This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/95EC5BBE0DC811F0A0561D5AC4F9AE02.roa File: 95EC5BBE0DC811F0A0561D5AC4F9AE02.roa (raw, json) Hash identifier: wM1mmKNlwwEGHyhB8WEo2P8zb520cmuZMxNTLioe/2U= Subject key identifier: 8A:E3:1A:3B:AF:6D:B3:29:28:AF:B0:B6:82:94:AF:90:0A:55:2C:5D Certificate issuer: /CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179 Certificate serial: 08E6 Authority key identifier: 7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/95EC5BBE0DC811F0A0561D5AC4F9AE02.roa Signing time: Tue 02 Dec 2025 21:25:44 +0000 ROA not before: Tue 02 Dec 2025 21:25:44 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 9723 IP address blocks: 1.178.2.0/23 maxlen: 24 1.178.66.0/23 maxlen: 24 1.178.80.0/24 maxlen: 24 1.178.82.0/23 maxlen: 24 1.178.84.0/23 maxlen: 24 1.178.96.0/22 maxlen: 24 1.178.175.0/24 maxlen: 24 1.178.176.0/22 maxlen: 24 1.179.0.0/23 maxlen: 24 1.179.4.0/22 maxlen: 24 1.179.8.0/22 maxlen: 24 1.179.12.0/23 maxlen: 24 1.179.16.0/21 maxlen: 24 1.179.48.0/22 maxlen: 24 1.179.62.0/23 maxlen: 24 1.179.96.0/22 maxlen: 24 58.87.0.0/20 maxlen: 20 58.87.0.0/23 maxlen: 23 58.87.2.0/23 maxlen: 23 58.87.6.0/23 maxlen: 23 58.87.8.0/23 maxlen: 23 58.87.10.0/23 maxlen: 23 58.87.12.0/23 maxlen: 23 58.87.14.0/24 maxlen: 24 58.87.15.0/24 maxlen: 24 110.238.21.0/24 maxlen: 24 110.238.24.0/24 maxlen: 24 110.238.25.0/24 maxlen: 24 110.238.144.0/21 maxlen: 21 110.238.144.0/22 maxlen: 24 110.238.240.0/23 maxlen: 24 110.239.0.0/21 maxlen: 21 110.239.15.0/24 maxlen: 24 110.239.16.0/23 maxlen: 23 110.239.26.0/24 maxlen: 24 110.239.31.0/24 maxlen: 24 110.239.32.0/23 maxlen: 23 110.239.128.0/20 maxlen: 20 110.239.128.0/21 maxlen: 21 110.239.176.0/21 maxlen: 21 110.239.176.0/24 maxlen: 24 110.239.178.0/24 maxlen: 24 119.12.80.0/21 maxlen: 24 119.13.0.0/23 maxlen: 23 119.13.2.0/24 maxlen: 24 119.13.3.0/24 maxlen: 24 119.13.4.0/23 maxlen: 23 119.13.6.0/23 maxlen: 23 119.13.8.0/23 maxlen: 23 119.13.10.0/24 maxlen: 24 119.13.48.0/23 maxlen: 23 119.13.48.0/24 maxlen: 24 119.13.49.0/24 maxlen: 24 119.13.144.0/22 maxlen: 24 119.13.176.0/22 maxlen: 23 119.13.176.0/23 maxlen: 24 119.13.178.0/24 maxlen: 24 119.13.240.0/23 maxlen: 24 121.91.96.0/23 maxlen: 24 121.91.199.0/24 maxlen: 24 123.200.128.0/20 maxlen: 20 123.200.128.0/22 maxlen: 22 123.200.133.0/24 maxlen: 24 123.200.134.0/23 maxlen: 23 123.200.136.0/22 maxlen: 22 123.200.140.0/22 maxlen: 22 123.200.144.0/22 maxlen: 22 123.200.148.0/22 maxlen: 22 123.200.152.0/21 maxlen: 21 123.200.160.0/23 maxlen: 23 123.200.162.0/23 maxlen: 23 123.200.164.0/23 maxlen: 23 123.200.165.0/24 maxlen: 24 123.200.166.0/23 maxlen: 23 123.200.168.0/23 maxlen: 23 123.200.170.0/23 maxlen: 23 123.200.172.0/24 maxlen: 24 123.200.174.0/24 maxlen: 24 123.200.175.0/24 maxlen: 24 123.200.176.0/23 maxlen: 23 123.200.179.0/24 maxlen: 24 123.200.180.0/23 maxlen: 23 123.200.182.0/23 maxlen: 23 123.200.184.0/22 maxlen: 22 123.200.186.0/23 maxlen: 23 123.200.187.0/24 maxlen: 24 123.200.188.0/23 maxlen: 23 123.200.200.0/23 maxlen: 24 123.200.208.0/21 maxlen: 21 123.200.216.0/21 maxlen: 21 123.200.240.0/23 maxlen: 24 202.83.64.0/19 maxlen: 19 202.83.64.0/22 maxlen: 22 202.83.68.0/23 maxlen: 23 202.83.70.0/23 maxlen: 23 202.83.72.0/24 maxlen: 24 202.83.73.0/24 maxlen: 24 202.83.74.0/23 maxlen: 23 202.83.76.0/22 maxlen: 22 202.83.80.0/23 maxlen: 23 202.83.82.0/24 maxlen: 24 202.83.83.0/24 maxlen: 24 202.83.84.0/22 maxlen: 22 202.83.88.0/23 maxlen: 23 202.83.90.0/23 maxlen: 23 202.83.92.0/23 maxlen: 23 202.83.94.0/24 maxlen: 24 202.83.95.0/24 maxlen: 24 202.183.96.0/20 maxlen: 20 202.183.96.0/24 maxlen: 24 202.183.97.0/24 maxlen: 24 202.183.98.0/24 maxlen: 24 202.183.100.0/23 maxlen: 23 202.183.102.0/23 maxlen: 23 202.183.102.0/24 maxlen: 24 202.183.104.0/22 maxlen: 22 202.183.108.0/24 maxlen: 24 202.183.110.0/24 maxlen: 24 202.183.111.0/24 maxlen: 24 202.183.112.0/20 maxlen: 20 202.183.112.0/23 maxlen: 23 202.183.114.0/23 maxlen: 23 202.183.116.0/23 maxlen: 23 202.183.118.0/24 maxlen: 24 202.183.119.0/24 maxlen: 24 202.183.120.0/22 maxlen: 22 202.183.124.0/23 maxlen: 23 202.183.126.0/24 maxlen: 24 202.183.127.0/24 maxlen: 24 210.56.64.0/24 maxlen: 24 210.56.68.0/23 maxlen: 24 210.56.70.0/23 maxlen: 24 220.157.64.0/24 maxlen: 24 220.157.70.0/24 maxlen: 24 220.157.71.0/24 maxlen: 24 220.157.74.0/23 maxlen: 24 220.157.79.0/24 maxlen: 24 220.157.80.0/23 maxlen: 24 220.157.82.0/23 maxlen: 24 220.157.84.0/23 maxlen: 24 220.157.86.0/23 maxlen: 24 220.157.90.0/24 maxlen: 24 220.157.91.0/24 maxlen: 24 220.157.92.0/24 maxlen: 24 220.157.93.0/24 maxlen: 24 220.157.94.0/24 maxlen: 24 220.157.95.0/24 maxlen: 24 2407:6800::/32 maxlen: 32 2407:6800:0:200::/56 maxlen: 56 2407:6800:0:300::/56 maxlen: 56 2407:6800:0:400::/56 maxlen: 56 2407:6800:0:500::/56 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:08:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2278 (0x8e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB4FE, serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179 Validity Not Before: Dec 2 21:25:44 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692f5958-90c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:54:48:85:34:9e:ab:17:88:61:d9:d4:53:46: 96:e7:e7:aa:2f:58:57:d1:9f:02:49:6b:33:94:af: c3:21:ad:69:58:f6:69:cb:3c:d1:17:90:e4:40:3f: 70:fc:64:2f:15:48:18:ed:6d:3d:94:01:c7:05:47: f7:66:0d:1c:21:34:3b:b9:b4:cc:d2:84:55:a5:5d: e0:9e:d6:30:9b:4e:66:23:45:1f:83:c6:09:49:7b: ac:ee:2a:f0:ef:d3:b8:96:b1:bb:ed:68:34:d6:33: 36:ee:72:f5:96:30:e2:5a:dc:56:fc:90:58:6e:0e: 4d:a2:36:26:e4:43:38:88:06:3c:28:9e:73:72:3e: 60:c8:30:bd:68:51:4f:5c:0d:04:19:0e:59:03:c8: 2d:b8:af:c4:e2:a2:d4:01:8e:d1:f1:6d:a0:a1:f3: f4:fb:e8:ba:09:87:f8:46:15:5a:49:4f:c3:bd:51: 3a:18:5b:aa:83:6e:45:c6:52:f9:6d:57:be:5d:55: f3:d3:1d:eb:54:c2:45:79:30:37:f1:4c:8c:01:8f: ae:2b:df:86:08:f9:5a:f4:04:a1:a6:72:f1:6c:c6: 6b:f7:00:f4:7d:c1:ce:93:c2:da:95:54:52:91:4f: fc:5e:b1:21:fb:9b:7d:1c:72:86:16:16:d9:41:ba: 7d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E3:1A:3B:AF:6D:B3:29:28:AF:B0:B6:82:94:AF:90:0A:55:2C:5D X509v3 Authority Key Identifier: keyid:7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/95EC5BBE0DC811F0A0561D5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.178.2.0/23 1.178.66.0/23 1.178.80.0/24 1.178.82.0-1.178.85.255 1.178.96.0/22 1.178.175.0-1.178.179.255 1.179.0.0/23 1.179.4.0-1.179.13.255 1.179.16.0/21 1.179.48.0/22 1.179.62.0/23 1.179.96.0/22 58.87.0.0/20 110.238.21.0/24 110.238.24.0/23 110.238.144.0/21 110.238.240.0/23 110.239.0.0/21 110.239.15.0-110.239.17.255 110.239.26.0/24 110.239.31.0-110.239.33.255 110.239.128.0/20 110.239.176.0/21 119.12.80.0/21 119.13.0.0-119.13.10.255 119.13.48.0/23 119.13.144.0/22 119.13.176.0/22 119.13.240.0/23 121.91.96.0/23 121.91.199.0/24 123.200.128.0-123.200.172.255 123.200.174.0-123.200.177.255 123.200.179.0-123.200.189.255 123.200.200.0/23 123.200.208.0/20 123.200.240.0/23 202.83.64.0/19 202.183.96.0/19 210.56.64.0/24 210.56.68.0/22 220.157.64.0/24 220.157.70.0/23 220.157.74.0/23 220.157.79.0-220.157.87.255 220.157.90.0-220.157.95.255 IPv6: 2407:6800::/32 Signature Algorithm: sha256WithRSAEncryption b7:a0:4e:c4:db:d2:80:a2:2a:b4:37:00:db:5f:e2:ae:34:3b: 4c:6b:ef:b1:19:01:79:66:4d:f6:08:74:a4:7c:a5:a8:84:40: 26:16:90:1e:2b:12:08:d1:66:01:b0:92:4e:af:a3:7a:75:46: 63:aa:b6:0c:0b:90:0f:a0:ad:6f:08:78:a5:80:a8:bc:64:00: 47:8b:f8:88:8d:50:5a:11:c6:ab:06:31:05:57:b9:51:ba:bf: dc:ce:d6:3b:9f:21:fc:ee:99:07:60:e4:88:40:c9:6b:f5:99: a1:d7:a9:ba:e6:4b:bf:6a:59:2e:cf:8a:ba:18:a3:28:28:c9: a5:58:43:20:ba:70:5e:46:4f:0d:b6:dc:4e:93:b8:26:e4:39: d6:6f:5f:c8:fe:fd:27:54:47:da:39:b7:cd:cd:e0:6b:68:8b: c5:6c:cb:87:85:c6:5d:a2:3d:3d:4d:35:89:32:85:3e:9e:07: 90:e6:c0:cf:ae:e6:49:59:8f:b5:0a:d2:ce:b6:4e:91:28:25: 66:6f:5a:fa:68:ef:68:78:01:c0:eb:00:d8:75:97:04:83:62: 9b:e6:0c:b6:cc:22:e0:04:f5:2b:56:7f:18:e4:e4:47:58:39: f3:06:bb:35:39:e0:78:68:18:20:f9:28:11:05:c2:d9:60:e5: d2:6f:4b:88 -----BEGIN CERTIFICATE----- MIIG7zCCBdegAwIBAgICCOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0RkUxMTAvBgNVBAUTKDdGNkJFMUQ1QTI3MzBGQzIyN0ZBRkM4OTZEMTM0MzMy NDE3ODMxNzkwHhcNMjUxMjAyMjEyNTQ0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmNTk1OC05MGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFRIhTSeqxeIYdnUU0aW5+eqL1hX0Z8CSWszlK/DIa1pWPZpyzzRF5DkQD9w /GQvFUgY7W09lAHHBUf3Zg0cITQ7ubTM0oRVpV3gntYwm05mI0Ufg8YJSXus7irw 79O4lrG77Wg01jM27nL1ljDiWtxW/JBYbg5NojYm5EM4iAY8KJ5zcj5gyDC9aFFP XA0EGQ5ZA8gtuK/E4qLUAY7R8W2gofP0++i6CYf4RhVaSU/DvVE6GFuqg25FxlL5 bVe+XVXz0x3rVMJFeTA38UyMAY+uK9+GCPla9AShpnLxbMZr9wD0fcHOk8LalVRS kU/8XrEh+5t9HHKGFhbZQbp9fQIDAQABo4IEEzCCBA8wHQYDVR0OBBYEFIrjGjuv bbMpKK+wtoKUr5AKVSxdMB8GA1UdIwQYMBaAFH9r4dWicw/CJ/r8iW0TQzJBeDF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjRGRS9DRjRBMTBFQTg1 RTExMUVCQUZCNTFFODRDNEY5QUUwMi9mMnZoMWFKekQ4SW4tdnlKYlJORE1rRjRN WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YydmgxYUp6RDhJbi12eUpiUk5ETWtGNE1Yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI0RkUvQ0Y0QTEwRUE4NUUxMTFFQkFGQjUxRTg0QzRGOUFFMDIvOTVFQzVCQkUw REM4MTFGMEEwNTYxRDVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggGbBggrBgEFBQcBBwEB /wSCAYowggGGMIIBcwQCAAEwggFrAwQBAbICAwQBAbJCAwQAAbJQMAwDBAEBslID BAEBslQDBAIBsmAwDAMEAAGyrwMEAgGysAMEAQGzADAMAwQCAbMEAwQBAbMMAwQD AbMQAwQCAbMwAwQBAbM+AwQCAbNgAwQEOlcAAwQAbu4VAwQBbu4YAwQDbu6QAwQB bu7wAwQDbu8AMAwDBABu7w8DBAFu7xADBABu7xowDAMEAG7vHwMEAW7vIAMEBG7v gAMEA27vsAMEA3cMUDALAwMAdw0DBAB3DQoDBAF3DTADBAJ3DZADBAJ3DbADBAF3 DfADBAF5W2ADBAB5W8cwDAMEB3vIgAMEAHvIrDAMAwQBe8iuAwQBe8iwMAwDBAB7 yLMDBAF7yLwDBAF7yMgDBAR7yNADBAF7yPADBAXKU0ADBAXKt2ADBADSOEADBALS OEQDBADcnUADBAHcnUYDBAHcnUowDAMEANydTwMEA9ydUDAMAwQB3J1aAwQF3J1A MA0EAgACMAcDBQAkB2gAMA0GCSqGSIb3DQEBCwUAA4IBAQC3oE7E29KAoiq0NwDb X+KuNDtMa++xGQF5Zk32CHSkfKWohEAmFpAeKxII0WYBsJJOr6N6dUZjqrYMC5AP oK1vCHilgKi8ZABHi/iIjVBaEcarBjEFV7lRur/cztY7nyH87pkHYOSIQMlr9Zmh 16m65ku/alkuz4q6GKMoKMmlWEMgunBeRk8NttxOk7gm5DnWb1/I/v0nVEfaObfN zeBraIvFbMuHhcZdoj09TTWJMoU+ngeQ5sDPruZJWY+1CtLOtk6RKCVmb1r6aO9o eAHA6wDYdZcEg2Kb5gy2zCLgBPUrVn8Y5ORHWDnzBrs1OeB4aBgg+SgRBcLZYOXS b0uI -----END CERTIFICATE-----Generated at Sun Dec 7 02:41:23 2025 by rpki-client