This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919FBF3/EE629694D66011F0B2A54B950BB43E13/8F11CB5CDF1511F0B37EABD4606F56BC.roa File: 8F11CB5CDF1511F0B37EABD4606F56BC.roa (raw, json) Hash identifier: mtRIoYq1TghK3Obl1u1V/U7DJkwyXifTYmMfwAlIC/w= Subject key identifier: 4F:A4:D1:40:AF:81:F5:BC:CC:47:B5:60:58:D1:88:46:EA:C4:E5:06 Certificate issuer: /CN=A919FBF3/serialNumber=B913347E6B9D77A91BB07482AE45CD74116B022D Certificate serial: 08 Authority key identifier: B9:13:34:7E:6B:9D:77:A9:1B:B0:74:82:AE:45:CD:74:11:6B:02:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRM0fmudd6kbsHSCrkXNdBFrAi0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FBF3/EE629694D66011F0B2A54B950BB43E13/8F11CB5CDF1511F0B37EABD4606F56BC.roa Signing time: Mon 22 Dec 2025 09:06:54 +0000 ROA not before: Mon 22 Dec 2025 09:06:53 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 152698 IP address blocks: 2402:3ea0:2000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FBF3/EE629694D66011F0B2A54B950BB43E13/uRM0fmudd6kbsHSCrkXNdBFrAi0.crl rsync://rpki.apnic.net/member_repository/A919FBF3/EE629694D66011F0B2A54B950BB43E13/uRM0fmudd6kbsHSCrkXNdBFrAi0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRM0fmudd6kbsHSCrkXNdBFrAi0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:55:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FBF3, serialNumber=B913347E6B9D77A91BB07482AE45CD74116B022D Validity Not Before: Dec 22 09:06:53 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69490a2d-f257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:60:1f:1c:89:a0:37:ae:c9:9f:cf:3f:8c:2a: 8a:f2:c1:8d:cb:1a:8e:e2:44:06:59:ed:f5:cc:87: 7f:ea:20:68:78:b7:7a:b3:14:44:10:d1:ca:8c:1d: 3c:93:2a:06:df:49:b3:64:c3:6e:14:8b:d6:0a:c4: af:08:70:fd:21:d4:39:59:90:15:14:d3:81:fd:0c: 2e:9a:02:3f:30:8e:f2:d1:5a:5a:83:57:2b:ba:b9: e2:2b:26:36:d1:ed:01:ca:04:0c:e9:d2:23:d5:00: bc:9e:9f:69:9b:96:b5:80:39:f5:ac:3d:0b:b1:d5: 00:54:bd:71:b5:cf:d5:49:2a:b8:71:a6:7f:ca:79: 6d:df:11:8d:6d:22:1a:68:6e:98:8a:06:7b:5d:01: 5f:b3:76:b8:eb:85:44:a7:a0:a4:64:e8:03:45:b0: 02:cb:59:d4:9a:8a:ad:77:f5:6d:8d:40:f0:ca:8c: 71:b0:4d:3e:87:ae:96:49:96:af:55:19:9e:35:19: c3:f6:d5:c5:0d:c6:48:9b:b3:7e:a6:71:b5:5e:95: fc:07:63:9e:34:6f:6b:e9:d0:89:07:c9:e1:fc:b9: dc:9c:36:e1:34:6a:6a:1e:b3:a9:b8:c3:0c:a8:ae: 8b:17:a1:60:18:94:46:6e:7a:2b:09:b5:53:6d:15: 75:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:A4:D1:40:AF:81:F5:BC:CC:47:B5:60:58:D1:88:46:EA:C4:E5:06 X509v3 Authority Key Identifier: keyid:B9:13:34:7E:6B:9D:77:A9:1B:B0:74:82:AE:45:CD:74:11:6B:02:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FBF3/EE629694D66011F0B2A54B950BB43E13/uRM0fmudd6kbsHSCrkXNdBFrAi0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRM0fmudd6kbsHSCrkXNdBFrAi0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FBF3/EE629694D66011F0B2A54B950BB43E13/8F11CB5CDF1511F0B37EABD4606F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:3ea0:2000::/35 Signature Algorithm: sha256WithRSAEncryption 91:9a:e4:b5:97:27:2e:c3:4d:e1:6a:3a:d5:b1:28:e0:00:cf: 09:62:ca:25:62:2d:86:5e:b5:d9:fd:37:14:d8:45:b1:ff:99: 72:ca:a4:b1:d3:fd:7a:f4:dc:1a:cd:94:ea:35:a7:d4:12:59: 58:a6:2c:f1:33:1b:9a:01:bd:38:91:27:4e:e8:30:fb:f4:71: ad:e3:0d:00:f7:ad:04:ba:7d:e8:1b:13:a2:70:a0:42:43:5d: 9e:37:a4:8a:cf:6f:5c:7b:b5:e5:96:6c:af:20:be:0a:91:a3: 44:de:ea:cd:c2:b1:81:83:c8:80:56:33:e9:ae:ed:7c:cc:5e: e0:0e:61:45:80:05:ff:00:6e:d5:f4:a2:bb:6c:e7:83:23:ab: 7e:cf:85:80:71:61:db:f2:9f:f0:b4:6d:57:24:f2:5e:67:bc: be:c2:dc:6c:ff:5d:19:ff:c3:69:d6:c6:77:0a:88:ad:15:83: 4a:05:3a:23:27:36:bd:7b:6f:2b:af:5f:65:47:99:5d:79:60: f9:0a:e4:1b:df:5d:02:05:ab:28:52:34:be:ce:4b:c2:51:ae: 1c:db:2c:82:1a:3e:ed:5e:00:fd:51:b1:99:f7:08:61:42:bf: 2f:88:4e:4e:81:de:7d:62:3d:6c:e7:da:51:6b:4b:19:37:36: 7a:20:12:4e -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RkJGMzExMC8GA1UEBRMoQjkxMzM0N0U2QjlENzdBOTFCQjA3NDgyQUU0NUNENzQx MTZCMDIyRDAeFw0yNTEyMjIwOTA2NTNaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NDkwYTJkLWYyNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtYB8ciaA3rsmfzz+MKorywY3LGo7iRAZZ7fXMh3/qIGh4t3qzFEQQ0cqMHTyT KgbfSbNkw24Ui9YKxK8IcP0h1DlZkBUU04H9DC6aAj8wjvLRWlqDVyu6ueIrJjbR 7QHKBAzp0iPVALyen2mblrWAOfWsPQux1QBUvXG1z9VJKrhxpn/KeW3fEY1tIhpo bpiKBntdAV+zdrjrhUSnoKRk6ANFsALLWdSaiq139W2NQPDKjHGwTT6HrpZJlq9V GZ41GcP21cUNxkibs36mcbVelfwHY540b2vp0IkHyeH8udycNuE0amoes6m4wwyo rosXoWAYlEZueisJtVNtFXX9AgMBAAGjggKXMIICkzAdBgNVHQ4EFgQUT6TRQK+B 9bzMR7VgWNGIRurE5QYwHwYDVR0jBBgwFoAUuRM0fmudd6kbsHSCrkXNdBFrAi0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGQkYzL0VFNjI5Njk0RDY2 MDExRjBCMkE1NEI5NTBCQjQzRTEzL3VSTTBmbXVkZDZrYnNIU0Nya1hOZEJGckFp MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdVJNMGZtdWRkNmtic0hTQ3JrWE5kQkZyQWkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkJGMy9FRTYyOTY5NEQ2NjAxMUYwQjJBNTRCOTUwQkI0M0UxMy84RjExQ0I1Q0RG MTUxMUYwQjM3RUFCRDQ2MDZGNTZCQy5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAhBggrBgEFBQcBBwEB/wQS MBAwDgQCAAIwCAMGBSQCPqAgMA0GCSqGSIb3DQEBCwUAA4IBAQCRmuS1lycuw03h ajrVsSjgAM8JYsolYi2GXrXZ/TcU2EWx/5lyyqSx0/169NwazZTqNafUEllYpizx MxuaAb04kSdO6DD79HGt4w0A960Eun3oGxOicKBCQ12eN6SKz29ce7XllmyvIL4K kaNE3urNwrGBg8iAVjPpru18zF7gDmFFgAX/AG7V9KK7bOeDI6t+z4WAcWHb8p/w tG1XJPJeZ7y+wtxs/10Z/8Np1sZ3CoitFYNKBTojJza9e28rr19lR5ldeWD5CuQb 310CBasoUjS+zkvCUa4c2yyCGj7tXgD9UbGZ9whhQr8viE5Ogd59Yj1s59pRa0sZ NzZ6IBJO -----END CERTIFICATE-----Generated at Wed Dec 24 15:48:21 2025 by rpki-client