This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/0A94FC36198711EB80EAEF4CC4F9AE02.roa File: 0A94FC36198711EB80EAEF4CC4F9AE02.roa (raw, json) Hash identifier: swxAO2xB4LEp+6cObSUm6tilYfUacTFtDqQf6repB5s= Subject key identifier: 49:53:DB:25:CB:26:CC:6B:02:6C:15:47:6A:21:AA:77:91:72:20:31 Certificate issuer: /CN=A9171172/serialNumber=76DEAC060460F6F8A5BD58299C53ABCAF9B1D358 Certificate serial: 07E5 Authority key identifier: 76:DE:AC:06:04:60:F6:F8:A5:BD:58:29:9C:53:AB:CA:F9:B1:D3:58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/0A94FC36198711EB80EAEF4CC4F9AE02.roa Signing time: Thu 18 Dec 2025 21:18:00 +0000 ROA not before: Thu 18 Dec 2025 21:18:00 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 7486 IP address blocks: 165.69.0.0/17 maxlen: 18 165.69.32.0/24 maxlen: 24 165.69.36.0/24 maxlen: 24 165.69.40.0/24 maxlen: 24 165.69.128.0/17 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.crl rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 20:49:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2021 (0x7e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171172, serialNumber=76DEAC060460F6F8A5BD58299C53ABCAF9B1D358 Validity Not Before: Dec 18 21:18:00 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69446f87-9e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bf:dd:73:24:48:b2:ef:d3:bf:69:2b:39:7f: b4:a8:f5:71:0d:a0:f9:c6:2e:29:18:39:22:e9:be: b7:dc:cd:35:f2:4b:a6:57:91:6c:ad:41:7f:07:d4: 24:61:21:86:33:c3:69:e6:46:7c:c7:d6:e5:02:10: 21:06:0c:aa:32:c2:d2:71:58:92:92:62:0e:a7:94: 3d:73:24:e8:ff:18:0d:41:5e:c9:24:53:28:3c:73: 38:ef:f5:ab:c8:40:b2:39:7c:92:eb:2b:ea:e6:fa: c0:65:1c:df:91:b4:04:95:0a:97:7c:03:c0:41:6d: f5:6c:b3:9e:51:0a:aa:d9:7b:3c:13:f3:29:f6:97: 5d:46:2d:6f:2b:bf:90:18:d4:19:16:86:7b:13:b5: 46:e3:52:50:94:ff:18:c8:28:c7:c6:2e:79:c8:28: 85:bc:25:cc:8d:12:8e:8d:c4:fe:c7:fd:67:f0:82: 29:38:e0:34:38:f9:01:e2:92:46:d0:34:d3:2b:13: 53:ba:3b:da:2d:6b:0e:0d:47:b6:42:f6:17:c6:65: a7:b8:44:f2:d4:6e:fa:4b:7c:df:38:a1:77:a6:59: ce:0d:73:81:e4:50:79:5b:44:58:8c:5b:8b:ff:4b: 86:b6:72:2a:9e:12:18:15:9f:4c:29:1f:14:18:d8: 96:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:53:DB:25:CB:26:CC:6B:02:6C:15:47:6A:21:AA:77:91:72:20:31 X509v3 Authority Key Identifier: keyid:76:DE:AC:06:04:60:F6:F8:A5:BD:58:29:9C:53:AB:CA:F9:B1:D3:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/0A94FC36198711EB80EAEF4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.69.0.0/16 Signature Algorithm: sha256WithRSAEncryption a3:7c:a7:7a:ef:ff:41:ac:6d:cb:47:3f:dc:00:6f:8f:c3:9d: 01:26:92:9a:16:25:60:51:29:01:61:9b:dd:e4:60:55:af:d5: c8:dd:f2:a5:65:28:51:51:ea:f3:50:da:89:73:7f:a1:68:6c: b8:2b:dd:20:ff:0d:f2:c0:d8:a7:3d:65:dd:40:24:7d:94:3f: 84:f7:13:c0:c2:12:f9:75:6c:c8:00:8a:56:94:4a:21:aa:60: 56:71:1b:c6:ef:22:55:72:09:49:0d:29:5e:cf:4e:0d:9b:0d: 21:13:ff:25:e4:7c:0d:d0:66:21:09:db:2b:a7:3c:37:e8:ba: 52:37:2c:1e:98:26:bb:c6:cf:19:c4:eb:ba:dd:35:cc:c8:59: 69:26:7f:f2:5a:b9:da:b3:87:34:2d:80:99:78:d3:c5:fa:e8: 11:39:9d:e3:76:8e:09:a2:c9:db:7e:ee:b9:d0:e5:2a:f8:3e: 1f:79:6f:07:60:ba:f3:f0:83:47:82:6b:a1:0b:34:c3:01:c9: bd:32:77:89:3d:29:b0:1a:c9:12:09:51:ed:02:c7:94:e2:5c: de:54:b3:e0:ac:dd:00:52:e3:e5:bf:f5:ab:3e:07:de:fc:0a: 2e:20:32:0a:1d:89:93:79:5b:9f:ee:fd:ce:41:66:f9:ff:2a: fd:97:03:36 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICB+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzExNzIxMTAvBgNVBAUTKDc2REVBQzA2MDQ2MEY2RjhBNUJENTgyOTlDNTNBQkNB RjlCMUQzNTgwHhcNMjUxMjE4MjExODAwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ0NmY4Ny05ZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyb/dcyRIsu/Tv2krOX+0qPVxDaD5xi4pGDki6b633M018kumV5FsrUF/B9Qk YSGGM8Np5kZ8x9blAhAhBgyqMsLScViSkmIOp5Q9cyTo/xgNQV7JJFMoPHM47/Wr yECyOXyS6yvq5vrAZRzfkbQElQqXfAPAQW31bLOeUQqq2Xs8E/Mp9pddRi1vK7+Q GNQZFoZ7E7VG41JQlP8YyCjHxi55yCiFvCXMjRKOjcT+x/1n8IIpOOA0OPkB4pJG 0DTTKxNTujvaLWsODUe2QvYXxmWnuETy1G76S3zfOKF3plnODXOB5FB5W0RYjFuL /0uGtnIqnhIYFZ9MKR8UGNiWdQIDAQABo4IClDCCApAwHQYDVR0OBBYEFElT2yXL JsxrAmwVR2ohqneRciAxMB8GA1UdIwQYMBaAFHberAYEYPb4pb1YKZxTq8r5sdNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTE3Mi84MTU4M0FCRTE4 QkUxMUVCQUMxMERFNDZDNEY5QUUwMi9kdDZzQmdSZzl2aWx2VmdwbkZPcnl2bXgw MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R0NnNCZ1JnOXZpbHZWZ3BuRk9yeXZteDAxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzExNzIvODE1ODNBQkUxOEJFMTFFQkFDMTBERTQ2QzRGOUFFMDIvMEE5NEZDMzYx OTg3MTFFQjgwRUFFRjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwClRTANBgkqhkiG9w0BAQsFAAOCAQEAo3yneu//Qaxty0c/ 3ABvj8OdASaSmhYlYFEpAWGb3eRgVa/VyN3ypWUoUVHq81DaiXN/oWhsuCvdIP8N 8sDYpz1l3UAkfZQ/hPcTwMIS+XVsyACKVpRKIapgVnEbxu8iVXIJSQ0pXs9ODZsN IRP/JeR8DdBmIQnbK6c8N+i6UjcsHpgmu8bPGcTrut01zMhZaSZ/8lq52rOHNC2A mXjTxfroETmd43aOCaLJ237uudDlKvg+H3lvB2C68/CDR4JroQs0wwHJvTJ3iT0p sBrJEglR7QLHlOJc3lSz4KzdAFLj5b/1qz4H3vwKLiAyCh2Jk3lbn+79zkFm+f8q /ZcDNg== -----END CERTIFICATE-----Generated at Fri Jan 2 15:53:27 2026 by rpki-client