This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142187/392C1826CA5911F0A73A846BC4F9AE02/357523A6CB1411F08DA0B25FC4F9AE02.roa File: 357523A6CB1411F08DA0B25FC4F9AE02.roa (raw, json) Hash identifier: DrxUkGgbXC+hFErU1Q5gF25VKeHWYD3GDyiKccqOvbU= Subject key identifier: 65:E6:13:50:2F:AB:19:9E:C3:81:4D:CC:09:84:EB:97:B3:16:02:29 Certificate issuer: /CN=A9142187/serialNumber=65A1D25AFB66A76E794A966FF33B6B060C7F80DF Certificate serial: 04 Authority key identifier: 65:A1:D2:5A:FB:66:A7:6E:79:4A:96:6F:F3:3B:6B:06:0C:7F:80:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZaHSWvtmp255SpZv8ztrBgx_gN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142187/392C1826CA5911F0A73A846BC4F9AE02/357523A6CB1411F08DA0B25FC4F9AE02.roa Signing time: Wed 26 Nov 2025 22:06:51 +0000 ROA not before: Wed 26 Nov 2025 22:06:51 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139649 IP address blocks: 2402:3660::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142187/392C1826CA5911F0A73A846BC4F9AE02/ZaHSWvtmp255SpZv8ztrBgx_gN8.crl rsync://rpki.apnic.net/member_repository/A9142187/392C1826CA5911F0A73A846BC4F9AE02/ZaHSWvtmp255SpZv8ztrBgx_gN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZaHSWvtmp255SpZv8ztrBgx_gN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 06:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142187, serialNumber=65A1D25AFB66A76E794A966FF33B6B060C7F80DF Validity Not Before: Nov 26 22:06:51 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692779fa-f91a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:83:b9:13:13:54:17:fd:c2:2b:20:8e:db:a1: b1:80:d1:80:bc:34:54:3b:5d:84:6e:6c:44:59:e1: ba:6b:2e:c1:2f:e3:18:3a:7a:e1:32:03:94:e2:1a: 4b:2a:9e:a7:59:bd:ff:89:21:40:65:2c:03:fe:de: 86:fe:ca:96:07:13:eb:cf:1f:27:8f:02:ed:0e:eb: 51:36:20:75:c1:9d:24:90:60:8a:f5:11:e9:e4:4e: c5:7f:ed:78:43:59:40:dd:6d:db:0c:da:a9:80:7a: 71:ee:92:e9:1c:ff:42:e0:d2:f1:c5:db:9a:e7:78: 83:c4:0d:e9:49:eb:99:72:ae:6e:a9:7e:ec:a5:df: 45:d9:42:a3:67:6d:63:96:dd:ca:ad:d5:11:ea:c2: f0:3a:d2:07:68:80:df:ae:92:73:0c:34:53:55:8d: 76:07:14:70:66:f6:3d:00:a3:b8:25:32:c2:02:80: 0d:45:1a:f1:5d:75:f8:6f:1a:c0:e1:f3:df:b9:6a: c0:7d:1b:11:aa:f4:4f:db:87:21:9e:78:fb:8e:6f: 83:ac:16:e6:da:36:10:a6:87:ec:dc:52:c4:19:3c: e0:d6:c7:a9:26:d6:94:7b:47:55:89:02:91:1f:04: e8:d5:31:e9:68:a1:a3:d3:06:ef:a8:05:91:87:6c: 4b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E6:13:50:2F:AB:19:9E:C3:81:4D:CC:09:84:EB:97:B3:16:02:29 X509v3 Authority Key Identifier: keyid:65:A1:D2:5A:FB:66:A7:6E:79:4A:96:6F:F3:3B:6B:06:0C:7F:80:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142187/392C1826CA5911F0A73A846BC4F9AE02/ZaHSWvtmp255SpZv8ztrBgx_gN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZaHSWvtmp255SpZv8ztrBgx_gN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142187/392C1826CA5911F0A73A846BC4F9AE02/357523A6CB1411F08DA0B25FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:3660::/32 Signature Algorithm: sha256WithRSAEncryption b0:32:2c:97:f5:49:0a:43:35:ac:11:78:73:07:1a:33:bc:bf: e3:9e:88:be:41:b7:10:af:ae:31:05:14:68:f7:ef:ea:39:73: c8:af:57:c7:2a:d6:f4:32:2b:ac:78:bf:03:bb:6b:31:cf:13: bf:23:99:6b:59:76:c8:61:33:71:71:0f:5e:a8:86:90:2c:42: 92:a2:87:2e:4d:60:01:8f:ae:c5:2a:a0:0d:0c:b4:1b:df:5e: f8:99:63:10:a1:4f:ab:e1:a7:29:8a:49:2e:f0:8d:91:f6:93: bc:74:4e:f0:0a:b2:d7:95:9b:5f:1e:dd:77:3c:3b:ad:51:bc: 12:5d:c7:d8:07:4d:b6:90:80:13:cf:d0:74:89:c5:3d:e1:53: d6:cd:70:3c:87:e4:99:f5:5f:c3:44:ec:78:51:51:2d:40:df: e5:bd:e3:aa:45:59:67:db:83:d2:1b:38:22:f1:5e:0d:1e:1e: 1f:a4:7f:42:36:01:f5:b4:ec:6e:ba:98:67:c9:74:a7:ce:78: d8:07:de:94:71:a7:b8:9c:05:25:d9:7d:7f:fc:09:19:83:bf: 3d:fe:22:d1:de:1e:41:36:6f:6a:6a:84:26:1d:93:57:37:95: d1:6e:e6:82:72:94:7b:02:ea:6b:b7:2c:c1:49:ce:19:78:41: 0e:1d:a9:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjE4NzExMC8GA1UEBRMoNjVBMUQyNUFGQjY2QTc2RTc5NEE5NjZGRjMzQjZCMDYw QzdGODBERjAeFw0yNTExMjYyMjA2NTFaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5Mjc3OWZhLWY5MWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPg7kTE1QX/cIrII7bobGA0YC8NFQ7XYRubERZ4bprLsEv4xg6euEyA5TiGksq nqdZvf+JIUBlLAP+3ob+ypYHE+vPHyePAu0O61E2IHXBnSSQYIr1EenkTsV/7XhD WUDdbdsM2qmAenHukukc/0Lg0vHF25rneIPEDelJ65lyrm6pfuyl30XZQqNnbWOW 3cqt1RHqwvA60gdogN+uknMMNFNVjXYHFHBm9j0Ao7glMsICgA1FGvFddfhvGsDh 89+5asB9GxGq9E/bhyGeePuOb4OsFubaNhCmh+zcUsQZPODWx6km1pR7R1WJApEf BOjVMelooaPTBu+oBZGHbEulAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUZeYTUC+r GZ7DgU3MCYTrl7MWAikwHwYDVR0jBBgwFoAUZaHSWvtmp255SpZv8ztrBgx/gN8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyMTg3LzM5MkMxODI2Q0E1 OTExRjBBNzNBODQ2QkM0RjlBRTAyL1phSFNXdnRtcDI1NVNwWnY4enRyQmd4X2dO OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWmFIU1d2dG1wMjU1U3Badjh6dHJCZ3hfZ044LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjE4Ny8zOTJDMTgyNkNBNTkxMUYwQTczQTg0NkJDNEY5QUUwMi8zNTc1MjNBNkNC MTQxMUYwOERBMEIyNUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQCNmAwDQYJKoZIhvcNAQELBQADggEBALAyLJf1SQpDNawR eHMHGjO8v+OeiL5BtxCvrjEFFGj37+o5c8ivV8cq1vQyK6x4vwO7azHPE78jmWtZ dshhM3FxD16ohpAsQpKihy5NYAGPrsUqoA0MtBvfXviZYxChT6vhpymKSS7wjZH2 k7x0TvAKsteVm18e3Xc8O61RvBJdx9gHTbaQgBPP0HSJxT3hU9bNcDyH5Jn1X8NE 7HhRUS1A3+W946pFWWfbg9IbOCLxXg0eHh+kf0I2AfW07G66mGfJdKfOeNgH3pRx p7icBSXZfX/8CRmDvz3+ItHeHkE2b2pqhCYdk1c3ldFu5oJylHsC6mu3LMFJzhl4 QQ4dqdE= -----END CERTIFICATE-----Generated at Wed Dec 3 16:19:41 2025 by rpki-client