This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/D1424FC8E0E111ECBFF27B44C4F9AE02.roa File: D1424FC8E0E111ECBFF27B44C4F9AE02.roa (raw, json) Hash identifier: qcu/mbC7NJdQDGnbXsbmPKN3p+yIRG8W/RKMUuopFVM= Subject key identifier: F2:C3:ED:8C:4A:2D:78:2D:9C:F0:4D:CE:30:96:70:5C:D6:09:E2:DE Certificate issuer: /CN=A919A713/serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Certificate serial: 03A0 Authority key identifier: 24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/D1424FC8E0E111ECBFF27B44C4F9AE02.roa Signing time: Tue 13 Jan 2026 00:20:25 +0000 ROA not before: Tue 13 Jan 2026 00:20:25 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 2764 IP address blocks: 168.153.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 928 (0x3a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A713, serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Validity Not Before: Jan 13 00:20:25 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69658fc9-9cd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7d:24:b9:a7:9b:6e:09:68:c7:48:ab:62:85: 9d:e7:e5:5b:21:70:44:91:0c:b5:30:f1:bb:58:db: b7:b6:bb:5a:f0:a3:fa:b5:e6:52:ba:5c:75:1b:ef: 4c:af:34:79:b4:17:24:7b:d9:ef:91:d5:57:cb:05: e0:8d:5c:ee:d3:94:41:3d:a1:cd:db:b1:79:a2:a8: 34:a0:f5:22:27:6e:67:c3:18:a7:f4:c6:7c:3b:76: bb:8c:bd:db:c1:43:de:5c:3f:03:c2:97:f8:d8:d1: a1:b9:6d:bd:fa:6b:d6:26:f1:86:83:7b:b7:c1:e2: 35:cd:d9:a8:4e:29:27:6c:2f:fc:7c:ac:c5:26:70: 4e:63:9a:4d:45:1b:ec:89:18:73:08:67:c4:94:87: cd:35:ac:a2:f2:ab:1f:0e:cc:a7:d2:fe:13:51:04: e6:74:89:cf:09:67:36:d5:bb:71:83:2b:c7:af:a5: 37:a3:38:01:35:e0:99:10:80:de:d7:1a:13:af:ff: b0:fd:95:d8:84:30:c8:45:0b:c9:ae:28:90:03:b6: a4:8c:a9:f1:47:ce:64:c8:8e:c9:ad:02:69:a7:86: f9:90:65:b6:c0:dc:9c:3d:c4:8d:38:c5:8b:32:af: f6:47:3a:0c:be:19:00:4a:e0:ff:75:c2:2e:15:17: e2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:C3:ED:8C:4A:2D:78:2D:9C:F0:4D:CE:30:96:70:5C:D6:09:E2:DE X509v3 Authority Key Identifier: keyid:24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/D1424FC8E0E111ECBFF27B44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.153.0.0/24 Signature Algorithm: sha256WithRSAEncryption 37:5e:24:0b:c0:0a:db:bc:97:10:cd:75:0d:66:a4:b8:36:bb: ab:54:57:21:6a:41:e7:d0:ad:f8:af:0e:eb:85:ec:d7:01:0e: 2c:26:71:19:59:60:ff:02:69:25:a6:da:23:4a:4b:73:e4:68: a2:58:e4:b0:70:04:66:8b:f4:6f:10:59:8d:d7:44:c4:d0:49: d6:73:a6:3c:52:13:ab:20:00:4b:b1:d2:20:d7:84:ae:05:48: 81:48:7a:df:58:30:0e:5c:67:5e:21:ea:00:bf:2f:c7:c6:6c: d8:de:8e:db:d1:ac:41:b8:82:9e:55:77:f8:c3:50:63:5f:4e: 3f:cb:53:ec:fe:be:fb:28:de:c1:9a:5f:5c:6a:4e:71:89:52: f9:f6:33:d4:88:cb:50:cc:9f:0a:0b:ce:48:a5:b5:9e:88:3d: de:c2:9a:05:65:11:61:72:18:05:2d:5f:f8:0f:8e:18:50:a2: 58:e3:a6:06:51:53:0f:41:89:4f:4b:23:51:45:81:19:89:6c: af:1a:63:87:39:05:41:8b:25:e2:c7:53:61:d4:83:87:91:50: 08:9e:e9:09:1c:67:54:08:6f:bb:61:ba:c7:31:9e:51:2a:bb: 99:ee:dd:89:d5:4a:7e:19:a1:1c:47:16:34:89:87:d7:c5:4e: ac:f0:35:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OUE3MTMxMTAvBgNVBAUTKDI0QzhCQkY5MzBDRDJEMTIzOTlBQkRGOUM5Q0FCMTRC MUNENzlGNkIwHhcNMjYwMTEzMDAyMDI1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY1OGZjOS05Y2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4X0kuaebbglox0irYoWd5+VbIXBEkQy1MPG7WNu3trta8KP6teZSulx1G+9M rzR5tBcke9nvkdVXywXgjVzu05RBPaHN27F5oqg0oPUiJ25nwxin9MZ8O3a7jL3b wUPeXD8Dwpf42NGhuW29+mvWJvGGg3u3weI1zdmoTiknbC/8fKzFJnBOY5pNRRvs iRhzCGfElIfNNayi8qsfDsyn0v4TUQTmdInPCWc21btxgyvHr6U3ozgBNeCZEIDe 1xoTr/+w/ZXYhDDIRQvJriiQA7akjKnxR85kyI7JrQJpp4b5kGW2wNycPcSNOMWL Mq/2RzoMvhkASuD/dcIuFRfioQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPLD7YxK LXgtnPBNzjCWcFzWCeLeMB8GA1UdIwQYMBaAFCTIu/kwzS0SOZq9+cnKsUsc159r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTcxMy8zNDk5NENCNEUw REExMUVDOTRDN0UwNjJDNEY5QUUwMi9KTWk3LVRETkxSSTVtcjM1eWNxeFN4elhu MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pNaTctVEROTFJJNW1yMzV5Y3F4U3h6WG4ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3MTMvMzQ5OTRDQjRFMERBMTFFQzk0QzdFMDYyQzRGOUFFMDIvRDE0MjRGQzhF MEUxMTFFQ0JGRjI3QjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAComQAwDQYJKoZIhvcNAQELBQADggEBADdeJAvACtu8lxDN dQ1mpLg2u6tUVyFqQefQrfivDuuF7NcBDiwmcRlZYP8CaSWm2iNKS3PkaKJY5LBw BGaL9G8QWY3XRMTQSdZzpjxSE6sgAEux0iDXhK4FSIFIet9YMA5cZ14h6gC/L8fG bNjejtvRrEG4gp5Vd/jDUGNfTj/LU+z+vvso3sGaX1xqTnGJUvn2M9SIy1DMnwoL zkiltZ6IPd7CmgVlEWFyGAUtX/gPjhhQoljjpgZRUw9BiU9LI1FFgRmJbK8aY4c5 BUGLJeLHU2HUg4eRUAie6QkcZ1QIb7thuscxnlEqu5nu3YnVSn4ZoRxHFjSJh9fF TqzwNQQ= -----END CERTIFICATE-----Generated at Mon Jan 26 08:42:20 2026 by rpki-client