This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/5D364EA2C5DC11F0B2B11B60C4F9AE02.roa File: 5D364EA2C5DC11F0B2B11B60C4F9AE02.roa (raw, json) Hash identifier: X8cLryL8cCVRW6phD4XuEIyt0oQsm107TzCq0gEIjcY= Subject key identifier: 43:77:68:4F:13:35:64:D6:50:1D:4A:34:49:84:C0:56:D4:FB:68:70 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0FB6 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/5D364EA2C5DC11F0B2B11B60C4F9AE02.roa Signing time: Wed 14 Jan 2026 18:15:17 +0000 ROA not before: Wed 14 Jan 2026 18:15:17 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 7543 IP address blocks: 202.47.204.0/24 maxlen: 24 2403:e800:b00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 17:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4022 (0xfb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:15:17 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6967dd35-35b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5f:32:fd:95:b5:f2:1b:c9:eb:25:96:5f:7d: eb:50:e5:46:4e:87:4d:79:d8:b9:f4:3d:ec:27:6e: a1:d0:a3:3b:66:b6:cd:dc:25:92:70:c2:9d:ef:7e: db:1e:9b:59:59:fe:c8:ff:5d:7b:b0:d3:19:f9:61: 1b:44:1a:db:f8:65:01:a9:3a:14:46:b9:1b:ed:08: 52:3a:b1:b2:bf:ab:c1:3e:ab:71:c5:06:7c:9c:d0: 55:14:f0:a8:49:7d:14:64:09:c0:b9:7c:b3:a3:ab: 1c:61:f0:2c:23:02:f6:ad:29:cf:42:15:8b:0c:ea: 52:42:ed:c9:7f:2e:c0:00:b0:df:ef:fd:b7:e0:ea: 99:20:3b:eb:e0:a3:5e:77:6d:e8:fc:60:74:19:40: 87:18:75:a4:d8:fb:19:06:72:91:7f:74:9b:44:5b: b7:59:cb:90:b0:1a:49:0c:cf:48:75:24:b5:a3:dc: 9c:47:af:04:75:28:92:d1:7c:c9:ac:79:a0:42:df: 1d:87:6e:e0:c2:84:8f:ab:66:8b:93:04:52:ce:3d: 5f:ed:cf:63:e3:74:70:ee:05:7c:95:f9:04:30:6b: a9:08:22:a9:fb:d6:31:fd:78:d7:2d:43:f3:6e:f7: 90:c4:55:b9:95:e5:cd:10:4a:cc:49:13:f4:76:d2: 92:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:77:68:4F:13:35:64:D6:50:1D:4A:34:49:84:C0:56:D4:FB:68:70 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/5D364EA2C5DC11F0B2B11B60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.47.204.0/24 IPv6: 2403:e800:b00::/40 Signature Algorithm: sha256WithRSAEncryption 69:cf:ff:cb:a1:7a:9f:a2:3b:4f:04:ff:5f:d4:57:39:3a:9f: eb:47:90:66:ad:a7:cb:f3:2a:23:d6:ff:03:cd:23:45:ec:71: e4:8e:fd:4a:62:8e:c1:8e:1c:40:c2:19:06:7b:f8:b4:ec:6a: 8b:89:c7:47:85:e2:db:a9:d2:01:53:95:62:55:24:f7:53:90: 54:80:80:be:4f:32:53:b2:0e:11:b0:fd:8c:ce:fe:d4:ca:68: d7:10:03:98:2d:df:1e:11:20:f1:9a:74:5f:8c:50:df:29:cb: ba:4b:c6:bf:9b:6e:f4:da:11:e4:3e:f5:1a:65:98:d4:20:5d: b8:25:c0:fa:39:19:49:78:6f:07:64:03:c3:8d:6f:b0:72:72: a0:10:f6:f4:2f:29:19:f0:fc:a6:d2:b0:ee:ca:cc:5d:87:02: 7e:4d:cc:2a:bd:cb:07:dd:a1:f4:b7:8d:ae:cb:dd:2b:ad:2c: 4c:23:43:b5:fc:e2:c4:8d:c2:b3:fd:6e:00:e4:d0:99:b6:81: 67:97:bd:0c:89:b3:6c:4d:a8:e7:ba:23:d4:3c:15:e3:0e:7e: e7:5e:95:d9:cb:06:2c:de:95:77:38:d1:43:9a:70:bd:b7:4b: 0b:47:5e:1e:39:f3:0e:53:2d:a4:bb:c2:a8:f5:42:a6:b1:c1: a9:5b:25:7e -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICD7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjYwMTE0MTgxNTE3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY3ZGQzNS0zNWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0F8y/ZW18hvJ6yWWX33rUOVGTodNedi59D3sJ26h0KM7ZrbN3CWScMKd737b HptZWf7I/117sNMZ+WEbRBrb+GUBqToURrkb7QhSOrGyv6vBPqtxxQZ8nNBVFPCo SX0UZAnAuXyzo6scYfAsIwL2rSnPQhWLDOpSQu3Jfy7AALDf7/234OqZIDvr4KNe d23o/GB0GUCHGHWk2PsZBnKRf3SbRFu3WcuQsBpJDM9IdSS1o9ycR68EdSiS0XzJ rHmgQt8dh27gwoSPq2aLkwRSzj1f7c9j43Rw7gV8lfkEMGupCCKp+9Yx/XjXLUPz bveQxFW5leXNEErMSRP0dtKSfQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEN3aE8T NWTWUB1KNEmEwFbU+2hwMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvNUQzNjRFQTJD NURDMTFGMEIyQjExQjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBADKL8wwDgQCAAIwCAMGACQD6AALMA0GCSqGSIb3DQEBCwUA A4IBAQBpz//LoXqfojtPBP9f1Fc5Op/rR5BmrafL8yoj1v8DzSNF7HHkjv1KYo7B jhxAwhkGe/i07GqLicdHheLbqdIBU5ViVST3U5BUgIC+TzJTsg4RsP2Mzv7UymjX EAOYLd8eESDxmnRfjFDfKcu6S8a/m2702hHkPvUaZZjUIF24JcD6ORlJeG8HZAPD jW+wcnKgEPb0LykZ8Pym0rDuysxdhwJ+TcwqvcsH3aH0t42uy90rrSxMI0O1/OLE jcKz/W4A5NCZtoFnl70MibNsTajnuiPUPBXjDn7nXpXZywYs3pV3ONFDmnC9t0sL R14eOfMOUy2ku8Ko9UKmscGpWyV+ -----END CERTIFICATE-----Generated at Wed Jan 21 22:26:44 2026 by rpki-client