This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/2CE5BE065BDA11ECAA855355C4F9AE02.roa File: 2CE5BE065BDA11ECAA855355C4F9AE02.roa (raw, json) Hash identifier: hsOJ+o40SKeUqBC3hONPzrlCvaiPlCX0QFr5TMEZluA= Subject key identifier: 33:65:82:ED:E2:F6:24:AB:EA:55:56:8B:CE:B9:53:9E:CC:4E:F8:10 Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 04F7 Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/2CE5BE065BDA11ECAA855355C4F9AE02.roa Signing time: Sat 31 Jan 2026 00:19:34 +0000 ROA not before: Sat 31 Jan 2026 00:19:34 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 398355 IP address blocks: 2400:3e20::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Feb 2026 23:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1271 (0x4f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11, serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Validity Not Before: Jan 31 00:19:34 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697d4a96-6813 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:dd:96:2f:3d:6f:5e:53:f2:df:9f:ac:c0:08: e7:ad:d3:d6:66:17:66:60:ec:8c:1e:cb:46:fb:b4: 7e:86:6e:3a:8d:3a:02:59:63:55:1b:c9:46:d6:bc: 28:ed:be:48:e5:2d:0f:ed:25:cd:5a:9b:85:59:7a: f5:7c:af:58:15:0a:4f:6c:a3:68:93:37:4c:17:95: 93:52:22:4e:ce:75:84:0d:ba:9a:30:6a:6c:79:f5: 18:ab:9c:94:75:b1:e9:58:58:51:dc:5a:42:d8:c9: 76:16:6b:36:fa:a1:7d:f1:32:48:9e:7e:13:57:e9: fa:fb:ac:9c:e0:7b:79:0d:a0:08:2b:e6:66:d1:ff: 0c:2a:a0:aa:84:78:fd:3c:7c:0d:63:f3:aa:2a:3b: e2:f0:f4:5a:b9:d5:76:f6:a2:f5:cd:7c:7e:90:d1: 85:80:27:b2:fe:c1:fb:7c:6c:68:82:04:c2:b0:2d: ba:26:f6:e7:03:a9:83:9b:4e:87:23:8d:b7:0c:7d: af:f5:1e:0f:7b:7c:86:82:7a:f8:eb:7f:79:03:c5: d5:d5:d7:e6:7c:8d:6f:1f:1d:79:df:2f:7a:c0:08: bd:a3:02:44:3b:e3:c6:3d:00:bd:11:bc:2c:11:db: 93:90:d2:44:08:56:c0:51:c9:16:e4:8c:ef:ac:58: ad:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:65:82:ED:E2:F6:24:AB:EA:55:56:8B:CE:B9:53:9E:CC:4E:F8:10 X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/2CE5BE065BDA11ECAA855355C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:3e20::/36 Signature Algorithm: sha256WithRSAEncryption 05:40:56:e0:2f:41:20:8c:23:cf:8d:f6:12:e6:88:a6:24:cf: 47:c0:fd:73:82:6d:98:74:7f:34:f8:7a:2b:9a:f2:d9:96:53: 5a:89:96:1b:a9:e3:f6:10:9f:2c:e8:57:aa:99:0e:28:31:42: b2:be:e2:6f:17:79:4b:9c:ee:b5:a3:97:00:02:7b:fd:72:5e: 02:86:61:5a:ec:d7:c2:a8:98:a3:fe:b7:3d:87:4a:da:53:18: 09:de:01:7a:d1:a4:83:5e:8d:a7:ca:33:96:70:d3:52:e0:18: 94:b1:31:6a:48:c0:ea:29:52:ae:1b:53:79:c4:e2:d6:26:ea: 54:5e:00:27:8e:2f:04:47:e0:b3:c1:2a:b9:2a:02:15:90:84: 4d:ca:ff:bb:e4:3d:52:59:25:f7:8d:08:f4:a8:e3:07:19:e4: aa:df:f2:87:f9:b1:1b:1d:ea:8a:80:ea:dc:9a:4f:82:f2:08: db:68:c0:b3:90:f3:41:e5:62:ec:63:1e:bd:91:ab:a9:f0:d5: 12:b3:fc:0f:3e:f9:54:47:0b:7c:c6:f0:9e:69:a8:30:50:4b: 59:28:00:a3:0b:72:05:59:19:87:be:05:7a:96:90:11:18:07: 5b:bf:bf:8d:65:4d:43:3b:fe:4a:a1:c1:44:46:7d:b6:b0:bf: 6d:0e:76:27 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICBPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjYwMTMxMDAxOTM0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdkNGE5Ni02ODEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz92WLz1vXlPy35+swAjnrdPWZhdmYOyMHstG+7R+hm46jToCWWNVG8lG1rwo 7b5I5S0P7SXNWpuFWXr1fK9YFQpPbKNokzdMF5WTUiJOznWEDbqaMGpsefUYq5yU dbHpWFhR3FpC2Ml2Fms2+qF98TJInn4TV+n6+6yc4Ht5DaAIK+Zm0f8MKqCqhHj9 PHwNY/OqKjvi8PRaudV29qL1zXx+kNGFgCey/sH7fGxoggTCsC26JvbnA6mDm06H I423DH2v9R4Pe3yGgnr46395A8XV1dfmfI1vHx153y96wAi9owJEO+PGPQC9Ebws EduTkNJECFbAUckW5IzvrFitIwIDAQABo4IClzCCApMwHQYDVR0OBBYEFDNlgu3i 9iSr6lVWi865U57MTvgQMB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBFMTEvRDA2MEM5QjI1QkQ2MTFFQ0FEODMzNjUxQzRGOUFFMDIvMkNFNUJFMDY1 QkRBMTFFQ0FBODU1MzU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkAD4gADANBgkqhkiG9w0BAQsFAAOCAQEABUBW4C9BIIwj z432EuaIpiTPR8D9c4JtmHR/NPh6K5ry2ZZTWomWG6nj9hCfLOhXqpkOKDFCsr7i bxd5S5zutaOXAAJ7/XJeAoZhWuzXwqiYo/63PYdK2lMYCd4BetGkg16Np8ozlnDT UuAYlLExakjA6ilSrhtTecTi1ibqVF4AJ44vBEfgs8EquSoCFZCETcr/u+Q9Ulkl 940I9KjjBxnkqt/yh/mxGx3qioDq3JpPgvII22jAs5DzQeVi7GMevZGrqfDVErP8 Dz75VEcLfMbwnmmoMFBLWSgAowtyBVkZh74FepaQERgHW7+/jWVNQzv+SqHBREZ9 trC/bQ52Jw== -----END CERTIFICATE-----Generated at Tue Feb 10 10:36:51 2026 by rpki-client