This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/EF2F049E74C411EFBE28DF30C4F9AE02.roa File: EF2F049E74C411EFBE28DF30C4F9AE02.roa (raw, json) Hash identifier: /qObeAXZZPBmF+fe2lEkCrFKtWaZogUjrSnNhrls12E= Subject key identifier: CD:B0:AF:EF:09:1C:C9:4D:FE:53:62:AF:87:C3:B7:0D:C1:8D:3D:7B Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 21F0 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/EF2F049E74C411EFBE28DF30C4F9AE02.roa Signing time: Wed 21 Jan 2026 08:37:47 +0000 ROA not before: Wed 21 Jan 2026 08:37:47 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151690 IP address blocks: 160.19.35.0/24 maxlen: 24 160.187.48.0/24 maxlen: 24 160.187.207.0/24 maxlen: 24 160.191.124.0/24 maxlen: 24 160.191.125.0/24 maxlen: 24 165.99.142.0/24 maxlen: 24 165.99.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 13:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8688 (0x21f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jan 21 08:37:47 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6970905b-f39f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ef:d1:2c:c8:37:e6:c5:5f:1e:79:26:d0:0c: 7d:01:6e:10:eb:2a:3d:79:c3:f1:a3:1b:89:76:f9: 3b:b9:eb:a2:25:6d:14:b0:b0:29:74:ff:71:cf:48: 9f:62:d6:f7:49:55:d9:43:28:7c:e9:0d:cb:54:92: d2:cc:6d:55:90:63:3d:eb:da:71:5b:3e:a4:77:75: 46:9c:44:6e:49:26:5a:3d:d6:94:2e:55:35:27:2f: b4:73:10:f0:2c:b4:d3:4f:dd:77:d9:2e:13:1a:a3: d5:30:3b:aa:76:7d:e9:0f:40:91:83:38:1c:59:01: 3f:8d:7e:15:d2:00:eb:32:f1:f2:dc:f2:9a:ff:8b: 68:9c:bb:ca:bd:ee:2f:b9:b9:4f:a0:a5:f3:23:26: bc:88:a1:4f:82:2b:1f:26:00:46:54:13:5b:98:dc: 91:1b:5d:28:c5:a0:46:f9:3c:ec:90:50:79:77:2f: 7a:85:01:ba:e9:33:2c:21:8a:84:80:96:be:5e:e4: ea:6a:43:a8:da:0d:a9:6e:ae:43:1b:0d:68:19:81: 87:86:44:16:a5:bb:ea:56:e1:8c:3f:e7:e2:9c:90: 90:fb:ef:8e:47:2c:0f:bb:47:ef:0a:a5:a7:d9:d0: 7a:8c:3a:18:59:c4:3a:f2:62:8f:79:fe:8b:06:9b: 98:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B0:AF:EF:09:1C:C9:4D:FE:53:62:AF:87:C3:B7:0D:C1:8D:3D:7B X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/EF2F049E74C411EFBE28DF30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.19.35.0/24 160.187.48.0/24 160.187.207.0/24 160.191.124.0/23 165.99.142.0/23 Signature Algorithm: sha256WithRSAEncryption c9:c6:c3:8b:e0:12:81:21:76:a2:e7:65:5d:70:73:33:b7:62: 08:66:3a:24:12:70:5a:b0:fb:57:cd:39:f0:cd:86:75:21:92: 5f:15:a1:01:b2:eb:1b:61:f9:2f:17:c3:d3:97:93:a9:d8:2e: 33:d4:13:02:66:4f:11:c4:f8:05:7b:01:a4:8c:33:7b:fc:44: 1a:3a:4a:a7:29:26:f4:c9:8d:e6:26:b0:f4:34:f9:08:6d:28: 27:af:f2:f6:e6:6a:10:4c:15:62:be:07:dd:d6:45:4d:8e:4c: ee:6d:75:1f:ea:1d:f8:a5:7d:fa:96:b5:77:35:37:c3:78:90: a4:88:66:55:ed:46:4b:64:71:00:25:36:41:2c:3a:68:18:f5: a4:ce:01:79:be:1f:31:41:0f:cc:f3:fd:06:32:ed:cf:07:0c: 50:97:f4:72:2d:e8:35:33:a5:8e:c5:94:d0:d7:b7:dc:53:eb: 49:13:8f:9e:3b:b9:1c:75:18:1d:25:80:2a:64:b8:2b:6c:7b: 09:40:1b:42:e7:5e:bf:0c:48:09:68:c2:a4:a8:54:73:de:b6: 1e:e7:fd:4a:da:67:e4:e0:a1:ab:a7:95:c6:62:5c:54:66:92: f6:4f:fe:2d:57:5d:06:c6:70:3b:78:72:73:4d:66:f8:52:68: 67:55:65:19 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICIfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwMTIxMDgzNzQ3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTcwOTA1Yi1mMzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAte/RLMg35sVfHnkm0Ax9AW4Q6yo9ecPxoxuJdvk7ueuiJW0UsLApdP9xz0if Ytb3SVXZQyh86Q3LVJLSzG1VkGM969pxWz6kd3VGnERuSSZaPdaULlU1Jy+0cxDw LLTTT9132S4TGqPVMDuqdn3pD0CRgzgcWQE/jX4V0gDrMvHy3PKa/4tonLvKve4v ublPoKXzIya8iKFPgisfJgBGVBNbmNyRG10oxaBG+TzskFB5dy96hQG66TMsIYqE gJa+XuTqakOo2g2pbq5DGw1oGYGHhkQWpbvqVuGMP+finJCQ+++ORywPu0fvCqWn 2dB6jDoYWcQ68mKPef6LBpuYNQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFM2wr+8J HMlN/lNir4fDtw3BjT17MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRUYyRjA0OUU3 NEM0MTFFRkJFMjhERjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBACgEyMDBACguzADBACgu88DBAGgv3wDBAGlY44wDQYJKoZI hvcNAQELBQADggEBAMnGw4vgEoEhdqLnZV1wczO3YghmOiQScFqw+1fNOfDNhnUh kl8VoQGy6xth+S8Xw9OXk6nYLjPUEwJmTxHE+AV7AaSMM3v8RBo6SqcpJvTJjeYm sPQ0+QhtKCev8vbmahBMFWK+B93WRU2OTO5tdR/qHfilffqWtXc1N8N4kKSIZlXt RktkcQAlNkEsOmgY9aTOAXm+HzFBD8zz/QYy7c8HDFCX9HIt6DUzpY7FlNDXt9xT 60kTj547uRx1GB0lgCpkuCtsewlAG0LnXr8MSAlowqSoVHPeth7n/UraZ+Tgoaun lcZiXFRmkvZP/i1XXQbGcDt4cnNNZvhSaGdVZRk= -----END CERTIFICATE-----Generated at Wed Jan 21 15:58:03 2026 by rpki-client