This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6CF60CB6785811E99A6E965AC4F9AE02.roa File: 6CF60CB6785811E99A6E965AC4F9AE02.roa (raw, json) Hash identifier: t3mJnBOSeGAs1GX0Mci5bKDKq5htkCYGDyCSI5i3AaA= Subject key identifier: 67:CD:B8:99:44:E1:C3:DE:DC:84:80:96:3B:77:CF:D4:EF:C4:F8:D8 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 376B Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6CF60CB6785811E99A6E965AC4F9AE02.roa Signing time: Fri 16 Jan 2026 16:13:06 +0000 ROA not before: Fri 16 Jan 2026 16:13:06 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135478 IP address blocks: 45.126.80.0/23 maxlen: 23 45.126.82.0/23 maxlen: 23 45.126.82.0/24 maxlen: 24 101.128.64.0/22 maxlen: 22 101.128.64.0/24 maxlen: 24 101.128.65.0/24 maxlen: 24 101.128.67.0/24 maxlen: 24 101.128.68.0/22 maxlen: 22 101.128.68.0/24 maxlen: 24 101.128.72.0/22 maxlen: 22 101.128.72.0/24 maxlen: 24 101.128.76.0/22 maxlen: 22 101.128.76.0/24 maxlen: 24 101.128.80.0/22 maxlen: 22 101.128.80.0/24 maxlen: 24 101.128.84.0/22 maxlen: 22 101.128.84.0/24 maxlen: 24 101.128.88.0/22 maxlen: 22 101.128.88.0/24 maxlen: 24 101.128.92.0/22 maxlen: 22 101.128.92.0/24 maxlen: 24 101.128.96.0/22 maxlen: 22 101.128.96.0/24 maxlen: 24 101.128.100.0/22 maxlen: 22 101.128.100.0/24 maxlen: 24 101.128.104.0/22 maxlen: 22 101.128.104.0/24 maxlen: 24 101.128.112.0/22 maxlen: 22 101.128.112.0/24 maxlen: 24 101.128.116.0/22 maxlen: 22 101.128.116.0/24 maxlen: 24 101.128.120.0/22 maxlen: 22 101.128.120.0/24 maxlen: 24 101.128.124.0/22 maxlen: 22 101.128.124.0/24 maxlen: 24 175.158.36.0/22 maxlen: 22 175.158.36.0/24 maxlen: 24 175.158.40.0/22 maxlen: 22 175.158.40.0/24 maxlen: 24 175.158.44.0/22 maxlen: 22 175.158.44.0/24 maxlen: 24 175.158.48.0/22 maxlen: 22 175.158.48.0/24 maxlen: 24 175.158.52.0/22 maxlen: 22 175.158.52.0/24 maxlen: 24 175.158.56.0/22 maxlen: 22 175.158.56.0/24 maxlen: 24 175.158.60.0/22 maxlen: 22 2405:8180::/32 maxlen: 32 2405:8180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 15:26:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14187 (0x376b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 16 16:13:06 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=696a6392-793c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bb:c3:de:11:43:03:67:ff:14:1a:04:70:88: 0f:16:41:5f:e8:27:96:1f:b7:4d:30:38:8b:db:45: ab:6b:14:af:ad:96:2a:a2:0a:5a:61:8d:be:65:73: 41:cd:51:db:9f:36:7c:29:e8:ab:12:5b:3f:1d:9d: 8d:69:db:f4:eb:3e:f8:e6:01:6c:33:b0:89:0e:a5: 08:2a:7e:35:24:ae:5b:7e:9e:d9:26:11:25:9d:9f: 94:4e:2f:12:a0:8f:d8:36:9f:4b:9b:cc:dc:35:4d: 71:b4:7e:cf:b3:04:df:a7:fa:73:ca:d5:ba:b4:88: f4:87:fc:19:3c:17:5e:e2:7c:78:65:a0:40:36:03: 9b:bd:b1:be:fc:fe:23:29:28:ba:d5:17:43:e0:31: fa:46:8a:1d:8b:f5:48:e1:40:7b:b9:a9:51:79:44: 40:8e:c8:d5:a5:a6:b3:7d:b0:94:a0:cf:44:70:dc: d3:35:5e:61:5a:f4:5d:82:84:33:09:22:c5:7d:9b: 96:19:09:69:38:ce:a7:f4:74:53:5a:ee:5c:f8:76: 69:46:d4:2c:4b:39:9c:61:c4:33:b5:30:f4:2e:a6: 92:6f:07:1e:fc:32:7a:3a:f4:fc:43:f2:68:e2:d8: 2c:e2:a1:09:64:7a:41:c9:5b:08:2c:cd:82:3d:40: 1a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CD:B8:99:44:E1:C3:DE:DC:84:80:96:3B:77:CF:D4:EF:C4:F8:D8 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6CF60CB6785811E99A6E965AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.126.80.0/22 101.128.64.0-101.128.107.255 101.128.112.0/20 175.158.36.0-175.158.63.255 IPv6: 2405:8180::/32 Signature Algorithm: sha256WithRSAEncryption 04:80:7d:ba:7f:7d:63:d0:2e:27:99:47:e4:41:09:5b:68:6d: 8a:8f:f9:77:38:6f:1b:74:9c:0a:51:9e:b5:34:8a:9c:fd:bb: 6c:97:2f:6f:a7:04:64:fb:84:c4:1a:e0:96:05:99:f9:2e:c7: 11:45:d9:c0:dc:e6:6c:cd:b5:13:5d:c8:40:8c:a8:32:ed:3e: 95:1a:92:b4:d6:41:02:ba:01:96:4b:0b:f5:63:7b:b6:7c:ab: 98:aa:b3:0f:5f:89:96:7e:f0:56:a1:2b:6a:81:fa:7e:fb:10: 5a:29:13:58:1e:0b:51:0f:51:2a:d4:24:3c:5e:d1:b0:cc:6f: b6:35:0d:18:a1:ee:4c:12:7f:c4:4a:55:a0:4c:fe:0f:a3:c7: 31:ff:7c:8e:54:99:04:63:a3:c7:82:9c:12:07:9c:78:1f:1b: 02:26:a2:8f:72:b0:30:55:86:54:40:51:89:79:e7:d8:8e:5c: 05:9a:79:03:d7:2f:40:68:e3:f4:da:97:42:35:c2:f8:2f:fe: d7:61:da:e1:63:29:32:db:1f:eb:93:52:9e:a3:fc:fe:f0:0b: e3:16:d5:59:9b:3c:77:c1:8a:bb:aa:cf:f1:51:55:4b:9b:39: 5d:d3:94:dd:b0:d3:4d:8d:37:64:e2:1f:a8:82:46:e5:df:06: 25:14:c1:c0 -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgICN2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjYwMTE2MTYxMzA2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTZhNjM5Mi03OTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7vD3hFDA2f/FBoEcIgPFkFf6CeWH7dNMDiL20WraxSvrZYqogpaYY2+ZXNB zVHbnzZ8KeirEls/HZ2Nadv06z745gFsM7CJDqUIKn41JK5bfp7ZJhElnZ+UTi8S oI/YNp9Lm8zcNU1xtH7PswTfp/pzytW6tIj0h/wZPBde4nx4ZaBANgObvbG+/P4j KSi61RdD4DH6Roodi/VI4UB7ualReURAjsjVpaazfbCUoM9EcNzTNV5hWvRdgoQz CSLFfZuWGQlpOM6n9HRTWu5c+HZpRtQsSzmcYcQztTD0LqaSbwce/DJ6OvT8Q/Jo 4tgs4qEJZHpByVsILM2CPUAajwIDAQABo4ICxjCCAsIwHQYDVR0OBBYEFGfNuJlE 4cPe3ISAljt3z9TvxPjYMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNkNGNjBDQjY3 ODU4MTFFOTlBNkU5NjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUAYIKwYBBQUHAQcBAf8E QTA/MC4EAgABMCgDBAItflAwDAMEBmWAQAMEAmWAaAMEBGWAcDAMAwQCr54kAwQG r54AMA0EAgACMAcDBQAkBYGAMA0GCSqGSIb3DQEBCwUAA4IBAQAEgH26f31j0C4n mUfkQQlbaG2Kj/l3OG8bdJwKUZ61NIqc/btsly9vpwRk+4TEGuCWBZn5LscRRdnA 3OZszbUTXchAjKgy7T6VGpK01kECugGWSwv1Y3u2fKuYqrMPX4mWfvBWoStqgfp+ +xBaKRNYHgtRD1Eq1CQ8XtGwzG+2NQ0Yoe5MEn/ESlWgTP4Po8cx/3yOVJkEY6PH gpwSB5x4HxsCJqKPcrAwVYZUQFGJeefYjlwFmnkD1y9AaOP02pdCNcL4L/7XYdrh Yyky2x/rk1Keo/z+8AvjFtVZmzx3wYq7qs/xUVVLmzld05TdsNNNjTdk4h+ogkbl 3wYlFMHA -----END CERTIFICATE-----Generated at Mon Jan 26 19:41:07 2026 by rpki-client