This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/42AD4128C0FD11F0883D987DC4F9AE02.roa File: 42AD4128C0FD11F0883D987DC4F9AE02.roa (raw, json) Hash identifier: B3E19cErq0rxkUxEs2ukfuNM5Pd8kiV4OJ4LzCkwHF0= Subject key identifier: 71:76:7A:95:92:37:51:D2:49:B0:01:7E:DC:CE:3E:9A:74:72:A6:E1 Certificate issuer: /CN=A9167671/serialNumber=8A57717E62E115BAD0AF167942235B01B9B1F354 Certificate serial: 05 Authority key identifier: 8A:57:71:7E:62:E1:15:BA:D0:AF:16:79:42:23:5B:01:B9:B1:F3:54 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ildxfmLhFbrQrxZ5QiNbAbmx81Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/42AD4128C0FD11F0883D987DC4F9AE02.roa Signing time: Fri 14 Nov 2025 01:57:23 +0000 ROA not before: Fri 14 Nov 2025 01:57:23 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 154242 IP address blocks: 138.252.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.crl rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ildxfmLhFbrQrxZ5QiNbAbmx81Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 06:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167671, serialNumber=8A57717E62E115BAD0AF167942235B01B9B1F354 Validity Not Before: Nov 14 01:57:23 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69168c82-6f4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c7:e7:f7:a9:e6:c0:2d:14:30:9f:0d:06:61: bf:99:71:ae:6b:b0:f8:21:b5:26:98:8b:ac:af:22: f6:6b:5f:9c:bd:63:9c:5d:3e:59:c5:92:bc:6f:ec: eb:0c:3c:5e:51:be:ef:38:6d:9e:54:41:06:85:1e: 42:e2:0a:c1:a6:4c:ed:63:ad:ff:10:a1:c1:91:66: 20:57:a1:a6:4a:2a:28:b4:b1:84:ed:f8:c2:5c:e9: b4:0b:61:a4:f4:97:ca:34:9a:b2:cd:39:0a:fa:55: cd:1d:6f:74:1c:a1:26:ff:a7:37:6a:25:47:1d:c7: 35:ed:c1:82:9c:f9:bc:60:ed:92:21:e5:c7:73:cf: 19:8b:dd:42:6e:06:c0:71:be:95:1a:33:56:55:07: 51:21:b7:56:9a:6b:7f:b1:7f:0e:8d:31:19:b2:62: a1:64:f9:a8:ad:31:e4:ee:4f:7c:71:3b:15:d3:2c: af:78:d8:ce:b6:74:55:e4:cb:98:50:6f:ec:16:7d: 6d:e4:84:f5:27:3a:38:05:8f:af:34:e6:ea:33:7e: cc:ac:0e:d3:2e:d5:81:59:f7:d4:51:fa:f5:40:c5: 20:51:55:0b:3f:db:09:8b:42:59:a9:34:ba:2a:c9: 02:34:fe:3b:4f:d9:79:75:3a:fd:31:0a:34:fd:d0: 3e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:76:7A:95:92:37:51:D2:49:B0:01:7E:DC:CE:3E:9A:74:72:A6:E1 X509v3 Authority Key Identifier: keyid:8A:57:71:7E:62:E1:15:BA:D0:AF:16:79:42:23:5B:01:B9:B1:F3:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ildxfmLhFbrQrxZ5QiNbAbmx81Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/42AD4128C0FD11F0883D987DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.167.0/24 Signature Algorithm: sha256WithRSAEncryption 77:b0:da:0f:b6:0f:cc:a0:c3:f4:8c:fc:d3:cc:04:51:e0:29: ec:69:9e:ad:df:27:75:7d:73:52:3d:57:6b:c0:86:d3:90:fb: 13:92:ce:90:0a:f5:e6:80:fb:f9:95:f7:8b:bd:47:5c:29:66: e7:00:34:08:a6:51:b6:9e:7e:42:07:3c:da:c7:33:4e:ff:22: 6b:04:75:f7:0b:66:03:4a:33:13:31:9b:13:df:4b:23:ea:dc: d7:8c:03:e0:0e:a9:db:2b:a1:c9:cc:19:75:00:06:37:03:91: 48:eb:1e:b7:b5:d7:25:1f:35:c7:90:9a:dd:9e:17:f9:6e:ac: 59:30:63:52:d8:ad:15:e7:c8:9c:7a:d2:c8:a9:d7:18:fa:65: f1:5d:81:6e:d3:91:4d:d6:84:1f:f5:b9:e9:e4:2a:08:da:a8: c9:18:60:a6:cc:3b:e6:75:25:67:e0:71:43:50:b1:50:a6:d6: e6:b9:2b:9a:18:02:cb:2e:6d:d1:1e:61:64:19:39:f3:8d:06: 38:8d:72:0a:76:48:96:2d:37:ce:ac:70:98:24:d3:3e:3b:43: 89:41:61:99:fd:58:8d:e1:b8:04:1c:04:8b:59:5f:1d:1b:49: 5d:db:c0:91:d4:f6:a0:5e:92:3b:ed:8d:8e:c1:2b:35:00:54: f9:c0:ff:5f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NzY3MTExMC8GA1UEBRMoOEE1NzcxN0U2MkUxMTVCQUQwQUYxNjc5NDIyMzVCMDFC OUIxRjM1NDAeFw0yNTExMTQwMTU3MjNaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MTY4YzgyLTZmNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIx+f3qebALRQwnw0GYb+Zca5rsPghtSaYi6yvIvZrX5y9Y5xdPlnFkrxv7OsM PF5Rvu84bZ5UQQaFHkLiCsGmTO1jrf8QocGRZiBXoaZKKii0sYTt+MJc6bQLYaT0 l8o0mrLNOQr6Vc0db3QcoSb/pzdqJUcdxzXtwYKc+bxg7ZIh5cdzzxmL3UJuBsBx vpUaM1ZVB1Eht1aaa3+xfw6NMRmyYqFk+aitMeTuT3xxOxXTLK942M62dFXky5hQ b+wWfW3khPUnOjgFj6805uozfsysDtMu1YFZ99RR+vVAxSBRVQs/2wmLQlmpNLoq yQI0/jtP2Xl1Ov0xCjT90D7HAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUcXZ6lZI3 UdJJsAF+3M4+mnRypuEwHwYDVR0jBBgwFoAUildxfmLhFbrQrxZ5QiNbAbmx81Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3NjcxLzQ2MEIwODA0QkUx RjExRjA5NTQzNUQ2RUM0RjlBRTAyL2lsZHhmbUxoRmJyUXJ4WjVRaU5iQWJteDgx US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaWxkeGZtTGhGYnJRcnhaNVFpTmJBYm14ODFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzY3MS80NjBCMDgwNEJFMUYxMUYwOTU0MzVENkVDNEY5QUUwMi80MkFENDEyOEMw RkQxMUYwODgzRDk4N0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIr8pzANBgkqhkiG9w0BAQsFAAOCAQEAd7DaD7YPzKDD9Iz8 08wEUeAp7Gmerd8ndX1zUj1Xa8CG05D7E5LOkAr15oD7+ZX3i71HXClm5wA0CKZR tp5+Qgc82sczTv8iawR19wtmA0ozEzGbE99LI+rc14wD4A6p2yuhycwZdQAGNwOR SOset7XXJR81x5Ca3Z4X+W6sWTBjUtitFefInHrSyKnXGPpl8V2BbtORTdaEH/W5 6eQqCNqoyRhgpsw75nUlZ+BxQ1CxUKbW5rkrmhgCyy5t0R5hZBk5840GOI1yCnZI li03zqxwmCTTPjtDiUFhmf1YjeG4BBwEi1lfHRtJXdvAkdT2oF6SO+2NjsErNQBU +cD/Xw== -----END CERTIFICATE-----Generated at Wed Dec 3 14:52:22 2025 by rpki-client