This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/37D72D7CC17C11EE8391A218C4F9AE02.roa File: 37D72D7CC17C11EE8391A218C4F9AE02.roa (raw, json) Hash identifier: qxtNKUc7HF/VkXAraaVVwbebVqZJVoxXF7TKzjhbXJM= Subject key identifier: 89:B2:DF:4B:A8:29:BC:A3:E0:E4:E9:6B:36:F1:DA:05:B7:47:88:DD Certificate issuer: /CN=A91E9F31/serialNumber=DCDA069E3EFF8956C01572816A70235195F06725 Certificate serial: 0174 Authority key identifier: DC:DA:06:9E:3E:FF:89:56:C0:15:72:81:6A:70:23:51:95:F0:67:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3NoGnj7_iVbAFXKBanAjUZXwZyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/37D72D7CC17C11EE8391A218C4F9AE02.roa Signing time: Wed 07 Jan 2026 03:22:46 +0000 ROA not before: Wed 07 Jan 2026 03:22:46 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 141746 IP address blocks: 36.50.196.0/24 maxlen: 24 163.223.226.0/24 maxlen: 24 2001:df3:4e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/3NoGnj7_iVbAFXKBanAjUZXwZyU.crl rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/3NoGnj7_iVbAFXKBanAjUZXwZyU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3NoGnj7_iVbAFXKBanAjUZXwZyU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9F31, serialNumber=DCDA069E3EFF8956C01572816A70235195F06725 Validity Not Before: Jan 7 03:22:46 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=695dd186-3f90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5e:0a:7d:9f:ce:db:1a:2c:48:e1:4a:6f:54: ee:87:29:1d:c8:75:c8:8b:03:cc:17:e1:74:8f:4a: ce:47:30:27:79:a7:0f:a0:0b:9c:98:73:78:86:84: eb:46:1d:d6:b5:52:08:69:ee:17:6c:7a:c2:ba:20: 21:e3:d5:a0:0a:12:f2:68:bf:94:9b:12:bb:4a:8d: dc:f9:a9:b2:0e:6f:6c:09:57:6c:ad:4c:b6:25:6d: 7b:1c:13:52:fa:15:14:14:ea:b1:08:c0:58:e6:11: d1:14:22:1f:5d:bd:4a:87:ea:a7:05:df:2f:61:d9: f3:5b:e8:52:c3:a5:95:c2:04:6f:2b:74:ee:1a:18: b1:1b:79:5e:74:f5:4b:53:16:b1:8e:27:39:13:c6: 86:2f:ac:c2:5a:28:fa:ee:26:4b:0f:4f:b3:d9:ed: a2:6f:17:08:8d:3d:6d:cc:76:4d:91:ea:93:ab:bf: 16:4e:8c:8c:a2:92:ee:0f:04:c1:03:88:3a:9f:6e: 56:59:73:4e:57:dd:d8:30:99:3f:d6:01:1e:1b:b0: 30:22:f6:7b:c9:54:a5:0a:93:d4:8a:fa:6a:73:a0: cc:52:9e:fc:60:12:7a:28:a0:95:31:8f:72:26:d0: 17:53:eb:9e:b0:d0:cd:8b:dc:f9:c5:6a:fb:8a:3f: 46:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:B2:DF:4B:A8:29:BC:A3:E0:E4:E9:6B:36:F1:DA:05:B7:47:88:DD X509v3 Authority Key Identifier: keyid:DC:DA:06:9E:3E:FF:89:56:C0:15:72:81:6A:70:23:51:95:F0:67:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/3NoGnj7_iVbAFXKBanAjUZXwZyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3NoGnj7_iVbAFXKBanAjUZXwZyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/37D72D7CC17C11EE8391A218C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.196.0/24 163.223.226.0/24 IPv6: 2001:df3:4e40::/48 Signature Algorithm: sha256WithRSAEncryption 5f:0d:8e:ca:d8:f8:57:21:d3:9a:1b:61:b4:87:60:4b:09:d9: 52:ce:ab:96:61:15:93:73:4f:46:ed:2c:f1:a4:80:39:ac:13: e7:4b:6e:a9:41:c9:a7:2d:19:f2:7f:0b:e6:0e:49:bd:ec:4e: 9f:78:bc:53:a0:0c:56:34:3b:7e:d1:9c:21:90:ae:39:86:63: 59:b2:5c:53:6b:32:80:e8:91:f1:f7:be:09:91:58:8e:57:1d: 7d:78:72:17:dc:9d:2f:6e:4a:61:1d:24:41:21:7a:a3:8f:35: 58:36:5e:59:3f:5a:4f:13:7c:7b:74:47:9e:78:fd:1c:2f:2e: 6a:52:eb:a4:c6:fe:e5:01:54:ff:f0:3b:8d:fc:cc:fc:78:fc: c9:b0:33:40:17:0a:e6:34:89:bd:0c:fb:5a:74:f3:15:be:4b: b7:9c:ef:b6:b1:5b:b2:51:b8:df:3d:38:9e:0c:a2:31:27:6d: 95:c9:59:90:77:c9:b9:b4:5c:c2:8c:73:d7:92:c7:7f:f8:b0: 89:f9:1a:ad:b3:08:e1:ea:dd:86:71:b7:fa:78:59:de:7d:3f: 23:f5:05:d2:c1:85:ea:cb:76:7a:d4:36:cf:39:ae:7c:7f:86: f5:6f:2d:94:cf:d3:5d:75:94:c5:94:ca:e2:3d:83:a5:56:0b: b3:e7:49:95 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RTlGMzExMTAvBgNVBAUTKERDREEwNjlFM0VGRjg5NTZDMDE1NzI4MTZBNzAyMzUx OTVGMDY3MjUwHhcNMjYwMTA3MDMyMjQ2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVkZDE4Ni0zZjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr14KfZ/O2xosSOFKb1TuhykdyHXIiwPMF+F0j0rORzAneacPoAucmHN4hoTr Rh3WtVIIae4XbHrCuiAh49WgChLyaL+UmxK7So3c+amyDm9sCVdsrUy2JW17HBNS +hUUFOqxCMBY5hHRFCIfXb1Kh+qnBd8vYdnzW+hSw6WVwgRvK3TuGhixG3ledPVL Uxaxjic5E8aGL6zCWij67iZLD0+z2e2ibxcIjT1tzHZNkeqTq78WToyMopLuDwTB A4g6n25WWXNOV93YMJk/1gEeG7AwIvZ7yVSlCpPUivpqc6DMUp78YBJ6KKCVMY9y JtAXU+uesNDNi9z5xWr7ij9GnwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFImy30uo Kbyj4OTpazbx2gW3R4jdMB8GA1UdIwQYMBaAFNzaBp4+/4lWwBVygWpwI1GV8Gcl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUYzMS8wOTJEMjUxNkJF NjIxMUVFOEMzN0NCM0JDNEY5QUUwMi8zTm9Hbmo3X2lWYkFGWEtCYW5BalVaWHda eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNOb0duajdfaVZiQUZYS0JhbkFqVVpYd1p5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlGMzEvMDkyRDI1MTZCRTYyMTFFRThDMzdDQjNCQzRGOUFFMDIvMzdENzJEN0ND MTdDMTFFRTgzOTFBMjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAAkMsQDBACj3+IwDwQCAAIwCQMHACABDfNOQDANBgkqhkiG 9w0BAQsFAAOCAQEAXw2Oytj4VyHTmhthtIdgSwnZUs6rlmEVk3NPRu0s8aSAOawT 50tuqUHJpy0Z8n8L5g5JvexOn3i8U6AMVjQ7ftGcIZCuOYZjWbJcU2sygOiR8fe+ CZFYjlcdfXhyF9ydL25KYR0kQSF6o481WDZeWT9aTxN8e3RHnnj9HC8ualLrpMb+ 5QFU//A7jfzM/Hj8ybAzQBcK5jSJvQz7WnTzFb5Lt5zvtrFbslG43z04ngyiMSdt lclZkHfJubRcwoxz15LHf/iwifkarbMI4erdhnG3+nhZ3n0/I/UF0sGF6st2etQ2 zzmufH+G9W8tlM/TXXWUxZTK4j2DpVYLs+dJlQ== -----END CERTIFICATE-----Generated at Sun Jan 25 06:11:05 2026 by rpki-client