This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/194B7920A51611EF890ECD3EC4F9AE02/669FD05EA53911EFBE261371C4F9AE02.roa File: 669FD05EA53911EFBE261371C4F9AE02.roa (raw, json) Hash identifier: E1FlfXmlYedHR+5FEjL/qZ3yInYkA9ztNMY6AYVo6N4= Subject key identifier: 23:30:C5:95:2E:E1:B9:F9:12:D7:B3:90:16:6E:48:A0:51:43:AE:2B Certificate issuer: /CN=A91FDEFE/serialNumber=4FE1B35F9AD8281B66F47031F507E0EE7D54211A Certificate serial: D0 Authority key identifier: 4F:E1:B3:5F:9A:D8:28:1B:66:F4:70:31:F5:07:E0:EE:7D:54:21:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDEFE/194B7920A51611EF890ECD3EC4F9AE02/669FD05EA53911EFBE261371C4F9AE02.roa Signing time: Tue 23 Dec 2025 05:25:46 +0000 ROA not before: Tue 23 Dec 2025 05:25:46 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 132238 IP address blocks: 2401:d7a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDEFE/194B7920A51611EF890ECD3EC4F9AE02/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.crl rsync://rpki.apnic.net/member_repository/A91FDEFE/194B7920A51611EF890ECD3EC4F9AE02/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDEFE, serialNumber=4FE1B35F9AD8281B66F47031F507E0EE7D54211A Validity Not Before: Dec 23 05:25:46 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=694a27da-308e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:8d:52:cb:ca:6e:d2:34:d7:a8:f5:c9:95:8f: 68:ee:9d:3a:52:f1:73:79:21:a0:35:23:0e:17:74: 78:6c:d4:fb:64:46:22:48:8c:b8:7d:c3:f4:aa:b9: 98:5c:e7:d5:c1:fe:84:28:76:15:9b:cf:80:00:ab: 50:86:50:b1:12:e9:0e:da:30:17:62:1b:e8:65:6a: 7f:8e:3a:5c:7a:48:d9:a1:18:e9:64:3f:0b:df:7d: 36:05:da:d4:fa:c4:aa:9e:97:4c:af:b1:cc:36:d3: 46:aa:f0:2c:da:36:82:5c:5a:f7:63:c1:ed:d7:ac: f7:d8:a2:6a:19:25:dc:22:6a:72:21:5a:e1:a7:a0: 84:35:b1:9d:a2:8a:3b:d2:d5:75:9b:1c:3c:30:51: e7:41:6b:34:13:03:fa:25:fb:99:8c:f1:39:6e:12: e1:71:a0:a9:2b:d4:98:29:3d:76:51:74:2b:d4:cf: a7:c7:0b:63:d2:67:84:72:46:47:02:c7:51:46:a7: 92:22:ec:e2:2a:98:d0:de:0a:a0:95:d7:5e:c4:1a: 19:e3:63:09:3c:57:43:d4:63:cf:33:07:14:9e:e2: d7:c7:31:8f:a1:e6:28:db:30:2e:29:fb:c5:b3:8e: cc:8b:71:79:8a:b0:fa:1f:d9:ea:57:18:a3:0f:95: ea:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:30:C5:95:2E:E1:B9:F9:12:D7:B3:90:16:6E:48:A0:51:43:AE:2B X509v3 Authority Key Identifier: keyid:4F:E1:B3:5F:9A:D8:28:1B:66:F4:70:31:F5:07:E0:EE:7D:54:21:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/194B7920A51611EF890ECD3EC4F9AE02/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/194B7920A51611EF890ECD3EC4F9AE02/669FD05EA53911EFBE261371C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d7a0::/32 Signature Algorithm: sha256WithRSAEncryption 02:a8:fc:da:b5:d9:12:62:e2:02:2c:fc:16:a5:3d:9a:4f:cc: d1:37:07:c5:97:6a:b0:51:92:81:96:52:3b:42:f3:15:5f:46: b5:d8:6c:30:9a:31:8b:4c:99:11:5d:14:77:b2:03:81:25:c9: dd:2e:8e:8c:06:8f:89:6f:e9:34:ed:c4:34:89:89:28:9b:fa: ff:4b:76:7e:7d:3b:8b:de:a5:35:e9:e2:61:86:d0:10:58:40: 8e:10:dd:b2:db:44:26:f5:e8:d3:85:ba:76:c1:62:a1:92:a5: b0:49:cf:59:1c:90:3a:30:88:cf:d2:00:9b:1b:42:c2:78:81: e5:1a:df:c7:95:53:f5:74:a1:90:7f:9f:9b:b3:08:39:62:8e: 3e:8b:6b:2d:34:53:55:6d:91:aa:59:50:e8:86:56:dc:1e:a2: c6:66:d4:2b:ea:b0:f4:66:82:30:6e:70:b8:2f:ef:f9:29:c5: 82:5f:c9:a0:75:fc:0d:8e:25:46:4b:bd:99:ca:6c:73:6f:b3: 3d:35:36:48:83:99:85:0a:de:e4:d3:bb:51:18:15:9b:62:69: 9a:c4:cd:e9:54:2f:5f:45:70:67:9d:a6:2c:67:a7:5b:23:c2: 14:2f:08:e2:bf:a7:72:4a:7c:49:78:71:e2:52:1c:46:9e:1c: f3:be:71:22 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RkRFRkUxMTAvBgNVBAUTKDRGRTFCMzVGOUFEODI4MUI2NkY0NzAzMUY1MDdFMEVF N0Q1NDIxMUEwHhcNMjUxMjIzMDUyNTQ2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTRhMjdkYS0zMDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhI1Sy8pu0jTXqPXJlY9o7p06UvFzeSGgNSMOF3R4bNT7ZEYiSIy4fcP0qrmY XOfVwf6EKHYVm8+AAKtQhlCxEukO2jAXYhvoZWp/jjpcekjZoRjpZD8L3302BdrU +sSqnpdMr7HMNtNGqvAs2jaCXFr3Y8Ht16z32KJqGSXcImpyIVrhp6CENbGdooo7 0tV1mxw8MFHnQWs0EwP6JfuZjPE5bhLhcaCpK9SYKT12UXQr1M+nxwtj0meEckZH AsdRRqeSIuziKpjQ3gqglddexBoZ42MJPFdD1GPPMwcUnuLXxzGPoeYo2zAuKfvF s47Mi3F5irD6H9nqVxijD5XqjwIDAQABo4ICljCCApIwHQYDVR0OBBYEFCMwxZUu 4bn5EtezkBZuSKBRQ64rMB8GA1UdIwQYMBaAFE/hs1+a2CgbZvRwMfUH4O59VCEa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREVGRS8xOTRCNzkyMEE1 MTYxMUVGODkwRUNEM0VDNEY5QUUwMi9ULUd6WDVyWUtCdG05SEF4OVFmZzduMVVJ Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1QtR3pYNXJZS0J0bTlIQXg5UWZnN24xVUlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRFRkUvMTk0Qjc5MjBBNTE2MTFFRjg5MEVDRDNFQzRGOUFFMDIvNjY5RkQwNUVB NTM5MTFFRkJFMjYxMzcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAdegMA0GCSqGSIb3DQEBCwUAA4IBAQACqPzatdkSYuIC LPwWpT2aT8zRNwfFl2qwUZKBllI7QvMVX0a12GwwmjGLTJkRXRR3sgOBJcndLo6M Bo+Jb+k07cQ0iYkom/r/S3Z+fTuL3qU16eJhhtAQWECOEN2y20Qm9ejThbp2wWKh kqWwSc9ZHJA6MIjP0gCbG0LCeIHlGt/HlVP1dKGQf5+bswg5Yo4+i2stNFNVbZGq WVDohlbcHqLGZtQr6rD0ZoIwbnC4L+/5KcWCX8mgdfwNjiVGS72Zymxzb7M9NTZI g5mFCt7k07tRGBWbYmmaxM3pVC9fRXBnnaYsZ6dbI8IULwjiv6dySnxJeHHiUhxG nhzzvnEi -----END CERTIFICATE-----Generated at Wed Dec 24 14:58:03 2025 by rpki-client