This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/251E5BC2C72011EC9501FE0FC4F9AE02.roa File: 251E5BC2C72011EC9501FE0FC4F9AE02.roa (raw, json) Hash identifier: 5NDX2Eh9VTkz5XKBOuYbi3LhVwLDB+pxESpP6SFOTKI= Subject key identifier: D6:89:82:A4:2D:11:F6:41:F1:86:7F:16:8F:43:98:32:21:48:E4:39 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2B0D Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/251E5BC2C72011EC9501FE0FC4F9AE02.roa Signing time: Fri 02 Jan 2026 16:13:23 +0000 ROA not before: Fri 02 Jan 2026 16:13:23 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 149640 IP address blocks: 49.229.94.0/24 maxlen: 24 58.64.0.0/24 maxlen: 24 58.64.11.0/24 maxlen: 24 2405:9800:c921::/48 maxlen: 48 2405:9800:c922::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 15:33:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11021 (0x2b0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Jan 2 16:13:23 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6957eea3-07a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ef:d6:46:55:46:94:b8:48:b0:c1:00:9e:f0: 7b:6e:12:a9:99:0f:07:e4:89:6f:52:d4:18:a2:9e: 59:c5:00:20:f6:7a:ba:9b:4d:96:33:39:f7:67:7c: 08:38:44:1b:7c:29:17:54:aa:ef:ac:54:bb:d8:69: 82:84:4b:b5:9c:e9:c5:0f:69:60:29:cb:c0:e8:bf: 2e:31:7b:a0:54:21:95:51:6f:48:fe:1b:a3:03:da: 27:eb:41:14:3d:79:47:79:69:52:a6:cb:ac:97:28: 67:65:58:23:d1:a1:3f:f0:f7:bd:11:58:b9:ee:1c: 46:b7:db:8e:9c:c8:86:85:a5:39:e2:88:80:2d:f8: 20:39:27:0f:d7:57:08:73:2b:a5:9f:40:12:93:8e: 65:4a:6b:6e:56:cb:d1:85:08:f6:6b:43:9d:7e:8c: df:3e:b5:c0:af:1d:7f:9f:a9:2a:94:37:e5:b9:c6: d8:07:b8:64:e1:ab:b0:6a:97:bb:24:11:14:7a:d3: b6:b0:fc:30:c3:fa:31:02:90:0d:93:8f:07:f6:f4: 26:41:fa:3e:cd:7b:51:57:d1:f1:e0:8a:b4:ab:a5: 53:64:9c:94:6b:82:d5:7d:9f:b5:05:a1:10:f3:c2: 74:20:a3:e7:9f:51:69:35:5e:d9:82:f9:d5:cb:04: f1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:89:82:A4:2D:11:F6:41:F1:86:7F:16:8F:43:98:32:21:48:E4:39 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/251E5BC2C72011EC9501FE0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.229.94.0/24 58.64.0.0/24 58.64.11.0/24 IPv6: 2405:9800:c921::-2405:9800:c922:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption bf:75:af:1b:8a:2e:fb:23:e6:6b:64:11:ad:d9:be:a1:22:a9: 1a:a5:2d:8d:59:21:da:8c:b1:1a:cf:ce:46:9c:ae:24:25:06: 51:64:ed:37:b2:17:f4:51:90:11:f3:5c:ec:11:fb:72:8d:1e: 8b:42:3e:ff:91:46:64:60:08:e4:3c:a9:62:58:17:8a:2c:4f: d4:8c:99:9c:ad:1b:9d:69:6e:fa:3d:b7:dc:b1:de:cf:a6:99: 8d:b2:dc:cb:f6:59:67:af:92:f1:6b:2e:dc:66:10:6f:da:e8: c9:af:8f:f0:bc:4c:7b:67:c9:e1:94:dd:76:33:c0:04:7b:af: 86:f5:e2:4e:f5:e8:3c:d5:dc:f0:70:55:cd:ba:e2:83:8c:e1: 40:78:e1:14:42:a6:81:c3:4f:ce:af:cd:40:4c:1c:aa:d4:ec: 9b:23:ed:7a:bb:4d:4a:99:60:0d:fa:aa:ba:ff:bc:86:ab:73: 0a:2f:fd:15:35:f2:df:9b:8e:84:ba:5a:a1:b9:68:6e:c3:05: 14:87:a8:bf:d8:8d:69:9f:80:7d:1a:39:58:6a:df:e8:91:7c: e3:e8:26:2d:bf:db:cc:73:b7:2c:70:84:46:3b:31:70:7e:c7: b4:e0:a9:9c:35:5d:0a:60:60:6f:42:e7:d2:3c:5c:b7:d5:2f: 2b:0f:fb:8b -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgICKw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjYwMTAyMTYxMzIzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU3ZWVhMy0wN2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqu/WRlVGlLhIsMEAnvB7bhKpmQ8H5IlvUtQYop5ZxQAg9nq6m02WMzn3Z3wI OEQbfCkXVKrvrFS72GmChEu1nOnFD2lgKcvA6L8uMXugVCGVUW9I/hujA9on60EU PXlHeWlSpsuslyhnZVgj0aE/8Pe9EVi57hxGt9uOnMiGhaU54oiALfggOScP11cI cyuln0ASk45lSmtuVsvRhQj2a0OdfozfPrXArx1/n6kqlDflucbYB7hk4auwape7 JBEUetO2sPwww/oxApANk48H9vQmQfo+zXtRV9Hx4Iq0q6VTZJyUa4LVfZ+1BaEQ 88J0IKPnn1FpNV7ZgvnVywTxHQIDAQABo4ICvTCCArkwHQYDVR0OBBYEFNaJgqQt EfZB8YZ/Fo9DmDIhSOQ5MB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvMjUxRTVCQzJD NzIwMTFFQzk1MDFGRTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRwYIKwYBBQUHAQcBAf8E ODA2MBgEAgABMBIDBAAx5V4DBAA6QAADBAA6QAswGgQCAAIwFDASAwcAJAWYAMkh AwcAJAWYAMkiMA0GCSqGSIb3DQEBCwUAA4IBAQC/da8bii77I+ZrZBGt2b6hIqka pS2NWSHajLEaz85GnK4kJQZRZO03shf0UZAR81zsEftyjR6LQj7/kUZkYAjkPKli WBeKLE/UjJmcrRudaW76Pbfcsd7PppmNstzL9llnr5Lxay7cZhBv2ujJr4/wvEx7 Z8nhlN12M8AEe6+G9eJO9eg81dzwcFXNuuKDjOFAeOEUQqaBw0/Or81ATByq1Oyb I+16u01KmWAN+qq6/7yGq3MKL/0VNfLfm46EulqhuWhuwwUUh6i/2I1pn4B9GjlY at/okXzj6CYtv9vMc7cscIRGOzFwfse04KmcNV0KYGBvQufSPFy31S8rD/uL -----END CERTIFICATE-----Generated at Wed Jan 21 06:17:07 2026 by rpki-client