This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/399480C4ACD011F08828DD7BC4F9AE02.roa File: 399480C4ACD011F08828DD7BC4F9AE02.roa (raw, json) Hash identifier: Mnd71Ffk/psJgLiSkChk25qvX5F/utFXFDACcylb68Q= Subject key identifier: FA:95:D1:EF:5B:93:65:06:10:EC:DD:AA:90:BF:A8:76:70:41:97:38 Certificate issuer: /CN=A91F40E0/serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Certificate serial: 39 Authority key identifier: 89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/399480C4ACD011F08828DD7BC4F9AE02.roa Signing time: Sun 09 Nov 2025 07:05:18 +0000 ROA not before: Sun 09 Nov 2025 07:05:18 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 147180 IP address blocks: 49.213.32.0/24 maxlen: 24 49.213.33.0/24 maxlen: 24 2001:df5:f9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F40E0, serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Validity Not Before: Nov 9 07:05:18 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69103d2e-7f4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4e:bd:e7:45:e3:38:3d:bb:62:82:f1:ca:2b: 65:db:2a:b4:c9:1f:0a:15:5d:cb:79:6f:96:e5:1d: 83:f2:d6:93:e5:1a:94:60:d2:43:77:d5:41:fc:f4: c0:dd:ea:6f:fc:37:ba:01:eb:af:01:b3:e1:44:ef: a5:0d:24:3c:ec:23:ef:b7:c4:71:1a:6c:13:06:ba: ac:65:44:e3:c8:db:6f:41:58:89:4b:70:f1:33:8e: ea:18:26:1a:aa:0c:d2:00:d0:e9:41:1c:ab:d7:19: 4f:d9:19:11:db:82:ac:d4:79:3f:de:6e:97:cc:36: 45:e8:9b:84:37:78:b3:bb:c0:94:cf:15:fc:4d:4a: f3:41:19:ce:e1:0a:31:34:fd:d2:1a:d3:c1:f7:08: e2:50:78:1b:91:7f:fb:01:60:53:fd:b9:d4:00:76: e3:0e:98:9b:a6:20:e7:b1:32:76:0b:03:9f:fb:59: db:5a:e2:19:21:c9:b9:84:6a:1d:24:1a:1c:b3:af: 94:1e:49:c0:05:20:e9:10:cc:e1:86:32:c5:7d:e0: 69:05:43:28:12:9a:17:e0:fb:02:d8:fe:4a:bc:14: 8e:f3:15:88:2e:fd:a7:27:33:54:fd:c4:ac:58:e3: 5a:d6:da:0d:7a:c8:30:a5:7e:1c:44:bd:06:0e:cc: 4e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:95:D1:EF:5B:93:65:06:10:EC:DD:AA:90:BF:A8:76:70:41:97:38 X509v3 Authority Key Identifier: keyid:89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/399480C4ACD011F08828DD7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.213.32.0/23 IPv6: 2001:df5:f9c0::/48 Signature Algorithm: sha256WithRSAEncryption a0:25:04:e4:87:40:13:f5:e9:5b:3e:59:81:e3:55:f2:05:e9: 65:2c:ad:5e:06:98:3d:04:8c:53:8c:72:5f:55:85:fc:31:35: 9b:2c:0b:fa:a6:44:9d:85:ac:2f:13:4c:47:5a:b1:22:c3:4c: 1e:62:77:78:6e:50:49:5e:a7:ac:82:ee:4e:2b:13:75:d9:fe: a4:7a:9e:57:1b:31:68:72:4d:3f:f9:d2:92:b4:0d:88:d7:16: a4:60:ec:37:78:4f:aa:ca:17:6d:b4:6d:fc:1e:89:92:4f:2e: c7:91:eb:33:75:c3:98:9e:bf:e3:f0:a3:a9:68:42:df:53:88: d0:e8:fa:88:e6:7b:2a:ba:71:9e:4b:9c:34:49:05:f9:ed:c8: c6:cf:39:27:b7:e1:34:13:59:ef:bd:e1:9a:7e:18:90:fe:9a: 47:e0:2b:71:a0:61:c7:3d:bc:cf:1b:cd:59:ad:cc:b9:66:01: 72:55:a4:9c:55:dd:9e:55:d2:0a:23:5c:98:e4:d8:6f:c8:28: c4:de:db:d7:cd:21:ce:cd:a8:90:e5:37:c8:a7:8c:0f:af:1d: 99:af:1e:ad:e9:c6:92:d6:89:2b:8c:1f:17:02:cc:51:0c:c3: d8:e8:a3:c6:7d:09:d9:dd:32:0e:f4:ae:0b:f2:03:4d:e5:55: cf:51:31:0e -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDBFMDExMC8GA1UEBRMoODk3MDc3QjcxRjJDNUFFRERFNkMxREQ0OTU0N0RDQzk5 NTJDREFCRTAeFw0yNTExMDkwNzA1MThaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MTAzZDJlLTdmNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQTr3nReM4PbtigvHKK2XbKrTJHwoVXct5b5blHYPy1pPlGpRg0kN31UH89MDd 6m/8N7oB668Bs+FE76UNJDzsI++3xHEabBMGuqxlROPI229BWIlLcPEzjuoYJhqq DNIA0OlBHKvXGU/ZGRHbgqzUeT/ebpfMNkXom4Q3eLO7wJTPFfxNSvNBGc7hCjE0 /dIa08H3COJQeBuRf/sBYFP9udQAduMOmJumIOexMnYLA5/7Wdta4hkhybmEah0k Ghyzr5QeScAFIOkQzOGGMsV94GkFQygSmhfg+wLY/kq8FI7zFYgu/acnM1T9xKxY 41rW2g16yDClfhxEvQYOzE5HAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU+pXR71uT ZQYQ7N2qkL+odnBBlzgwHwYDVR0jBBgwFoAUiXB3tx8sWu3ebB3UlUfcyZUs2r4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0MEUwLzNGQkI1RTA0N0I1 MzExRjA5QjU0ODQ1RkM0RjlBRTAyL2lYQjN0eDhzV3UzZWJCM1VsVWZjeVpVczJy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVhCM3R4OHNXdTNlYkIzVWxVZmN5WlVzMnI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDBFMC8zRkJCNUUwNDdCNTMxMUYwOUI1NDg0NUZDNEY5QUUwMi8zOTk0ODBDNEFD RDAxMUYwODgyOEREN0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEATHVIDAPBAIAAjAJAwcAIAEN9fnAMA0GCSqGSIb3DQEBCwUA A4IBAQCgJQTkh0AT9elbPlmB41XyBellLK1eBpg9BIxTjHJfVYX8MTWbLAv6pkSd hawvE0xHWrEiw0weYnd4blBJXqesgu5OKxN12f6kep5XGzFock0/+dKStA2I1xak YOw3eE+qyhdttG38HomSTy7HkeszdcOYnr/j8KOpaELfU4jQ6PqI5nsqunGeS5w0 SQX57cjGzzknt+E0E1nvveGafhiQ/ppH4CtxoGHHPbzPG81Zrcy5ZgFyVaScVd2e VdIKI1yY5NhvyCjE3tvXzSHOzaiQ5TfIp4wPrx2Zrx6t6caS1okrjB8XAsxRDMPY 6KPGfQnZ3TIO9K4L8gNN5VXPUTEO -----END CERTIFICATE-----Generated at Sat Dec 6 13:55:32 2025 by rpki-client