This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/010C3F02D1D411F084EFC676C4F9AE02.roa File: 010C3F02D1D411F084EFC676C4F9AE02.roa (raw, json) Hash identifier: N2hb8oArXvy0hR1h8enG93EUKR62AF8McaJDKTeVJ84= Subject key identifier: FC:CA:D9:04:8A:12:D3:9C:28:9E:DE:32:68:B3:C1:71:23:33:0F:15 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C9B8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/010C3F02D1D411F084EFC676C4F9AE02.roa Signing time: Fri 05 Dec 2025 12:14:53 +0000 ROA not before: Fri 05 Dec 2025 12:14:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154403 IP address blocks: 2001:df6:65c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 12:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51640 (0xc9b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 5 12:14:53 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6932ccbd-8138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:4a:14:1c:2f:0a:0e:34:70:8a:7e:24:6b:91: 66:66:7d:5d:46:ae:b5:94:bc:89:cc:cf:83:ac:1b: 94:07:b8:93:39:e6:b4:cf:e1:8d:e7:58:f9:fe:36: 0a:68:1f:64:f3:bd:85:32:be:65:a1:d3:f5:34:9d: 01:1f:16:b9:bc:ea:d9:99:de:6d:b4:8f:3e:25:f9: 79:a4:a8:16:c7:a7:b3:c7:d4:ec:a0:2d:ab:3e:16: 8c:08:b5:45:17:3a:ba:0b:d7:73:dd:e4:e8:d0:79: 6c:cb:44:69:b9:c9:39:bc:05:04:77:ff:10:a7:c2: c0:16:49:2b:43:bf:5a:f1:93:bc:ff:8f:14:50:e3: bb:c6:d2:af:52:9e:6c:98:b8:67:da:d6:3e:b4:f3: 8b:63:95:18:ab:87:ff:dc:db:73:2a:48:b5:16:ae: 3b:b6:0b:80:d3:18:f2:07:68:10:64:bc:23:08:e2: c0:50:90:2a:d7:66:d1:ff:44:98:26:97:1c:a0:4f: d2:53:ce:fb:32:8c:a5:1a:72:73:eb:0c:7c:5d:a1: 98:db:b1:94:7d:7e:9d:52:bd:d8:0d:71:ee:4a:e9: 10:c0:d3:0b:c3:91:09:5d:81:f4:62:2f:fa:43:f2: 6c:59:5c:4a:f7:ee:a6:84:0f:c7:2b:5e:f5:ba:48: c5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:CA:D9:04:8A:12:D3:9C:28:9E:DE:32:68:B3:C1:71:23:33:0F:15 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/010C3F02D1D411F084EFC676C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:65c0::/48 Signature Algorithm: sha256WithRSAEncryption 7d:71:0b:d6:8c:09:d1:3d:6d:87:70:2c:e6:b1:43:40:87:b1: 55:71:53:c3:18:71:fe:79:05:e2:25:a8:f3:fc:78:9b:19:09: 66:50:9f:e0:91:db:6f:5f:ef:b6:9f:1f:f4:bd:69:16:c2:03: e7:2f:8d:6e:19:21:0e:69:d6:f5:ee:a9:dc:95:d9:1c:4a:03: e9:f4:2b:15:77:c1:ad:2a:1e:77:d1:09:30:03:fa:3c:68:fb: 92:2e:30:ee:46:a4:7a:dd:b1:97:31:00:b9:64:3c:9a:29:b3: 3f:ee:6c:3c:61:5a:63:0c:1b:91:a9:25:a4:07:c7:5b:eb:34: 51:9d:7f:7b:9c:75:ab:3f:25:c5:cb:82:db:ed:75:fa:8f:c3: cd:ef:02:7b:ea:13:87:87:c5:e4:93:73:a6:50:2b:82:53:df: bb:e9:dd:da:7e:2e:f8:e3:59:e0:23:42:d7:00:38:7b:11:37: 48:04:ba:91:10:e9:5b:14:e8:19:e9:01:11:44:4a:18:82:99: 66:cc:4b:29:f2:a7:53:c5:54:89:f5:76:ba:de:4d:5a:92:ff: 45:c6:e8:ec:db:6b:4f:0c:cc:15:c8:fa:44:a1:82:3d:4f:1b: 3a:54:74:ea:fe:5a:b1:e6:e0:43:3b:2d:fa:94:a5:dd:79:04: bd:dc:b1:ee -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAMm4MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTIwNTEyMTQ1M1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjkzMmNjYmQtODEzODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPdKFBwvCg40cIp+JGuRZmZ9XUautZS8iczPg6wblAe4kznmtM/hjedY+f42 CmgfZPO9hTK+ZaHT9TSdAR8Wubzq2ZnebbSPPiX5eaSoFsens8fU7KAtqz4WjAi1 RRc6ugvXc93k6NB5bMtEabnJObwFBHf/EKfCwBZJK0O/WvGTvP+PFFDju8bSr1Ke bJi4Z9rWPrTzi2OVGKuH/9zbcypItRauO7YLgNMY8gdoEGS8IwjiwFCQKtdm0f9E mCaXHKBP0lPO+zKMpRpyc+sMfF2hmNuxlH1+nVK92A1x7krpEMDTC8ORCV2B9GIv +kPybFlcSvfupoQPxyte9bpIxdMCAwEAAaOCApgwggKUMB0GA1UdDgQWBBT8ytkE ihLTnCie3jJos8FxIzMPFTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzAxMEMzRjAy RDFENDExRjA4NEVGQzY3NkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9mXAMA0GCSqGSIb3DQEBCwUAA4IBAQB9cQvWjAnR PW2HcCzmsUNAh7FVcVPDGHH+eQXiJajz/HibGQlmUJ/gkdtvX++2nx/0vWkWwgPn L41uGSEOadb17qncldkcSgPp9CsVd8GtKh530QkwA/o8aPuSLjDuRqR63bGXMQC5 ZDyaKbM/7mw8YVpjDBuRqSWkB8db6zRRnX97nHWrPyXFy4Lb7XX6j8PN7wJ76hOH h8Xkk3OmUCuCU9+76d3afi7441ngI0LXADh7ETdIBLqREOlbFOgZ6QERREoYgplm zEsp8qdTxVSJ9Xa63k1akv9Fxujs22tPDMwVyPpEoYI9Txs6VHTq/lqx5uBDOy36 lKXdeQS93LHu -----END CERTIFICATE-----Generated at Fri Dec 5 17:19:25 2025 by rpki-client