This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/280D2770EBB011EA8AF6012DC4F9AE02.roa File: 280D2770EBB011EA8AF6012DC4F9AE02.roa (raw, json) Hash identifier: /nz/1q0UnnUh7/646JLbHcYkN8JqYIJjZYielEh/K48= Subject key identifier: 54:4E:2C:45:04:5C:49:30:6E:44:F8:1B:69:13:19:13:8E:80:88:85 Certificate issuer: /CN=A91B8CA6/serialNumber=96F817BD4070B5CC19A0B5393D55BE773980A810 Certificate serial: 0BC9 Authority key identifier: 96:F8:17:BD:40:70:B5:CC:19:A0:B5:39:3D:55:BE:77:39:80:A8:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/280D2770EBB011EA8AF6012DC4F9AE02.roa Signing time: Fri 14 Nov 2025 18:38:16 +0000 ROA not before: Fri 14 Nov 2025 18:38:16 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 0 IP address blocks: 2001:def:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.crl rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Nov 2025 17:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3017 (0xbc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8CA6, serialNumber=96F817BD4070B5CC19A0B5393D55BE773980A810 Validity Not Before: Nov 14 18:38:16 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69177717-5740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e1:09:77:2a:91:dc:5f:d0:07:88:de:08:26: dd:07:4d:71:8d:ea:e7:44:cc:46:45:21:f5:71:c6: 51:20:5b:0f:29:3f:cc:ae:b2:4b:ce:88:78:07:e5: 14:aa:38:d5:2f:1a:10:73:47:2d:a8:cd:b7:9b:d7: a4:20:6f:50:51:85:93:2e:91:e7:87:e5:51:70:6b: 3c:73:3b:da:4c:cd:90:70:ef:f2:6b:04:b7:67:50: 28:0f:b9:c1:1b:aa:cf:37:01:eb:29:f0:5b:8d:f8: 31:27:ae:8c:53:13:76:1f:82:4c:57:77:eb:5f:67: d5:56:9e:1a:64:53:46:5f:46:e3:3f:44:a8:5a:d9: 56:fb:fd:6b:52:c2:7b:50:ce:38:5e:1f:eb:2a:39: 35:61:2a:97:95:9c:56:30:c3:f5:06:a0:14:df:0f: d4:78:df:84:2c:20:32:79:08:ba:3f:95:8a:bd:4e: db:0a:45:be:90:1c:06:d3:b7:de:19:d5:ea:90:13: 30:5b:ac:2f:7b:80:c1:ab:97:c5:4a:a5:b2:24:7e: e8:b6:ef:78:53:6b:0a:05:b3:36:8b:78:56:43:58: a7:b6:30:af:8b:5c:44:13:fb:d7:e0:88:c6:d3:e0: e4:a6:d6:be:38:fa:4b:cc:03:f5:46:d5:69:be:d8: 62:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:4E:2C:45:04:5C:49:30:6E:44:F8:1B:69:13:19:13:8E:80:88:85 X509v3 Authority Key Identifier: keyid:96:F8:17:BD:40:70:B5:CC:19:A0:B5:39:3D:55:BE:77:39:80:A8:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/280D2770EBB011EA8AF6012DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:def:8000::/48 Signature Algorithm: sha256WithRSAEncryption 91:9d:a7:4c:e2:9c:30:6a:0c:a6:eb:2a:7d:a2:a0:65:d3:0b: 90:0b:6c:a1:80:e3:e5:f0:e9:d1:c8:5e:b4:fa:40:9f:d8:ad: 9a:2c:7c:a5:95:63:4e:59:20:18:bd:bb:f2:73:59:c6:27:c0: 15:11:ef:9d:de:c0:e4:03:69:7a:e6:50:c2:11:cf:37:dc:dd: 6f:95:e2:2d:a0:3d:ee:1a:c0:74:88:83:70:46:fe:74:d7:ca: 9b:6f:45:85:b3:ce:29:3c:17:d8:7a:21:70:b3:39:94:a1:c1: 11:80:f4:8e:16:82:79:41:59:7d:5d:46:6f:f0:32:ed:6b:de: 5f:9a:4b:90:77:c1:84:7d:86:f4:b4:35:72:ba:4c:6b:34:55: f6:9d:ae:6e:63:5a:1f:c3:17:d1:24:5e:3a:cc:24:05:e6:c4: 88:5d:1a:a9:a3:1b:02:7c:3f:a0:4d:b3:31:a3:07:cd:d6:78: 1a:25:db:fa:51:c5:c6:3e:0d:cd:9c:9b:f2:52:e2:ff:72:d7: 7a:d3:be:29:77:e6:90:c7:8f:1b:2a:77:1d:6a:f7:45:b9:59: 90:f0:46:31:1d:7c:08:90:4d:09:ce:c8:44:a3:eb:5c:02:f7: ac:46:b9:e0:fe:e3:76:c7:00:1f:72:56:a1:48:9f:64:2e:1e: 7a:f5:1b:ef -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICC8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDQTYxMTAvBgNVBAUTKDk2RjgxN0JENDA3MEI1Q0MxOUEwQjUzOTNENTVCRTc3 Mzk4MEE4MTAwHhcNMjUxMTE0MTgzODE2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTE3NzcxNy01NzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eEJdyqR3F/QB4jeCCbdB01xjernRMxGRSH1ccZRIFsPKT/MrrJLzoh4B+UU qjjVLxoQc0ctqM23m9ekIG9QUYWTLpHnh+VRcGs8czvaTM2QcO/yawS3Z1AoD7nB G6rPNwHrKfBbjfgxJ66MUxN2H4JMV3frX2fVVp4aZFNGX0bjP0SoWtlW+/1rUsJ7 UM44Xh/rKjk1YSqXlZxWMMP1BqAU3w/UeN+ELCAyeQi6P5WKvU7bCkW+kBwG07fe GdXqkBMwW6wve4DBq5fFSqWyJH7otu94U2sKBbM2i3hWQ1intjCvi1xEE/vX4IjG 0+Dkpta+OPpLzAP1RtVpvthiAwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFROLEUE XEkwbkT4G2kTGROOgIiFMB8GA1UdIwQYMBaAFJb4F71AcLXMGaC1OT1Vvnc5gKgQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOENBNi85QkQ2NDA1NjMy MDYxMUVBQTJGNkIzMzJDNEY5QUUwMi9sdmdYdlVCd3Rjd1pvTFU1UFZXLWR6bUFx QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x2Z1h2VUJ3dGN3Wm9MVTVQVlctZHptQXFCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhDQTYvOUJENjQwNTYzMjA2MTFFQUEyRjZCMzMyQzRGOUFFMDIvMjgwRDI3NzBF QkIwMTFFQThBRjYwMTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3vgAAwDQYJKoZIhvcNAQELBQADggEBAJGdp0zinDBq DKbrKn2ioGXTC5ALbKGA4+Xw6dHIXrT6QJ/YrZosfKWVY05ZIBi9u/JzWcYnwBUR 753ewOQDaXrmUMIRzzfc3W+V4i2gPe4awHSIg3BG/nTXyptvRYWzzik8F9h6IXCz OZShwRGA9I4WgnlBWX1dRm/wMu1r3l+aS5B3wYR9hvS0NXK6TGs0Vfadrm5jWh/D F9EkXjrMJAXmxIhdGqmjGwJ8P6BNszGjB83WeBol2/pRxcY+Dc2cm/JS4v9y13rT vil35pDHjxsqdx1q90W5WZDwRjEdfAiQTQnOyESj61wC96xGueD+43bHAB9yVqFI n2QuHnr1G+8= -----END CERTIFICATE-----Generated at Sat Nov 22 21:43:44 2025 by rpki-client