This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8E3BABCAA3C711EEA0C5AB69C4F9AE02.roa File: 8E3BABCAA3C711EEA0C5AB69C4F9AE02.roa (raw, json) Hash identifier: RN7gwG/JkgJIh6GrCabEJxoeGUW9GcYnsPkP0oL0NaM= Subject key identifier: 11:FB:45:5D:87:D1:C1:D8:68:42:39:38:42:A5:6C:1D:DB:A3:73:D5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: CC98 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8E3BABCAA3C711EEA0C5AB69C4F9AE02.roa Signing time: Tue 06 Jan 2026 07:59:39 +0000 ROA not before: Tue 06 Jan 2026 07:59:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140124 IP address blocks: 36.50.204.0/24 maxlen: 24 103.153.179.0/24 maxlen: 24 2001:df3:4f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 11:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52376 (0xcc98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 6 07:59:39 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=695cc0eb-58bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b7:e3:de:49:ba:50:a0:0e:03:12:d3:b9:6d: 85:8d:ba:11:6b:22:a3:a8:d1:34:f9:9c:56:3f:05: 82:e7:06:2f:51:a7:37:32:8c:62:77:68:0e:58:3e: d7:2c:5a:e7:27:92:45:ba:d0:e7:30:f7:07:4f:55: b6:14:0e:fa:d9:1f:4d:51:78:1e:e3:65:36:3e:e3: 85:90:76:9b:37:19:00:87:d2:d0:56:f0:cc:6a:94: df:3d:19:e3:2a:ba:54:c3:cb:ca:0a:cb:36:45:62: 14:e4:4d:a1:9e:79:9e:ef:f0:e8:60:c7:c0:a1:15: e2:4a:f8:27:de:7d:85:cc:16:a9:fb:1f:b6:a7:56: 17:2c:2c:a9:91:af:48:01:ec:6d:2b:8f:09:d5:52: 54:71:6d:4f:0e:b9:50:e4:ce:ee:16:e4:bb:47:d9: c1:c6:9b:e1:c1:fb:a9:d8:6a:74:59:6d:ac:87:04: 85:a9:5b:01:b4:db:09:93:7e:22:f8:c8:58:5f:04: 81:40:b1:c7:a7:b7:f0:e5:46:f8:3f:5c:35:1a:8f: aa:5f:9e:32:64:3a:c9:b0:55:34:df:f5:b0:67:0c: cd:85:53:5d:1d:37:f2:39:31:00:b6:65:32:ea:67: 83:4e:87:83:bc:73:7a:52:06:9a:34:fb:ea:08:18: 80:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:FB:45:5D:87:D1:C1:D8:68:42:39:38:42:A5:6C:1D:DB:A3:73:D5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8E3BABCAA3C711EEA0C5AB69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.204.0/24 103.153.179.0/24 IPv6: 2001:df3:4f40::/48 Signature Algorithm: sha256WithRSAEncryption a7:0c:e6:c6:bd:6a:4c:d9:4f:f5:86:15:39:2d:16:2a:ce:2c: da:dd:76:ce:65:78:7f:e0:bc:5c:f1:ce:cb:fa:ba:fc:82:22: e8:01:7c:0b:dc:5b:5f:d3:e4:c6:4d:89:59:43:cc:5c:58:b7: a2:71:2f:e0:09:f3:a8:ac:69:c8:1a:6a:f6:1d:14:67:fc:eb: 68:50:08:89:85:9d:66:55:94:ed:7d:8c:05:20:ea:eb:a5:17: a8:e5:bd:3c:77:31:42:5e:44:5a:60:4c:da:35:7d:a5:18:9c: 68:47:4c:b6:47:71:c5:09:8f:5c:7a:6c:34:89:f7:94:6f:7a: 16:ff:d9:2d:05:09:c0:e6:b7:cf:14:69:ff:62:87:79:f8:31: 36:35:44:f5:21:fd:f9:3c:cf:aa:30:51:01:85:cb:cc:11:66: 13:fa:42:3a:53:11:8c:d7:a1:20:22:92:14:5d:ff:a0:89:f0: c4:18:28:96:f4:18:98:c6:e1:7a:f2:c9:e4:ac:da:9d:ab:98: da:23:b1:24:87:09:9e:be:0d:4e:20:78:ad:dd:c1:9a:aa:c0: 52:7d:fa:c8:74:23:f2:5d:9f:14:23:81:96:5d:27:85:62:c0: cc:87:6f:85:3d:44:db:22:2c:96:44:33:11:b3:f7:78:b7:e8: 1f:c8:2b:49 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDAMyYMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMMCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDEwNjA3NTkzOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAwwNNjk1Y2MwZWItNThiYjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALW3495JulCgDgMS07lthY26EWsio6jRNPmcVj8FgucGL1GnNzKMYndoDlg+ 1yxa5yeSRbrQ5zD3B09VthQO+tkfTVF4HuNlNj7jhZB2mzcZAIfS0FbwzGqU3z0Z 4yq6VMPLygrLNkViFORNoZ55nu/w6GDHwKEV4kr4J959hcwWqfsftqdWFywsqZGv SAHsbSuPCdVSVHFtTw65UOTO7hbku0fZwcab4cH7qdhqdFltrIcEhalbAbTbCZN+ IvjIWF8EgUCxx6e38OVG+D9cNRqPql+eMmQ6ybBVNN/1sGcMzYVTXR038jkxALZl Mupng06Hg7xzelIGmjT76ggYgCkCAwEAAaOCAqwwggKoMB0GA1UdDgQWBBQR+0Vd h9HB2GhCOThCpWwd26Nz1TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhFM0JBQkNB QTNDNzExRUVBMEM1QUI2OUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQAJDLMAwQAZ5mzMA8EAgACMAkDBwAgAQ3zT0AwDQYJKoZI hvcNAQELBQADggEBAKcM5sa9akzZT/WGFTktFirOLNrdds5leH/gvFzxzsv6uvyC IugBfAvcW1/T5MZNiVlDzFxYt6JxL+AJ86isacgaavYdFGf862hQCImFnWZVlO19 jAUg6uulF6jlvTx3MUJeRFpgTNo1faUYnGhHTLZHccUJj1x6bDSJ95Rvehb/2S0F CcDmt88Uaf9ih3n4MTY1RPUh/fk8z6owUQGFy8wRZhP6QjpTEYzXoSAikhRd/6CJ 8MQYKJb0GJjG4XryyeSs2p2rmNojsSSHCZ6+DU4geK3dwZqqwFJ9+sh0I/JdnxQj gZZdJ4ViwMyHb4U9RNsiLJZEMxGz93i36B/IK0k= -----END CERTIFICATE-----Generated at Mon Jan 19 23:24:10 2026 by rpki-client