This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/AE9742429B5711EB8E3BEB19C4F9AE02.roa File: AE9742429B5711EB8E3BEB19C4F9AE02.roa (raw, json) Hash identifier: 7AT1xkUpvaaOJjN8+ZzXz78spS2r8taLdHpzNRyBWLs= Subject key identifier: 4E:D6:33:7E:71:8B:9A:5E:E7:0C:D8:A0:47:C6:42:D5:69:3A:18:0A Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0FAC Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/AE9742429B5711EB8E3BEB19C4F9AE02.roa Signing time: Wed 14 Jan 2026 18:15:07 +0000 ROA not before: Wed 14 Jan 2026 18:15:07 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 2706 IP address blocks: 202.64.63.0/24 maxlen: 24 202.64.111.0/24 maxlen: 24 202.64.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 17:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4012 (0xfac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:15:07 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6967dd2b-5c31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:11:f8:d9:bb:c8:e3:e4:e6:22:9d:17:c3:7f: d8:2a:20:e0:58:c7:c3:8f:16:dd:2d:ca:66:13:f9: b8:83:4c:4c:81:b2:15:88:d0:eb:d7:16:3d:a7:dd: d1:7d:79:87:d8:f5:f9:bf:0f:e8:65:ba:6a:de:38: 46:a1:65:b3:b6:30:6b:1f:dd:c8:01:ae:5f:5c:39: e3:7f:21:09:3a:df:39:36:45:4d:18:af:eb:52:ed: f8:dd:04:ee:40:3b:7b:db:7b:39:2f:b3:4d:0a:dc: 46:6a:03:6f:a7:d5:d7:e0:54:ad:88:9f:1a:2b:cd: 11:f7:12:d4:2f:6b:05:a3:64:08:34:45:86:4f:ef: 27:4c:fd:b4:8c:f8:98:84:a4:b4:bd:4d:f0:0d:cc: b4:67:b0:b6:ec:0f:0a:3c:fc:c2:f5:59:75:87:15: 7e:15:05:53:6a:5d:02:e0:1f:c5:b4:18:58:d3:36: 8f:81:cd:dd:19:3c:dd:9b:05:be:42:9f:42:4c:0d: 05:37:cb:31:47:a0:db:66:9b:93:40:31:fa:52:13: 92:55:92:e5:89:68:a4:bd:ce:f8:33:32:22:38:df: d4:0d:a8:16:83:de:10:31:54:b6:ad:3d:d4:0b:26: ea:4c:8a:ec:d1:3b:ed:ef:63:e5:b6:ce:9b:60:00: f0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D6:33:7E:71:8B:9A:5E:E7:0C:D8:A0:47:C6:42:D5:69:3A:18:0A X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/AE9742429B5711EB8E3BEB19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.64.63.0/24 202.64.111.0/24 202.64.131.0/24 Signature Algorithm: sha256WithRSAEncryption 09:ba:fe:32:cf:6f:fd:84:15:2a:7e:14:89:ee:89:62:84:23: 40:d9:57:98:ea:4f:6b:75:f1:48:41:cc:09:65:fe:53:37:75: 1a:16:81:ef:bc:65:c5:4d:4f:53:45:69:26:73:a5:96:b5:2f: 44:f7:5e:ce:4f:bf:ea:b0:63:e5:15:2b:7d:8a:ac:86:b8:52: 7d:a1:05:fb:3b:2c:12:2c:b1:ae:40:d9:ab:7a:b1:99:1a:49: 9f:80:38:2a:08:43:e8:7c:eb:9a:97:b6:15:e2:0b:33:df:f7: ff:a3:ec:10:20:ca:c0:b4:0d:44:98:93:46:23:6e:3e:f9:c1: 9b:b6:ae:eb:96:6b:e7:82:ff:1e:23:12:c5:81:83:23:0a:13: 65:33:6c:89:21:57:c2:1d:f3:19:51:30:32:b6:a1:0f:eb:ab: 72:27:69:ec:7b:27:45:1a:d4:fc:8f:db:a6:9e:2f:30:ab:35: 58:ba:5c:dc:82:92:82:6f:64:e8:ec:6b:50:fc:a1:8f:8b:f7: 5a:22:d8:b0:12:4f:bc:ca:d2:b8:c7:4f:37:06:1f:b8:84:eb: 62:21:ba:45:6d:b5:ab:93:f0:15:60:bb:1a:fc:45:0c:a9:ad: 0b:74:10:12:1a:c4:6e:aa:19:11:b9:cb:4d:f5:b0:05:83:e2: 1a:f6:c9:bc -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICD6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjYwMTE0MTgxNTA3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY3ZGQyYi01YzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjhH42bvI4+TmIp0Xw3/YKiDgWMfDjxbdLcpmE/m4g0xMgbIViNDr1xY9p93R fXmH2PX5vw/oZbpq3jhGoWWztjBrH93IAa5fXDnjfyEJOt85NkVNGK/rUu343QTu QDt723s5L7NNCtxGagNvp9XX4FStiJ8aK80R9xLUL2sFo2QINEWGT+8nTP20jPiY hKS0vU3wDcy0Z7C27A8KPPzC9Vl1hxV+FQVTal0C4B/FtBhY0zaPgc3dGTzdmwW+ Qp9CTA0FN8sxR6DbZpuTQDH6UhOSVZLliWikvc74MzIiON/UDagWg94QMVS2rT3U CybqTIrs0Tvt72Plts6bYADweQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFE7WM35x i5pe5wzYoEfGQtVpOhgKMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvQUU5NzQyNDI5 QjU3MTFFQjhFM0JFQjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADKQD8DBADKQG8DBADKQIMwDQYJKoZIhvcNAQELBQADggEB AAm6/jLPb/2EFSp+FInuiWKEI0DZV5jqT2t18UhBzAll/lM3dRoWge+8ZcVNT1NF aSZzpZa1L0T3Xs5Pv+qwY+UVK32KrIa4Un2hBfs7LBIssa5A2at6sZkaSZ+AOCoI Q+h865qXthXiCzPf9/+j7BAgysC0DUSYk0Yjbj75wZu2ruuWa+eC/x4jEsWBgyMK E2UzbIkhV8Id8xlRMDK2oQ/rq3Inaex7J0Ua1PyP26aeLzCrNVi6XNyCkoJvZOjs a1D8oY+L91oi2LAST7zK0rjHTzcGH7iE62IhukVttauT8BVguxr8RQyprQt0EBIa xG6qGRG5y031sAWD4hr2ybw= -----END CERTIFICATE-----Generated at Wed Jan 21 22:26:56 2026 by rpki-client