This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/FED80F56E19811EC860C6F38C4F9AE02.roa File: FED80F56E19811EC860C6F38C4F9AE02.roa (raw, json) Hash identifier: CXU1xzYQDmjgcyKDNrETMAp/Idf2pgTgHmSIME26LMc= Subject key identifier: 5D:D3:5B:A2:95:E2:85:87:19:EE:7C:42:DB:C7:7D:3A:82:D9:13:79 Certificate issuer: /CN=A91E2364/serialNumber=647B149EF016CC5356A7ED730F133E002C0E7FAA Certificate serial: 0CFF Authority key identifier: 64:7B:14:9E:F0:16:CC:53:56:A7:ED:73:0F:13:3E:00:2C:0E:7F:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/FED80F56E19811EC860C6F38C4F9AE02.roa Signing time: Fri 28 Nov 2025 17:50:25 +0000 ROA not before: Fri 28 Nov 2025 17:50:25 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 45498 IP address blocks: 27.109.112.0/22 maxlen: 22 27.109.112.0/23 maxlen: 23 27.109.112.0/24 maxlen: 24 27.109.113.0/24 maxlen: 24 27.109.114.0/23 maxlen: 23 27.109.114.0/24 maxlen: 24 27.109.115.0/24 maxlen: 24 103.145.136.0/23 maxlen: 23 103.145.136.0/24 maxlen: 24 103.145.137.0/24 maxlen: 24 117.20.112.0/21 maxlen: 21 117.20.112.0/22 maxlen: 24 117.20.116.0/22 maxlen: 24 202.93.153.0/24 maxlen: 24 202.129.236.0/24 maxlen: 24 203.118.242.0/24 maxlen: 24 2401:9700:1000::/40 maxlen: 42 2401:9700:1010::/48 maxlen: 48 2401:9700:2000::/40 maxlen: 42 2401:9700:2100::/40 maxlen: 42 2401:9700:2200::/40 maxlen: 42 2401:9700:2300::/40 maxlen: 42 2401:9700:2400::/40 maxlen: 42 2401:9700:2500::/40 maxlen: 42 2401:9700:3000::/40 maxlen: 42 2401:9700:4000::/40 maxlen: 42 2401:9700:5000::/40 maxlen: 42 2401:9700:6000::/40 maxlen: 42 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.crl rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3327 (0xcff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2364, serialNumber=647B149EF016CC5356A7ED730F133E002C0E7FAA Validity Not Before: Nov 28 17:50:25 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6929e0e1-9f38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f2:82:74:1a:a6:37:a5:55:7f:da:65:c4:5b: 55:af:42:38:c3:29:35:c5:2d:91:95:43:69:c6:67: 66:3a:07:06:fd:bb:24:19:4c:cc:34:d3:d1:a1:1c: 22:f3:36:b1:bf:78:6c:53:46:d6:1b:5c:55:b9:85: 6d:43:87:9b:37:c2:78:1b:a2:8e:91:79:88:4f:30: f6:14:ae:01:47:c8:7e:71:58:d2:2e:17:1b:61:a3: a2:e9:6b:08:12:03:9c:00:c0:cc:2b:37:55:da:70: a4:d9:cb:2d:63:2f:a5:b2:0a:72:49:78:50:ff:ff: bb:d2:1a:4b:69:02:00:d0:2d:42:93:c1:b8:7e:5d: 68:0a:06:36:84:e8:ef:ad:32:ec:af:9c:62:de:e8: df:cc:0e:22:85:a1:62:1f:1b:d3:b5:a0:36:b7:ff: eb:ec:c5:73:5d:14:e8:4d:fa:8d:5c:6f:9f:9e:5e: 5a:71:1b:e7:36:64:67:5b:74:02:27:69:c0:2e:5d: 27:7c:5d:cd:c9:63:98:7e:af:62:81:94:99:22:49: d7:3f:ec:28:a6:1a:b5:c1:5a:4a:a6:1b:57:02:be: 95:ac:ec:dd:d1:c6:f1:fd:67:96:90:f4:ec:ef:e9: 48:e5:73:3e:bf:2d:62:91:9a:cc:87:f6:93:a1:5a: 5f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D3:5B:A2:95:E2:85:87:19:EE:7C:42:DB:C7:7D:3A:82:D9:13:79 X509v3 Authority Key Identifier: keyid:64:7B:14:9E:F0:16:CC:53:56:A7:ED:73:0F:13:3E:00:2C:0E:7F:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHsUnvAWzFNWp-1zDxM-ACwOf6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2364/8FE71786FF9B11E9B7F4A772C4F9AE02/FED80F56E19811EC860C6F38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.109.112.0/22 103.145.136.0/23 117.20.112.0/21 202.93.153.0/24 202.129.236.0/24 203.118.242.0/24 IPv6: 2401:9700:1000::/40 2401:9700:2000::-2401:9700:25ff:ffff:ffff:ffff:ffff:ffff 2401:9700:3000::/40 2401:9700:4000::/40 2401:9700:5000::/40 2401:9700:6000::/40 Signature Algorithm: sha256WithRSAEncryption 34:ec:1d:2a:2c:4b:f9:ab:9f:cc:d2:ac:74:be:cc:e7:2d:71: 9e:f5:26:4c:4b:90:0f:ea:04:37:6d:c2:4b:02:1d:90:39:99: c7:06:fe:4b:6b:93:8e:da:9d:82:8c:46:96:01:27:65:1a:80: d3:9b:2e:7f:f4:ee:1e:82:7b:60:df:35:99:33:d1:17:78:77: 22:eb:31:e4:5f:e7:4a:95:b8:e1:c0:62:07:00:61:cb:cb:52: 91:bf:f4:95:f9:63:e6:15:55:6d:21:98:b7:ab:e4:2f:ee:df: d2:42:1a:88:7d:9d:b9:cc:a8:76:ba:8a:dd:8e:23:43:a8:e6: f2:5d:40:cf:3c:4f:d9:b4:c0:b9:55:f5:b5:2f:2c:f8:cd:1b: 7f:5e:1f:e2:66:8c:56:0c:43:6d:af:36:6f:cf:d6:29:bc:15: c5:e9:5a:e2:83:1c:36:91:42:b9:5b:d4:d0:10:65:62:58:a2: 34:3e:38:0a:f0:1c:0a:14:ac:82:2b:08:60:ef:17:c5:c8:3e: 84:96:69:30:72:4b:af:00:bc:29:78:49:ad:10:56:e0:ee:34: f6:e1:70:b7:90:bb:30:f9:79:ee:e4:e3:fd:4d:9e:44:25:c7: 44:3b:92:6f:ad:57:7b:a5:04:cd:03:46:71:b6:14:fb:74:29: 6d:b2:e2:a6 -----BEGIN CERTIFICATE----- MIIF0TCCBLmgAwIBAgICDP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIzNjQxMTAvBgNVBAUTKDY0N0IxNDlFRjAxNkNDNTM1NkE3RUQ3MzBGMTMzRTAw MkMwRTdGQUEwHhcNMjUxMTI4MTc1MDI1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI5ZTBlMS05ZjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/KCdBqmN6VVf9plxFtVr0I4wyk1xS2RlUNpxmdmOgcG/bskGUzMNNPRoRwi 8zaxv3hsU0bWG1xVuYVtQ4ebN8J4G6KOkXmITzD2FK4BR8h+cVjSLhcbYaOi6WsI EgOcAMDMKzdV2nCk2cstYy+lsgpySXhQ//+70hpLaQIA0C1Ck8G4fl1oCgY2hOjv rTLsr5xi3ujfzA4ihaFiHxvTtaA2t//r7MVzXRToTfqNXG+fnl5acRvnNmRnW3QC J2nALl0nfF3NyWOYfq9igZSZIknXP+wophq1wVpKphtXAr6VrOzd0cbx/WeWkPTs 7+lI5XM+vy1ikZrMh/aToVpf8QIDAQABo4IC9TCCAvEwHQYDVR0OBBYEFF3TW6KV 4oWHGe58QtvHfTqC2RN5MB8GA1UdIwQYMBaAFGR7FJ7wFsxTVqftcw8TPgAsDn+q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjM2NC84RkU3MTc4NkZG OUIxMUU5QjdGNEE3NzJDNEY5QUUwMi9aSHNVbnZBV3pGTldwLTF6RHhNLUFDd09m Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pIc1VudkFXekZOV3AtMXpEeE0tQUN3T2Y2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTIzNjQvOEZFNzE3ODZGRjlCMTFFOUI3RjRBNzcyQzRGOUFFMDIvRkVEODBGNTZF MTk4MTFFQzg2MEM2RjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwfwYIKwYBBQUHAQcBAf8E cDBuMCoEAgABMCQDBAIbbXADBAFnkYgDBAN1FHADBADKXZkDBADKgewDBADLdvIw QAQCAAIwOgMGACQBlwAQMBADBgUkAZcAIAMGASQBlwAkAwYAJAGXADADBgAkAZcA QAMGACQBlwBQAwYAJAGXAGAwDQYJKoZIhvcNAQELBQADggEBADTsHSosS/mrn8zS rHS+zOctcZ71JkxLkA/qBDdtwksCHZA5mccG/ktrk47anYKMRpYBJ2UagNObLn/0 7h6Ce2DfNZkz0Rd4dyLrMeRf50qVuOHAYgcAYcvLUpG/9JX5Y+YVVW0hmLer5C/u 39JCGoh9nbnMqHa6it2OI0Oo5vJdQM88T9m0wLlV9bUvLPjNG39eH+JmjFYMQ22v Nm/P1im8FcXpWuKDHDaRQrlb1NAQZWJYojQ+OArwHAoUrIIrCGDvF8XIPoSWaTBy S68AvCl4Sa0QVuDuNPbhcLeQuzD5ee7k4/1NnkQlx0Q7km+tV3ulBM0DRnG2FPt0 KW2y4qY= -----END CERTIFICATE-----Generated at Sun Dec 7 03:39:45 2025 by rpki-client