This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/53BDA2F60F1A11E9B3F2A713C4F9AE02.roa File: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (raw, json) Hash identifier: X6YwhVSJsRk4vRctAp4yh1iloPqdQuAk/cq6rLQ/5Io= Subject key identifier: A4:74:30:3A:8C:37:5E:AE:FB:55:41:F6:16:FA:DA:93:D3:70:42:01 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 11A4 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/53BDA2F60F1A11E9B3F2A713C4F9AE02.roa Signing time: Tue 18 Nov 2025 17:06:17 +0000 ROA not before: Tue 18 Nov 2025 17:06:17 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133058 IP address blocks: 158.140.152.0/24 maxlen: 24 158.140.153.0/24 maxlen: 24 158.140.154.0/24 maxlen: 24 158.140.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4516 (0x11a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Nov 18 17:06:17 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=691ca789-7cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:57:dd:ab:93:f0:5c:51:9c:1b:62:31:6a:27: 8c:9a:f8:82:83:df:bb:b2:0f:6f:12:d4:90:c9:25: 3e:97:ec:c6:23:72:10:18:25:c0:c6:1c:d7:de:e8: cc:30:ab:bb:11:0e:3f:cf:e0:28:77:3c:8f:21:c3: 55:5e:60:da:51:50:90:a1:de:31:07:88:87:d8:ad: dd:21:3d:da:da:e5:54:f3:82:ab:e0:f1:20:bf:bb: 40:53:a7:05:71:ae:a7:40:2f:1e:08:01:78:ff:b9: e0:03:df:b5:d4:a3:08:6a:7e:36:36:81:af:c7:de: ea:ec:c3:85:92:32:c0:d3:70:a0:bf:12:54:e1:f4: 29:fc:e5:39:67:a9:db:11:7f:6a:00:70:59:15:42: d0:f7:f9:27:71:23:04:c7:e1:ba:f3:cb:29:56:24: fd:a0:a9:fc:9e:23:3f:08:98:e4:6a:58:b1:e9:b9: 10:18:13:7b:01:91:b5:54:eb:94:01:6d:90:21:cc: ab:37:1c:be:e1:e9:ca:df:64:d3:49:1f:23:84:1c: d3:0a:bf:93:cd:5e:d2:81:7d:61:dd:34:91:63:9b: b4:1d:97:7c:d4:f3:dc:2e:bc:58:40:59:8a:db:1a: 57:d4:ae:c8:22:7c:aa:82:fe:d0:db:01:cd:a1:0f: 35:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:74:30:3A:8C:37:5E:AE:FB:55:41:F6:16:FA:DA:93:D3:70:42:01 X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/53BDA2F60F1A11E9B3F2A713C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.140.152.0/22 Signature Algorithm: sha256WithRSAEncryption ae:fb:70:63:77:96:33:60:fe:e0:f1:49:52:55:f1:21:6b:c3: 48:bd:4f:8f:30:25:0b:83:0e:b5:aa:95:97:8c:75:cd:97:c3: ea:6d:03:b8:a9:7c:29:54:d7:7a:82:4f:4a:8e:c2:31:eb:c4: e7:01:9e:99:f6:6a:db:b4:48:38:bc:a0:97:88:20:22:8e:f8: 08:c2:26:ac:69:a9:c0:71:21:08:84:b5:53:f5:d7:00:a5:dc: b3:af:fe:a3:86:07:1b:4c:b2:ab:fa:ee:70:f9:cd:ee:d9:b6: a8:75:67:c9:9b:2c:d6:a7:f4:47:fc:11:6a:88:14:4a:94:73: 58:0f:3d:cb:bd:67:a9:63:69:e8:a2:e3:fe:42:78:40:cd:31: 9d:25:57:e5:3d:57:79:ab:e0:4e:51:18:d5:59:69:7c:31:41: c7:44:7b:7e:33:70:67:56:13:33:f7:35:fa:f7:50:28:fd:17: 5b:13:bf:ef:41:42:8d:c2:99:e5:f6:d0:06:9c:88:25:b3:cc: 3d:b1:5c:97:99:39:3b:b6:fa:64:a5:47:46:ac:2e:fa:f8:b6: ff:fe:a8:9d:92:44:31:02:f6:e0:4e:4b:eb:10:f9:3f:35:79: a2:18:05:93:35:7f:9a:b2:3a:15:07:05:83:d7:5f:3e:d8:bb: 1e:56:11:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjUxMTE4MTcwNjE3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFjYTc4OS03Y2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVfdq5PwXFGcG2IxaieMmviCg9+7sg9vEtSQySU+l+zGI3IQGCXAxhzX3ujM MKu7EQ4/z+AodzyPIcNVXmDaUVCQod4xB4iH2K3dIT3a2uVU84Kr4PEgv7tAU6cF ca6nQC8eCAF4/7ngA9+11KMIan42NoGvx97q7MOFkjLA03CgvxJU4fQp/OU5Z6nb EX9qAHBZFULQ9/kncSMEx+G688spViT9oKn8niM/CJjkalix6bkQGBN7AZG1VOuU AW2QIcyrNxy+4enK32TTSR8jhBzTCr+TzV7SgX1h3TSRY5u0HZd81PPcLrxYQFmK 2xpX1K7IInyqgv7Q2wHNoQ819QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKR0MDqM N16u+1VB9hb62pPTcEIBMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY3QkIvQkRGQkYxODYwRTNFMTFFOTgzNkY0MDE0QzRGOUFFMDIvNTNCREEyRjYw RjFBMTFFOUIzRjJBNzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKejJgwDQYJKoZIhvcNAQELBQADggEBAK77cGN3ljNg/uDx SVJV8SFrw0i9T48wJQuDDrWqlZeMdc2Xw+ptA7ipfClU13qCT0qOwjHrxOcBnpn2 atu0SDi8oJeIICKO+AjCJqxpqcBxIQiEtVP11wCl3LOv/qOGBxtMsqv67nD5ze7Z tqh1Z8mbLNan9Ef8EWqIFEqUc1gPPcu9Z6ljaeii4/5CeEDNMZ0lV+U9V3mr4E5R GNVZaXwxQcdEe34zcGdWEzP3Nfr3UCj9F1sTv+9BQo3CmeX20AaciCWzzD2xXJeZ OTu2+mSlR0asLvr4tv/+qJ2SRDEC9uBOS+sQ+T81eaIYBZM1f5qyOhUHBYPXXz7Y ux5WEVk= -----END CERTIFICATE-----Generated at Sun Dec 7 01:37:34 2025 by rpki-client