This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EF8551F2CB7911F0AD3ED984C4F9AE02.roa File: EF8551F2CB7911F0AD3ED984C4F9AE02.roa (raw, json) Hash identifier: hoYkHHk+zxoQ8H7Jc63MXrqf2nBJVhbkJ7NBWalqFdU= Subject key identifier: 02:2D:80:D1:4B:71:25:65:37:F5:41:82:12:97:6D:0A:B5:14:07:FE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C848 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EF8551F2CB7911F0AD3ED984C4F9AE02.roa Signing time: Thu 27 Nov 2025 10:15:02 +0000 ROA not before: Thu 27 Nov 2025 10:15:02 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154391 IP address blocks: 2001:df6:5d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 12:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51272 (0xc848) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 27 10:15:02 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=692824a6-f436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5f:ad:5b:92:7d:99:f9:3c:ec:9a:b6:17:ee: d1:e1:2e:4e:ab:90:d9:ad:41:51:49:c5:64:33:80: c9:56:ff:90:fc:c8:49:5c:7b:8c:81:f4:4d:77:89: 19:63:d4:5a:1c:79:17:d5:81:17:da:fd:02:97:e8: cf:ba:dd:89:af:d7:18:43:7c:e0:1a:2c:53:8e:c7: c3:52:c7:e8:6b:d7:8c:a6:b1:97:71:99:ba:a4:76: c0:c1:e6:8b:3c:33:c5:2e:2a:8c:ed:ea:82:eb:ca: 57:a1:89:26:fa:b4:c0:b2:14:a0:14:3d:bc:ac:21: 7c:fb:63:c2:95:74:95:04:73:4f:2a:ff:1d:be:00: f3:db:04:da:9b:4a:9e:f1:80:fe:c5:3a:40:12:50: ab:ab:68:16:25:8a:5e:26:7b:8d:90:04:f8:51:9f: 71:d7:2d:e2:49:bf:0f:a4:93:79:b6:7c:b0:f1:c2: 74:1f:4f:6f:60:82:ea:e1:60:0a:7d:13:80:a7:f6: 59:6a:42:ba:d2:5b:d8:15:6c:48:1d:8b:3d:f5:f4: f8:a1:db:16:45:a5:94:ee:5c:91:3d:d4:2a:2d:3b: 9e:d5:87:27:04:0c:b3:ac:ac:6f:2f:a7:a4:29:33: c4:71:48:99:dd:b1:b1:f0:66:e1:fa:ab:b8:e3:4d: de:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:2D:80:D1:4B:71:25:65:37:F5:41:82:12:97:6D:0A:B5:14:07:FE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EF8551F2CB7911F0AD3ED984C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:5d40::/48 Signature Algorithm: sha256WithRSAEncryption 46:13:26:91:a9:76:c3:b7:aa:46:17:d1:18:73:7a:67:86:db: 97:83:ab:b1:7b:20:97:73:52:30:42:5c:7c:17:7d:2a:a0:0d: 0f:0c:59:7b:d4:87:c5:51:65:ef:29:a9:75:d2:f7:9c:f9:b0: 4f:ca:94:e8:2d:0f:09:1e:1d:54:c9:97:ad:82:6c:72:3a:2b: 1d:08:6f:88:75:18:3e:3b:3d:3b:94:3f:71:cc:cf:d1:f3:0a: e0:61:91:f8:6e:d5:9b:2b:7b:85:54:43:cd:5a:6a:8d:77:ce: 81:65:a2:e8:30:1e:f1:61:1c:0b:fc:13:88:24:3e:4d:f3:ee: 3e:b5:e1:6f:1e:2d:85:c7:1a:a2:75:32:eb:d3:d3:74:92:e5: b1:82:9c:bf:84:33:c8:64:29:1c:89:d6:61:1c:ae:42:00:54: 39:74:07:5b:e2:87:99:e0:ba:4c:cd:fc:55:f8:aa:82:83:c0: db:c3:40:92:b6:40:c8:9e:63:6d:e1:60:4a:9c:08:d6:c7:79: f3:8b:f6:8c:4d:b0:25:7b:64:b8:d7:0e:1a:3d:b6:ef:76:c0: a9:bc:f8:d3:34:65:1f:d0:3e:52:5b:32:d1:fa:c1:f6:81:37: 47:c4:2c:46:6f:dc:da:e8:96:92:f8:d4:95:4c:8d:7b:18:92: f4:ba:c2:df -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAMhIMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTEyNzEwMTUwMloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjkyODI0YTYtZjQzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANJfrVuSfZn5POyathfu0eEuTquQ2a1BUUnFZDOAyVb/kPzISVx7jIH0TXeJ GWPUWhx5F9WBF9r9Apfoz7rdia/XGEN84BosU47Hw1LH6GvXjKaxl3GZuqR2wMHm izwzxS4qjO3qguvKV6GJJvq0wLIUoBQ9vKwhfPtjwpV0lQRzTyr/Hb4A89sE2ptK nvGA/sU6QBJQq6toFiWKXiZ7jZAE+FGfcdct4km/D6STebZ8sPHCdB9Pb2CC6uFg Cn0TgKf2WWpCutJb2BVsSB2LPfX0+KHbFkWllO5ckT3UKi07ntWHJwQMs6ysby+n pCkzxHFImd2xsfBm4fqruONN3hkCAwEAAaOCApgwggKUMB0GA1UdDgQWBBQCLYDR S3ElZTf1QYISl20KtRQH/jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VGODU1MUYy Q0I3OTExRjBBRDNFRDk4NEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9l1AMA0GCSqGSIb3DQEBCwUAA4IBAQBGEyaRqXbD t6pGF9EYc3pnhtuXg6uxeyCXc1IwQlx8F30qoA0PDFl71IfFUWXvKal10vec+bBP ypToLQ8JHh1UyZetgmxyOisdCG+IdRg+Oz07lD9xzM/R8wrgYZH4btWbK3uFVEPN WmqNd86BZaLoMB7xYRwL/BOIJD5N8+4+teFvHi2FxxqidTLr09N0kuWxgpy/hDPI ZCkcidZhHK5CAFQ5dAdb4oeZ4LpMzfxV+KqCg8Dbw0CStkDInmNt4WBKnAjWx3nz i/aMTbAle2S41w4aPbbvdsCpvPjTNGUf0D5SWzLR+sH2gTdHxCxGb9za6JaS+NSV TI17GJL0usLf -----END CERTIFICATE-----Generated at Fri Dec 5 17:19:24 2025 by rpki-client