This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/0B65C980136D11F09F542C81C4F9AE02.roa File: 0B65C980136D11F09F542C81C4F9AE02.roa (raw, json) Hash identifier: XP45MNkBJDvMP4szABAjNLFk+96NCHIDa9eitTmeLLk= Subject key identifier: E9:3F:5E:FC:58:47:77:33:3A:87:F4:7D:A2:98:C8:33:D6:BC:38:E9 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: 75 Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/0B65C980136D11F09F542C81C4F9AE02.roa Signing time: Sun 09 Nov 2025 04:51:55 +0000 ROA not before: Sun 09 Nov 2025 04:51:55 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 153526 IP address blocks: 161.248.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Nov 9 04:51:55 2025 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69101deb-5e0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ea:75:bb:7f:94:37:4e:85:91:f5:79:4f:4f: f2:46:41:c9:c7:3c:27:0a:8a:57:44:b8:cb:34:af: d2:ee:07:66:0d:be:a0:35:7a:78:a4:7a:a6:71:64: 79:3e:9f:e7:4f:f8:84:69:78:48:99:bc:03:6b:23: 6c:d8:51:fc:cf:b6:86:a1:f0:54:39:ac:78:8b:21: 87:22:27:cf:2e:a7:3a:50:af:49:77:f4:4d:5d:4b: f3:21:f6:c9:ef:ce:6f:97:58:0d:71:0a:3b:20:0c: a6:63:62:f4:6e:85:b5:6f:12:16:b8:b9:27:ab:28: 99:f8:95:45:8c:d5:87:e8:96:49:b2:f9:e7:3d:9b: bc:40:13:7e:b2:71:0f:41:81:a3:ab:3f:0f:aa:9e: be:39:8b:a3:f6:84:5c:f8:bf:8e:6c:4b:99:41:88: 30:5c:de:20:bb:e9:04:f6:88:e1:9b:0b:8a:06:05: 63:a4:1e:64:06:2f:77:1c:5a:ea:6e:a8:59:05:66: a4:f8:6b:78:a6:8b:bd:0b:71:dc:3b:24:ac:6a:9c: 6a:ff:b6:f4:4d:d6:e6:e9:d1:4c:e5:5a:87:fb:10: 2b:4f:39:9e:b1:1c:64:11:e1:39:4e:8c:81:87:15: 9a:93:a6:80:75:59:8f:88:7a:b2:84:05:ef:28:92: e4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:3F:5E:FC:58:47:77:33:3A:87:F4:7D:A2:98:C8:33:D6:BC:38:E9 X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/0B65C980136D11F09F542C81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.192.0/23 Signature Algorithm: sha256WithRSAEncryption a2:14:d8:cd:10:5d:ce:58:bf:e5:21:ab:aa:65:23:0a:38:f1: 28:0d:b2:68:c6:c4:3b:01:06:a7:19:d5:87:e5:9b:e3:ea:21: e5:ba:47:5b:59:5b:38:4f:95:9e:50:db:ff:bb:d1:3b:0a:34: 94:aa:4a:68:c6:cc:6e:2a:8a:a5:72:1f:5e:d8:e9:f7:f9:f7: a9:d4:37:d9:56:33:38:2f:00:69:8b:8b:33:e7:92:6c:bb:ac: 26:fa:13:e9:3e:dd:eb:66:74:ff:33:04:23:44:31:c9:69:50: 87:76:2c:62:de:fc:5e:92:09:11:de:c4:28:ed:ee:f7:2d:d1: c3:fc:bf:7a:75:97:4a:11:4e:8a:33:c7:9f:3c:f1:48:4e:47: 3a:22:9d:6b:76:5c:a4:33:76:19:8f:e6:2e:6c:a2:c7:16:50: 33:bc:b2:ae:86:03:55:b3:e4:32:16:6b:4e:e5:c3:ee:1a:57: 27:a7:de:c8:3d:48:59:b3:5c:7e:a6:ee:67:33:fd:43:f7:d9: 88:f0:88:56:ba:88:14:df:38:a1:97:65:c8:16:32:11:ec:f5: c0:4e:23:94:e7:84:9c:2e:fc:19:3e:1a:10:c5:95:70:f0:88: 04:4f:13:f5:d3:7e:26:cc:b1:86:be:9b:ec:67:96:c7:cb:8f: 1f:09:3b:f7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG M0I1RjExMC8GA1UEBRMoREVCNEMwQjkwN0ZBQ0ExQzVEMzc3NkJENDk0NkY0QkFB OENBNkIzMDAeFw0yNTExMDkwNDUxNTVaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MTAxZGViLTVlMGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF6nW7f5Q3ToWR9XlPT/JGQcnHPCcKildEuMs0r9LuB2YNvqA1enikeqZxZHk+ n+dP+IRpeEiZvANrI2zYUfzPtoah8FQ5rHiLIYciJ88upzpQr0l39E1dS/Mh9snv zm+XWA1xCjsgDKZjYvRuhbVvEha4uSerKJn4lUWM1Yfolkmy+ec9m7xAE36ycQ9B gaOrPw+qnr45i6P2hFz4v45sS5lBiDBc3iC76QT2iOGbC4oGBWOkHmQGL3ccWupu qFkFZqT4a3imi70Lcdw7JKxqnGr/tvRN1ubp0UzlWof7ECtPOZ6xHGQR4TlOjIGH FZqTpoB1WY+IerKEBe8okuSpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6T9e/FhH dzM6h/R9opjIM9a8OOkwHwYDVR0jBBgwFoAU3rTAuQf6yhxdN3a9SUb0uqjKazAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzQjVGL0IxNzBDOTEyMTM2 NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM3JUQXVRZjZ5aHhkTjNhOVNVYjB1cWpLYXpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I1Ri9CMTcwQzkxMjEzNjYxMUYwODJFM0M1MERDNEY5QUUwMi8wQjY1Qzk4MDEz NkQxMUYwOUY1NDJDODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4wDANBgkqhkiG9w0BAQsFAAOCAQEAohTYzRBdzli/5SGr qmUjCjjxKA2yaMbEOwEGpxnVh+Wb4+oh5bpHW1lbOE+VnlDb/7vROwo0lKpKaMbM biqKpXIfXtjp9/n3qdQ32VYzOC8AaYuLM+eSbLusJvoT6T7d62Z0/zMEI0QxyWlQ h3YsYt78XpIJEd7EKO3u9y3Rw/y/enWXShFOijPHnzzxSE5HOiKda3ZcpDN2GY/m LmyixxZQM7yyroYDVbPkMhZrTuXD7hpXJ6feyD1IWbNcfqbuZzP9Q/fZiPCIVrqI FN84oZdlyBYyEez1wE4jlOeEnC78GT4aEMWVcPCIBE8T9dN+Jsyxhr6b7GeWx8uP Hwk79w== -----END CERTIFICATE-----Generated at Sat Dec 6 17:45:21 2025 by rpki-client