This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/C8171E8EC04D11F081466417C4F9AE02.roa File: C8171E8EC04D11F081466417C4F9AE02.roa (raw, json) Hash identifier: qD7E81+F84ybq65PJCoOoGx/3Rj26xGdP+iJxj/kXys= Subject key identifier: CB:65:25:73:C3:88:83:FF:49:95:B4:8A:F7:C0:E6:42:96:21:E6:A1 Certificate issuer: /CN=A9112FE1/serialNumber=3D1FCB7255C52503E10AE584B1189A15CF56074E Certificate serial: 95 Authority key identifier: 3D:1F:CB:72:55:C5:25:03:E1:0A:E5:84:B1:18:9A:15:CF:56:07:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR_LclXFJQPhCuWEsRiaFc9WB04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/C8171E8EC04D11F081466417C4F9AE02.roa Signing time: Thu 13 Nov 2025 05:01:15 +0000 ROA not before: Thu 13 Nov 2025 05:01:15 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 149014 IP address blocks: 2404:de80:0:26::/64 maxlen: 64 2404:de80:c00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.crl rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR_LclXFJQPhCuWEsRiaFc9WB04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:37:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112FE1, serialNumber=3D1FCB7255C52503E10AE584B1189A15CF56074E Validity Not Before: Nov 13 05:01:15 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6915661b-5a5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2e:ab:b0:54:8d:88:93:ba:b2:cb:83:a5:cb: c5:8b:0a:0f:15:3d:96:7f:e3:c5:70:81:20:f6:9f: f0:75:35:61:ee:06:9e:1a:bc:79:3b:e0:91:b3:31: 19:6c:2b:2c:3a:d3:38:a6:c7:d6:19:ce:9c:7e:26: 90:9d:2f:53:c5:ec:f2:dc:b6:2e:c7:c5:c3:42:08: a0:39:eb:89:fc:ba:22:a8:50:21:34:dd:ff:7e:cf: c5:29:91:60:1d:8e:92:83:f4:75:c2:7a:19:d4:fe: 4e:2a:7d:23:be:27:dc:e6:a3:9a:b2:b0:4a:ec:05: 0c:7f:8b:9d:9b:d4:cc:6f:5f:4b:33:e9:f1:05:50: 7c:f8:1a:09:df:21:fe:2c:d7:08:bd:bd:d5:69:b2: 26:5c:74:1f:ef:93:7f:cf:ac:b8:ab:79:17:62:82: ff:88:f9:23:aa:46:34:e1:ff:cc:a3:2b:14:ff:33: 50:50:73:05:07:21:5c:b4:aa:69:96:f6:96:bb:44: db:b0:9f:b8:a2:14:55:a1:39:9a:e4:9e:22:da:30: c6:8e:51:7e:34:2b:ca:b3:c1:cb:e9:5e:b3:80:ee: fa:2f:34:52:b5:b8:05:83:b8:22:ed:e9:6d:d6:21: e2:e4:4e:8c:1a:5b:72:9c:cd:0b:c4:04:42:31:6d: d6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:65:25:73:C3:88:83:FF:49:95:B4:8A:F7:C0:E6:42:96:21:E6:A1 X509v3 Authority Key Identifier: keyid:3D:1F:CB:72:55:C5:25:03:E1:0A:E5:84:B1:18:9A:15:CF:56:07:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR_LclXFJQPhCuWEsRiaFc9WB04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/C8171E8EC04D11F081466417C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:de80:0:26::/64 2404:de80:c00::/40 Signature Algorithm: sha256WithRSAEncryption 4c:72:9a:a5:52:c4:54:fe:f5:ca:5b:75:f8:ec:f3:3c:58:4d: cf:d8:3d:c3:d9:ac:ad:11:2d:18:eb:9f:f2:0f:79:4a:8e:ff: 4f:90:35:e9:2a:ec:49:72:51:23:f1:00:25:cd:4f:e1:52:c7: 8e:25:22:cc:f2:b6:dc:e5:77:2a:d3:2a:87:ac:7e:23:a0:9e: 04:55:b2:0b:73:e6:c1:02:b2:8b:32:fa:47:0b:07:ce:b6:1c: 1a:68:e9:72:b4:fd:c5:69:4c:4a:33:83:a3:c3:52:a1:9d:b1: b8:b5:1c:67:e8:65:3c:b0:b2:1e:91:99:b7:f5:72:ea:6c:4c: 6b:07:a3:44:57:23:ca:ee:a5:33:20:34:76:b6:43:34:47:9a: d0:e1:a5:e7:88:77:9b:7b:3b:5a:bd:49:b3:ba:4c:46:97:ab: 3a:e7:49:dc:d3:3d:ee:da:ff:09:5d:2c:65:91:9a:c9:3b:8d: 0f:a4:7e:2a:b7:f2:0e:fd:18:68:ee:1c:b2:16:7f:7d:5f:2d: f4:f7:92:e2:f6:0c:0a:9f:c1:c2:04:ab:af:cf:5d:ac:45:42: a6:bd:e8:e9:82:42:ee:d1:17:80:53:e5:df:c0:18:f3:3f:e0: c0:f3:fa:c2:3b:98:f4:28:7b:f8:06:85:0c:9f:94:a4:3c:52: 8e:92:98:ea -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJGRTExMTAvBgNVBAUTKDNEMUZDQjcyNTVDNTI1MDNFMTBBRTU4NEIxMTg5QTE1 Q0Y1NjA3NEUwHhcNMjUxMTEzMDUwMTE1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTE1NjYxYi01YTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoS6rsFSNiJO6ssuDpcvFiwoPFT2Wf+PFcIEg9p/wdTVh7gaeGrx5O+CRszEZ bCssOtM4psfWGc6cfiaQnS9Txezy3LYux8XDQgigOeuJ/LoiqFAhNN3/fs/FKZFg HY6Sg/R1wnoZ1P5OKn0jvifc5qOasrBK7AUMf4udm9TMb19LM+nxBVB8+BoJ3yH+ LNcIvb3VabImXHQf75N/z6y4q3kXYoL/iPkjqkY04f/MoysU/zNQUHMFByFctKpp lvaWu0TbsJ+4ohRVoTma5J4i2jDGjlF+NCvKs8HL6V6zgO76LzRStbgFg7gi7elt 1iHi5E6MGltynM0LxARCMW3W+wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMtlJXPD iIP/SZW0ivfA5kKWIeahMB8GA1UdIwQYMBaAFD0fy3JVxSUD4QrlhLEYmhXPVgdO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkZFMS9DNDU2MTAyRTA5 RjExMUYwOEI0NEEzMjVDNEY5QUUwMi9QUl9MY2xYRkpRUGhDdVdFc1JpYUZjOVdC MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BSX0xjbFhGSlFQaEN1V0VzUmlhRmM5V0IwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTJGRTEvQzQ1NjEwMkUwOUYxMTFGMDhCNDRBMzI1QzRGOUFFMDIvQzgxNzFFOEVD MDREMTFGMDgxNDY2NDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLAYIKwYBBQUHAQcBAf8E HTAbMBkEAgACMBMDCQAkBN6AAAAAJgMGACQE3oAMMA0GCSqGSIb3DQEBCwUAA4IB AQBMcpqlUsRU/vXKW3X47PM8WE3P2D3D2aytES0Y65/yD3lKjv9PkDXpKuxJclEj 8QAlzU/hUseOJSLM8rbc5Xcq0yqHrH4joJ4EVbILc+bBArKLMvpHCwfOthwaaOly tP3FaUxKM4Ojw1KhnbG4tRxn6GU8sLIekZm39XLqbExrB6NEVyPK7qUzIDR2tkM0 R5rQ4aXniHebeztavUmzukxGl6s650nc0z3u2v8JXSxlkZrJO40PpH4qt/IO/Rho 7hyyFn99Xy3095Li9gwKn8HCBKuvz12sRUKmvejpgkLu0ReAU+XfwBjzP+DA8/rC O5j0KHv4BoUMn5SkPFKOkpjq -----END CERTIFICATE-----Generated at Fri Dec 5 22:50:47 2025 by rpki-client