This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/1F8378E6BCBD11EBAC9A4744C4F9AE02.roa File: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (raw, json) Hash identifier: FblJx4AhcAktvj2/dwTjDbd3uRT5iMvilMffwyS9Rtk= Subject key identifier: 54:C0:20:61:0F:5D:25:F9:E7:6C:FB:45:6B:CE:74:78:AE:97:DC:C1 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 138F Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/1F8378E6BCBD11EBAC9A4744C4F9AE02.roa Signing time: Sat 20 Dec 2025 17:14:38 +0000 ROA not before: Sat 20 Dec 2025 17:14:38 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 395092 IP address blocks: 2403:cfc0:1006::/48 maxlen: 48 2403:cfc0:100c::/48 maxlen: 48 2403:cfc0:1110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 16:47:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5007 (0x138f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Dec 20 17:14:38 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6946d97e-06b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6a:68:0a:20:50:18:0e:41:de:d0:e8:fb:65: 60:98:ce:88:06:7d:3e:72:9c:97:65:b9:05:08:ee: dd:3d:b0:4d:8f:1c:fa:3e:3c:ca:02:f8:72:77:b4: 26:2f:00:7d:03:29:af:89:c5:7d:cf:d8:10:f3:2e: da:2b:4e:38:94:c6:39:f8:78:ac:93:be:7b:3e:63: 15:4b:28:c6:59:79:44:41:95:46:7a:91:47:f2:c9: 1d:71:de:05:0d:26:12:33:0f:ae:ab:ea:22:e1:b8: 54:ba:bb:4c:00:86:60:af:92:b3:a6:8b:10:d6:66: 0c:af:6d:12:2c:78:8d:1b:65:fc:d5:34:d4:2f:91: 82:af:36:4e:9f:eb:de:25:c3:76:ee:5d:52:29:e8: e3:16:a0:c7:37:d7:23:71:b3:19:5d:09:62:9b:ef: 46:64:cf:a3:b7:03:73:c4:7a:dd:a4:10:13:9c:94: 14:96:3f:1e:5e:21:5c:69:d2:ec:b7:9b:80:52:12: d2:0a:96:9f:3c:45:6f:f1:a2:4b:be:7b:b0:73:1b: 4c:f2:76:b1:55:94:6a:65:0b:cf:4d:74:cb:47:02: b5:cf:72:f1:da:8a:01:a7:a7:64:e9:bf:67:3c:56: e5:64:f1:1a:b3:93:f4:7f:f4:2e:b0:be:b8:8f:02: c9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C0:20:61:0F:5D:25:F9:E7:6C:FB:45:6B:CE:74:78:AE:97:DC:C1 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/1F8378E6BCBD11EBAC9A4744C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cfc0:1006::/48 2403:cfc0:100c::/48 2403:cfc0:1110::/44 Signature Algorithm: sha256WithRSAEncryption 95:84:2a:3b:8a:5c:a6:43:5f:43:d9:18:43:43:ee:00:86:a4: c1:09:bd:ba:bf:23:77:88:33:88:87:76:e6:7b:05:64:a4:2a: 2e:eb:d7:71:cc:86:61:7c:c6:a2:01:8b:da:55:22:5f:e8:57: a4:34:40:c9:ed:78:ad:a0:85:ec:99:a4:3d:ff:0e:df:c1:78: 70:69:ab:e9:a2:01:aa:ad:ff:c5:da:d9:d2:2d:b4:ba:aa:91: a6:85:4b:d2:01:08:26:e6:57:5d:81:2c:1a:34:dd:dc:87:7b: 7f:15:73:1f:79:48:a5:bc:e3:62:d6:43:0e:c0:00:c1:93:a9: 2d:73:e6:43:0c:a9:83:6e:24:90:72:2a:78:59:1e:23:ad:9c: 9d:43:ff:86:9c:c9:6d:60:2e:a8:48:ed:e0:c6:c6:e4:3b:e6: 4f:48:54:40:19:0c:f4:68:a8:44:45:7a:17:3c:b2:a2:92:fd: ba:1c:50:e0:a4:09:fc:b7:50:fd:1c:53:e6:f0:9d:d5:e5:4f: 90:c8:cb:67:5d:dc:15:31:7f:d5:d5:e6:6f:ef:c8:59:d0:ce: a3:a1:e1:eb:0a:39:08:77:ab:78:46:c9:d1:1c:5b:b0:4d:54: 6e:df:d8:04:cc:f5:2f:59:d6:86:3b:a7:e4:91:34:34:c7:27: d9:18:bb:45 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICE48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUxMjIwMTcxNDM4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ2ZDk3ZS0wNmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02poCiBQGA5B3tDo+2VgmM6IBn0+cpyXZbkFCO7dPbBNjxz6PjzKAvhyd7Qm LwB9AymvicV9z9gQ8y7aK044lMY5+Hisk757PmMVSyjGWXlEQZVGepFH8skdcd4F DSYSMw+uq+oi4bhUurtMAIZgr5KzposQ1mYMr20SLHiNG2X81TTUL5GCrzZOn+ve JcN27l1SKejjFqDHN9cjcbMZXQlim+9GZM+jtwNzxHrdpBATnJQUlj8eXiFcadLs t5uAUhLSCpafPEVv8aJLvnuwcxtM8naxVZRqZQvPTXTLRwK1z3Lx2ooBp6dk6b9n PFblZPEas5P0f/QusL64jwLJMQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFFTAIGEP XSX552z7RWvOdHiul9zBMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNjE2NjZDMEVENjg5MTFFOEI2ODExNDMzQzRGOUFFMDIvMUY4Mzc4RTZC Q0JEMTFFQkFDOUE0NzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMCEEAgACMBsDBwAkA8/AEAYDBwAkA8/AEAwDBwQkA8/AERAwDQYJKoZIhvcN AQELBQADggEBAJWEKjuKXKZDX0PZGEND7gCGpMEJvbq/I3eIM4iHduZ7BWSkKi7r 13HMhmF8xqIBi9pVIl/oV6Q0QMnteK2gheyZpD3/Dt/BeHBpq+miAaqt/8Xa2dIt tLqqkaaFS9IBCCbmV12BLBo03dyHe38Vcx95SKW842LWQw7AAMGTqS1z5kMMqYNu JJByKnhZHiOtnJ1D/4acyW1gLqhI7eDGxuQ75k9IVEAZDPRoqERFehc8sqKS/boc UOCkCfy3UP0cU+bwndXlT5DIy2dd3BUxf9XV5m/vyFnQzqOh4esKOQh3q3hGydEc W7BNVG7f2ATM9S9Z1oY7p+SRNDTHJ9kYu0U= -----END CERTIFICATE-----Generated at Thu Jan 22 15:50:01 2026 by rpki-client