This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/65D706B213FA11EB92A6FE61C4F9AE02.roa File: 65D706B213FA11EB92A6FE61C4F9AE02.roa (raw, json) Hash identifier: s6A+c8B69JJC0+7xzhZxL1Je8usV/7mi3hySHgYS654= Subject key identifier: BA:0D:E0:67:7F:2C:C0:AE:B4:4C:49:25:73:B0:48:7B:19:CD:D5:C8 Certificate issuer: /CN=A91ECC52/serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Certificate serial: 07D9 Authority key identifier: 4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/65D706B213FA11EB92A6FE61C4F9AE02.roa Signing time: Tue 18 Nov 2025 20:41:57 +0000 ROA not before: Tue 18 Nov 2025 20:41:57 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 10143 IP address blocks: 203.21.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2009 (0x7d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC52, serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Validity Not Before: Nov 18 20:41:57 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=691cda14-003f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2a:3d:3a:3b:af:72:85:9f:69:b7:31:fc:fe: d1:5f:fe:64:b8:a7:c1:cd:7e:50:57:0a:d3:3d:f2: f1:a7:93:1f:6a:78:18:a4:ff:88:48:6a:7b:ad:2e: f3:6c:d9:7c:00:fd:ec:9d:01:23:02:69:a6:51:68: 76:d4:3f:38:2e:39:45:0d:e3:8c:be:87:9d:04:de: 65:cc:53:f3:27:5d:53:f1:8c:f8:4f:cc:8a:7b:2b: f5:93:70:2a:b5:e4:f0:bb:07:6c:14:a5:64:1a:46: 25:10:68:e8:68:45:90:4b:3f:87:91:73:01:a0:13: 9e:dc:54:b6:17:c6:7a:32:05:64:04:a1:1e:46:e0: 06:18:0f:aa:3b:69:4d:db:1e:37:35:44:04:7c:fb: 5b:68:1d:fd:43:fe:ca:87:6f:ca:87:dd:6f:24:c9: dc:9e:b4:31:76:e5:13:98:11:1d:2d:59:68:4f:88: b5:fd:0f:0a:79:8e:c0:05:b0:6c:3c:88:c8:8d:42: c3:c3:e1:86:29:be:e7:e7:80:7f:96:c9:3e:c2:9f: 8d:f7:0c:82:81:a8:dd:83:6b:95:85:97:f4:8e:5e: 5f:e1:eb:a6:1b:7c:d7:94:df:23:40:52:6c:16:92: a2:0e:cc:3c:49:79:8f:3e:6d:4c:e0:7b:a1:03:8c: d4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:0D:E0:67:7F:2C:C0:AE:B4:4C:49:25:73:B0:48:7B:19:CD:D5:C8 X509v3 Authority Key Identifier: keyid:4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/65D706B213FA11EB92A6FE61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.207.0/24 Signature Algorithm: sha256WithRSAEncryption 15:4c:76:8d:51:0e:49:18:61:dd:c2:c8:36:66:2c:7f:39:5b: cb:0e:42:e9:d7:35:34:b8:f5:af:a0:60:8f:ca:b4:7b:eb:ae: 16:db:3c:8b:de:c2:7f:1f:8a:70:6c:45:46:c8:2c:84:5e:18: 95:26:5f:aa:09:66:2f:8d:e3:43:fc:65:79:ab:88:59:41:57: e4:14:bc:0e:23:c5:dc:be:61:8b:42:74:c7:0a:50:a9:a1:a9: 06:a9:f7:c4:20:8f:d5:10:4b:fc:eb:76:c2:70:6b:ad:c3:86: 62:38:c0:9d:b8:a9:da:a4:fa:e1:80:a3:7c:23:4e:72:7b:56: a3:18:9d:70:25:ff:3a:50:fd:e1:65:d8:e9:89:ab:46:2f:32: 9c:62:11:b7:55:a7:09:2e:32:ab:9f:d8:c9:03:5c:db:03:b5: e1:ef:2a:d5:bf:a6:7d:64:e1:ae:67:1b:fc:a1:a3:17:b3:82: 04:16:c2:0e:98:8c:0d:cd:b2:2b:f4:01:d3:fd:d6:a6:9d:bd: 4f:ea:3d:75:5c:47:77:42:dd:f4:da:14:4b:d2:77:4b:6c:b4: 21:c3:e1:e6:30:11:16:0e:52:ba:c5:48:0a:ea:77:14:b5:d7: 8a:85:36:bb:cc:7b:fa:78:66:49:9b:cf:bb:25:51:23:30:ce: fe:10:83:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDNTIxMTAvBgNVBAUTKDRCODU2N0ZCMzg3QkZENzQwNzZCNTA5NzcwMDEzMkM3 QUM4NkU2MjAwHhcNMjUxMTE4MjA0MTU3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFjZGExNC0wMDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCo9OjuvcoWfabcx/P7RX/5kuKfBzX5QVwrTPfLxp5MfangYpP+ISGp7rS7z bNl8AP3snQEjAmmmUWh21D84LjlFDeOMvoedBN5lzFPzJ11T8Yz4T8yKeyv1k3Aq teTwuwdsFKVkGkYlEGjoaEWQSz+HkXMBoBOe3FS2F8Z6MgVkBKEeRuAGGA+qO2lN 2x43NUQEfPtbaB39Q/7Kh2/Kh91vJMncnrQxduUTmBEdLVloT4i1/Q8KeY7ABbBs PIjIjULDw+GGKb7n54B/lsk+wp+N9wyCgajdg2uVhZf0jl5f4eumG3zXlN8jQFJs FpKiDsw8SXmPPm1M4HuhA4zUyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLoN4Gd/ LMCutExJJXOwSHsZzdXIMB8GA1UdIwQYMBaAFEuFZ/s4e/10B2tQl3ABMseshuYg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0M1Mi82NTI4MzZFODEz OEExMUVCOTdBRUI0MjBDNEY5QUUwMi9TNFZuLXpoN19YUUhhMUNYY0FFeXg2eUc1 aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M0Vm4temg3X1hRSGExQ1hjQUV5eDZ5RzVpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUNDNTIvNjUyODM2RTgxMzhBMTFFQjk3QUVCNDIwQzRGOUFFMDIvNjVENzA2QjIx M0ZBMTFFQjkyQTZGRTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLFc8wDQYJKoZIhvcNAQELBQADggEBABVMdo1RDkkYYd3C yDZmLH85W8sOQunXNTS49a+gYI/KtHvrrhbbPIvewn8finBsRUbILIReGJUmX6oJ Zi+N40P8ZXmriFlBV+QUvA4jxdy+YYtCdMcKUKmhqQap98Qgj9UQS/zrdsJwa63D hmI4wJ24qdqk+uGAo3wjTnJ7VqMYnXAl/zpQ/eFl2OmJq0YvMpxiEbdVpwkuMquf 2MkDXNsDteHvKtW/pn1k4a5nG/yhoxezggQWwg6YjA3Nsiv0AdP91qadvU/qPXVc R3dC3fTaFEvSd0tstCHD4eYwERYOUrrFSArqdxS114qFNrvMe/p4Zkmbz7slUSMw zv4Qg/Y= -----END CERTIFICATE-----Generated at Sat Dec 6 22:44:34 2025 by rpki-client