This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/23F9E186AE5811EFAFE7FF84C4F9AE02.roa File: 23F9E186AE5811EFAFE7FF84C4F9AE02.roa (raw, json) Hash identifier: e+4VvyTw5EiL9s2wDbpueyf6WrUVOXMUrF9XKmOAfHk= Subject key identifier: FF:69:FD:24:87:74:54:6C:17:6B:00:31:8B:75:39:BE:0B:D4:3E:53 Certificate issuer: /CN=A912B12A/serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Certificate serial: CA Authority key identifier: EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/23F9E186AE5811EFAFE7FF84C4F9AE02.roa Signing time: Wed 17 Dec 2025 06:24:23 +0000 ROA not before: Wed 17 Dec 2025 06:24:23 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 153460 IP address blocks: 2401:db60::/34 maxlen: 34 2401:db60:4000::/34 maxlen: 34 2401:db60:8000::/34 maxlen: 34 2401:db60:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:58:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B12A, serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Validity Not Before: Dec 17 06:24:23 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69424c97-2540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8d:25:f9:f9:17:d0:c1:e1:52:e5:f4:67:bf: 6c:2c:9f:9a:81:6d:7f:c1:57:4f:6b:13:64:04:0b: 38:79:d3:6a:35:e3:0b:c1:b5:76:59:7a:17:d7:ae: 68:fe:77:70:d9:5d:27:3c:f0:e8:23:de:7a:38:bc: 28:66:bc:69:4a:e1:fe:ff:33:fc:0e:46:ce:ad:bd: 63:f0:5b:83:3f:8c:79:f6:58:3f:56:4f:0e:63:5d: 99:7a:69:2e:09:ad:18:d1:f8:2f:93:39:0b:28:9b: 6f:fd:ad:a3:af:d5:32:2a:ad:ae:37:0a:c4:50:ed: 71:dc:25:5d:c7:51:08:f3:86:9b:a2:77:0f:eb:cd: c9:88:2e:65:22:e8:16:5b:3b:5b:55:26:af:d9:03: c6:fd:81:5f:f4:bb:60:4a:9a:38:a0:17:9a:b7:56: 9a:0b:87:d4:36:c2:0e:52:eb:c1:d4:6c:e6:dc:5b: e3:92:e7:5b:bf:5a:7d:49:ab:35:49:a3:7b:b4:00: 88:05:e8:04:11:3b:a5:14:e2:88:e5:33:1c:e3:6e: 9f:b4:c7:20:89:67:68:cf:73:3f:a9:d5:5d:b7:99: 26:5f:86:e4:3f:69:1a:9a:2d:97:58:e6:71:af:f2: da:6b:34:6c:9a:b0:ff:13:dc:93:8d:0b:26:ff:d0: c3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:69:FD:24:87:74:54:6C:17:6B:00:31:8B:75:39:BE:0B:D4:3E:53 X509v3 Authority Key Identifier: keyid:EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/23F9E186AE5811EFAFE7FF84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:db60::/32 Signature Algorithm: sha256WithRSAEncryption 4f:c3:94:f0:1d:99:ee:88:77:e3:c7:a1:1b:38:4b:49:1a:87: 18:27:06:bc:aa:ef:ff:d6:26:c2:c5:e2:cc:1b:eb:18:e9:62: 71:fa:5b:4d:7f:d7:dd:52:30:3c:26:75:ba:dd:11:4b:ad:9a: ad:c0:9f:cb:6e:1e:1c:4a:4e:c7:b8:af:ad:8f:f9:b7:74:85: 80:99:69:a7:5d:9d:49:6b:88:f5:85:f6:60:35:73:47:16:f3: ed:0b:48:1c:62:96:ad:7a:1c:66:67:23:49:a0:bc:30:2d:c1: fb:67:56:e8:d5:01:43:7b:57:30:60:e5:b0:35:06:8d:3c:98: 40:77:71:5e:87:5f:7a:40:3c:10:a6:de:52:58:45:b2:ce:80: 53:3e:f6:75:8b:ea:be:b4:79:49:5d:9f:c8:42:8a:8f:6f:7c: ba:e0:b6:d7:81:0d:e1:f4:5e:3e:65:7a:2f:ab:75:5f:c7:b4: b1:0f:9e:05:c6:6d:5d:f6:c1:5a:29:17:78:0f:cf:18:81:7e: bb:73:6b:f1:af:ae:7b:b6:47:2e:dc:b5:cd:18:81:08:86:76: 89:7b:c1:30:e9:25:f5:e5:48:21:b2:c9:bb:cd:8b:0b:6a:47: 7f:20:89:48:41:32:68:af:b1:c1:59:0a:6d:ab:88:c6:46:75: a5:31:b1:6d -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIxMkExMTAvBgNVBAUTKEVDRkYzMjQ0MEM0RUUxRDI3OTQzQ0RCNzJBN0Q0OTEw NjM0MDJERjEwHhcNMjUxMjE3MDYyNDIzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQyNGM5Ny0yNTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn40l+fkX0MHhUuX0Z79sLJ+agW1/wVdPaxNkBAs4edNqNeMLwbV2WXoX165o /ndw2V0nPPDoI956OLwoZrxpSuH+/zP8DkbOrb1j8FuDP4x59lg/Vk8OY12Zemku Ca0Y0fgvkzkLKJtv/a2jr9UyKq2uNwrEUO1x3CVdx1EI84aboncP683JiC5lIugW WztbVSav2QPG/YFf9LtgSpo4oBeat1aaC4fUNsIOUuvB1Gzm3Fvjkudbv1p9Sas1 SaN7tACIBegEETulFOKI5TMc426ftMcgiWdoz3M/qdVdt5kmX4bkP2kami2XWOZx r/LaazRsmrD/E9yTjQsm/9DDlwIDAQABo4ICljCCApIwHQYDVR0OBBYEFP9p/SSH dFRsF2sAMYt1Ob4L1D5TMB8GA1UdIwQYMBaAFOz/MkQMTuHSeUPNtyp9SRBjQC3x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjEyQS9COUQ0Q0Y0MkFF M0QxMUVGOTZCNzZDNkFDNEY5QUUwMi83UDh5UkF4TzRkSjVRODIzS24xSkVHTkFM ZkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdQOHlSQXhPNGRKNVE4MjNLbjFKRUdOQUxmRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkIxMkEvQjlENENGNDJBRTNEMTFFRjk2Qjc2QzZBQzRGOUFFMDIvMjNGOUUxODZB RTU4MTFFRkFGRTdGRjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAdtgMA0GCSqGSIb3DQEBCwUAA4IBAQBPw5TwHZnuiHfj x6EbOEtJGocYJwa8qu//1ibCxeLMG+sY6WJx+ltNf9fdUjA8JnW63RFLrZqtwJ/L bh4cSk7HuK+tj/m3dIWAmWmnXZ1Ja4j1hfZgNXNHFvPtC0gcYpatehxmZyNJoLww LcH7Z1bo1QFDe1cwYOWwNQaNPJhAd3Feh196QDwQpt5SWEWyzoBTPvZ1i+q+tHlJ XZ/IQoqPb3y64LbXgQ3h9F4+ZXovq3Vfx7SxD54Fxm1d9sFaKRd4D88YgX67c2vx r657tkcu3LXNGIEIhnaJe8Ew6SX15Ughssm7zYsLakd/IIlIQTJor7HBWQptq4jG RnWlMbFt -----END CERTIFICATE-----Generated at Mon Dec 22 12:40:00 2025 by rpki-client