This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/DFBA2ED05EA611ECB7A8FE42C4F9AE02.roa File: DFBA2ED05EA611ECB7A8FE42C4F9AE02.roa (raw, json) Hash identifier: hZP1iW5iarEt2jjiaicgl9/g7zXAaUurvYLF9vIJp5M= Subject key identifier: F6:F7:BD:B8:6C:7F:6A:A5:14:31:90:6D:B3:98:05:5D:AC:CF:C5:3C Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2AFB Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/DFBA2ED05EA611ECB7A8FE42C4F9AE02.roa Signing time: Fri 02 Jan 2026 16:13:05 +0000 ROA not before: Fri 02 Jan 2026 16:13:05 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136538 IP address blocks: 49.229.120.0/22 maxlen: 24 49.229.124.0/22 maxlen: 24 49.229.128.0/21 maxlen: 24 49.229.136.0/21 maxlen: 24 49.229.144.0/22 maxlen: 24 49.229.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 15:33:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11003 (0x2afb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Jan 2 16:13:05 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6957ee91-22c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:20:bb:cd:86:7a:a0:6e:01:fc:d2:b1:bb:e8: bf:78:d5:ad:68:77:6b:99:8d:f0:1c:83:d2:32:5b: 5e:11:63:36:e1:6e:56:1b:9f:a8:77:9e:d5:49:f9: 84:37:e2:64:e2:d9:a5:1a:19:5f:33:6b:4c:04:35: e7:52:30:75:a3:3a:be:83:f5:eb:3a:bc:7e:08:f4: ed:8e:a4:b6:14:88:9a:fa:3e:61:ca:49:4e:a8:74: b0:4b:8d:27:ff:c9:dc:5e:6a:09:70:e6:a0:bb:31: 0b:1c:70:81:95:67:5b:f6:b0:bc:c4:52:6c:62:d0: 58:c3:85:85:10:9c:14:b2:1a:b3:51:19:eb:29:96: 60:2d:1b:a1:79:2c:84:54:9b:d4:f2:98:ca:42:cb: 27:a8:d9:f2:4e:28:12:44:51:41:d5:9a:6c:c0:3e: b9:b3:6c:fc:c3:e7:f4:61:35:72:91:22:09:bb:14: 30:e6:18:4c:53:92:66:7e:25:a9:ae:a6:30:81:b3: a2:78:31:ec:86:9e:b3:36:38:26:d0:5b:7d:fa:1c: 84:b7:71:36:b0:d8:d9:41:1e:d0:10:3e:19:52:56: ae:81:a6:61:cd:17:d2:cf:4b:63:a7:b0:ac:46:fa: b9:3c:6e:89:c1:28:ce:2b:92:3c:e3:48:78:f2:14: 7a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F7:BD:B8:6C:7F:6A:A5:14:31:90:6D:B3:98:05:5D:AC:CF:C5:3C X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/DFBA2ED05EA611ECB7A8FE42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.229.120.0-49.229.151.255 Signature Algorithm: sha256WithRSAEncryption c1:4b:1f:9a:f6:30:1f:92:eb:cc:83:e5:fd:b8:82:31:77:78: dc:42:0d:99:64:41:f8:8a:ba:02:c3:f8:cf:f0:3e:36:b3:92: 2d:1a:4e:26:45:b5:b2:af:6c:c5:b3:13:d4:aa:3b:82:1c:5c: c5:8d:8f:2b:b5:66:f2:4b:26:82:b0:09:68:b3:14:ce:fb:cd: 2c:c3:ce:f2:de:ff:4b:f1:cd:92:7a:fa:b1:a2:67:d2:43:81: 76:9c:2c:61:07:00:a4:d9:09:fe:ea:ab:fc:01:8a:dd:ad:63: 2a:ab:49:ee:9d:75:ec:6d:78:d8:d9:9f:5f:d2:e4:e0:63:6c: ae:8a:bc:8c:bd:68:41:93:da:dd:20:78:35:c2:8d:d8:cc:c2: dd:29:e2:c0:10:a8:de:c7:08:0c:52:92:6c:df:36:48:08:de: 75:56:6b:f5:73:a3:9c:71:31:02:5d:c3:78:50:ce:e7:bc:cc: 25:58:00:41:ff:dd:48:30:70:9b:3d:a1:52:2a:a7:f5:2b:12: 23:7c:ba:44:de:b7:b5:3d:03:87:fc:a9:d5:f4:4f:f0:9b:fb: 58:ed:df:cf:6f:d4:71:99:c2:96:39:99:11:8c:73:17:35:75: b2:b1:56:d7:4f:b5:1d:c1:50:9a:60:83:67:05:38:90:ad:4c: 4e:af:e4:d1 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICKvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjYwMTAyMTYxMzA1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU3ZWU5MS0yMmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriC7zYZ6oG4B/NKxu+i/eNWtaHdrmY3wHIPSMlteEWM24W5WG5+od57VSfmE N+Jk4tmlGhlfM2tMBDXnUjB1ozq+g/XrOrx+CPTtjqS2FIia+j5hyklOqHSwS40n /8ncXmoJcOaguzELHHCBlWdb9rC8xFJsYtBYw4WFEJwUshqzURnrKZZgLRuheSyE VJvU8pjKQssnqNnyTigSRFFB1ZpswD65s2z8w+f0YTVykSIJuxQw5hhMU5JmfiWp rqYwgbOieDHshp6zNjgm0Ft9+hyEt3E2sNjZQR7QED4ZUlaugaZhzRfSz0tjp7Cs Rvq5PG6JwSjOK5I840h48hR6+wIDAQABo4ICnTCCApkwHQYDVR0OBBYEFPb3vbhs f2qlFDGQbbOYBV2sz8U8MB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvREZCQTJFRDA1 RUE2MTFFQ0I3QThGRTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAzHleAMEAzHlkDANBgkqhkiG9w0BAQsFAAOCAQEAwUsf mvYwH5LrzIPl/biCMXd43EINmWRB+Iq6AsP4z/A+NrOSLRpOJkW1sq9sxbMT1Ko7 ghxcxY2PK7Vm8ksmgrAJaLMUzvvNLMPO8t7/S/HNknr6saJn0kOBdpwsYQcApNkJ /uqr/AGK3a1jKqtJ7p117G142NmfX9Lk4GNsroq8jL1oQZPa3SB4NcKN2MzC3Sni wBCo3scIDFKSbN82SAjedVZr9XOjnHExAl3DeFDO57zMJVgAQf/dSDBwmz2hUiqn 9SsSI3y6RN63tT0Dh/yp1fRP8Jv7WO3fz2/UcZnCljmZEYxzFzV1srFW10+1HcFQ mmCDZwU4kK1MTq/k0Q== -----END CERTIFICATE-----Generated at Wed Jan 21 06:17:07 2026 by rpki-client