This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/31521640C6CB11ECB185E43EC4F9AE02.roa File: 31521640C6CB11ECB185E43EC4F9AE02.roa (raw, json) Hash identifier: NWdLC1okjSMZC1re8r0GPv+coLAtzqUNZd/WJqoFC0I= Subject key identifier: 44:E1:9B:4D:B2:A5:FB:29:26:B0:C8:1C:5B:63:37:67:07:C1:5A:60 Certificate issuer: /CN=A91F1446/serialNumber=B5D33A7A32A5082D336B6B05B7965F307470A276 Certificate serial: 03A4 Authority key identifier: B5:D3:3A:7A:32:A5:08:2D:33:6B:6B:05:B7:96:5F:30:74:70:A2:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/31521640C6CB11ECB185E43EC4F9AE02.roa Signing time: Fri 28 Nov 2025 23:26:16 +0000 ROA not before: Fri 28 Nov 2025 23:26:16 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 132742 IP address blocks: 43.241.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.crl rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:23:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 932 (0x3a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1446, serialNumber=B5D33A7A32A5082D336B6B05B7965F307470A276 Validity Not Before: Nov 28 23:26:16 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692a2f98-2d5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:72:b6:61:88:be:fa:fa:95:e7:4b:c7:b0:10: dd:05:da:31:51:74:68:d8:d7:21:6b:9a:cc:7f:c0: a4:06:2d:9c:14:ce:fe:de:d0:85:17:d3:1f:ad:3e: a7:fe:05:b1:70:36:fa:ad:59:cd:d8:9b:1c:c2:96: bf:8e:12:c7:d9:10:1f:64:03:f0:b5:c0:ed:26:96: fc:25:b5:cb:ea:06:20:a1:e5:0a:f7:c6:20:c4:d5: 8a:9a:ea:4a:eb:88:46:01:60:fe:eb:89:0a:77:5b: 6f:2e:a6:83:8d:05:8a:c1:65:46:c5:bb:9e:8c:ab: dd:20:23:82:3d:2f:cf:6c:31:cc:59:79:81:e6:9c: af:2b:7b:4d:37:2a:4c:ac:99:1a:85:49:0f:36:e8: ea:6f:38:55:8f:05:9f:23:1a:62:b2:99:6a:f5:40: aa:52:d8:87:0a:26:c3:72:78:4e:8f:c5:d8:d3:75: 97:1c:29:52:73:92:de:01:11:ca:5d:33:3d:d3:03: b1:39:ee:5e:46:eb:c4:f8:8a:85:a0:54:84:bf:be: f6:8f:17:e8:11:00:6b:cf:d3:fd:7f:97:b1:f3:d4: 94:f5:c2:d6:7d:9d:e8:95:2a:b1:60:6e:ec:8e:bc: f1:a2:4c:bb:04:98:5c:7d:e5:e0:66:9b:86:f6:b3: 55:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:E1:9B:4D:B2:A5:FB:29:26:B0:C8:1C:5B:63:37:67:07:C1:5A:60 X509v3 Authority Key Identifier: keyid:B5:D3:3A:7A:32:A5:08:2D:33:6B:6B:05:B7:96:5F:30:74:70:A2:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/31521640C6CB11ECB185E43EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.252.0/22 Signature Algorithm: sha256WithRSAEncryption 92:bf:7b:c2:eb:f2:7d:dc:e5:62:77:9d:06:9b:e2:d5:f2:c4: 63:f2:20:37:de:0f:4e:94:4e:26:3a:de:61:b4:bf:ac:1e:29: ca:37:27:7b:2f:75:ac:8a:58:c4:9e:cc:d5:31:9d:8f:13:1e: 08:da:10:b4:20:c3:3e:4e:da:58:19:00:88:67:34:11:77:19: 5f:c3:a7:bb:b7:5a:d0:bf:37:fa:22:95:27:fb:f8:cb:ff:57: f9:a8:0b:f0:66:71:3a:71:0b:1c:e1:ad:4e:a5:8d:ee:60:69: ce:da:1f:7f:4a:8a:d4:04:fd:9c:1f:80:ac:52:71:50:c8:26: 7d:7d:09:47:5d:50:0f:15:8b:67:10:c8:e1:81:6c:88:b5:75: 16:83:c0:b2:8f:d8:ea:a0:58:da:25:e6:37:7d:74:89:18:47: 33:0c:b9:7a:8e:ed:db:c9:29:19:a7:8d:e2:74:15:e2:64:7c: e5:bf:f6:95:c7:8a:73:d6:8f:54:97:b3:6b:f0:5e:75:4f:42: 54:bf:6d:65:2c:ec:8d:46:3f:20:e3:03:d8:8e:ee:b2:fe:bb: 24:ba:69:1f:80:26:23:75:fc:24:b3:c4:53:e7:cf:e5:33:50: f5:13:2f:e9:49:06:87:01:b4:9c:6a:d2:5c:31:73:e8:a1:15: dc:56:20:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0NDYxMTAvBgNVBAUTKEI1RDMzQTdBMzJBNTA4MkQzMzZCNkIwNUI3OTY1RjMw NzQ3MEEyNzYwHhcNMjUxMTI4MjMyNjE2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJhMmY5OC0yZDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXK2YYi++vqV50vHsBDdBdoxUXRo2Ncha5rMf8CkBi2cFM7+3tCFF9MfrT6n /gWxcDb6rVnN2Jscwpa/jhLH2RAfZAPwtcDtJpb8JbXL6gYgoeUK98YgxNWKmupK 64hGAWD+64kKd1tvLqaDjQWKwWVGxbuejKvdICOCPS/PbDHMWXmB5pyvK3tNNypM rJkahUkPNujqbzhVjwWfIxpisplq9UCqUtiHCibDcnhOj8XY03WXHClSc5LeARHK XTM90wOxOe5eRuvE+IqFoFSEv772jxfoEQBrz9P9f5ex89SU9cLWfZ3olSqxYG7s jrzxoky7BJhcfeXgZpuG9rNVpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEThm02y pfspJrDIHFtjN2cHwVpgMB8GA1UdIwQYMBaAFLXTOnoypQgtM2trBbeWXzB0cKJ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ0Ni8yQTFGRjU2RUM1 MzUxMUVDOEU1QTAzMTNDNEY5QUUwMi90ZE02ZWpLbENDMHphMnNGdDVaZk1IUndv blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RkTTZlaktsQ0MwemEyc0Z0NVpmTUhSd29uWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE0NDYvMkExRkY1NkVDNTM1MTFFQzhFNUEwMzEzQzRGOUFFMDIvMzE1MjE2NDBD NkNCMTFFQ0IxODVFNDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr8fwwDQYJKoZIhvcNAQELBQADggEBAJK/e8Lr8n3c5WJ3 nQab4tXyxGPyIDfeD06UTiY63mG0v6weKco3J3svdayKWMSezNUxnY8THgjaELQg wz5O2lgZAIhnNBF3GV/Dp7u3WtC/N/oilSf7+Mv/V/moC/BmcTpxCxzhrU6lje5g ac7aH39KitQE/ZwfgKxScVDIJn19CUddUA8Vi2cQyOGBbIi1dRaDwLKP2OqgWNol 5jd9dIkYRzMMuXqO7dvJKRmnjeJ0FeJkfOW/9pXHinPWj1SXs2vwXnVPQlS/bWUs 7I1GPyDjA9iO7rL+uyS6aR+AJiN1/CSzxFPnz+UzUPUTL+lJBocBtJxq0lwxc+ih FdxWINM= -----END CERTIFICATE-----Generated at Sun Dec 7 04:16:57 2025 by rpki-client