This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/1DD85DA2386311EFB10A6A1CC4F9AE02.roa File: 1DD85DA2386311EFB10A6A1CC4F9AE02.roa (raw, json) Hash identifier: zzdFNHhV2hq5Z+7D9I2GDKqbTVdZBzqXlydZjeryJz8= Subject key identifier: 43:FC:9D:C3:9D:59:72:00:36:EE:ED:A1:2D:3B:2C:EF:FC:AB:10:CE Certificate issuer: /CN=A9178EA7/serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Certificate serial: 010B Authority key identifier: 22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/1DD85DA2386311EFB10A6A1CC4F9AE02.roa Signing time: Fri 21 Nov 2025 03:21:18 +0000 ROA not before: Fri 21 Nov 2025 03:21:18 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9466 IP address blocks: 202.1.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 02:58:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EA7, serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Validity Not Before: Nov 21 03:21:18 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=691fdaad-d7f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:58:fd:32:82:5b:0e:d0:c6:9b:b5:87:4a:d1: 3a:91:f4:6c:07:8a:07:65:09:02:2b:a9:e5:f2:30: 38:97:b5:f1:73:bb:4e:9f:45:f5:62:a3:02:d0:f3: 19:39:d8:d8:29:a8:c9:c8:64:7f:0c:26:5e:83:d2: 24:db:d2:64:c2:61:3e:b7:91:c9:45:bb:62:2c:e3: f3:01:66:f1:77:5c:04:73:4b:2c:10:05:84:50:35: a8:57:ec:1b:9f:6c:8a:92:02:ff:bf:0f:d3:59:9b: e2:b5:7b:3f:7f:b9:28:f5:1d:c4:c3:3e:45:e7:05: 72:72:57:bf:40:ba:58:d9:f2:45:c6:be:42:f6:a9: ce:fe:5a:a2:0c:41:74:ff:71:f0:89:c0:30:be:58: 6f:81:ca:b3:ae:11:3c:4e:48:64:5e:3a:8b:65:7b: be:d6:f5:bf:06:3f:1e:18:cb:4b:0c:ba:cf:7a:d0: f4:bb:39:5d:05:31:38:e6:66:c2:44:f7:08:27:26: 0f:44:40:83:37:5d:00:af:27:97:ba:55:46:02:7d: 79:d4:71:58:67:df:72:b7:84:12:ce:a1:5a:c9:6f: d8:44:38:51:ae:de:74:cf:03:ca:04:60:75:49:25: 21:12:57:c3:3f:8b:73:8e:5c:80:b1:2e:de:8f:97: 48:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FC:9D:C3:9D:59:72:00:36:EE:ED:A1:2D:3B:2C:EF:FC:AB:10:CE X509v3 Authority Key Identifier: keyid:22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/1DD85DA2386311EFB10A6A1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.1.128.0/19 Signature Algorithm: sha256WithRSAEncryption 6c:ad:37:3e:d7:90:79:58:9c:ee:7b:2a:74:ca:27:9f:b8:cd: a3:13:2e:4e:79:20:54:a0:2d:b9:6e:2e:7c:ab:55:e6:ab:b2: 3f:ee:5c:c0:0f:30:df:ee:59:4a:4f:2e:57:6e:7b:ec:c8:af: 8f:0c:71:1c:2c:c2:ea:5d:26:ae:0d:65:50:26:ff:22:c6:64: 06:28:30:f7:ad:50:f1:d0:7b:70:19:7b:88:f4:2b:12:d7:e7: c3:c6:33:5d:da:c3:ee:61:eb:22:3e:2b:bd:3b:5a:0b:1b:56: 8e:52:49:b7:85:19:3b:11:de:50:62:5b:db:2b:0a:2e:a0:9d: fd:93:c9:e3:44:c4:85:e8:60:c1:77:f8:15:c6:3c:14:e9:33: c7:00:77:e5:e4:01:44:bb:d4:ce:d1:a6:ad:56:db:92:d4:ef: 10:10:a4:00:bd:24:d7:36:ed:3e:38:77:66:47:7c:d3:8a:32: 9c:03:8e:0c:18:85:f6:2d:31:84:3f:61:91:d9:aa:10:8a:39: fe:4c:28:7f:f2:d5:81:f6:5c:20:e0:cf:17:97:c9:64:37:7a: 1d:80:05:24:7a:53:e0:69:33:f8:2f:5e:91:54:ae:d3:4f:dd: 38:2e:e0:22:13:bb:a1:3d:a1:31:77:cd:e0:0a:fc:22:4d:ad: ad:b2:b2:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQTcxMTAvBgNVBAUTKDIyQTYyQzE0RDJCRDMyRTNFNTk2RDhBM0U2MkJCQzMy NzQ0NjhGOTkwHhcNMjUxMTIxMDMyMTE4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFmZGFhZC1kN2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFj9MoJbDtDGm7WHStE6kfRsB4oHZQkCK6nl8jA4l7Xxc7tOn0X1YqMC0PMZ OdjYKajJyGR/DCZeg9Ik29JkwmE+t5HJRbtiLOPzAWbxd1wEc0ssEAWEUDWoV+wb n2yKkgL/vw/TWZvitXs/f7ko9R3Ewz5F5wVycle/QLpY2fJFxr5C9qnO/lqiDEF0 /3HwicAwvlhvgcqzrhE8TkhkXjqLZXu+1vW/Bj8eGMtLDLrPetD0uzldBTE45mbC RPcIJyYPRECDN10AryeXulVGAn151HFYZ99yt4QSzqFayW/YRDhRrt50zwPKBGB1 SSUhElfDP4tzjlyAsS7ej5dIFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEP8ncOd WXIANu7toS07LO/8qxDOMB8GA1UdIwQYMBaAFCKmLBTSvTLj5ZbYo+YrvDJ0Ro+Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVBNy9CMUIzRTJENjM4 NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11UGxsdGlqNWl1OE1uUkdq NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lxWXNGTks5TXVQbGx0aWo1aXU4TW5SR2o1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhFQTcvQjFCM0UyRDYzODYyMTFFRjlFMTdFODZGQzRGOUFFMDIvMUREODVEQTIz ODYzMTFFRkIxMEE2QTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAXKAYAwDQYJKoZIhvcNAQELBQADggEBAGytNz7XkHlYnO57 KnTKJ5+4zaMTLk55IFSgLbluLnyrVearsj/uXMAPMN/uWUpPLldue+zIr48McRws wupdJq4NZVAm/yLGZAYoMPetUPHQe3AZe4j0KxLX58PGM13aw+5h6yI+K707Wgsb Vo5SSbeFGTsR3lBiW9srCi6gnf2TyeNExIXoYMF3+BXGPBTpM8cAd+XkAUS71M7R pq1W25LU7xAQpAC9JNc27T44d2ZHfNOKMpwDjgwYhfYtMYQ/YZHZqhCKOf5MKH/y 1YH2XCDgzxeXyWQ3eh2ABSR6U+BpM/gvXpFUrtNP3Tgu4CITu6E9oTF3zeAK/CJN ra2ystk= -----END CERTIFICATE-----Generated at Tue Dec 9 12:07:02 2025 by rpki-client