This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/F420BF1EDF9811EDB93A9960C4F9AE02.roa File: F420BF1EDF9811EDB93A9960C4F9AE02.roa (raw, json) Hash identifier: bqDxSF7YobCMBQE2fUg/I74IP4Huq0lulkrTLwXthqo= Subject key identifier: C2:FE:5D:8E:2D:74:14:DB:1A:E9:B3:0C:98:AD:81:0A:9C:1F:D4:8B Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2B04 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/F420BF1EDF9811EDB93A9960C4F9AE02.roa Signing time: Fri 02 Jan 2026 16:13:14 +0000 ROA not before: Fri 02 Jan 2026 16:13:14 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 138915 IP address blocks: 2405:9800:c92d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 15:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11012 (0x2b04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Jan 2 16:13:14 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6957ee9a-c306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:ce:3f:03:e0:5c:f3:c6:7e:62:70:84:8b:a4: 7e:34:51:6a:69:6e:b0:3e:cb:2c:4e:4c:54:23:09: 45:26:17:af:a0:a3:ec:66:a5:7e:37:03:0d:5b:e5: ac:da:91:62:2d:f4:cd:54:ff:32:17:9b:13:bc:ed: 83:90:75:bd:bb:90:9f:d3:99:2a:3e:4c:af:07:b3: 2c:da:18:f6:e9:b0:f1:04:cf:a8:37:45:d8:4f:51: 25:df:c4:68:8f:c2:9c:82:ff:93:6b:2c:c1:4f:37: d8:9c:69:9c:08:91:ab:8f:6f:fa:e3:1d:fe:46:dd: 68:d9:f8:b0:08:a6:6f:01:4b:82:59:a1:7e:9e:95: 9f:db:1e:ec:17:c7:e4:28:5f:3e:4f:9f:75:e3:63: 77:3d:fc:1e:74:ec:be:96:4e:0e:41:04:ed:fd:d8: 91:97:74:cb:88:e8:20:f3:5a:ea:0e:83:c7:6a:ca: 26:20:40:85:d5:7f:ef:3f:3c:12:27:31:e4:ab:fa: 21:c5:fc:5e:73:ec:76:0c:96:24:a5:52:a2:5e:43: e2:f4:0b:12:e9:e9:b7:b0:dc:db:fe:4b:b3:cd:53: f0:bc:9f:e7:e1:87:e3:fc:28:3f:b7:c4:14:e2:c8: 7f:01:c2:bd:5e:37:b9:b8:81:05:78:f8:e1:7b:3e: 10:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:FE:5D:8E:2D:74:14:DB:1A:E9:B3:0C:98:AD:81:0A:9C:1F:D4:8B X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/F420BF1EDF9811EDB93A9960C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:9800:c92d::/48 Signature Algorithm: sha256WithRSAEncryption 43:da:fb:d3:d6:5d:59:fd:d8:b3:89:02:16:2f:53:4b:8f:45: 44:ed:8e:8c:89:65:52:3f:1f:87:4b:1f:42:7f:02:33:7b:aa: 65:69:c2:97:a1:5d:3a:b5:95:68:29:b1:37:21:08:c6:5e:16: 46:31:ff:c5:c3:19:f6:30:db:0d:70:31:62:a8:58:4f:13:13: 6d:76:c1:7d:00:39:c0:63:11:87:d3:cd:9b:49:67:d0:4d:a0: 76:ff:ea:57:a8:b9:bb:be:41:b2:e0:6f:b9:6e:eb:b0:ea:de: 43:b7:da:5d:7b:f6:53:81:3e:79:d2:35:d0:42:d1:fa:0f:b5: ef:48:54:42:a1:78:2e:b3:b7:19:13:3c:4d:25:f2:7d:2b:ad: 0e:c7:9d:cd:2e:8c:c1:bb:20:50:da:a0:e7:bb:be:bc:d6:40: 16:52:21:98:f8:19:e5:0c:dd:c8:65:50:37:c3:61:88:f0:82: eb:77:70:6e:1c:f5:77:73:ac:14:9a:a3:3d:fd:87:51:5f:39: f0:f3:1e:66:04:30:e1:50:25:56:53:9b:1e:25:5d:e2:37:b0: 97:fc:d3:3d:d7:d7:12:d3:eb:4a:7f:23:01:1f:0a:f2:75:94: c7:15:4d:be:05:0f:b1:71:29:e5:49:7f:2c:96:7b:77:6a:4d: fb:4d:ff:7e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICKwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjYwMTAyMTYxMzE0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU3ZWU5YS1jMzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhc4/A+Bc88Z+YnCEi6R+NFFqaW6wPsssTkxUIwlFJhevoKPsZqV+NwMNW+Ws 2pFiLfTNVP8yF5sTvO2DkHW9u5Cf05kqPkyvB7Ms2hj26bDxBM+oN0XYT1El38Ro j8Kcgv+TayzBTzfYnGmcCJGrj2/64x3+Rt1o2fiwCKZvAUuCWaF+npWf2x7sF8fk KF8+T59142N3PfwedOy+lk4OQQTt/diRl3TLiOgg81rqDoPHasomIECF1X/vPzwS JzHkq/ohxfxec+x2DJYkpVKiXkPi9AsS6em3sNzb/kuzzVPwvJ/n4Yfj/Cg/t8QU 4sh/AcK9Xje5uIEFePjhez4Q7wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFML+XY4t dBTbGumzDJitgQqcH9SLMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvRjQyMEJGMUVE Rjk4MTFFREI5M0E5OTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBZgAyS0wDQYJKoZIhvcNAQELBQADggEBAEPa+9PWXVn9 2LOJAhYvU0uPRUTtjoyJZVI/H4dLH0J/AjN7qmVpwpehXTq1lWgpsTchCMZeFkYx /8XDGfYw2w1wMWKoWE8TE212wX0AOcBjEYfTzZtJZ9BNoHb/6leoubu+QbLgb7lu 67Dq3kO32l179lOBPnnSNdBC0foPte9IVEKheC6ztxkTPE0l8n0rrQ7Hnc0ujMG7 IFDaoOe7vrzWQBZSIZj4GeUM3chlUDfDYYjwgut3cG4c9XdzrBSaoz39h1FfOfDz HmYEMOFQJVZTmx4lXeI3sJf80z3X1xLT60p/IwEfCvJ1lMcVTb4FD7FxKeVJfyyW e3dqTftN/34= -----END CERTIFICATE-----Generated at Mon Jan 19 09:02:44 2026 by rpki-client