This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/1ED36EFC590C11F0913BCB35C4F9AE02.roa File: 1ED36EFC590C11F0913BCB35C4F9AE02.roa (raw, json) Hash identifier: wJoIO8rrxOY2lnEhXHESkpTbNHFEbKa9o0Fano1+9Pw= Subject key identifier: 4B:32:8B:F1:78:E1:6A:3B:A9:14:C1:63:AB:EE:60:56:FD:EE:DA:60 Certificate issuer: /CN=A91FF1CC/serialNumber=446FAF923BEBAF96357287FE250991C75491454D Certificate serial: BB Authority key identifier: 44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/1ED36EFC590C11F0913BCB35C4F9AE02.roa Signing time: Tue 13 Jan 2026 05:24:49 +0000 ROA not before: Tue 13 Jan 2026 05:24:49 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150372 IP address blocks: 161.248.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF1CC, serialNumber=446FAF923BEBAF96357287FE250991C75491454D Validity Not Before: Jan 13 05:24:49 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6965d721-88d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5c:b4:05:4b:1f:b3:1e:a4:9c:4c:59:da:6d: a8:65:4d:1e:d6:c1:33:1b:49:45:2d:ce:81:ed:de: d8:27:64:91:03:29:7a:36:f3:41:e7:3c:4f:e2:52: d6:6d:66:57:bc:15:ad:ec:c2:28:7c:26:5f:be:60: 38:cd:44:85:03:3c:11:15:6f:d2:6c:8f:9d:14:3c: 3f:ca:20:82:7c:fc:65:55:15:e5:b3:33:97:59:a8: 5e:04:f3:4a:53:6c:a2:6e:a0:8a:04:9e:fd:d0:d0: a0:d5:64:6f:38:3f:3a:a4:24:38:28:e5:d6:32:1c: e6:2d:3a:56:02:14:34:a6:14:31:cc:0c:38:df:9b: f7:ee:f2:cd:f6:1d:c0:80:0e:75:a0:83:d6:62:57: f4:3f:71:ec:79:e7:52:f1:83:d1:d5:18:1d:d2:06: c5:6b:5a:9a:27:9b:06:69:80:1f:a4:bb:b6:d9:e3: dc:a5:b5:21:89:4a:fa:a2:0f:57:f7:3f:c9:b5:77: 35:bb:b1:23:8b:19:3b:db:10:0c:03:05:b7:1c:3a: 14:8c:62:93:60:fa:18:56:d9:23:d1:ce:9b:57:c5: 0d:85:cb:9d:f6:fd:cc:b9:08:b3:80:ce:fe:50:15: 15:da:c6:7c:e3:fd:5b:f2:f9:db:c2:e5:d6:d4:92: 71:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:32:8B:F1:78:E1:6A:3B:A9:14:C1:63:AB:EE:60:56:FD:EE:DA:60 X509v3 Authority Key Identifier: keyid:44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/1ED36EFC590C11F0913BCB35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.57.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:c1:90:51:b2:7f:89:30:7b:68:65:f9:c2:87:95:dc:d5:63: a7:ab:41:1e:a1:2c:bf:64:ba:11:e5:47:6b:b9:53:c3:8c:4d: 0a:d7:6e:f6:ba:99:26:84:f2:f2:90:d1:e4:a3:06:18:ff:44: 81:be:c2:24:5c:0e:76:ce:5f:23:be:08:e1:ce:ea:9d:ee:a3: 2e:de:da:17:8c:cf:6f:b4:0c:a2:4a:24:44:91:d5:11:1b:cc: 20:8e:3f:5b:a4:0d:3b:f6:44:9f:d0:c4:4c:9d:d1:51:30:11: bf:94:25:b0:c7:73:40:69:1a:37:59:d0:09:ac:56:cb:d5:47: 3c:7e:b9:e5:c0:ff:73:77:a7:a7:72:3d:0a:bd:46:77:3b:fe: 02:5f:41:bf:34:7a:5f:b4:95:4c:7f:d1:d2:52:ae:30:17:7c: 0c:1f:34:ed:d0:8b:ed:6d:79:e9:56:75:72:7c:a2:f2:62:cb: 8a:7c:eb:4b:f3:da:74:62:71:0d:49:d0:bc:21:c3:f4:a6:2b: c2:29:a9:35:c2:51:93:8a:ca:fb:29:b6:a5:1a:d0:e9:0b:d3: 7e:d7:c6:cd:97:5e:7b:3e:f6:a2:98:72:a3:86:2c:b4:40:48: 71:98:fb:d8:bd:9d:11:3c:c7:cf:a5:dd:ee:7f:e1:60:96:13: 3b:02:90:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RkYxQ0MxMTAvBgNVBAUTKDQ0NkZBRjkyM0JFQkFGOTYzNTcyODdGRTI1MDk5MUM3 NTQ5MTQ1NEQwHhcNMjYwMTEzMDUyNDQ5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY1ZDcyMS04OGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuly0BUsfsx6knExZ2m2oZU0e1sEzG0lFLc6B7d7YJ2SRAyl6NvNB5zxP4lLW bWZXvBWt7MIofCZfvmA4zUSFAzwRFW/SbI+dFDw/yiCCfPxlVRXlszOXWaheBPNK U2yibqCKBJ790NCg1WRvOD86pCQ4KOXWMhzmLTpWAhQ0phQxzAw435v37vLN9h3A gA51oIPWYlf0P3HseedS8YPR1Rgd0gbFa1qaJ5sGaYAfpLu22ePcpbUhiUr6og9X 9z/JtXc1u7Ejixk72xAMAwW3HDoUjGKTYPoYVtkj0c6bV8UNhcud9v3MuQizgM7+ UBUV2sZ84/1b8vnbwuXW1JJxPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEsyi/F4 4Wo7qRTBY6vuYFb97tpgMB8GA1UdIwQYMBaAFERvr5I766+WNXKH/iUJkcdUkUVN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjFDQy8zQUZDMzNFMkVG NjMxMUVGQkY2NEFCNkFDNEY5QUUwMi9SRy12a2p2cnI1WTFjb2YtSlFtUngxU1JS VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JHLXZranZycjVZMWNvZi1KUW1SeDFTUlJVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkYxQ0MvM0FGQzMzRTJFRjYzMTFFRkJGNjRBQjZBQzRGOUFFMDIvMUVEMzZFRkM1 OTBDMTFGMDkxM0JDQjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACh+DkwDQYJKoZIhvcNAQELBQADggEBAErBkFGyf4kwe2hl +cKHldzVY6erQR6hLL9kuhHlR2u5U8OMTQrXbva6mSaE8vKQ0eSjBhj/RIG+wiRc DnbOXyO+COHO6p3uoy7e2heMz2+0DKJKJESR1REbzCCOP1ukDTv2RJ/QxEyd0VEw Eb+UJbDHc0BpGjdZ0AmsVsvVRzx+ueXA/3N3p6dyPQq9Rnc7/gJfQb80el+0lUx/ 0dJSrjAXfAwfNO3Qi+1teelWdXJ8ovJiy4p860vz2nRicQ1J0Lwhw/SmK8IpqTXC UZOKyvsptqUa0OkL037Xxs2XXns+9qKYcqOGLLRASHGY+9i9nRE8x8+l3e5/4WCW EzsCkGs= -----END CERTIFICATE-----Generated at Sun Jan 25 17:01:39 2026 by rpki-client