This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9605/36666D6E870911EB823B3356C4F9AE02/9BC411EEA03F11F094CBF530C4F9AE02.roa File: 9BC411EEA03F11F094CBF530C4F9AE02.roa (raw, json) Hash identifier: PbZ66MHr2Jh3VzYrCvw72J8YZ3XC6ewoHBjghOndq0g= Subject key identifier: DE:B2:D4:77:E9:2A:DE:4E:C9:B2:BD:76:A2:8F:41:C1:4F:3D:45:FC Certificate issuer: /CN=A91F9605/serialNumber=681884C0C7557E526EF2BC4D1E5ABC336AE27F9E Certificate serial: 06D7 Authority key identifier: 68:18:84:C0:C7:55:7E:52:6E:F2:BC:4D:1E:5A:BC:33:6A:E2:7F:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBiEwMdVflJu8rxNHlq8M2rif54.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9605/36666D6E870911EB823B3356C4F9AE02/9BC411EEA03F11F094CBF530C4F9AE02.roa Signing time: Wed 14 Jan 2026 22:18:26 +0000 ROA not before: Wed 14 Jan 2026 22:18:26 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 17648 IP address blocks: 110.50.32.0/20 maxlen: 20 110.50.48.0/21 maxlen: 21 110.50.56.0/22 maxlen: 22 110.50.60.0/24 maxlen: 24 110.50.61.0/24 maxlen: 24 110.50.62.0/23 maxlen: 24 202.134.192.0/20 maxlen: 20 202.134.192.0/24 maxlen: 24 202.134.193.0/24 maxlen: 24 202.134.194.0/24 maxlen: 24 202.134.195.0/24 maxlen: 24 202.134.196.0/24 maxlen: 24 202.134.197.0/24 maxlen: 24 202.134.198.0/24 maxlen: 24 202.134.199.0/24 maxlen: 24 202.134.200.0/24 maxlen: 24 202.134.201.0/24 maxlen: 24 202.134.202.0/24 maxlen: 24 202.134.203.0/24 maxlen: 24 202.134.204.0/24 maxlen: 24 202.134.205.0/24 maxlen: 24 202.134.206.0/24 maxlen: 24 202.134.207.0/24 maxlen: 24 2406:2e00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9605/36666D6E870911EB823B3356C4F9AE02/aBiEwMdVflJu8rxNHlq8M2rif54.crl rsync://rpki.apnic.net/member_repository/A91F9605/36666D6E870911EB823B3356C4F9AE02/aBiEwMdVflJu8rxNHlq8M2rif54.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBiEwMdVflJu8rxNHlq8M2rif54.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1751 (0x6d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9605, serialNumber=681884C0C7557E526EF2BC4D1E5ABC336AE27F9E Validity Not Before: Jan 14 22:18:26 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69681632-8940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:93:29:bf:15:d5:d5:34:38:9b:3e:c9:f2:db: 29:9c:1c:3b:92:f1:fc:8f:73:3b:95:5c:1b:f9:f4: 4c:b1:f1:0c:d5:f8:ef:69:96:0f:96:96:ce:03:20: 7f:08:68:62:b6:9b:c3:44:1e:a1:a0:ab:bd:f3:f9: a1:42:01:b9:f1:08:f8:56:3f:13:37:41:9b:48:a1: 57:e9:81:2d:7b:11:87:f2:a3:f9:d1:38:53:24:1f: a0:7c:67:d5:2d:05:ee:63:29:5b:8a:f2:32:96:b0: e5:17:7a:36:69:e7:97:5e:de:90:a9:ee:a9:f8:7e: 8d:2f:6e:1b:80:e8:9e:55:d8:65:5c:01:52:b1:6c: 0b:87:e1:15:af:af:c1:50:bc:0f:37:50:a3:20:b8: 05:fc:fc:c6:19:9f:44:7e:4a:40:bc:dc:c8:85:d4: 25:7e:6a:39:96:64:36:a0:4d:67:81:10:ba:ba:a2: ef:8c:82:df:b7:ff:12:70:58:a0:ad:18:16:52:b0: dd:7e:3d:dd:f4:b5:40:25:a0:f7:56:01:82:f3:8f: ee:11:5f:2b:ce:ca:e9:bf:e2:da:4d:29:cc:77:d6: 33:88:54:1b:2e:15:c7:8b:f7:dc:84:e1:cb:63:0b: 2a:ab:30:e0:db:cb:8c:9b:82:32:50:30:df:b6:ef: d8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:B2:D4:77:E9:2A:DE:4E:C9:B2:BD:76:A2:8F:41:C1:4F:3D:45:FC X509v3 Authority Key Identifier: keyid:68:18:84:C0:C7:55:7E:52:6E:F2:BC:4D:1E:5A:BC:33:6A:E2:7F:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9605/36666D6E870911EB823B3356C4F9AE02/aBiEwMdVflJu8rxNHlq8M2rif54.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBiEwMdVflJu8rxNHlq8M2rif54.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9605/36666D6E870911EB823B3356C4F9AE02/9BC411EEA03F11F094CBF530C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.50.32.0/19 202.134.192.0/20 IPv6: 2406:2e00::/32 Signature Algorithm: sha256WithRSAEncryption 13:ec:51:1b:b6:0c:a0:02:b5:f1:8b:12:43:11:18:15:b3:6f: fd:e8:92:b4:8e:44:41:92:1c:16:33:70:ce:5c:3d:af:ed:ed: 93:65:00:d0:89:46:f8:dd:30:23:75:78:56:ec:48:cc:e7:2f: e0:26:3f:8c:59:ca:76:21:78:bf:be:80:e6:ba:55:62:6e:5d: 59:74:7c:e9:ca:05:40:9e:6a:74:70:94:9f:59:7b:9d:3e:2f: 80:6a:c5:1a:cc:4f:39:46:7a:55:89:6d:52:87:8f:87:87:18: 29:0f:84:09:fe:b7:52:9b:63:cc:a3:41:5c:c6:b9:ab:18:cf: e5:d5:20:b7:d2:de:25:1e:7b:1d:bb:dc:ad:d0:db:e7:b7:fa: ec:6c:75:ce:ce:37:e6:c7:28:98:e4:7f:1a:b2:e3:21:bb:fc: 65:8f:53:29:d5:46:b5:b2:0f:31:10:59:bc:c4:62:f8:6b:88: 7f:90:6f:59:f5:a8:2f:76:07:c2:7a:3c:b0:6b:55:f3:6c:70: 14:9e:66:b0:e3:5c:77:a3:bb:af:f8:ba:10:52:a9:59:d9:47: 7d:78:fd:dc:23:cd:57:8d:3a:ea:87:49:d7:c7:f3:49:1c:e7: 31:79:98:52:b0:74:a9:16:1f:d5:1e:53:2f:50:1b:18:60:83: c9:c4:84:55 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Rjk2MDUxMTAvBgNVBAUTKDY4MTg4NEMwQzc1NTdFNTI2RUYyQkM0RDFFNUFCQzMz NkFFMjdGOUUwHhcNMjYwMTE0MjIxODI2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY4MTYzMi04OTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhJMpvxXV1TQ4mz7J8tspnBw7kvH8j3M7lVwb+fRMsfEM1fjvaZYPlpbOAyB/ CGhitpvDRB6hoKu98/mhQgG58Qj4Vj8TN0GbSKFX6YEtexGH8qP50ThTJB+gfGfV LQXuYylbivIylrDlF3o2aeeXXt6Qqe6p+H6NL24bgOieVdhlXAFSsWwLh+EVr6/B ULwPN1CjILgF/PzGGZ9EfkpAvNzIhdQlfmo5lmQ2oE1ngRC6uqLvjILft/8ScFig rRgWUrDdfj3d9LVAJaD3VgGC84/uEV8rzsrpv+LaTSnMd9YziFQbLhXHi/fchOHL YwsqqzDg28uMm4IyUDDftu/YpQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFN6y1Hfp Kt5OybK9dqKPQcFPPUX8MB8GA1UdIwQYMBaAFGgYhMDHVX5SbvK8TR5avDNq4n+e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTYwNS8zNjY2NkQ2RTg3 MDkxMUVCODIzQjMzNTZDNEY5QUUwMi9hQmlFd01kVmZsSnU4cnhOSGxxOE0ycmlm NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FCaUV3TWRWZmxKdThyeE5IbHE4TTJyaWY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjk2MDUvMzY2NjZENkU4NzA5MTFFQjgyM0IzMzU2QzRGOUFFMDIvOUJDNDExRUVB MDNGMTFGMDk0Q0JGNTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAVuMiADBATKhsAwDQQCAAIwBwMFACQGLgAwDQYJKoZIhvcN AQELBQADggEBABPsURu2DKACtfGLEkMRGBWzb/3okrSOREGSHBYzcM5cPa/t7ZNl ANCJRvjdMCN1eFbsSMznL+AmP4xZynYheL++gOa6VWJuXVl0fOnKBUCeanRwlJ9Z e50+L4BqxRrMTzlGelWJbVKHj4eHGCkPhAn+t1KbY8yjQVzGuasYz+XVILfS3iUe ex273K3Q2+e3+uxsdc7ON+bHKJjkfxqy4yG7/GWPUynVRrWyDzEQWbzEYvhriH+Q b1n1qC92B8J6PLBrVfNscBSeZrDjXHeju6/4uhBSqVnZR314/dwjzVeNOuqHSdfH 80kc5zF5mFKwdKkWH9UeUy9QGxhgg8nEhFU= -----END CERTIFICATE-----Generated at Sun Jan 25 09:26:34 2026 by rpki-client