This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9187BAC/BE318FB0D02C11EFB5584915C4F9AE02/40D442EAE8AB11F0A6A9087C576F56BC.roa File: 40D442EAE8AB11F0A6A9087C576F56BC.roa (raw, json) Hash identifier: /vo2M+Wlxrr8HtU2DTGDCRA/WdxTbuSfemGYiYcMOeQ= Subject key identifier: C6:04:A5:CA:89:C0:C6:A7:69:F3:44:8C:E4:A3:50:AB:56:E4:AD:3C Certificate issuer: /CN=A9187BAC/serialNumber=7B62620BFEB38CEB64D210C9805DC2480415707D Certificate serial: C6 Authority key identifier: 7B:62:62:0B:FE:B3:8C:EB:64:D2:10:C9:80:5D:C2:48:04:15:70:7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/e2JiC_6zjOtk0hDJgF3CSAQVcH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187BAC/BE318FB0D02C11EFB5584915C4F9AE02/40D442EAE8AB11F0A6A9087C576F56BC.roa Signing time: Sat 03 Jan 2026 13:51:07 +0000 ROA not before: Sat 03 Jan 2026 13:51:07 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 58062 IP address blocks: 161.248.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187BAC/BE318FB0D02C11EFB5584915C4F9AE02/e2JiC_6zjOtk0hDJgF3CSAQVcH0.crl rsync://rpki.apnic.net/member_repository/A9187BAC/BE318FB0D02C11EFB5584915C4F9AE02/e2JiC_6zjOtk0hDJgF3CSAQVcH0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/e2JiC_6zjOtk0hDJgF3CSAQVcH0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 05:04:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187BAC, serialNumber=7B62620BFEB38CEB64D210C9805DC2480415707D Validity Not Before: Jan 3 13:51:07 2026 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69591ecb-44d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b1:9f:41:de:6d:5e:a2:7a:8a:e9:37:7c:9c: df:82:ec:04:8d:1a:b4:1e:8d:44:46:4b:e8:dc:fc: a4:64:ea:5a:96:d7:a5:f7:fc:f2:46:6f:69:42:33: 12:a5:00:e0:a0:28:ac:fb:f7:53:52:54:d1:a1:7c: f4:8e:41:51:a6:40:59:6e:1c:d4:1f:f6:31:0e:4f: 39:3b:19:81:28:f3:52:cd:db:32:51:27:cd:30:d6: 70:3f:c2:29:ef:53:65:42:47:06:d2:22:e9:ca:7a: 0f:10:ab:89:70:14:19:a5:32:26:d9:21:a1:fd:35: 38:70:61:4c:26:f2:2e:6a:70:7a:92:0f:1e:09:fc: 82:0b:e9:ca:e8:29:f2:89:66:8e:57:6f:62:75:b7: 9d:9f:65:b3:77:e5:2c:9e:df:f7:36:b6:0b:c5:28: 5c:f7:44:3c:5c:73:ad:24:54:e4:b8:20:4c:b2:b5: 10:45:01:9a:d8:ef:84:f0:b9:0b:76:e3:a5:f3:a5: f7:f1:db:b0:dd:b3:b6:9e:9e:37:19:25:07:b5:7e: bd:33:45:3a:87:ee:e1:8b:ed:34:e9:84:7a:02:ec: 5d:5c:fc:99:be:3c:63:b6:bd:08:fe:7f:07:7f:41: e4:db:d1:36:a6:10:69:da:05:04:ed:48:ce:47:57: cd:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:04:A5:CA:89:C0:C6:A7:69:F3:44:8C:E4:A3:50:AB:56:E4:AD:3C X509v3 Authority Key Identifier: keyid:7B:62:62:0B:FE:B3:8C:EB:64:D2:10:C9:80:5D:C2:48:04:15:70:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187BAC/BE318FB0D02C11EFB5584915C4F9AE02/e2JiC_6zjOtk0hDJgF3CSAQVcH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/e2JiC_6zjOtk0hDJgF3CSAQVcH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187BAC/BE318FB0D02C11EFB5584915C4F9AE02/40D442EAE8AB11F0A6A9087C576F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.137.0/24 Signature Algorithm: sha256WithRSAEncryption a6:6e:1b:45:8a:d6:6c:3e:05:1b:40:19:ed:18:21:08:40:dc: 44:6b:16:3b:a4:97:4a:1d:d8:1b:83:2a:48:1b:ab:0f:1e:64: 19:5b:7c:ef:22:8e:c8:c9:04:c8:51:85:49:fa:4a:7a:52:8b: 7a:e5:78:bd:3b:96:88:98:ae:c7:17:54:2e:93:0b:03:2c:d0: 35:4a:38:46:04:5c:d1:16:07:d2:d2:6c:88:61:2a:9d:fb:b8: e4:cd:b6:af:ef:60:64:3c:63:68:3f:98:c1:18:ea:bf:9f:b1: 73:00:f7:27:84:25:5b:3d:29:e1:50:2d:8d:ec:e1:47:6e:9f: 35:69:4e:f5:a0:51:ca:2c:ed:8c:b9:b1:10:d7:7e:35:41:4b: 5c:1b:b0:08:92:35:47:8a:a6:6f:19:f5:1e:d5:9a:08:d2:7f: 9e:87:80:70:08:f7:e6:66:3f:57:2d:68:92:67:a1:aa:36:e4: 06:e5:ba:cd:b6:a2:cc:b3:6f:38:d8:73:b4:4b:bf:97:60:5b: 89:fe:44:7c:97:60:71:a0:e2:b4:77:68:a0:51:9f:58:64:aa: b2:3e:e4:1b:a3:ea:e7:2d:fb:2d:b4:aa:85:13:47:93:e6:79: 88:c2:b6:84:f3:d9:ed:5f:e2:22:35:fb:93:4f:58:71:b6:26: 67:dd:1c:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODdCQUMxMTAvBgNVBAUTKDdCNjI2MjBCRkVCMzhDRUI2NEQyMTBDOTgwNURDMjQ4 MDQxNTcwN0QwHhcNMjYwMTAzMTM1MTA3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU5MWVjYi00NGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrGfQd5tXqJ6iuk3fJzfguwEjRq0Ho1ERkvo3PykZOpaltel9/zyRm9pQjMS pQDgoCis+/dTUlTRoXz0jkFRpkBZbhzUH/YxDk85OxmBKPNSzdsyUSfNMNZwP8Ip 71NlQkcG0iLpynoPEKuJcBQZpTIm2SGh/TU4cGFMJvIuanB6kg8eCfyCC+nK6Cny iWaOV29idbedn2Wzd+Usnt/3NrYLxShc90Q8XHOtJFTkuCBMsrUQRQGa2O+E8LkL duOl86X38duw3bO2np43GSUHtX69M0U6h+7hi+006YR6AuxdXPyZvjxjtr0I/n8H f0Hk29E2phBp2gUE7UjOR1fNowIDAQABo4IClTCCApEwHQYDVR0OBBYEFMYEpcqJ wManafNEjOSjUKtW5K08MB8GA1UdIwQYMBaAFHtiYgv+s4zrZNIQyYBdwkgEFXB9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4N0JBQy9CRTMxOEZCMEQw MkMxMUVGQjU1ODQ5MTVDNEY5QUUwMi9lMkppQ182empPdGswaERKZ0YzQ1NBUVZj SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2UySmlDXzZ6ak90azBoREpnRjNDU0FRVmNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODdCQUMvQkUzMThGQjBEMDJDMTFFRkI1NTg0OTE1QzRGOUFFMDIvNDBENDQyRUFF OEFCMTFGMEE2QTkwODdDNTc2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACh+IkwDQYJKoZIhvcNAQELBQADggEBAKZuG0WK1mw+BRtA Ge0YIQhA3ERrFjukl0od2BuDKkgbqw8eZBlbfO8ijsjJBMhRhUn6SnpSi3rleL07 loiYrscXVC6TCwMs0DVKOEYEXNEWB9LSbIhhKp37uOTNtq/vYGQ8Y2g/mMEY6r+f sXMA9yeEJVs9KeFQLY3s4UdunzVpTvWgUcos7Yy5sRDXfjVBS1wbsAiSNUeKpm8Z 9R7VmgjSf56HgHAI9+ZmP1ctaJJnoao25Ablus22osyzbzjYc7RLv5dgW4n+RHyX YHGg4rR3aKBRn1hkqrI+5Buj6uct+y20qoUTR5PmeYjCtoTz2e1f4iI1+5NPWHG2 JmfdHLQ= -----END CERTIFICATE-----Generated at Sun Jan 18 04:30:36 2026 by rpki-client