This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/4AB6B736DA3F11F0A550B47F8ED3641D.roa File: 4AB6B736DA3F11F0A550B47F8ED3641D.roa (raw, json) Hash identifier: BRTADWT+0sFMoKrcJvxYeobcIQw4JMfI6tQFktQb8LA= Subject key identifier: 8E:4A:F6:4A:71:0B:9D:2C:1F:D7:89:88:79:1C:34:96:24:C0:BE:57 Certificate issuer: /CN=A91471A0/serialNumber=DE8C116551042BE8E7264BEDB582F0A377BB24BD Certificate serial: 20 Authority key identifier: DE:8C:11:65:51:04:2B:E8:E7:26:4B:ED:B5:82:F0:A3:77:BB:24:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3owRZVEEK-jnJkvttYLwo3e7JL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/4AB6B736DA3F11F0A550B47F8ED3641D.roa Signing time: Tue 03 Feb 2026 08:26:14 +0000 ROA not before: Tue 03 Feb 2026 08:26:14 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 64050 IP address blocks: 43.226.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/3owRZVEEK-jnJkvttYLwo3e7JL0.crl rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/3owRZVEEK-jnJkvttYLwo3e7JL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3owRZVEEK-jnJkvttYLwo3e7JL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Feb 2026 07:57:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91471A0, serialNumber=DE8C116551042BE8E7264BEDB582F0A377BB24BD Validity Not Before: Feb 3 08:26:14 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6981b125-68fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:da:8d:9a:e5:8e:a8:69:d5:6a:a1:52:d3:fd: 63:a9:14:83:16:33:55:6b:98:e5:85:8f:2e:5e:95: eb:63:3b:ee:de:d9:b2:a8:19:e5:3c:51:f1:e1:63: a4:fa:a7:8b:8a:a0:a8:3c:14:f8:9e:5c:0d:88:f3: d5:d9:57:bc:cb:da:bf:af:70:5c:82:4c:38:79:ed: 67:79:c3:b1:50:18:7c:78:7e:cc:28:a5:c4:ee:02: 38:25:12:5c:be:eb:bd:3f:bb:09:fe:99:02:b4:f8: 1f:ab:c3:31:47:31:b1:4c:ea:53:1d:40:81:f0:05: cc:46:87:3d:70:14:8d:6b:0f:23:b5:78:d4:54:3f: 8b:d3:e4:a9:fc:a2:75:9e:a4:25:c8:f9:7c:ae:2c: 2d:2a:38:38:08:5f:e0:0e:03:53:1d:ed:e2:0f:c3: 1f:5b:c1:e9:7f:22:1a:04:2c:11:b5:07:27:cd:12: ba:39:51:f0:4b:23:b9:2a:a7:6f:fe:91:8c:40:35: f9:24:84:3b:e3:a4:04:54:28:0c:37:c9:08:a1:6e: 27:8a:e4:19:3b:05:78:f2:c5:b3:ae:cb:1a:40:a9: 5f:1b:dc:a0:58:22:f6:56:e4:31:fe:d4:5b:f8:b6: c4:02:3b:a9:4d:ca:04:ec:1d:97:a1:bc:e3:3d:61: 64:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:4A:F6:4A:71:0B:9D:2C:1F:D7:89:88:79:1C:34:96:24:C0:BE:57 X509v3 Authority Key Identifier: keyid:DE:8C:11:65:51:04:2B:E8:E7:26:4B:ED:B5:82:F0:A3:77:BB:24:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/3owRZVEEK-jnJkvttYLwo3e7JL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3owRZVEEK-jnJkvttYLwo3e7JL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/4AB6B736DA3F11F0A550B47F8ED3641D.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.226.22.0/24 Signature Algorithm: sha256WithRSAEncryption 69:8f:aa:56:90:30:07:74:d3:af:9d:dc:7a:91:81:be:2a:e7: 16:16:36:12:cf:7c:a6:4a:a1:e4:09:e9:ed:fb:8a:64:7c:0b: c9:3a:5d:4d:6f:cb:8a:1a:97:1b:fe:13:c3:50:ec:52:92:71: eb:55:77:fd:9e:e5:c1:17:1e:2a:af:dd:fa:db:5b:df:ff:56: 6d:ac:15:6f:4f:ea:3a:f6:32:35:44:4a:e6:99:c1:7e:a9:d4: d3:52:ad:cc:40:94:ba:ad:ac:78:d2:c0:3f:24:c5:c8:36:f6: 7b:a9:46:25:14:2c:8a:50:8a:92:71:b2:ee:ce:0f:6e:0f:36: a8:4e:34:6c:3c:f1:c4:79:e5:45:7a:ff:65:51:c0:4e:0b:a3: 71:7d:76:7e:df:d8:e7:bc:47:ae:a3:df:1f:d3:4e:6b:de:ec: 8d:e6:c6:6f:ed:4c:0d:10:6a:d3:18:87:18:91:f0:7e:9e:99: 4e:33:69:d2:28:f5:27:1e:9d:df:7a:06:47:15:3b:ed:16:9b: 31:06:c9:c6:2d:b6:11:24:e2:c3:59:c2:79:91:70:51:86:b1: 13:c0:3d:47:58:68:50:c4:f8:73:3c:27:bc:9d:3d:e5:15:dc: 04:5c:ab:9e:30:3a:bc:60:f8:83:12:b7:cf:b3:43:f6:cd:a8: 0d:bc:c1:0a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTE0 NzFBMDExMC8GA1UEBRMoREU4QzExNjU1MTA0MkJFOEU3MjY0QkVEQjU4MkYwQTM3 N0JCMjRCRDAeFw0yNjAyMDMwODI2MTRaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5ODFiMTI1LTY4ZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCR2o2a5Y6oadVqoVLT/WOpFIMWM1VrmOWFjy5eletjO+7e2bKoGeU8UfHhY6T6 p4uKoKg8FPieXA2I89XZV7zL2r+vcFyCTDh57Wd5w7FQGHx4fswopcTuAjglEly+ 670/uwn+mQK0+B+rwzFHMbFM6lMdQIHwBcxGhz1wFI1rDyO1eNRUP4vT5Kn8onWe pCXI+XyuLC0qODgIX+AOA1Md7eIPwx9bwel/IhoELBG1ByfNEro5UfBLI7kqp2/+ kYxANfkkhDvjpARUKAw3yQihbieK5Bk7BXjyxbOuyxpAqV8b3KBYIvZW5DH+1Fv4 tsQCO6lNygTsHZehvOM9YWQfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUjkr2SnEL nSwf14mIeRw0liTAvlcwHwYDVR0jBBgwFoAU3owRZVEEK+jnJkvttYLwo3e7JL0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3MUEwL0Q2OTk0REU2REEz RTExRjA4MUY1QTQ1NzhFRDM2NDFELzNvd1JaVkVFSy1qbkprdnR0WUx3bzNlN0pM MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM293UlpWRUVLLWpuSmt2dHRZTHdvM2U3SkwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzFBMC9ENjk5NERFNkRBM0UxMUYwODFGNUE0NTc4RUQzNjQxRC80QUI2QjczNkRB M0YxMUYwQTU1MEI0N0Y4RUQzNjQxRC5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEACviFjANBgkqhkiG9w0BAQsFAAOCAQEAaY+qVpAwB3TTr53c epGBvirnFhY2Es98pkqh5Anp7fuKZHwLyTpdTW/LihqXG/4Tw1DsUpJx61V3/Z7l wRceKq/d+ttb3/9WbawVb0/qOvYyNURK5pnBfqnU01KtzECUuq2seNLAPyTFyDb2 e6lGJRQsilCKknGy7s4Pbg82qE40bDzxxHnlRXr/ZVHATgujcX12ft/Y57xHrqPf H9NOa97sjebGb+1MDRBq0xiHGJHwfp6ZTjNp0ij1Jx6d33oGRxU77RabMQbJxi22 ESTiw1nCeZFwUYaxE8A9R1hoUMT4czwnvJ095RXcBFyrnjA6vGD4gxK3z7ND9s2o DbzBCg== -----END CERTIFICATE-----Generated at Tue Feb 10 09:07:48 2026 by rpki-client