This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD6E/BF4F247AE29111F096E27D11456F56BC/8A1624CEE29211F0A7536C41456F56BC.roa File: 8A1624CEE29211F0A7536C41456F56BC.roa (raw, json) Hash identifier: YWx+GJmpItnRj6F0FBGWIUCz/BJXSfMaGcaFeGuBWSI= Subject key identifier: C9:C9:48:AC:26:06:54:BE:8D:55:03:12:81:81:60:79:F1:E7:14:66 Certificate issuer: /CN=A911BD6E/serialNumber=69AE35CDCE637EB645EB5065EDE12D58E7599236 Certificate serial: 02 Authority key identifier: 69:AE:35:CD:CE:63:7E:B6:45:EB:50:65:ED:E1:2D:58:E7:59:92:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aa41zc5jfrZF61Bl7eEtWOdZkjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD6E/BF4F247AE29111F096E27D11456F56BC/8A1624CEE29211F0A7536C41456F56BC.roa Signing time: Fri 26 Dec 2025 19:39:06 +0000 ROA not before: Fri 26 Dec 2025 19:39:06 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 154456 IP address blocks: 2001:df6:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD6E/BF4F247AE29111F096E27D11456F56BC/aa41zc5jfrZF61Bl7eEtWOdZkjY.crl rsync://rpki.apnic.net/member_repository/A911BD6E/BF4F247AE29111F096E27D11456F56BC/aa41zc5jfrZF61Bl7eEtWOdZkjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aa41zc5jfrZF61Bl7eEtWOdZkjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 Jan 2026 07:08:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD6E, serialNumber=69AE35CDCE637EB645EB5065EDE12D58E7599236 Validity Not Before: Dec 26 19:39:06 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=694ee45a-2fd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5c:62:69:76:7f:ee:51:35:cf:11:54:f4:da: 64:11:22:e9:9e:b2:f3:3e:2d:3e:f3:cd:65:2d:fa: b4:77:7f:09:ea:20:f1:10:1a:52:39:98:50:97:27: 26:a6:cc:2c:c1:2b:eb:76:b5:e9:a1:91:7e:50:fd: 5e:00:80:d7:74:12:79:76:9b:bc:a3:42:75:75:79: 73:06:24:62:93:68:9e:ec:25:26:d5:95:42:30:93: 2d:f5:1f:6f:1d:a1:bd:3d:54:57:d5:47:c8:b8:46: 9a:18:c9:53:50:3e:72:87:dc:5f:86:8c:a7:15:04: ff:f7:84:ec:fe:8a:50:9c:05:f9:8e:10:af:f7:73: 85:ba:e5:1e:dc:a7:5a:c6:30:d3:c6:88:1f:58:2f: c6:3d:51:e7:0a:4f:95:cc:09:77:95:c9:f2:55:0c: f1:23:66:a4:10:1d:a0:a6:af:3d:5d:dc:c2:48:11: 8d:16:45:ea:c8:2b:b1:35:a7:e0:f1:b4:8a:2f:a2: 76:60:89:4e:0f:61:66:02:bb:b9:a0:82:ef:71:01: 5c:33:bf:ce:c2:08:6d:45:82:a3:c8:54:a0:6f:f8: b2:a7:de:eb:4f:db:c4:ba:a9:4c:97:18:f0:96:46: ed:54:0f:4d:09:6c:51:32:d4:6e:fb:ec:81:5b:11: 40:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C9:48:AC:26:06:54:BE:8D:55:03:12:81:81:60:79:F1:E7:14:66 X509v3 Authority Key Identifier: keyid:69:AE:35:CD:CE:63:7E:B6:45:EB:50:65:ED:E1:2D:58:E7:59:92:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD6E/BF4F247AE29111F096E27D11456F56BC/aa41zc5jfrZF61Bl7eEtWOdZkjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aa41zc5jfrZF61Bl7eEtWOdZkjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD6E/BF4F247AE29111F096E27D11456F56BC/8A1624CEE29211F0A7536C41456F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:8040::/48 Signature Algorithm: sha256WithRSAEncryption 47:a1:0f:2b:6f:d9:bd:9e:b9:03:8b:e9:fe:1a:0e:f4:0e:90: 8d:85:49:e3:c7:ad:62:1f:c8:4e:ac:d0:ad:6e:1c:14:c1:ec: 2f:1d:8a:63:08:eb:03:d3:87:be:35:ed:62:7f:f4:ec:10:34: cc:4a:68:b6:6c:c8:81:d9:3b:c5:e6:3f:aa:99:aa:19:1d:d5: 4b:e0:7b:25:ef:8b:08:e2:78:c4:89:92:c7:2c:5b:12:92:53: 38:ee:39:1c:08:86:c9:01:fb:b2:4a:d5:d8:8d:78:16:08:b9: 1a:6e:43:35:58:40:f5:d5:d7:86:2b:32:f8:65:a9:ec:63:86: 58:c7:2c:cb:bf:1c:b0:ae:67:22:77:4f:f7:57:a3:14:b6:d6: 89:5c:4d:03:96:5b:74:ab:a3:7a:43:a3:48:d8:d5:fd:af:57: b7:ba:28:5c:83:9b:aa:3d:89:89:5e:2b:39:2e:73:15:47:a2: 54:80:54:74:63:f5:b5:ef:e6:fa:a7:1d:82:10:68:27:53:b7: ec:3d:8d:c3:bf:92:bf:f2:6c:c7:e5:f5:aa:28:47:c0:a0:01: c5:3b:86:a7:90:1d:2e:ee:eb:f6:0e:97:56:a8:79:95:60:c1: 7c:d2:08:5c:cd:a4:f7:65:a9:c1:57:ca:06:8b:3f:52:ae:e1: 76:47:0d:05 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTEx QkQ2RTExMC8GA1UEBRMoNjlBRTM1Q0RDRTYzN0VCNjQ1RUI1MDY1RURFMTJENThF NzU5OTIzNjAeFw0yNTEyMjYxOTM5MDZaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NGVlNDVhLTJmZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkXGJpdn/uUTXPEVT02mQRIumesvM+LT7zzWUt+rR3fwnqIPEQGlI5mFCXJyam zCzBK+t2temhkX5Q/V4AgNd0Enl2m7yjQnV1eXMGJGKTaJ7sJSbVlUIwky31H28d ob09VFfVR8i4RpoYyVNQPnKH3F+GjKcVBP/3hOz+ilCcBfmOEK/3c4W65R7cp1rG MNPGiB9YL8Y9UecKT5XMCXeVyfJVDPEjZqQQHaCmrz1d3MJIEY0WRerIK7E1p+Dx tIovonZgiU4PYWYCu7mggu9xAVwzv87CCG1FgqPIVKBv+LKn3utP28S6qUyXGPCW Ru1UD00JbFEy1G777IFbEUBtAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUyclIrCYG VL6NVQMSgYFgefHnFGYwHwYDVR0jBBgwFoAUaa41zc5jfrZF61Bl7eEtWOdZkjYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFCRDZFL0JGNEYyNDdBRTI5 MTExRjA5NkUyN0QxMTQ1NkY1NkJDL2FhNDF6YzVqZnJaRjYxQmw3ZUV0V09kWmtq WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYWE0MXpjNWpmclpGNjFCbDdlRXRXT2Raa2pZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkQ2RS9CRjRGMjQ3QUUyOTExMUYwOTZFMjdEMTE0NTZGNTZCQy84QTE2MjRDRUUy OTIxMUYwQTc1MzZDNDE0NTZGNTZCQy5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfaAQDANBgkqhkiG9w0BAQsFAAOCAQEAR6EPK2/ZvZ65 A4vp/hoO9A6QjYVJ48etYh/ITqzQrW4cFMHsLx2KYwjrA9OHvjXtYn/07BA0zEpo tmzIgdk7xeY/qpmqGR3VS+B7Je+LCOJ4xImSxyxbEpJTOO45HAiGyQH7skrV2I14 Fgi5Gm5DNVhA9dXXhisy+GWp7GOGWMcsy78csK5nIndP91ejFLbWiVxNA5ZbdKuj ekOjSNjV/a9Xt7ooXIObqj2JiV4rOS5zFUeiVIBUdGP1te/m+qcdghBoJ1O37D2N w7+Sv/Jsx+X1qihHwKABxTuGp5AdLu7r9g6XVqh5lWDBfNIIXM2k92WpwVfKBos/ Uq7hdkcNBQ== -----END CERTIFICATE-----Generated at Thu Jan 8 11:03:11 2026 by rpki-client