This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa File: 3204348A383611E6B2282B5DC4F9AE02.roa (raw, json) Hash identifier: ruLamf4e42DcI6xOKev/6+m8zhfkS5Gid2r1rhcza8I= Subject key identifier: A8:53:A6:F5:47:E6:D9:04:95:8D:B1:7B:48:B1:6C:A2:D7:05:DD:A1 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 36EC Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa Signing time: Tue 30 Dec 2025 15:10:08 +0000 ROA not before: Tue 30 Dec 2025 15:10:08 +0000 ROA not after: Thu 30 Apr 2026 00:00:00 +0000 asID: 135535 IP address blocks: 61.45.250.0/24 maxlen: 24 2401:4601:250::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14060 (0x36ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Dec 30 15:10:08 2025 GMT Not After : Apr 30 00:00:00 2026 GMT Subject: CN=6953eb50-4ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fa:ea:4f:a7:c0:07:be:38:25:c2:6b:e7:69: b0:06:69:23:98:df:c5:2d:c8:2e:3c:7c:ac:1a:fc: 53:66:f4:6d:2e:22:01:b3:ff:af:55:f9:8a:18:bf: 2f:c8:2b:e0:34:5d:07:2c:f4:87:23:03:11:7e:69: 88:ed:33:f6:64:61:4d:99:08:16:63:af:3a:c6:bd: 80:90:3c:1e:dc:ee:d4:fd:cd:7e:bb:9c:b3:89:32: c5:0e:f5:aa:fd:ee:ed:ce:84:88:8b:85:6b:7c:c8: cb:a2:03:12:c9:b1:1f:df:bb:9e:41:4a:5b:a0:cc: 39:ea:1b:bd:08:dc:99:49:18:c1:f4:88:8a:72:17: ec:61:82:51:81:b4:96:b9:79:60:1d:83:32:70:28: b4:4c:3c:a0:b5:80:96:41:77:e4:d3:c9:a6:30:95: 3d:45:6e:6b:f0:fb:3b:d3:ce:ea:ee:86:fa:85:28: e8:dd:0a:83:88:c9:83:1c:74:fc:4c:72:f4:28:e2: 3c:ad:1c:ee:99:17:20:85:39:ad:3d:6e:e9:6b:5b: 48:14:44:cc:4e:ea:bc:80:b9:3c:c6:a8:6d:bb:26: 15:35:9f:45:8c:3b:fe:53:f6:90:26:d0:b2:05:c8: b2:73:aa:89:1e:8c:b9:0b:b1:d1:97:56:a8:bf:a7: 7a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:53:A6:F5:47:E6:D9:04:95:8D:B1:7B:48:B1:6C:A2:D7:05:DD:A1 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.250.0/24 IPv6: 2401:4601:250::/48 Signature Algorithm: sha256WithRSAEncryption 01:62:71:c3:3f:88:45:b9:79:f8:44:07:f3:87:ec:98:2a:d9: 02:54:30:45:bd:e6:42:59:50:b6:66:6c:2f:f2:a5:2e:f7:56: c3:ec:31:83:9b:bd:df:07:ea:07:9c:5a:0c:ff:1e:e1:ce:af: 5d:f6:c7:37:a4:7b:10:2c:4a:fc:84:38:15:94:85:7a:22:3a: bc:ec:d3:23:1d:ea:83:d3:25:8d:56:45:dd:c0:2c:54:5f:1c: 83:b5:c6:49:4e:86:dc:aa:07:b9:6b:77:09:8f:66:62:45:ee: 24:ea:ae:3c:71:8f:8b:55:08:fe:7e:bd:fc:51:4d:c7:55:52: 6e:fc:bb:b6:74:8b:88:a2:db:c7:43:ba:78:5d:97:a3:99:bf: 9f:69:c0:dd:a7:d4:a0:1d:94:f0:e7:a9:82:e2:1c:0e:e7:9b: ab:de:01:66:8a:3e:c2:67:e7:46:06:aa:8e:cf:c9:94:33:f3: 5e:de:72:0b:1e:e1:f8:b6:5e:b7:ac:d7:18:74:bf:76:57:a6: ec:9c:76:11:4c:6c:1a:34:90:75:f0:59:4c:8a:e5:68:98:47: 05:65:b2:86:4b:eb:d9:29:ce:a3:ca:69:77:4b:ec:c5:76:34: fc:3e:c7:66:64:14:81:a1:06:7c:09:03:ba:2b:5b:71:d0:b3: 78:f6:30:db -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUxMjMwMTUxMDA4WhcNMjYwNDMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTUzZWI1MC00ZWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm/rqT6fAB744JcJr52mwBmkjmN/FLcguPHysGvxTZvRtLiIBs/+vVfmKGL8v yCvgNF0HLPSHIwMRfmmI7TP2ZGFNmQgWY686xr2AkDwe3O7U/c1+u5yziTLFDvWq /e7tzoSIi4VrfMjLogMSybEf37ueQUpboMw56hu9CNyZSRjB9IiKchfsYYJRgbSW uXlgHYMycCi0TDygtYCWQXfk08mmMJU9RW5r8Ps7087q7ob6hSjo3QqDiMmDHHT8 THL0KOI8rRzumRcghTmtPW7pa1tIFETMTuq8gLk8xqhtuyYVNZ9FjDv+U/aQJtCy Bciyc6qJHoy5C7HRl1aov6d6IQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKhTpvVH 5tkElY2xe0ixbKLXBd2hMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvMzIwNDM0OEEz ODM2MTFFNkIyMjgyQjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9LfowDwQCAAIwCQMHACQBRgECUDANBgkqhkiG9w0BAQsF AAOCAQEAAWJxwz+IRbl5+EQH84fsmCrZAlQwRb3mQllQtmZsL/KlLvdWw+wxg5u9 3wfqB5xaDP8e4c6vXfbHN6R7ECxK/IQ4FZSFeiI6vOzTIx3qg9MljVZF3cAsVF8c g7XGSU6G3KoHuWt3CY9mYkXuJOquPHGPi1UI/n69/FFNx1VSbvy7tnSLiKLbx0O6 eF2Xo5m/n2nA3afUoB2U8OepguIcDuebq94BZoo+wmfnRgaqjs/JlDPzXt5yCx7h +LZet6zXGHS/dlem7Jx2EUxsGjSQdfBZTIrlaJhHBWWyhkvr2SnOo8ppd0vsxXY0 /D7HZmQUgaEGfAkDuitbcdCzePYw2w== -----END CERTIFICATE-----Generated at Sun Jan 25 21:11:37 2026 by rpki-client