This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/640C18A214AD11EEAA685687C4F9AE02.roa File: 640C18A214AD11EEAA685687C4F9AE02.roa (raw, json) Hash identifier: P9DAsKO6A9xN7wtYkmYU6qosOiDe3MiHXp+U7yhWeEY= Subject key identifier: 47:86:37:05:53:10:53:12:C7:AD:45:36:A4:D2:73:D4:73:5E:D6:9E Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0F9F Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/640C18A214AD11EEAA685687C4F9AE02.roa Signing time: Wed 14 Jan 2026 18:14:55 +0000 ROA not before: Wed 14 Jan 2026 18:14:55 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 1221 IP address blocks: 61.47.88.0/21 maxlen: 24 116.92.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 17:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3999 (0xf9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:14:55 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6967dd1f-e0c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:81:c5:85:bb:56:6e:06:e9:1c:dc:c2:ee:5d: d4:a3:66:49:cf:dd:96:37:4d:7b:dd:62:a5:52:d4: 3d:f6:22:62:b6:0c:cf:8b:38:02:79:6e:d4:43:81: 0d:32:b9:b4:68:f7:b9:f2:bf:f9:ca:db:9e:9f:6c: 16:d1:54:72:b8:0b:fe:c2:6c:fb:54:1f:cc:b5:36: c1:b6:d6:60:a5:d2:9f:8c:cc:95:32:d5:cf:9e:9a: b9:af:7b:48:d4:4e:c1:9a:c2:6b:dc:98:6b:3c:68: b4:72:32:13:af:e4:8a:d0:88:dc:fd:e1:58:2e:3a: fd:25:a0:10:56:de:44:9d:cf:6f:00:94:5b:87:fd: 11:a4:cf:0d:03:f0:33:1f:8b:51:f1:94:ec:9e:5a: a5:61:97:81:d1:3a:84:b6:b0:5e:8c:ca:6e:e6:59: d4:24:12:20:81:9f:d5:97:a9:3f:e2:f9:ba:44:51: b2:c8:e4:59:25:a5:63:d0:b6:ee:91:07:7b:b8:f1: 39:11:1a:da:34:e1:b7:ac:8c:73:af:41:3f:a5:86: 22:d3:b2:dc:b3:c9:28:4b:63:22:a5:87:ef:e3:b4: 78:59:ed:6e:f0:be:07:29:59:c9:52:db:a5:dc:f0: fd:47:a5:83:00:7b:7c:ed:91:df:68:45:1c:47:c6: 8e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:86:37:05:53:10:53:12:C7:AD:45:36:A4:D2:73:D4:73:5E:D6:9E X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/640C18A214AD11EEAA685687C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.47.88.0/21 116.92.64.0/21 Signature Algorithm: sha256WithRSAEncryption 96:08:a7:a1:ee:f1:76:3c:27:b1:55:4b:47:e0:2a:d0:45:cf: f1:28:a0:80:93:d4:12:f1:1d:02:5b:14:9d:f6:ff:bb:d5:6d: 0d:60:d0:7f:1b:b6:76:c7:1c:1b:fe:00:89:bf:c8:d9:b3:f1: 6e:52:a8:14:04:19:b2:45:23:d5:3c:a1:68:cb:2b:e8:00:7a: cf:ba:66:26:34:2c:f1:8b:fd:00:d0:e0:6e:b8:fc:17:d7:11: ec:41:1b:99:90:d5:a5:77:b5:3b:04:e4:0c:85:81:a0:ff:af: 7e:8d:0e:72:af:77:c6:85:77:44:bf:82:fc:a3:53:75:6c:5d: 7e:70:81:ac:ac:82:cc:96:6e:2b:f3:59:76:2b:ae:b7:34:a9: ea:b7:41:f6:a0:07:c3:c1:22:f1:4a:d3:2c:ee:15:71:a2:10: 99:60:36:6f:88:6c:20:43:66:43:a6:32:9e:58:64:75:64:d1: 20:9d:2f:ac:bb:4c:02:cb:cd:1d:d3:c3:92:69:b2:f4:d9:37: 25:38:3b:90:86:e7:4f:ee:84:fe:a9:dd:b1:9d:08:86:2b:ce: 67:eb:01:d0:3e:dc:7e:bd:0b:94:78:bd:02:90:6f:ff:fe:fa: 80:34:61:ef:ea:80:73:fc:00:dc:19:9c:14:aa:07:13:86:73: e6:8b:34:c6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICD58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjYwMTE0MTgxNDU1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY3ZGQxZi1lMGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoHFhbtWbgbpHNzC7l3Uo2ZJz92WN0173WKlUtQ99iJitgzPizgCeW7UQ4EN Mrm0aPe58r/5ytuen2wW0VRyuAv+wmz7VB/MtTbBttZgpdKfjMyVMtXPnpq5r3tI 1E7BmsJr3JhrPGi0cjITr+SK0Ijc/eFYLjr9JaAQVt5Enc9vAJRbh/0RpM8NA/Az H4tR8ZTsnlqlYZeB0TqEtrBejMpu5lnUJBIggZ/Vl6k/4vm6RFGyyORZJaVj0Lbu kQd7uPE5ERraNOG3rIxzr0E/pYYi07Lcs8koS2MipYfv47R4We1u8L4HKVnJUtul 3PD9R6WDAHt87ZHfaEUcR8aO0wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEeGNwVT EFMSx61FNqTSc9RzXtaeMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvNjQwQzE4QTIx NEFEMTFFRUFBNjg1Njg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAM9L1gDBAN0XEAwDQYJKoZIhvcNAQELBQADggEBAJYIp6Hu 8XY8J7FVS0fgKtBFz/EooICT1BLxHQJbFJ32/7vVbQ1g0H8btnbHHBv+AIm/yNmz 8W5SqBQEGbJFI9U8oWjLK+gAes+6ZiY0LPGL/QDQ4G64/BfXEexBG5mQ1aV3tTsE 5AyFgaD/r36NDnKvd8aFd0S/gvyjU3VsXX5wgaysgsyWbivzWXYrrrc0qeq3Qfag B8PBIvFK0yzuFXGiEJlgNm+IbCBDZkOmMp5YZHVk0SCdL6y7TALLzR3Tw5JpsvTZ NyU4O5CG50/uhP6p3bGdCIYrzmfrAdA+3H69C5R4vQKQb//++oA0Ye/qgHP8ANwZ nBSqBxOGc+aLNMY= -----END CERTIFICATE-----Generated at Wed Jan 21 22:27:43 2026 by rpki-client