This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4A1559E0E88B11F0B04EFFE64E6F56BC.roa File: 4A1559E0E88B11F0B04EFFE64E6F56BC.roa (raw, json) Hash identifier: FEzyJ4VurJuTEOSYHoMDf7MFlaHbJl33YtAHKWUUx48= Subject key identifier: D2:FF:C7:99:A7:C6:FF:81:83:93:14:7F:9B:5B:5D:83:9B:40:60:A9 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 21A2 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4A1559E0E88B11F0B04EFFE64E6F56BC.roa Signing time: Sat 03 Jan 2026 10:40:02 +0000 ROA not before: Sat 03 Jan 2026 10:40:02 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24186 IP address blocks: 144.16.0.0/18 maxlen: 24 144.16.192.0/18 maxlen: 24 158.144.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 13:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8610 (0x21a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jan 3 10:40:02 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6958f202-a020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:92:4f:98:e0:9d:17:53:94:fd:43:f8:2e:5d: 29:14:8d:c8:7e:5d:5a:df:0f:c6:33:6b:1b:c5:9a: 5e:8a:e8:b6:1b:be:85:af:13:02:11:8e:16:94:ae: fc:f6:ef:ac:bb:ce:f7:aa:d0:5b:09:e1:9e:9c:ee: 20:d6:ff:53:b1:3c:ce:10:d6:20:5e:e5:bf:bb:81: 22:19:11:66:6f:67:1b:5d:32:a9:7d:0d:49:d5:25: 01:31:4b:2e:7a:50:8f:c9:46:3c:6d:dc:76:ab:74: 3f:6d:4e:34:b5:b8:64:7b:ae:13:a3:80:0d:ad:8c: 9b:4f:3b:4f:4c:c5:86:d1:69:04:3b:22:ab:a0:d9: 0e:08:86:dc:ce:cd:5a:03:4e:dc:f1:f5:aa:87:cc: 0e:39:4f:7b:e4:96:5d:5b:7e:9b:d9:a7:f4:f5:13: f9:0f:94:8f:21:25:d1:23:55:6c:65:7c:e2:b1:2d: 52:8c:cb:51:8e:b3:59:d9:39:92:7b:93:d2:cb:01: db:b5:51:59:77:6e:9f:f5:c3:e9:fc:84:e1:28:d4: 90:e1:21:8f:65:23:d3:57:06:da:be:5c:96:9c:27: e4:4b:38:12:6f:e2:89:15:2a:76:71:63:84:c5:06: 31:0f:e6:fc:9a:23:bd:a0:f6:91:1c:0d:7f:eb:fe: 89:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:FF:C7:99:A7:C6:FF:81:83:93:14:7F:9B:5B:5D:83:9B:40:60:A9 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4A1559E0E88B11F0B04EFFE64E6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 144.16.0.0/18 144.16.192.0/18 158.144.186.0/23 Signature Algorithm: sha256WithRSAEncryption 99:b1:51:8d:da:ae:02:0e:74:27:71:73:a6:88:d9:f1:59:34: 36:71:bf:0d:ad:f5:fe:8e:51:3f:ae:ec:c0:32:80:60:e8:1a: 68:4e:77:9d:ab:60:7e:1d:75:63:9c:3a:c2:d3:25:66:56:f9: 5b:35:bd:21:82:5a:16:01:18:13:1c:59:60:ee:0e:96:82:55: 00:7b:d3:1f:cd:e5:bf:06:c9:1c:a9:64:40:10:b4:e7:04:b9: e7:c8:b0:3d:66:e6:f1:9f:d7:30:90:87:3c:bb:60:4d:44:00: c4:4d:92:7d:88:dd:d9:c9:be:dd:ed:5f:a0:c3:f3:da:ab:78: cf:2e:95:51:22:86:b5:ce:34:db:97:52:f7:dc:82:b5:5e:15: 64:66:da:07:3e:5d:b9:69:d9:ea:a6:86:ce:37:2b:03:31:dc: ef:af:e2:2a:0b:52:e4:5b:cc:1c:b0:56:ea:a8:ef:85:78:a1: 61:47:8c:b5:2f:e2:25:eb:82:ec:ff:3d:9b:c9:a3:59:36:1b: 76:43:e3:36:b7:e2:38:87:89:38:1d:e8:e3:61:1d:dc:5a:06: 4f:3f:c3:7d:fd:24:7c:3e:52:b1:51:f3:29:f6:bb:a6:cf:4a: 88:d8:77:1f:be:34:d9:b1:47:79:f8:81:1b:7b:62:4f:4c:06: 4a:e5:cb:f4 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICIaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwMTAzMTA0MDAyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU4ZjIwMi1hMDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJJPmOCdF1OU/UP4Ll0pFI3Ifl1a3w/GM2sbxZpeiui2G76FrxMCEY4WlK78 9u+su873qtBbCeGenO4g1v9TsTzOENYgXuW/u4EiGRFmb2cbXTKpfQ1J1SUBMUsu elCPyUY8bdx2q3Q/bU40tbhke64To4ANrYybTztPTMWG0WkEOyKroNkOCIbczs1a A07c8fWqh8wOOU975JZdW36b2af09RP5D5SPISXRI1VsZXzisS1SjMtRjrNZ2TmS e5PSywHbtVFZd26f9cPp/IThKNSQ4SGPZSPTVwbavlyWnCfkSzgSb+KJFSp2cWOE xQYxD+b8miO9oPaRHA1/6/6JWQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNL/x5mn xv+Bg5MUf5tbXYObQGCpMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNEExNTU5RTBF ODhCMTFGMEIwNEVGRkU2NEU2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAaQEAADBAaQEMADBAGekLowDQYJKoZIhvcNAQELBQADggEB AJmxUY3argIOdCdxc6aI2fFZNDZxvw2t9f6OUT+u7MAygGDoGmhOd52rYH4ddWOc OsLTJWZW+Vs1vSGCWhYBGBMcWWDuDpaCVQB70x/N5b8GyRypZEAQtOcEuefIsD1m 5vGf1zCQhzy7YE1EAMRNkn2I3dnJvt3tX6DD89qreM8ulVEihrXONNuXUvfcgrVe FWRm2gc+Xblp2eqmhs43KwMx3O+v4ioLUuRbzBywVuqo74V4oWFHjLUv4iXrguz/ PZvJo1k2G3ZD4za34jiHiTgd6ONhHdxaBk8/w339JHw+UrFR8yn2u6bPSojYdx++ NNmxR3n4gRt7Yk9MBkrly/Q= -----END CERTIFICATE-----Generated at Wed Jan 21 15:56:08 2026 by rpki-client