This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/2D08F32A110011EFBF50D06AC4F9AE02.roa File: 2D08F32A110011EFBF50D06AC4F9AE02.roa (raw, json) Hash identifier: 8vGj4RUn7g8yOKBqA7QTSll7TJE8yjN2gJeL1HnSfOk= Subject key identifier: 6D:95:E0:B1:08:A4:EE:35:0E:B3:A2:7F:4C:A1:DA:1A:F0:E1:1A:EF Certificate issuer: /CN=A917E0BB/serialNumber=11AB37DC654150C493C8AFC7E86D669C20AE5386 Certificate serial: 0156 Authority key identifier: 11:AB:37:DC:65:41:50:C4:93:C8:AF:C7:E8:6D:66:9C:20:AE:53:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eas33GVBUMSTyK_H6G1mnCCuU4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/2D08F32A110011EFBF50D06AC4F9AE02.roa Signing time: Wed 07 Jan 2026 04:22:53 +0000 ROA not before: Wed 07 Jan 2026 04:22:53 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 140687 IP address blocks: 115.84.170.0/23 maxlen: 23 115.84.170.0/24 maxlen: 24 115.84.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/Eas33GVBUMSTyK_H6G1mnCCuU4Y.crl rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/Eas33GVBUMSTyK_H6G1mnCCuU4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eas33GVBUMSTyK_H6G1mnCCuU4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 03:21:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0BB, serialNumber=11AB37DC654150C493C8AFC7E86D669C20AE5386 Validity Not Before: Jan 7 04:22:53 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695ddf9d-703d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:94:31:c0:55:ca:09:0f:e7:e2:9e:a0:f6:d2: 7f:ea:80:df:ca:0e:68:ea:cc:b7:c9:39:f7:78:36: 0e:67:7b:3f:ee:0e:80:87:25:84:db:0c:2f:ad:6f: 8d:98:20:28:2b:76:7f:db:16:b6:d9:bb:4c:a8:49: 46:ae:30:f3:2e:a4:d2:11:83:c9:8a:88:27:0e:3c: 79:ab:4d:d8:bf:4f:90:d9:a4:8b:86:de:ef:1b:1a: 27:68:f9:ff:93:8d:07:6a:57:24:57:d3:90:33:4b: 6c:14:04:bc:5e:62:af:e1:d9:df:fc:27:22:e0:9a: 7d:03:53:3b:f3:37:41:7e:74:d6:88:cf:e3:4c:4f: 38:14:04:50:b3:d5:9b:ff:3a:a6:c1:0a:ad:3c:9c: 68:7f:dd:94:95:58:79:06:32:6b:ec:da:18:e5:1e: ae:86:14:32:c0:75:07:a5:e3:ee:f0:79:07:b5:34: 10:5a:b4:cf:6e:01:82:ee:2b:f3:ca:cc:6c:2f:29: 62:8e:5b:0c:06:0a:17:98:e7:06:14:d0:6c:c6:81: 19:bd:2e:e3:76:2e:d9:de:95:e1:ed:a3:a5:de:46: a2:83:63:63:d0:08:f7:0b:45:98:27:ea:fe:a8:db: c6:5b:e1:51:b7:e6:6d:42:9e:82:36:6a:8a:a5:6d: b9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:95:E0:B1:08:A4:EE:35:0E:B3:A2:7F:4C:A1:DA:1A:F0:E1:1A:EF X509v3 Authority Key Identifier: keyid:11:AB:37:DC:65:41:50:C4:93:C8:AF:C7:E8:6D:66:9C:20:AE:53:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/Eas33GVBUMSTyK_H6G1mnCCuU4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eas33GVBUMSTyK_H6G1mnCCuU4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/2D08F32A110011EFBF50D06AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.84.170.0/23 Signature Algorithm: sha256WithRSAEncryption ad:00:d8:58:19:6a:30:a0:99:e0:7d:e6:d2:9d:8f:c3:0a:01: 48:ff:52:e4:5b:f1:1b:b1:d4:e6:9e:19:18:f0:db:93:51:72: 72:b6:48:31:ff:79:d5:8f:14:9d:1b:b9:01:1b:2e:b0:99:d3: 99:f8:ee:73:47:4c:06:6e:22:5f:6f:15:5a:5e:1c:ee:9a:3a: 83:a4:33:3a:0f:e5:17:b1:c3:a6:21:2e:a4:1f:91:c5:76:ac: 5c:3f:93:c3:3e:c3:87:d1:1f:56:37:33:8f:79:51:c6:e1:4f: ba:7c:02:45:a1:43:60:99:ca:e8:09:a8:e3:39:67:d2:0e:46: f5:6b:48:30:32:47:6b:9b:d1:2d:45:18:54:be:9b:79:b1:56: 12:ed:f1:85:ad:e2:28:79:33:2a:a9:1c:de:a2:7b:53:98:a8: db:d4:fb:84:4e:73:99:00:86:d3:06:6f:31:ed:bf:2a:21:b4: 90:6b:9e:a1:5b:32:66:83:a4:8a:bf:9a:fd:28:c5:1f:1b:ca: 29:f0:37:7f:d1:6b:7b:f1:57:4d:e3:db:7f:c3:5d:26:4b:1d: 39:49:36:1c:ed:e3:9a:b3:ec:88:6a:3f:5e:39:4f:2b:f7:ee: 77:14:f7:dc:6a:8d:20:fa:24:c3:06:94:85:49:dc:28:97:b1: 64:57:62:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx N0UwQkIxMTAvBgNVBAUTKDExQUIzN0RDNjU0MTUwQzQ5M0M4QUZDN0U4NkQ2NjlD MjBBRTUzODYwHhcNMjYwMTA3MDQyMjUzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVkZGY5ZC03MDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopQxwFXKCQ/n4p6g9tJ/6oDfyg5o6sy3yTn3eDYOZ3s/7g6AhyWE2wwvrW+N mCAoK3Z/2xa22btMqElGrjDzLqTSEYPJiognDjx5q03Yv0+Q2aSLht7vGxonaPn/ k40HalckV9OQM0tsFAS8XmKv4dnf/Cci4Jp9A1M78zdBfnTWiM/jTE84FARQs9Wb /zqmwQqtPJxof92UlVh5BjJr7NoY5R6uhhQywHUHpePu8HkHtTQQWrTPbgGC7ivz ysxsLylijlsMBgoXmOcGFNBsxoEZvS7jdi7Z3pXh7aOl3kaig2Nj0Aj3C0WYJ+r+ qNvGW+FRt+ZtQp6CNmqKpW25SwIDAQABo4IClTCCApEwHQYDVR0OBBYEFG2V4LEI pO41DrOif0yh2hrw4RrvMB8GA1UdIwQYMBaAFBGrN9xlQVDEk8ivx+htZpwgrlOG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBCQi82ODQzMUZBMkU4 RTYxMUVFOUNBQkUwNkFDNEY5QUUwMi9FYXMzM0dWQlVNU1R5S19INkcxbW5DQ3VV NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VhczMzR1ZCVU1TVHlLX0g2RzFtbkNDdVU0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQkIvNjg0MzFGQTJFOEU2MTFFRTlDQUJFMDZBQzRGOUFFMDIvMkQwOEYzMkEx MTAwMTFFRkJGNTBEMDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFzVKowDQYJKoZIhvcNAQELBQADggEBAK0A2FgZajCgmeB9 5tKdj8MKAUj/UuRb8Rux1OaeGRjw25NRcnK2SDH/edWPFJ0buQEbLrCZ05n47nNH TAZuIl9vFVpeHO6aOoOkMzoP5Rexw6YhLqQfkcV2rFw/k8M+w4fRH1Y3M495Ucbh T7p8AkWhQ2CZyugJqOM5Z9IORvVrSDAyR2ub0S1FGFS+m3mxVhLt8YWt4ih5Myqp HN6ie1OYqNvU+4ROc5kAhtMGbzHtvyohtJBrnqFbMmaDpIq/mv0oxR8byinwN3/R a3vxV03j23/DXSZLHTlJNhzt45qz7IhqP145Tyv37ncU99xqjSD6JMMGlIVJ3CiX sWRXYvI= -----END CERTIFICATE-----Generated at Sun Jan 18 06:44:19 2026 by rpki-client