This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/4DA7A7766C6611F0883DC646C4F9AE02.roa File: 4DA7A7766C6611F0883DC646C4F9AE02.roa (raw, json) Hash identifier: RPf9NqAE6pLl+9GCTFNlsn+MgSYDmDceWR0KK3K6OCw= Subject key identifier: CC:3D:28:1C:7A:9D:A5:8E:FE:4C:7F:D7:9A:9B:FD:B3:74:97:C7:41 Certificate issuer: /CN=A91D488C/serialNumber=100B25354664681DAAB905CEFF4A4DA749C4EB8A Certificate serial: 4E Authority key identifier: 10:0B:25:35:46:64:68:1D:AA:B9:05:CE:FF:4A:4D:A7:49:C4:EB:8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EAslNUZkaB2quQXO_0pNp0nE64o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/4DA7A7766C6611F0883DC646C4F9AE02.roa Signing time: Tue 25 Nov 2025 05:52:51 +0000 ROA not before: Tue 25 Nov 2025 05:52:50 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 55501 IP address blocks: 160.250.96.0/24 maxlen: 24 160.250.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/EAslNUZkaB2quQXO_0pNp0nE64o.crl rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/EAslNUZkaB2quQXO_0pNp0nE64o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EAslNUZkaB2quQXO_0pNp0nE64o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:16:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D488C, serialNumber=100B25354664681DAAB905CEFF4A4DA749C4EB8A Validity Not Before: Nov 25 05:52:50 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69254432-d18a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ba:d8:8f:d4:0f:77:23:88:4e:86:d7:b0:42: 92:94:40:de:39:52:dd:c1:e0:da:70:5c:6f:0c:66: 7f:17:c9:c3:c8:76:34:4a:22:a4:ae:35:be:73:c3: ee:b4:a4:25:e3:22:42:3c:13:5c:6c:3f:89:ef:96: 4e:38:85:e6:6b:3c:0c:9d:9c:8e:4c:1b:30:95:a3: 9b:c8:73:e8:af:d7:8f:30:6e:0a:46:77:b2:2a:a3: 7b:f4:0f:7c:6b:ec:98:81:cf:23:2b:02:12:95:f9: ed:2d:7d:4b:48:fc:bf:6e:a2:ef:5b:8b:4f:63:91: 21:96:5f:2d:3e:6f:b8:69:ab:f2:5e:0e:8e:de:4a: b2:8e:3c:f0:7a:de:1b:9d:3e:02:35:ac:4e:fb:d2: 91:7c:ca:59:27:3e:ec:2f:60:f4:01:17:89:ac:e1: 22:da:c9:f4:75:c0:cb:0f:32:36:11:02:d5:f6:2c: ba:47:95:cb:92:4d:27:2a:05:c8:8d:2c:79:8e:23: e1:d0:9b:0c:c0:39:69:4f:fd:9b:6d:82:ef:2d:8e: 20:82:af:5c:a0:e1:89:5a:75:d6:7a:57:10:3f:71: 31:15:39:54:65:7c:0a:fd:61:e6:a3:8e:cd:31:26: 59:e2:4d:db:9c:be:a3:43:96:5d:b1:45:85:56:40: e0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:3D:28:1C:7A:9D:A5:8E:FE:4C:7F:D7:9A:9B:FD:B3:74:97:C7:41 X509v3 Authority Key Identifier: keyid:10:0B:25:35:46:64:68:1D:AA:B9:05:CE:FF:4A:4D:A7:49:C4:EB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/EAslNUZkaB2quQXO_0pNp0nE64o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EAslNUZkaB2quQXO_0pNp0nE64o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/4DA7A7766C6611F0883DC646C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.96.0/23 Signature Algorithm: sha256WithRSAEncryption 63:fa:fc:d3:1b:27:7c:c9:ae:45:d5:78:17:4e:3f:73:8f:97: 60:42:fc:ea:11:c4:fc:a8:4c:17:af:ec:22:d7:a4:da:12:49: 98:e9:29:50:ae:12:f9:a3:a1:23:e9:38:c4:c8:af:fa:26:c3: 2c:0c:73:d6:5f:64:ac:14:2d:c8:8c:cd:94:1f:ce:c1:76:63: fe:4f:db:75:40:30:50:42:9e:6d:42:cc:2d:95:b8:58:2d:11: f1:2b:6d:32:be:30:8b:20:e8:ee:28:d5:43:4c:1a:a8:2e:e2: 6e:d1:80:51:08:a1:1c:70:03:15:dc:e7:0e:f6:27:76:47:fd: 2f:10:8a:cd:4d:3b:68:96:d4:ab:12:20:7d:78:38:c5:ba:82: 2a:41:d4:40:7a:a9:02:15:69:62:27:1e:c8:a6:b0:e3:07:4b: 44:d1:7d:b3:31:87:9d:0c:7d:5a:9b:be:5f:ec:75:32:9c:aa: 25:86:e5:4a:7c:75:38:47:15:00:de:de:60:28:1a:ab:dc:76: 71:07:d8:fd:e2:7d:ae:7f:f1:88:b3:b5:c2:6d:3f:cf:25:d0: b4:7e:3c:33:0e:88:22:b2:36:10:6f:de:45:63:29:52:44:ca: 70:53:a7:fb:70:b1:01:05:78:7f:09:f3:8d:12:b7:ca:1d:44: a9:40:80:f5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDg4QzExMC8GA1UEBRMoMTAwQjI1MzU0NjY0NjgxREFBQjkwNUNFRkY0QTREQTc0 OUM0RUI4QTAeFw0yNTExMjUwNTUyNTBaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MjU0NDMyLWQxOGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxutiP1A93I4hOhtewQpKUQN45Ut3B4NpwXG8MZn8XycPIdjRKIqSuNb5zw+60 pCXjIkI8E1xsP4nvlk44heZrPAydnI5MGzCVo5vIc+iv148wbgpGd7Iqo3v0D3xr 7JiBzyMrAhKV+e0tfUtI/L9uou9bi09jkSGWXy0+b7hpq/JeDo7eSrKOPPB63hud PgI1rE770pF8ylknPuwvYPQBF4ms4SLayfR1wMsPMjYRAtX2LLpHlcuSTScqBciN LHmOI+HQmwzAOWlP/Zttgu8tjiCCr1yg4YladdZ6VxA/cTEVOVRlfAr9Yeajjs0x JlniTducvqNDll2xRYVWQOB3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzD0oHHqd pY7+TH/Xmpv9s3SXx0EwHwYDVR0jBBgwFoAUEAslNUZkaB2quQXO/0pNp0nE64ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0ODhDLzQ2QjAwNTA0NkI4 OTExRjA5NUYxMTAyQkM0RjlBRTAyL0VBc2xOVVprYUIycXVRWE9fMHBOcDBuRTY0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRUFzbE5VWmthQjJxdVFYT18wcE5wMG5FNjRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDg4Qy80NkIwMDUwNDZCODkxMUYwOTVGMTEwMkJDNEY5QUUwMi80REE3QTc3NjZD NjYxMUYwODgzREM2NDZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD6YDANBgkqhkiG9w0BAQsFAAOCAQEAY/r80xsnfMmuRdV4 F04/c4+XYEL86hHE/KhMF6/sItek2hJJmOkpUK4S+aOhI+k4xMiv+ibDLAxz1l9k rBQtyIzNlB/OwXZj/k/bdUAwUEKebULMLZW4WC0R8SttMr4wiyDo7ijVQ0waqC7i btGAUQihHHADFdznDvYndkf9LxCKzU07aJbUqxIgfXg4xbqCKkHUQHqpAhVpYice yKaw4wdLRNF9szGHnQx9Wpu+X+x1MpyqJYblSnx1OEcVAN7eYCgaq9x2cQfY/eJ9 rn/xiLO1wm0/zyXQtH48Mw6IIrI2EG/eRWMpUkTKcFOn+3CxAQV4fwnzjRK3yh1E qUCA9Q== -----END CERTIFICATE-----Generated at Sat Dec 6 22:25:41 2025 by rpki-client