This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3933F030F6CF11F0B52F4A0C526F56BC.roa File: 3933F030F6CF11F0B52F4A0C526F56BC.roa (raw, json) Hash identifier: PA9q/fCSjKOWaz3bSsqC9dJMpIbcJoazKbnmlZTnKnE= Subject key identifier: B3:CE:4F:33:5E:FB:32:99:FA:D0:64:CA:E1:B2:50:49:AB:E3:85:F4 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 21F8 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3933F030F6CF11F0B52F4A0C526F56BC.roa Signing time: Wed 21 Jan 2026 13:43:53 +0000 ROA not before: Wed 21 Jan 2026 13:43:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154366 IP address blocks: 138.252.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 13:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8696 (0x21f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jan 21 13:43:53 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6970d818-3eb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8f:14:64:02:51:a9:fe:c0:b7:c0:c1:a5:79: 54:11:1c:f0:88:a8:2b:2b:c3:2e:db:5e:e5:39:51: 0e:98:02:c5:c8:c7:5b:99:3e:12:7d:e4:0f:95:23: b3:28:73:ed:1c:f7:1c:d2:07:a6:ab:d1:18:6d:1d: 1d:dd:94:04:72:8d:9e:ff:3d:77:47:ab:c5:1b:0f: 90:92:27:e7:11:82:3f:aa:78:28:31:35:94:f0:73: 3d:95:14:81:4a:44:74:1c:93:4b:c8:c1:bc:d0:03: 83:47:b4:51:b3:48:d6:47:70:be:5a:5f:5a:fa:1f: bf:8d:59:f7:eb:c3:5b:2c:18:41:2e:18:c8:9f:72: 2c:98:61:b3:15:ad:8a:b5:3c:0b:a3:bc:e1:36:84: 81:51:fd:40:23:94:23:a7:f8:f8:5a:48:b0:8f:a9: 17:6e:f0:6b:2f:6d:e7:1e:cc:41:75:80:92:b6:a6: c0:a2:94:05:ea:3d:f5:09:a1:81:c8:3a:85:6a:9d: b5:7b:65:34:06:cb:09:8d:35:a8:14:f4:db:10:de: 5f:a7:80:1e:70:1b:6e:ad:30:6e:96:ea:1a:6d:9a: d3:14:02:8d:44:38:c0:cd:cd:70:f5:11:d9:2c:3f: dd:97:c2:18:5a:98:c7:a3:50:03:a0:c4:4b:53:9e: 1e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:CE:4F:33:5E:FB:32:99:FA:D0:64:CA:E1:B2:50:49:AB:E3:85:F4 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3933F030F6CF11F0B52F4A0C526F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.200.0/23 Signature Algorithm: sha256WithRSAEncryption c2:81:d8:52:29:2a:94:4e:24:2f:a5:8e:7a:e8:d7:cf:13:65: 22:21:7c:9b:be:28:14:ab:f8:5a:7c:1b:9a:f8:c8:71:c0:c1: 02:02:24:ab:12:07:a9:44:b0:17:54:a9:3c:db:a2:eb:85:96: 2d:33:7c:48:bc:2f:52:69:3a:80:7c:1d:f1:da:82:2c:f5:f8: 18:4a:17:b8:5e:1b:33:56:f1:24:aa:36:91:d6:1a:21:1f:29: 5f:b0:71:06:8e:87:a6:20:52:b0:29:eb:94:30:09:24:78:e5: a3:fb:18:21:3b:76:e0:4e:54:9b:46:86:a4:32:8b:e2:9c:31: b8:90:0d:2d:5a:00:ac:e1:17:9f:cc:4b:8c:73:5a:a1:8a:28: 1c:d9:a8:68:5f:9a:cb:17:1c:55:3b:51:be:59:83:aa:b6:1e: d5:f2:cb:20:8d:f4:71:9f:db:0f:d9:f3:e7:48:65:0c:4d:54: 6a:90:bc:bc:f3:c7:74:4b:50:7b:20:47:31:e8:59:b7:1d:20: d8:a4:92:9c:d0:18:d7:c1:77:9e:18:48:28:19:3b:a5:33:63: 32:7f:4f:db:d3:5e:fe:93:94:01:4e:27:a9:c3:58:19:a1:16: ac:6e:4e:bf:84:09:b9:3f:78:78:b7:c3:ec:84:17:3c:f3:48: b1:b3:a8:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwMTIxMTM0MzUzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTcwZDgxOC0zZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvI8UZAJRqf7At8DBpXlUERzwiKgrK8Mu217lOVEOmALFyMdbmT4SfeQPlSOz KHPtHPcc0gemq9EYbR0d3ZQEco2e/z13R6vFGw+QkifnEYI/qngoMTWU8HM9lRSB SkR0HJNLyMG80AODR7RRs0jWR3C+Wl9a+h+/jVn368NbLBhBLhjIn3IsmGGzFa2K tTwLo7zhNoSBUf1AI5Qjp/j4Wkiwj6kXbvBrL23nHsxBdYCStqbAopQF6j31CaGB yDqFap21e2U0BssJjTWoFPTbEN5fp4AecBturTBuluoabZrTFAKNRDjAzc1w9RHZ LD/dl8IYWpjHo1ADoMRLU54eowIDAQABo4IClTCCApEwHQYDVR0OBBYEFLPOTzNe +zKZ+tBkyuGyUEmr44X0MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzkzM0YwMzBG NkNGMTFGMEI1MkY0QTBDNTI2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGK/MgwDQYJKoZIhvcNAQELBQADggEBAMKB2FIpKpROJC+l jnro188TZSIhfJu+KBSr+Fp8G5r4yHHAwQICJKsSB6lEsBdUqTzbouuFli0zfEi8 L1JpOoB8HfHagiz1+BhKF7heGzNW8SSqNpHWGiEfKV+wcQaOh6YgUrAp65QwCSR4 5aP7GCE7duBOVJtGhqQyi+KcMbiQDS1aAKzhF5/MS4xzWqGKKBzZqGhfmssXHFU7 Ub5Zg6q2HtXyyyCN9HGf2w/Z8+dIZQxNVGqQvLzzx3RLUHsgRzHoWbcdINikkpzQ GNfBd54YSCgZO6UzYzJ/T9vTXv6TlAFOJ6nDWBmhFqxuTr+ECbk/eHi3w+yEFzzz SLGzqOA= -----END CERTIFICATE-----Generated at Wed Jan 21 18:51:45 2026 by rpki-client