This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3316/2068C062F2C411F08B84E445396F56BC/BDFB38F0F2C411F0A6F8F499396F56BC.roa File: BDFB38F0F2C411F0A6F8F499396F56BC.roa (raw, json) Hash identifier: VkXc41W00KqDqdBptPNWNPj5VC4iRPeiQMZiW4gTOQA= Subject key identifier: 6D:63:AE:34:64:DA:21:9B:8B:32:34:2D:4B:BD:84:5D:C0:34:C2:6E Certificate issuer: /CN=A91B3316/serialNumber=80CABBC5DE3F7B9327EAC4DBA8D93653A1222100 Certificate serial: 02 Authority key identifier: 80:CA:BB:C5:DE:3F:7B:93:27:EA:C4:DB:A8:D9:36:53:A1:22:21:00 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/gMq7xd4_e5Mn6sTbqNk2U6EiIQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3316/2068C062F2C411F08B84E445396F56BC/BDFB38F0F2C411F0A6F8F499396F56BC.roa Signing time: Fri 16 Jan 2026 10:18:46 +0000 ROA not before: Fri 16 Jan 2026 10:18:46 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 153870 IP address blocks: 151.158.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3316/2068C062F2C411F08B84E445396F56BC/gMq7xd4_e5Mn6sTbqNk2U6EiIQA.crl rsync://rpki.apnic.net/member_repository/A91B3316/2068C062F2C411F08B84E445396F56BC/gMq7xd4_e5Mn6sTbqNk2U6EiIQA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/gMq7xd4_e5Mn6sTbqNk2U6EiIQA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 06:19:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3316, serialNumber=80CABBC5DE3F7B9327EAC4DBA8D93653A1222100 Validity Not Before: Jan 16 10:18:46 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=696a1086-56df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:51:28:60:b3:3b:5e:79:2d:cd:2e:d8:82:27: 56:5c:ea:59:13:c2:21:50:fa:f6:5d:95:00:98:ac: b2:d6:08:95:07:d6:7e:b3:48:ae:e4:92:85:3b:14: 05:86:1c:01:2c:f7:2e:6d:25:ca:f8:94:b7:df:fe: a3:71:8f:89:f9:be:e6:37:f2:db:19:1d:24:3c:69: fe:38:65:82:fa:c5:fd:f9:28:6b:45:0b:ef:fb:e5: f9:0b:ac:5c:12:9b:a0:8f:9a:5d:e9:14:1a:2a:3e: f7:b0:c9:bb:f9:7d:00:a0:1f:a1:21:54:a9:28:b6: c3:3a:35:fb:f8:fc:7d:b3:39:22:93:66:88:bf:3e: d3:44:8a:e3:4d:83:6a:86:7d:62:66:e2:39:b8:ee: a9:6c:60:75:6b:be:48:71:0b:50:d5:c1:66:99:69: 22:c1:5d:5c:da:11:ca:2e:8b:c6:0c:83:92:dd:b4: 8a:25:46:f1:35:2e:74:72:6d:3a:d8:dd:1f:2d:bf: e4:40:e0:51:71:48:c0:6e:98:e8:ad:1b:81:80:29: 76:80:44:a0:41:f8:4c:9b:19:ae:dc:c1:53:e3:3c: 79:78:aa:cb:58:5d:0c:57:0d:95:72:f1:38:30:6c: 08:b9:ff:f2:45:cc:3b:e5:d0:87:3b:07:35:38:3e: 99:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:63:AE:34:64:DA:21:9B:8B:32:34:2D:4B:BD:84:5D:C0:34:C2:6E X509v3 Authority Key Identifier: keyid:80:CA:BB:C5:DE:3F:7B:93:27:EA:C4:DB:A8:D9:36:53:A1:22:21:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3316/2068C062F2C411F08B84E445396F56BC/gMq7xd4_e5Mn6sTbqNk2U6EiIQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/gMq7xd4_e5Mn6sTbqNk2U6EiIQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3316/2068C062F2C411F08B84E445396F56BC/BDFB38F0F2C411F0A6F8F499396F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 151.158.34.0/24 Signature Algorithm: sha256WithRSAEncryption 39:12:2d:1f:4b:5c:b0:c2:83:bb:fc:b6:8e:6c:87:22:be:1a: 57:1b:a6:8b:3d:a7:62:bf:32:5f:e2:e3:d7:1b:19:c1:ad:60: 03:a1:71:e1:63:14:f8:41:5a:85:33:21:08:b0:2d:bf:da:de: e5:26:d3:9c:59:14:fa:66:08:7d:1c:a3:8e:14:d0:56:fe:49: dd:e8:ab:e7:dd:b2:57:14:ef:35:5a:02:d6:9b:0c:a5:da:4a: ef:c1:21:90:a6:4a:e8:ec:d8:37:0c:c9:c8:13:6f:d8:65:66: eb:ae:63:62:23:3c:b0:77:36:af:72:25:77:de:53:c5:64:11: ed:3a:a0:9f:dd:4b:fc:20:71:2a:63:be:52:41:5c:93:1b:d0: af:67:97:2a:07:b4:94:ec:c7:6e:d7:5e:f9:5a:98:9a:11:a2: 61:3d:66:7b:a9:db:e3:f3:7b:0e:28:75:2b:df:dc:22:ce:30: e1:d3:9e:25:81:75:37:05:5e:1b:5a:4e:24:a1:9f:fb:48:b8: 85:14:5a:3e:68:4f:b8:0b:bc:d6:d2:aa:5e:4b:ea:5b:67:25: 54:4e:07:49:d2:2b:b4:5f:de:ae:86:a1:ba:f3:25:88:b6:a3: 42:04:e1:70:c1:8e:6c:69:3d:ff:26:51:8b:a3:9b:dd:01:79: 2c:d2:f3:f1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFC MzMxNjExMC8GA1UEBRMoODBDQUJCQzVERTNGN0I5MzI3RUFDNERCQThEOTM2NTNB MTIyMjEwMDAeFw0yNjAxMTYxMDE4NDZaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NmExMDg2LTU2ZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgUShgszteeS3NLtiCJ1Zc6lkTwiFQ+vZdlQCYrLLWCJUH1n6zSK7kkoU7FAWG HAEs9y5tJcr4lLff/qNxj4n5vuY38tsZHSQ8af44ZYL6xf35KGtFC+/75fkLrFwS m6CPml3pFBoqPvewybv5fQCgH6EhVKkotsM6Nfv4/H2zOSKTZoi/PtNEiuNNg2qG fWJm4jm47qlsYHVrvkhxC1DVwWaZaSLBXVzaEcoui8YMg5LdtIolRvE1LnRybTrY 3R8tv+RA4FFxSMBumOitG4GAKXaARKBB+EybGa7cwVPjPHl4qstYXQxXDZVy8Tgw bAi5//JFzDvl0Ic7BzU4PpltAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUbWOuNGTa IZuLMjQtS72EXcA0wm4wHwYDVR0jBBgwFoAUgMq7xd4/e5Mn6sTbqNk2U6EiIQAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMzE2LzIwNjhDMDYyRjJD NDExRjA4Qjg0RTQ0NTM5NkY1NkJDL2dNcTd4ZDRfZTVNbjZzVGJxTmsyVTZFaUlR QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvZ01xN3hkNF9lNU1uNnNUYnFOazJVNkVpSVFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzMxNi8yMDY4QzA2MkYyQzQxMUYwOEI4NEU0NDUzOTZGNTZCQy9CREZCMzhGMEYy QzQxMUYwQTZGOEY0OTkzOTZGNTZCQy5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJeeIjANBgkqhkiG9w0BAQsFAAOCAQEAORItH0tcsMKDu/y2 jmyHIr4aVxumiz2nYr8yX+Lj1xsZwa1gA6Fx4WMU+EFahTMhCLAtv9re5SbTnFkU +mYIfRyjjhTQVv5J3eir592yVxTvNVoC1psMpdpK78EhkKZK6OzYNwzJyBNv2GVm 665jYiM8sHc2r3Ild95TxWQR7Tqgn91L/CBxKmO+UkFckxvQr2eXKge0lOzHbtde +VqYmhGiYT1me6nb4/N7Dih1K9/cIs4w4dOeJYF1NwVeG1pOJKGf+0i4hRRaPmhP uAu81tKqXkvqW2clVE4HSdIrtF/eroahuvMliLajQgThcMGObGk9/yZRi6Ob3QF5 LNLz8Q== -----END CERTIFICATE-----Generated at Wed Jan 21 09:21:33 2026 by rpki-client