:b0:4d:af:db:f6:b5:c1: cf:b3:e1:00:6c:f0:8e:57:3a:c3:d1:d0:14:dd:00: de:ef:bd:e2:5e:b4:73:e0:af:b0:20:7e:bf:ba:3e: 16:60:11:f0:5d:92:79:ae:ed:c3:30:52:8f:66:0c: 7a:7d:1a:6c:49:28:12:23:a3:cc:22:05:63:b9:e7: b7:73:d4:67:17:c8:3c:ac:ea:28:6e:60:f7:72:5b: 11:51:76:e9:b7:8f:4c:6e:67:49:cd:7b:0b:11:f8: 7a:6f:71:8c:fc:16:80:1a:99:53:04:ea:b3:24:1e: 91:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F1:EE:50:47:D4:F0:62:9E:DF:80:14:AA:1A:D0:25:C3:27:EC:7C X509v3 Authority Key Identifier: keyid:C1:EE:69:AA:6A:A1:AC:BA:32:E1:67:64:DA:81:BF:7A:41:68:A6:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/75A92230FE3F11EF8FA27752C4F9AE02/we5pqmqhrLoy4Wdk2oG_ekFopg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/we5pqmqhrLoy4Wdk2oG_ekFopg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/75A92230FE3F11EF8FA27752C4F9AE02/CBB83D902F1E11F09BFFB056C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.141.0/24 Signature Algorithm: sha256WithRSAEncryption 46:34:6a:0b:f7:23:ce:6a:20:d3:ae:15:f0:be:68:55:2b:c7: 0d:5c:6d:fc:31:21:d5:52:d7:e1:f4:c4:f8:be:98:d1:8d:5a: 6c:b4:f1:9b:da:90:18:3b:64:e6:6b:ac:18:f2:01:e0:f2:f0: c9:eb:75:26:2e:30:2d:c3:6b:48:5d:87:5d:ec:c7:0b:fc:5b: 50:0b:14:ce:55:f4:bd:c8:21:71:b6:0c:76:c1:93:b8:f1:cc: cf:c9:b7:7e:38:c1:50:8d:66:99:a8:21:a3:35:ea:ce:24:29: b2:6b:0d:26:8a:d3:90:e4:74:7b:65:e5:5d:62:a8:10:b2:94: 9b:d0:1a:b9:88:35:56:ab:d2:4d:49:8b:8e:a0:a1:67:75:1e: 81:52:78:0a:dd:c8:25:bc:ea:59:94:96:f8:e6:73:9e:72:46: 8f:ad:0c:82:d1:65:7a:c4:33:aa:e3:5b:b4:94:5f:8a:07:b2: a2:ab:19:85:77:ce:85:99:fe:cf:1f:f7:69:ca:b6:9b:fe:bb: e5:4d:5a:da:39:32:8e:90:ea:6b:a4:59:07:b3:54:9b:0f:16: 6a:29:ac:97:5a:ed:55:22:48:31:37:23:d5:8d:24:a4:5a:f0: 0d:27:3c:07:4d:17:da:b7:95:88:66:ee:4e:f4:34:30:92:21: 7a:35:bc:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RDBCNkIxMTAvBgNVBAUTKEMxRUU2OUFBNkFBMUFDQkEzMkUxNjc2NERBODFCRjdB NDE2OEE2MEQwHhcNMjYwMTIzMDUyNTQ2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTczMDY1YS01ZDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlhRcdfekaP2XT+AstxqO5YSmhs58SQ5htnb1vjxzZBpctNok+L2bnQDauHp HuoAGApbaFpqyUZwGWmsVaP/KqtW7znN5r56wn6KMa8UMJkWTTt2TaDx6OQYvhRS 44gHvk0WaD4VXc63eFfefgowDbvoAUpj+uE53+OSVmz311f3mar1cofF1iU0RN0T 6rBNr9v2tcHPs+EAbPCOVzrD0dAU3QDe773iXrRz4K+wIH6/uj4WYBHwXZJ5ru3D MFKPZgx6fRpsSSgSI6PMIgVjuee3c9RnF8g8rOoobmD3clsRUXbpt49MbmdJzXsL Efh6b3GM/BaAGplTBOqzJB6R4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEfx7lBH 1PBint+AFKoa0CXDJ+x8MB8GA1UdIwQYMBaAFMHuaapqoay6MuFnZNqBv3pBaKYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEI2Qi83NUE5MjIzMEZF M0YxMUVGOEZBMjc3NTJDNEY5QUUwMi93ZTVwcW1xaHJMb3k0V2RrMm9HX2VrRm9w ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3dlNXBxbXFockxveTRXZGsyb0dfZWtGb3BnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDBCNkIvNzVBOTIyMzBGRTNGMTFFRjhGQTI3NzUyQzRGOUFFMDIvQ0JCODNEOTAy RjFFMTFGMDlCRkZCMDU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACh+I0wDQYJKoZIhvcNAQELBQADggEBAEY0agv3I85qINOu FfC+aFUrxw1cbfwxIdVS1+H0xPi+mNGNWmy08ZvakBg7ZOZrrBjyAeDy8MnrdSYu MC3Da0hdh13sxwv8W1ALFM5V9L3IIXG2DHbBk7jxzM/Jt344wVCNZpmoIaM16s4k KbJrDSaK05DkdHtl5V1iqBCylJvQGrmINVar0k1Ji46goWd1HoFSeArdyCW86lmU lvjmc55yRo+tDILRZXrEM6rjW7SUX4oHsqKrGYV3zoWZ/s8f92nKtpv+u+VNWto5 Mo6Q6mukWQezVJsPFmoprJda7VUiSDE3I9WNJKRa8A0nPAdNF9q3lYhm7k70NDCS IXo1vDs= -----END CERTIFICATE-----Generated at Mon Jan 26 08:42:52 2026 by rpki-client