This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/70C04006D5EF11EE8279357EC4F9AE02.roa File: 70C04006D5EF11EE8279357EC4F9AE02.roa (raw, json) Hash identifier: OPEfGrIyFh6EKu1YJKtLt7hb1of2i7XLanislYicvKQ= Subject key identifier: 86:B1:65:D9:C3:85:4E:82:16:40:51:55:0E:1A:04:F2:D1:4D:BA:24 Certificate issuer: /CN=A91EB929/serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Certificate serial: 014F Authority key identifier: A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/70C04006D5EF11EE8279357EC4F9AE02.roa Signing time: Mon 01 Dec 2025 02:05:34 +0000 ROA not before: Mon 01 Dec 2025 02:05:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24399 IP address blocks: 202.133.8.0/21 maxlen: 21 202.133.10.0/24 maxlen: 24 203.80.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:16:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB929, serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Validity Not Before: Dec 1 02:05:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=692cf7ee-3d3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7f:64:9c:f9:b1:be:4e:16:3f:e2:4e:09:69: bd:32:0f:a7:4d:77:65:26:21:ce:7e:2b:62:b5:34: dc:0a:14:d8:ca:cc:27:39:d2:9e:6f:63:c7:2a:51: 70:dc:16:24:2b:6b:d9:4d:da:24:d1:85:90:fc:43: 11:74:5e:cd:b7:5b:07:b9:3e:e5:ce:a0:69:6f:35: b1:60:81:44:a2:fb:18:a0:83:cc:22:9d:41:0f:69: 66:46:8d:69:56:bf:ca:b7:5f:fa:b0:4c:07:31:4d: fc:00:70:b0:88:2e:7d:d9:a5:d9:f9:e6:91:da:d6: 5e:29:15:eb:1d:29:68:1b:b8:00:ea:f9:ac:f1:92: ee:0f:75:8f:95:8d:43:52:76:76:8c:01:90:2d:5e: 79:58:b7:cf:c3:3d:a7:60:4d:77:00:c4:7d:83:df: cc:aa:f4:5b:21:2a:e9:6f:37:ca:08:bb:09:07:70: fb:45:20:82:e0:5b:07:48:23:38:7e:ec:0f:cf:95: d6:46:20:85:39:90:07:b6:9f:5b:78:ff:5e:1e:6e: 6e:b1:ec:d7:59:1f:ce:c3:6f:ed:ad:16:a2:65:94: 85:04:bf:ed:13:6b:08:09:a0:c7:db:6e:2e:c7:c7: 08:61:90:4a:d1:43:1c:c8:40:9b:38:6d:95:3f:08: ec:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B1:65:D9:C3:85:4E:82:16:40:51:55:0E:1A:04:F2:D1:4D:BA:24 X509v3 Authority Key Identifier: keyid:A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/70C04006D5EF11EE8279357EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.133.8.0/21 203.80.184.0/22 Signature Algorithm: sha256WithRSAEncryption 18:6d:fd:2f:60:49:95:ef:94:50:1a:31:21:4a:1d:06:25:24: ba:67:c8:35:cc:bc:fc:2d:37:35:d0:5d:99:69:7a:ab:20:63: 4b:f5:cc:57:33:ef:07:f7:dd:bc:d2:26:ba:26:96:e7:7d:75: 83:2e:be:2e:65:0b:9b:cf:29:48:58:78:60:cc:2b:73:70:3c: 04:d8:a6:23:c7:09:b7:e2:2e:8c:19:37:0a:39:6b:f2:be:a0: e5:05:72:1f:61:61:27:95:a2:10:82:32:df:b1:a2:63:4c:a3: ef:48:99:a3:9b:03:bd:67:a0:3a:be:f9:56:fe:4c:bc:d0:b8: bf:95:0c:2f:57:9d:79:44:14:06:93:75:fa:db:cb:72:f5:9a: cf:59:a2:5d:9f:7d:60:ae:5d:08:b8:50:ca:d9:de:60:9c:10: 93:77:a5:5c:6f:37:71:43:b7:56:9e:14:2b:5c:c3:89:ab:a0: 12:25:72:23:cd:43:70:6e:e4:09:bd:07:ab:d2:08:ba:9c:c9: 09:75:4c:7d:0f:31:04:57:8c:85:4c:77:62:e5:8e:d7:7b:5e: b5:ae:ef:7b:9c:95:ee:5a:5a:dd:41:cc:5d:72:73:f1:ef:9e: a2:1d:82:83:89:7b:c7:bb:33:24:a7:d8:46:b3:3a:d2:a6:d3: c1:7c:76:65 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5MjkxMTAvBgNVBAUTKEE5MjE0REI5OTE4NDlCMjlDNEYwNDVDMzM2NDcwRTlE ODJDNDhDRTIwHhcNMjUxMjAxMDIwNTM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJjZjdlZS0zZDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqX9knPmxvk4WP+JOCWm9Mg+nTXdlJiHOfititTTcChTYyswnOdKeb2PHKlFw 3BYkK2vZTdok0YWQ/EMRdF7Nt1sHuT7lzqBpbzWxYIFEovsYoIPMIp1BD2lmRo1p Vr/Kt1/6sEwHMU38AHCwiC592aXZ+eaR2tZeKRXrHSloG7gA6vms8ZLuD3WPlY1D UnZ2jAGQLV55WLfPwz2nYE13AMR9g9/MqvRbISrpbzfKCLsJB3D7RSCC4FsHSCM4 fuwPz5XWRiCFOZAHtp9beP9eHm5usezXWR/Ow2/trRaiZZSFBL/tE2sICaDH224u x8cIYZBK0UMcyECbOG2VPwjsBwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIaxZdnD hU6CFkBRVQ4aBPLRTbokMB8GA1UdIwQYMBaAFKkhTbmRhJspxPBFwzZHDp2CxIzi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjkyOS9CRUJERUE5OEQ1 RUUxMUVFOUUyMDE3N0RDNEY5QUUwMi9xU0ZOdVpHRW15bkU4RVhETmtjT25ZTEVq T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTRk51WkdFbXluRThFWEROa2NPbllMRWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI5MjkvQkVCREVBOThENUVFMTFFRTlFMjAxNzdEQzRGOUFFMDIvNzBDMDQwMDZE NUVGMTFFRTgyNzkzNTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAPKhQgDBALLULgwDQYJKoZIhvcNAQELBQADggEBABht/S9g SZXvlFAaMSFKHQYlJLpnyDXMvPwtNzXQXZlpeqsgY0v1zFcz7wf33bzSJromlud9 dYMuvi5lC5vPKUhYeGDMK3NwPATYpiPHCbfiLowZNwo5a/K+oOUFch9hYSeVohCC Mt+xomNMo+9ImaObA71noDq++Vb+TLzQuL+VDC9XnXlEFAaTdfrby3L1ms9Zol2f fWCuXQi4UMrZ3mCcEJN3pVxvN3FDt1aeFCtcw4mroBIlciPNQ3Bu5Am9B6vSCLqc yQl1TH0PMQRXjIVMd2Lljtd7XrWu73ucle5aWt1BzF1yc/HvnqIdgoOJe8e7MySn 2EazOtKm08F8dmU= -----END CERTIFICATE-----Generated at Sun Jan 25 13:56:11 2026 by rpki-client