This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/4703352E2BC311EEA3EEFA66C4F9AE02.roa File: 4703352E2BC311EEA3EEFA66C4F9AE02.roa (raw, json) Hash identifier: LQ3/AcCd8+g9svWnyDnStsxL1BbV2fc4t0Zl6g4PL/A= Subject key identifier: 5D:4C:E1:B5:7A:C9:01:9B:BB:3C:EB:90:3D:11:CC:84:13:CF:00:A5 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 369F Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/4703352E2BC311EEA3EEFA66C4F9AE02.roa Signing time: Thu 06 Nov 2025 02:36:27 +0000 ROA not before: Thu 06 Nov 2025 02:36:27 +0000 ROA not after: Fri 30 Jan 2026 00:00:00 +0000 asID: 135533 IP address blocks: 61.45.248.0/24 maxlen: 24 2001:df0:a::/48 maxlen: 48 2401:4601:248::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:17:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13983 (0x369f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Nov 6 02:36:27 2025 GMT Not After : Jan 30 00:00:00 2026 GMT Subject: CN=690c09ab-d807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:97:54:9a:e7:2b:f3:41:e9:e3:24:bf:3e:e1: 46:25:a6:cd:a2:be:4a:fc:b4:ad:84:79:3a:cc:61: b7:ce:59:4e:43:94:ed:6b:b1:a3:87:ac:29:ea:72: 78:f9:7c:a9:a5:a8:fb:e8:7c:f3:e2:62:05:fc:70: e2:20:04:91:92:8d:a1:06:1b:03:d7:c3:07:66:ae: d6:ea:0c:dc:f0:63:35:52:55:ad:ec:94:e8:2c:a1: 77:12:12:d3:5a:6c:6e:bd:63:80:12:85:bd:35:15: 07:45:ce:28:f8:a5:b6:8c:f2:9b:e1:06:fb:d5:1a: a1:fd:de:8c:71:ac:ac:47:c5:73:4d:05:f4:d0:74: 7d:84:0f:b3:15:69:c1:dd:5f:7c:70:df:3d:21:91: 6a:9c:8c:12:aa:f4:ec:34:a3:0e:3b:2e:c6:7e:35: 92:b8:a0:2a:a9:74:ce:63:58:5f:80:bf:aa:20:0e: a9:14:07:e6:49:bf:b3:0b:10:b5:5d:b5:d4:d8:96: 2a:91:95:4a:d3:5b:75:00:b3:0b:fb:12:bf:53:6b: 52:84:b0:c7:d8:50:c8:8d:1d:90:a5:de:ba:25:6a: 07:ee:16:40:3b:f9:ee:20:27:93:0d:8f:9c:42:79: 1e:e0:6d:f9:67:c8:cc:ee:04:92:94:f7:b1:0a:fc: c2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:4C:E1:B5:7A:C9:01:9B:BB:3C:EB:90:3D:11:CC:84:13:CF:00:A5 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/4703352E2BC311EEA3EEFA66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.248.0/24 IPv6: 2001:df0:a::/48 2401:4601:248::/48 Signature Algorithm: sha256WithRSAEncryption a1:97:4a:c7:4c:b3:22:50:ee:43:a1:5b:b3:46:37:8f:e0:fe: 43:4d:74:48:d4:51:79:ba:47:da:a9:e1:d8:aa:cd:3a:77:3a: 14:e2:16:eb:01:ae:1f:21:84:41:81:f1:da:28:53:2c:52:f5: f9:ad:02:c2:6f:ff:db:ea:d4:e2:bb:14:2b:8b:63:c2:d9:e3: af:e9:07:a0:1c:20:80:3c:b1:12:c5:fa:d1:f3:03:6f:f9:2e: fb:6d:0b:15:72:15:b1:c7:dc:21:82:43:ee:83:28:9b:07:69: b4:01:74:ee:60:e9:b1:8e:be:b2:1c:21:a0:53:9a:18:bd:17: 9c:f2:32:07:4f:5c:fa:2a:70:0f:be:05:c5:c9:86:b1:18:08: 6c:9a:10:c8:e0:ab:e8:52:58:61:ac:19:31:3d:af:bc:88:c4: b6:b5:89:c6:0c:21:19:20:93:5c:75:e9:10:aa:fd:21:47:34: 15:3f:bc:dc:e4:85:6c:f7:32:bb:90:fe:09:02:0d:53:f1:a0: b5:b4:31:e1:d1:01:94:ed:b1:49:7c:35:90:50:c5:93:8c:8e: 78:6a:e9:91:c8:7a:a2:c0:34:9a:ad:85:1f:94:51:e7:04:12: 1d:48:17:5b:d9:c4:52:6f:51:6b:a2:a1:c5:a5:26:af:6f:7b: 36:fc:ff:2f -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICNp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUxMTA2MDIzNjI3WhcNMjYwMTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBjMDlhYi1kODA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZdUmucr80Hp4yS/PuFGJabNor5K/LSthHk6zGG3zllOQ5Tta7Gjh6wp6nJ4 +Xyppaj76Hzz4mIF/HDiIASRko2hBhsD18MHZq7W6gzc8GM1UlWt7JToLKF3EhLT WmxuvWOAEoW9NRUHRc4o+KW2jPKb4Qb71Rqh/d6McaysR8VzTQX00HR9hA+zFWnB 3V98cN89IZFqnIwSqvTsNKMOOy7GfjWSuKAqqXTOY1hfgL+qIA6pFAfmSb+zCxC1 XbXU2JYqkZVK01t1ALML+xK/U2tShLDH2FDIjR2Qpd66JWoH7hZAO/nuICeTDY+c Qnke4G35Z8jM7gSSlPexCvzCFwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFF1M4bV6 yQGbuzzrkD0RzIQTzwClMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvNDcwMzM1MkUy QkMzMTFFRUEzRUVGQTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAA9LfgwGAQCAAIwEgMHACABDfAACgMHACQBRgECSDANBgkq hkiG9w0BAQsFAAOCAQEAoZdKx0yzIlDuQ6Fbs0Y3j+D+Q010SNRRebpH2qnh2KrN Onc6FOIW6wGuHyGEQYHx2ihTLFL1+a0Cwm//2+rU4rsUK4tjwtnjr+kHoBwggDyx EsX60fMDb/ku+20LFXIVscfcIYJD7oMomwdptAF07mDpsY6+shwhoFOaGL0XnPIy B09c+ipwD74FxcmGsRgIbJoQyOCr6FJYYawZMT2vvIjEtrWJxgwhGSCTXHXpEKr9 IUc0FT+83OSFbPcyu5D+CQINU/GgtbQx4dEBlO2xSXw1kFDFk4yOeGrpkch6osA0 mq2FH5RR5wQSHUgXW9nEUm9Ra6KhxaUmr297Nvz/Lw== -----END CERTIFICATE-----Generated at Sat Dec 6 17:07:01 2025 by rpki-client