This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3B609732DF1411F0A54B68C45F6F56BC.roa File: 3B609732DF1411F0A54B68C45F6F56BC.roa (raw, json) Hash identifier: PFxXzXqZX5Nej9S35jXRATnAGin1o3i8tyz7klpY1hA= Subject key identifier: 5E:14:85:0F:2A:88:48:19:C6:C3:48:67:E0:DB:A1:CA:2C:E3:39:86 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2169 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3B609732DF1411F0A54B68C45F6F56BC.roa Signing time: Mon 22 Dec 2025 08:57:24 +0000 ROA not before: Mon 22 Dec 2025 08:57:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154297 IP address blocks: 138.252.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 13:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8553 (0x2169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Dec 22 08:57:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=694907f4-cf6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:48:9c:67:29:2e:ae:8e:d2:dc:9e:a3:96:58: fe:ce:6a:8a:a5:94:28:22:c7:36:30:38:c3:d8:b2: 08:a2:4b:67:19:69:1f:78:b7:53:ea:88:06:49:44: 5c:cb:04:70:6d:75:fe:72:50:8b:2d:0f:c2:6a:ea: 17:82:5b:77:16:20:7a:88:40:d6:36:3b:fb:b1:f2: d9:1b:8f:68:4f:62:f1:14:93:2b:d1:06:a6:f2:80: 3e:5a:17:04:b3:5b:75:f4:b5:27:ae:ba:e5:b6:c5: c5:32:1e:df:33:4b:0e:b2:b1:8d:7a:38:e7:bc:f9: 08:eb:7f:a9:f0:08:88:44:51:fd:bd:9a:1f:7b:8b: 03:b2:bf:93:2c:ad:a8:73:15:2f:5f:04:85:0a:9f: 31:15:ee:97:00:7d:ff:fc:42:5b:e8:08:d1:7e:db: 2f:bc:f0:89:73:e0:2b:d0:eb:5d:5c:9f:a4:2f:ef: 9c:2a:fe:60:3a:fc:10:97:65:86:a5:8a:fa:27:b9: de:ce:c3:a8:0d:b8:63:95:d1:d4:d4:57:a3:d8:a0: 5a:cf:82:43:69:e0:07:d6:20:25:91:df:ed:e3:43: 21:61:18:49:dd:5d:47:bd:8d:b3:07:34:3d:7e:d1: e5:67:ab:f8:a6:ac:4e:98:12:6b:ed:7e:48:55:c1: ed:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:14:85:0F:2A:88:48:19:C6:C3:48:67:E0:DB:A1:CA:2C:E3:39:86 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3B609732DF1411F0A54B68C45F6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.34.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:e0:12:32:8f:31:55:a3:80:d1:c3:42:be:a3:57:a8:1e:5c: 3b:08:d5:14:ce:57:56:ce:eb:5f:7d:02:0b:8f:04:e3:a1:7c: 73:62:9d:b2:ae:31:5c:dd:bb:57:b5:6f:16:c2:c8:03:f0:67: 0c:4d:74:61:79:af:34:2f:1e:79:8a:3f:60:4c:c5:cb:19:21: f4:f7:3f:24:f2:0c:6d:36:88:16:23:f6:1e:d3:a4:29:a0:03: 0e:d0:ac:0b:54:d9:a3:a6:3f:6b:fd:36:ef:f5:08:a1:a1:d9: ed:14:46:13:90:67:15:46:b8:13:f3:87:18:a0:be:6e:02:e2: 4e:88:60:7b:ab:51:48:57:ff:a0:5c:b0:0a:3e:fc:b5:42:07: a4:8b:5f:ee:21:89:8a:95:0f:25:cd:84:e5:61:7d:8c:e3:4b: ef:f3:ef:53:ca:8a:af:d4:d6:86:ad:29:df:aa:9b:6e:ef:eb: 76:a6:61:66:9e:4a:fb:43:a0:78:40:a6:ed:22:9e:d0:c4:69: 13:4b:35:27:23:e5:1d:32:7e:5a:4a:38:cb:04:94:29:83:be: 26:b8:ba:df:ce:e8:6e:50:d8:1d:b3:cd:f1:68:65:74:2c:63: ff:a8:a2:73:da:40:de:a7:6c:c9:8f:89:6b:cd:45:68:e6:30: ca:51:f8:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUxMjIyMDg1NzI0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ5MDdmNC1jZjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0icZykuro7S3J6jllj+zmqKpZQoIsc2MDjD2LIIoktnGWkfeLdT6ogGSURc ywRwbXX+clCLLQ/CauoXglt3FiB6iEDWNjv7sfLZG49oT2LxFJMr0Qam8oA+WhcE s1t19LUnrrrltsXFMh7fM0sOsrGNejjnvPkI63+p8AiIRFH9vZofe4sDsr+TLK2o cxUvXwSFCp8xFe6XAH3//EJb6AjRftsvvPCJc+Ar0OtdXJ+kL++cKv5gOvwQl2WG pYr6J7nezsOoDbhjldHU1Fej2KBaz4JDaeAH1iAlkd/t40MhYRhJ3V1HvY2zBzQ9 ftHlZ6v4pqxOmBJr7X5IVcHttwIDAQABo4IClTCCApEwHQYDVR0OBBYEFF4UhQ8q iEgZxsNIZ+Dbocos4zmGMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0I2MDk3MzJE RjE0MTFGMEE1NEI2OEM0NUY2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGK/CIwDQYJKoZIhvcNAQELBQADggEBAH/gEjKPMVWjgNHD Qr6jV6geXDsI1RTOV1bO6199AguPBOOhfHNinbKuMVzdu1e1bxbCyAPwZwxNdGF5 rzQvHnmKP2BMxcsZIfT3PyTyDG02iBYj9h7TpCmgAw7QrAtU2aOmP2v9Nu/1CKGh 2e0URhOQZxVGuBPzhxigvm4C4k6IYHurUUhX/6BcsAo+/LVCB6SLX+4hiYqVDyXN hOVhfYzjS+/z71PKiq/U1oatKd+qm27v63amYWaeSvtDoHhApu0intDEaRNLNScj 5R0yflpKOMsElCmDvia4ut/O6G5Q2B2zzfFoZXQsY/+oonPaQN6nbMmPiWvNRWjm MMpR+Bw= -----END CERTIFICATE-----Generated at Wed Jan 21 15:54:59 2026 by rpki-client