This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D71ED7A8F0111F08C9C2636C4F9AE02.roa File: 5D71ED7A8F0111F08C9C2636C4F9AE02.roa (raw, json) Hash identifier: QLnHbKJEtzerBhV+3MvmQVccHfOOBe48PaoctO36EUc= Subject key identifier: C7:0B:DE:E6:94:8D:51:64:CA:BB:17:63:9C:4F:F0:B2:4F:A6:91:09 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C4A8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D71ED7A8F0111F08C9C2636C4F9AE02.roa Signing time: Thu 11 Sep 2025 11:20:47 +0000 ROA not before: Thu 11 Sep 2025 11:20:47 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139495 IP address blocks: 2001:df4:bb80::/48 maxlen: 48 Validation: Failed, certificate revoked on Fri 12 Sep 2025 08:18:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50344 (0xc4a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 11 11:20:47 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68c2b08f-162d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:57:e4:e3:69:99:f2:69:2f:61:10:b7:bb:e2: 22:d5:17:ed:f2:ab:e6:a0:69:1b:ab:34:e0:5d:dd: e9:e6:ce:22:00:ca:36:bc:07:50:8b:21:08:63:07: c7:89:e6:e1:12:ff:1d:c6:14:14:a6:3a:a9:91:7d: 0e:dd:e7:a8:e3:29:61:78:1a:e2:a5:78:a5:dc:fa: d9:c5:71:85:20:84:eb:cf:79:00:a3:ee:ec:25:a5: c7:ed:38:8f:15:85:b1:98:21:cc:b5:fd:49:55:4e: 8f:93:7d:10:41:7b:4a:17:ba:65:0b:4f:83:bc:a8: ac:12:3f:cd:04:be:69:cd:bc:e6:e0:04:b0:e4:18: b7:3a:33:be:fe:1f:46:97:6c:a9:4b:91:63:c8:a8: 5b:31:79:9c:db:d0:60:52:1e:83:ab:56:82:b2:77: 6b:9b:8e:12:25:4b:48:67:b7:d8:40:03:78:f7:63: da:9e:7d:af:05:59:23:b9:4d:cc:78:d7:96:bc:0c: 78:75:6b:78:a6:57:5b:67:71:15:37:ad:8d:3b:49: 78:44:8c:60:e9:cb:16:01:1d:d7:e4:ba:81:82:f4: 78:cf:50:1a:a9:47:2e:5e:23:f9:ae:29:40:c6:31: 0e:3f:6b:0f:44:cf:0f:58:a9:e4:3a:2f:a0:f8:ca: 1f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:0B:DE:E6:94:8D:51:64:CA:BB:17:63:9C:4F:F0:B2:4F:A6:91:09 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D71ED7A8F0111F08C9C2636C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:bb80::/48 Signature Algorithm: sha256WithRSAEncryption 9e:4b:4a:7e:30:9d:d5:37:02:de:9d:c3:6b:c3:b6:f1:8f:39: e9:30:2c:e0:4e:65:ad:97:8d:e3:c0:c6:3b:3a:1f:e1:d3:ba: b2:0c:a9:ab:ab:21:9b:8a:95:e3:b9:51:b9:08:2b:ac:d7:21: 3e:ac:88:f7:d0:7a:8b:ad:90:f0:df:95:32:eb:38:c1:fe:6e: 89:da:98:16:0a:9a:68:aa:40:12:8b:b2:ae:cb:af:2e:85:fd: 20:01:a9:63:b8:cc:79:fb:2d:ad:6e:48:d4:0f:3a:45:a2:28: bb:4b:37:8b:5e:b7:58:f2:62:18:a4:ca:ce:82:3d:b2:ab:31: 6f:f6:ce:d4:d8:8e:58:7f:f0:dc:b8:36:1b:7d:27:52:e4:ff: 86:e4:37:e7:62:58:7e:e7:03:06:3c:e7:72:53:24:11:f3:46: b7:cf:cf:5f:9d:80:bb:18:eb:0c:c3:2f:ec:61:7e:bb:b9:ea: a0:33:0d:df:8e:8b:96:99:f1:f6:1a:e8:d8:bf:be:29:7f:85: 72:af:bc:e0:f3:7e:84:cf:0a:7c:f9:d2:6e:cc:29:20:b8:d1: 09:92:f8:09:be:84:8f:4d:a4:2a:33:92:d2:dc:ee:b0:1b:cb: d2:e2:7c:ab:0b:51:f7:9d:58:af:f4:48:90:a2:28:43:44:06: 77:0c:9e:8c -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAMSoMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDkxMTExMjA0N1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhjMmIwOGYtMTYyZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9X5ONpmfJpL2EQt7viItUX7fKr5qBpG6s04F3d6ebOIgDKNrwHUIshCGMH x4nm4RL/HcYUFKY6qZF9Dt3nqOMpYXga4qV4pdz62cVxhSCE6895AKPu7CWlx+04 jxWFsZghzLX9SVVOj5N9EEF7She6ZQtPg7yorBI/zQS+ac285uAEsOQYtzozvv4f RpdsqUuRY8ioWzF5nNvQYFIeg6tWgrJ3a5uOEiVLSGe32EADePdj2p59rwVZI7lN zHjXlrwMeHVreKZXW2dxFTetjTtJeESMYOnLFgEd1+S6gYL0eM9QGqlHLl4j+a4p QMYxDj9rD0TPD1ip5DovoPjKH+8CAwEAAaOCApgwggKUMB0GA1UdDgQWBBTHC97m lI1RZMq7F2OcT/CyT6aRCTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzVENzFFRDdB OEYwMTExRjA4QzlDMjYzNkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9LuAMA0GCSqGSIb3DQEBCwUAA4IBAQCeS0p+MJ3V NwLencNrw7bxjznpMCzgTmWtl43jwMY7Oh/h07qyDKmrqyGbipXjuVG5CCus1yE+ rIj30HqLrZDw35Uy6zjB/m6J2pgWCppoqkASi7Kuy68uhf0gAaljuMx5+y2tbkjU DzpFoii7SzeLXrdY8mIYpMrOgj2yqzFv9s7U2I5Yf/DcuDYbfSdS5P+G5DfnYlh+ 5wMGPOdyUyQR80a3z89fnYC7GOsMwy/sYX67ueqgMw3fjouWmfH2GujYv74pf4Vy r7zg836Ezwp8+dJuzCkguNEJkvgJvoSPTaQqM5LS3O6wG8vS4nyrC1H3nViv9EiQ oihDRAZ3DJ6M -----END CERTIFICATE-----Generated at Sat Dec 20 16:07:08 2025 by rpki-client