This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0445700BFB711F095A5B911C4F9AE02.roa File: A0445700BFB711F095A5B911C4F9AE02.roa (raw, json) Hash identifier: s9eh9PQF3KruBzFWxmePZihI7AwoV+fjOIAHdlLJ37U= Subject key identifier: 52:4F:5F:5B:3F:97:B0:A4:3C:C9:B8:CE:E5:03:06:21:AE:01:53:93 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C74B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0445700BFB711F095A5B911C4F9AE02.roa Signing time: Wed 12 Nov 2025 11:06:24 +0000 ROA not before: Wed 12 Nov 2025 11:06:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153260 IP address blocks: 2001:df4:65c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 12:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51019 (0xc74b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 12 11:06:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69146a2f-1efd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5e:f6:81:fe:21:52:df:d6:44:6f:f9:a4:a1: 1d:4e:a6:b5:6d:8c:e8:6e:9b:bf:0b:23:c8:a6:2c: c6:b3:df:f0:1c:40:86:b5:c8:72:ae:69:99:c5:3b: 4f:3a:c5:3b:85:bc:ec:f0:d6:47:a8:9b:66:05:ea: 14:8e:de:b2:74:dd:1e:a3:93:a3:c6:06:87:42:78: 3f:94:ec:9f:20:e4:54:cd:fa:96:17:0e:71:8a:f4: 0c:00:95:a2:ca:b6:e2:2a:15:d0:de:10:12:6d:4b: ca:1d:5d:e6:5b:4a:86:3e:76:8f:91:eb:d6:c2:d9: 47:a1:c8:1d:bf:fe:1b:42:93:88:06:3c:0f:62:64: 92:c4:a4:6c:44:8b:0d:ab:59:51:c9:84:3e:44:0b: 45:ac:e0:40:74:39:92:8a:39:68:fb:98:85:32:fd: 4f:45:d4:00:3e:9d:89:7d:36:4a:47:a6:1a:bb:72: 03:0f:38:7a:77:b8:80:9a:d7:dd:d0:e3:e6:d8:50: e3:f2:33:61:36:2f:24:da:d1:22:6a:24:2a:6f:b8: fc:e0:35:20:40:55:dd:36:a9:4f:ae:bc:18:39:e4: 4a:18:fb:95:86:11:b9:be:80:16:2c:b2:77:8d:18: 11:4c:cc:ff:29:b7:ef:ac:2c:6a:48:39:35:e7:46: bf:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:4F:5F:5B:3F:97:B0:A4:3C:C9:B8:CE:E5:03:06:21:AE:01:53:93 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0445700BFB711F095A5B911C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:65c0::/48 Signature Algorithm: sha256WithRSAEncryption 0a:43:c8:88:e2:fd:11:18:46:1d:d1:fc:94:84:6e:7a:73:3e: bb:ba:9c:d1:60:5a:8f:75:c9:de:a1:e1:d7:74:ee:67:e0:8e: 77:e1:0c:5d:10:6c:ea:e8:06:0e:1b:40:f5:12:0d:c0:1c:81: 91:c0:e4:c1:c6:2c:ab:40:b7:3e:16:7d:74:60:53:8a:76:86: ae:08:1c:2c:1c:a9:30:66:0b:5b:51:45:52:34:c3:4b:c2:83: 57:64:5f:0f:1c:5f:7a:c9:f1:7c:a6:0d:ba:15:f1:4f:76:32: 99:89:3a:ed:55:f1:ec:f8:a7:9f:b8:02:c8:73:3a:12:a0:af: 02:1f:17:a6:31:5b:4b:28:ef:aa:11:57:c3:f2:c0:50:01:fe: 2a:7f:cf:38:f1:38:6a:62:97:0c:49:fd:c4:f8:8b:e2:46:a2: 33:0e:0a:05:c1:8a:3f:d5:52:bf:2d:ac:23:76:4e:54:99:6c: 55:2b:aa:10:c6:3d:8b:3f:63:79:66:a7:b7:58:02:c6:25:c1: 21:c2:26:cc:11:41:7a:a4:b6:5f:cb:fa:60:7b:6f:26:05:e1: 2c:fb:14:cf:6f:6f:c5:c6:30:88:0e:f8:74:a2:7a:fc:3d:58: 8d:c9:03:64:c7:1f:aa:ff:d5:8c:c6:e4:51:ca:bd:9b:eb:44: c8:ce:1b:2a -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAMdLMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTExMjExMDYyNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjkxNDZhMmYtMWVmZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANle9oH+IVLf1kRv+aShHU6mtW2M6G6bvwsjyKYsxrPf8BxAhrXIcq5pmcU7 TzrFO4W87PDWR6ibZgXqFI7esnTdHqOTo8YGh0J4P5TsnyDkVM36lhcOcYr0DACV osq24ioV0N4QEm1Lyh1d5ltKhj52j5Hr1sLZR6HIHb/+G0KTiAY8D2JkksSkbESL DatZUcmEPkQLRazgQHQ5koo5aPuYhTL9T0XUAD6diX02SkemGrtyAw84ene4gJrX 3dDj5thQ4/IzYTYvJNrRImokKm+4/OA1IEBV3TapT668GDnkShj7lYYRub6AFiyy d40YEUzM/ym376wsakg5NedGvz8CAwEAAaOCApgwggKUMB0GA1UdDgQWBBRST19b P5ewpDzJuM7lAwYhrgFTkzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0EwNDQ1NzAw QkZCNzExRjA5NUE1QjkxMUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9GXAMA0GCSqGSIb3DQEBCwUAA4IBAQAKQ8iI4v0R GEYd0fyUhG56cz67upzRYFqPdcneoeHXdO5n4I534QxdEGzq6AYOG0D1Eg3AHIGR wOTBxiyrQLc+Fn10YFOKdoauCBwsHKkwZgtbUUVSNMNLwoNXZF8PHF96yfF8pg26 FfFPdjKZiTrtVfHs+KefuALIczoSoK8CHxemMVtLKO+qEVfD8sBQAf4qf8848Thq YpcMSf3E+IviRqIzDgoFwYo/1VK/Lawjdk5UmWxVK6oQxj2LP2N5Zqe3WALGJcEh wibMEUF6pLZfy/pge28mBeEs+xTPb2/FxjCIDvh0onr8PViNyQNkxx+q/9WMxuRR yr2b60TIzhsq -----END CERTIFICATE-----Generated at Fri Dec 5 17:19:22 2025 by rpki-client