This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/8B0EC9621D0611EDBAB65333C4F9AE02.roa File: 8B0EC9621D0611EDBAB65333C4F9AE02.roa (raw, json) Hash identifier: okBZC1FdQJKm7JIbAANvRrNSlETwEY25fkeRFAiYnoU= Subject key identifier: F5:EE:FA:7B:4D:A6:9B:E9:14:08:7E:41:99:E7:6F:9E:B0:4B:E2:AB Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0FA5 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/8B0EC9621D0611EDBAB65333C4F9AE02.roa Signing time: Wed 14 Jan 2026 18:15:00 +0000 ROA not before: Wed 14 Jan 2026 18:15:00 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 15224 IP address blocks: 202.42.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 17:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4005 (0xfa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:15:00 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6967dd24-cc97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fe:6f:3f:a9:02:1e:dd:a1:29:8e:9a:25:95: 50:f0:aa:dc:67:02:c6:46:b7:16:d2:b2:21:81:1e: 89:a5:41:9b:a7:74:bf:52:0b:a0:b7:9b:dd:d8:a7: 1c:5b:1c:28:00:e1:85:5d:2a:15:81:51:b9:8d:a3: a4:24:43:f0:65:e7:ca:32:be:f6:9f:e2:b6:a0:e6: ce:5a:1d:93:df:1c:e2:02:65:c5:61:97:50:9a:76: 12:5c:f4:37:30:9f:00:5c:36:94:28:88:15:d8:6d: 83:d6:df:4e:98:fe:cd:2d:99:21:4c:36:a0:4b:d7: 74:96:17:03:c3:31:aa:85:58:63:a8:45:5a:e0:ca: ac:08:84:63:7f:02:89:90:14:53:3b:a0:4f:6d:db: 60:5e:24:fe:d6:4d:36:a3:7c:29:70:c2:c5:7a:cd: 32:62:a4:f9:10:77:09:87:92:6a:f0:bf:5f:5a:24: d2:05:02:30:73:1a:15:07:6a:6e:ce:43:50:6a:18: 41:32:39:51:99:f1:46:40:34:44:da:84:d3:39:c3: a3:f5:4a:46:ff:41:5b:7e:0c:21:26:9e:fc:cd:ed: 4e:f3:11:ad:7a:1a:57:f6:84:74:4b:30:f8:da:a4: ac:94:78:21:94:f4:be:db:3c:43:5a:0e:5b:40:92: 32:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:EE:FA:7B:4D:A6:9B:E9:14:08:7E:41:99:E7:6F:9E:B0:4B:E2:AB X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/8B0EC9621D0611EDBAB65333C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.42.38.0/24 Signature Algorithm: sha256WithRSAEncryption 43:a9:41:45:5f:a6:a0:0f:11:de:e8:28:6c:e3:58:62:d6:e9: 45:81:03:2b:eb:81:fb:2c:fb:70:58:ff:28:66:a5:d2:21:a7: 60:8f:89:78:b9:e4:f4:71:2a:d6:cb:4e:ce:f1:10:f1:94:18: c3:47:fd:33:29:da:f9:13:98:52:f9:e7:6b:71:43:f4:55:5b: 01:74:9a:e1:a3:10:60:0a:e6:77:3f:00:8d:ab:48:fe:fb:e8: c9:11:02:5f:c1:20:51:dd:0f:7e:7b:9b:b4:11:dd:b2:6c:1b: ac:3d:0c:96:e5:e6:3a:e6:d0:58:38:84:d8:6d:6d:f5:f0:16: 54:0e:dc:9c:7c:d2:be:36:17:4e:ef:0c:ae:bc:d3:2f:7a:e1: d5:59:66:7e:61:d0:09:25:43:af:63:a7:95:66:31:32:0c:b2: 0b:64:6c:d4:c4:c0:18:e2:f4:ed:2c:5a:39:89:38:a6:2f:3c: ba:0b:fb:ee:75:d5:44:a0:73:58:57:c4:9d:81:15:08:ab:68: c8:92:2c:7c:6b:ee:85:ce:63:59:f8:bb:57:3d:64:f9:a8:54: 9a:37:54:bb:0e:99:5f:29:33:c0:18:a4:74:3d:f2:1e:3a:41: 26:f5:12:f6:14:c1:c4:14:02:11:6c:0e:6f:17:90:1d:13:c4: 45:95:7a:e2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjYwMTE0MTgxNTAwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY3ZGQyNC1jYzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwP5vP6kCHt2hKY6aJZVQ8KrcZwLGRrcW0rIhgR6JpUGbp3S/Ugugt5vd2Kcc WxwoAOGFXSoVgVG5jaOkJEPwZefKMr72n+K2oObOWh2T3xziAmXFYZdQmnYSXPQ3 MJ8AXDaUKIgV2G2D1t9OmP7NLZkhTDagS9d0lhcDwzGqhVhjqEVa4MqsCIRjfwKJ kBRTO6BPbdtgXiT+1k02o3wpcMLFes0yYqT5EHcJh5Jq8L9fWiTSBQIwcxoVB2pu zkNQahhBMjlRmfFGQDRE2oTTOcOj9UpG/0FbfgwhJp78ze1O8xGtehpX9oR0SzD4 2qSslHghlPS+2zxDWg5bQJIy4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPXu+ntN ppvpFAh+QZnnb56wS+KrMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvOEIwRUM5NjIx RDA2MTFFREJBQjY1MzMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKKiYwDQYJKoZIhvcNAQELBQADggEBAEOpQUVfpqAPEd7o KGzjWGLW6UWBAyvrgfss+3BY/yhmpdIhp2CPiXi55PRxKtbLTs7xEPGUGMNH/TMp 2vkTmFL552txQ/RVWwF0muGjEGAK5nc/AI2rSP776MkRAl/BIFHdD357m7QR3bJs G6w9DJbl5jrm0Fg4hNhtbfXwFlQO3Jx80r42F07vDK680y964dVZZn5h0AklQ69j p5VmMTIMsgtkbNTEwBji9O0sWjmJOKYvPLoL++511USgc1hXxJ2BFQiraMiSLHxr 7oXOY1n4u1c9ZPmoVJo3VLsOmV8pM8AYpHQ98h46QSb1EvYUwcQUAhFsDm8XkB0T xEWVeuI= -----END CERTIFICATE-----Generated at Wed Jan 21 22:26:24 2026 by rpki-client