This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/D7FEF354562111EFA7B3F00AC4F9AE02.roa File: D7FEF354562111EFA7B3F00AC4F9AE02.roa (raw, json) Hash identifier: AmzfYDthHf9vNP4TrHHBYhJ0mbUtvWtqarSZwS5Zcek= Subject key identifier: 38:CE:4D:D7:49:B7:59:53:9B:D0:7C:93:26:E6:D5:E1:52:82:CA:BE Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 0192 Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/D7FEF354562111EFA7B3F00AC4F9AE02.roa Signing time: Mon 19 Jan 2026 03:22:55 +0000 ROA not before: Mon 19 Jan 2026 03:22:55 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 38819 IP address blocks: 120.88.192.0/18 maxlen: 18 120.88.192.0/19 maxlen: 19 120.88.224.0/20 maxlen: 20 120.88.224.0/24 maxlen: 24 120.88.225.0/24 maxlen: 24 120.88.226.0/24 maxlen: 24 120.88.227.0/24 maxlen: 24 120.88.230.0/24 maxlen: 24 120.88.232.0/24 maxlen: 24 120.88.236.0/24 maxlen: 24 120.88.237.0/24 maxlen: 24 120.88.240.0/24 maxlen: 24 120.88.241.0/24 maxlen: 24 120.88.242.0/24 maxlen: 24 120.88.243.0/24 maxlen: 24 120.88.245.0/24 maxlen: 24 120.88.246.0/24 maxlen: 24 120.88.252.0/24 maxlen: 24 120.88.253.0/24 maxlen: 24 120.88.254.0/24 maxlen: 24 202.4.192.0/19 maxlen: 19 202.4.196.0/24 maxlen: 24 202.4.208.0/24 maxlen: 24 223.130.32.0/19 maxlen: 19 2405:b200::/32 maxlen: 32 2405:b200:110:2600::/56 maxlen: 56 2405:b200:140:2600::/56 maxlen: 56 2405:b200:150:2600::/56 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:04:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B, serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: Jan 19 03:22:55 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=696da38f-8921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:79:a9:a6:85:09:af:d1:df:e0:a9:eb:8b:64: bb:29:8c:aa:eb:95:a4:ab:05:8c:c2:76:12:d6:2e: 22:f7:84:94:10:11:44:d9:77:6b:96:67:b5:f1:c1: d2:96:21:68:2f:cf:15:20:0c:48:b5:c6:96:65:d0: b0:c5:96:e6:94:eb:d2:2b:22:8f:71:ee:1d:34:67: d8:de:4d:72:74:fd:8b:94:5a:e5:57:cc:30:b4:b9: 2c:17:ef:94:f3:0d:6b:4c:2f:e6:fe:30:f7:9d:00: 26:23:9b:32:21:90:dd:8b:22:8b:4e:d8:ca:d5:76: d6:f2:06:aa:b7:ca:ef:f4:1f:03:02:1e:81:ba:77: 8d:cb:e7:4d:ae:4d:f3:40:0f:2b:8c:dc:51:78:47: d9:12:50:c8:55:1b:1a:88:0e:d0:97:28:d6:54:f0: 44:4f:82:70:a5:21:f0:a5:f0:00:df:81:4b:0e:ef: fb:9c:89:99:c3:31:eb:97:71:14:0c:81:ab:17:54: 58:19:7a:3e:18:9d:c1:3e:76:d2:d8:56:9b:e1:8f: 74:96:a1:44:ac:a5:f5:ed:4c:9b:c9:c4:66:c4:6c: df:e0:b5:f0:48:a3:bd:bb:06:5c:d0:cf:49:9c:9e: b1:96:54:8a:81:84:cf:f0:ed:85:d4:26:98:70:e5: f8:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:CE:4D:D7:49:B7:59:53:9B:D0:7C:93:26:E6:D5:E1:52:82:CA:BE X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/D7FEF354562111EFA7B3F00AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.88.192.0/18 202.4.192.0/19 223.130.32.0/19 IPv6: 2405:b200::/32 Signature Algorithm: sha256WithRSAEncryption 5f:61:35:ce:ed:76:f8:4c:c6:e5:6b:f3:fb:6e:75:42:9a:86: 9c:5e:71:10:92:b3:32:b3:19:f2:13:b5:b5:ad:bf:94:3b:fd: 79:72:46:7f:85:10:c6:d1:5f:9c:42:cf:94:cc:2d:1f:f5:fa: fb:d6:be:7d:32:9c:7d:34:a9:fe:80:f7:ed:d3:88:ec:42:c8: 13:f2:6a:eb:54:06:dd:cb:f1:b2:1f:2d:48:3a:7c:c6:be:27: d7:03:82:ef:89:1a:79:76:2b:17:26:56:98:0f:e1:83:bb:ad: 96:6b:33:1f:13:2c:1f:9e:08:08:26:10:83:9d:b2:98:86:56: 6b:ca:aa:98:9e:8b:40:da:b8:88:b8:79:2c:ef:9f:5c:0d:29: 18:92:77:a5:19:a6:66:b0:db:0b:6f:c0:60:b3:d4:64:5c:3b: bb:96:f9:a4:9a:4a:8e:d6:cc:37:da:55:fe:5f:44:c1:65:66: 8b:9b:86:2e:d5:64:41:4f:23:d1:01:20:dd:5b:4f:0d:d7:33: 9d:d0:c1:49:9f:61:ed:51:07:96:e7:54:5f:f9:aa:37:70:78: c7:82:25:16:2c:53:0b:0f:93:ed:c8:83:aa:99:9b:4c:a0:79: ef:aa:da:a3:65:52:00:e2:b2:2f:98:87:ea:0a:3e:25:53:c3: 0e:b5:34:15 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjYwMTE5MDMyMjU1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTZkYTM4Zi04OTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XmppoUJr9Hf4Knri2S7KYyq65WkqwWMwnYS1i4i94SUEBFE2Xdrlme18cHS liFoL88VIAxItcaWZdCwxZbmlOvSKyKPce4dNGfY3k1ydP2LlFrlV8wwtLksF++U 8w1rTC/m/jD3nQAmI5syIZDdiyKLTtjK1XbW8gaqt8rv9B8DAh6BuneNy+dNrk3z QA8rjNxReEfZElDIVRsaiA7QlyjWVPBET4JwpSHwpfAA34FLDu/7nImZwzHrl3EU DIGrF1RYGXo+GJ3BPnbS2Fab4Y90lqFErKX17UybycRmxGzf4LXwSKO9uwZc0M9J nJ6xllSKgYTP8O2F1CaYcOX4SwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFDjOTddJ t1lTm9B8kybm1eFSgsq+MB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVGN0IvQTEzMUIzOTRCQjM5MTFFRUE2NTU0MTdFQzRGOUFFMDIvRDdGRUYzNTQ1 NjIxMTFFRkE3QjNGMDBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAZ4WMADBAXKBMADBAXfgiAwDQQCAAIwBwMFACQFsgAwDQYJ KoZIhvcNAQELBQADggEBAF9hNc7tdvhMxuVr8/tudUKahpxecRCSszKzGfITtbWt v5Q7/XlyRn+FEMbRX5xCz5TMLR/1+vvWvn0ynH00qf6A9+3TiOxCyBPyautUBt3L 8bIfLUg6fMa+J9cDgu+JGnl2KxcmVpgP4YO7rZZrMx8TLB+eCAgmEIOdspiGVmvK qpiei0DauIi4eSzvn1wNKRiSd6UZpmaw2wtvwGCz1GRcO7uW+aSaSo7WzDfaVf5f RMFlZoubhi7VZEFPI9EBIN1bTw3XM53QwUmfYe1RB5bnVF/5qjdweMeCJRYsUwsP k+3Ig6qZm0ygee+q2qNlUgDisi+Yh+oKPiVTww61NBU= -----END CERTIFICATE-----Generated at Mon Jan 26 22:40:34 2026 by rpki-client