This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/8DDD0D56A98C11EFAAC0F364C4F9AE02.roa File: 8DDD0D56A98C11EFAAC0F364C4F9AE02.roa (raw, json) Hash identifier: UYM1+JyUTiIe7hrNbR8AB9pkdgDLjYHrI0Dj67rXtxY= Subject key identifier: 44:84:BE:D4:D3:00:1F:6F:87:58:78:01:2D:D3:92:18:A2:91:BB:E3 Certificate issuer: /CN=A91D2C38/serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Certificate serial: C0 Authority key identifier: 78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/8DDD0D56A98C11EFAAC0F364C4F9AE02.roa Signing time: Sat 29 Nov 2025 04:03:06 +0000 ROA not before: Sat 29 Nov 2025 04:03:06 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137037 IP address blocks: 2001:df4:96c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:15:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2C38, serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Validity Not Before: Nov 29 04:03:06 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692a707a-6998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fa:5c:1e:f6:46:cf:33:43:23:b7:83:d8:b9: cb:bb:09:46:cc:b6:e2:54:88:00:19:8d:e4:cc:99: 2f:a2:17:b5:7d:e4:3b:e2:b7:c8:b7:6b:e2:6c:e3: 5a:f3:2e:9b:95:4a:f2:93:98:6f:fe:fb:04:9a:58: d4:55:d7:4b:bb:16:e3:bd:f5:2b:90:45:02:0c:fc: 50:5f:28:e4:58:74:85:be:fe:59:6f:d0:e5:8d:d3: 84:29:2a:bd:2d:a5:9c:44:d4:74:b3:7f:02:21:d2: 18:84:81:27:90:b8:98:20:d0:42:20:c5:d6:70:5b: 4c:2a:05:33:9d:02:3e:7f:8c:8c:c1:26:da:9c:00: bf:f9:8e:0f:03:d4:a1:cf:31:2d:8f:6d:ad:b5:b9: 21:63:eb:f3:d7:28:d0:ad:43:36:bf:17:3f:10:d4: 5e:6f:d1:3f:08:21:73:6b:7b:c2:ef:06:ce:85:09: ea:ee:12:7f:20:c8:68:3a:f7:2b:3f:a8:69:b0:4b: 52:da:d4:65:71:3e:03:e7:22:83:dc:7e:cf:4c:56: bf:f5:5b:e2:03:d2:60:c5:2a:d0:32:49:db:b7:8c: be:c1:46:a3:d1:25:03:50:19:d2:42:72:00:6b:66: d4:72:24:a2:63:e7:1d:a6:33:dd:ae:86:b8:f8:74: 99:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:84:BE:D4:D3:00:1F:6F:87:58:78:01:2D:D3:92:18:A2:91:BB:E3 X509v3 Authority Key Identifier: keyid:78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/8DDD0D56A98C11EFAAC0F364C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:96c0::/48 Signature Algorithm: sha256WithRSAEncryption 10:51:e2:26:c6:35:26:55:81:d6:d7:23:4e:51:0a:76:a4:b5: 69:2f:f7:95:b8:aa:9b:d7:6f:7a:65:2c:b4:28:7a:b1:6a:7a: 22:76:6f:3a:bf:3b:6d:b9:1c:54:48:37:f3:44:34:fc:4e:36: 47:4f:69:ae:19:40:ee:29:31:54:04:53:17:1e:d6:13:fb:bc: 92:cd:0d:f2:1c:e4:2d:a7:d4:a2:00:39:a3:29:93:de:54:ec: b0:de:48:79:c0:9b:3e:a6:2e:81:88:3d:ff:0b:6c:1e:44:26: 1b:a1:06:b7:d3:a1:be:23:00:66:ac:c4:16:c3:3e:c6:8e:7e: 35:5c:ec:fa:0e:67:83:75:f3:8b:e8:fb:de:d0:ea:73:12:97: bd:4a:5a:72:51:72:34:51:c3:9f:06:f6:0f:f5:b5:a9:6e:4c: dc:20:24:cf:1a:d4:50:a0:db:fe:f2:2f:bf:25:b1:d5:66:30: 75:75:c6:c8:df:38:14:80:7b:15:74:9c:21:48:07:c9:a3:b8: 20:ee:65:e4:a2:fd:ff:7e:d8:e7:64:42:23:5b:23:52:c4:0f: 27:a1:5d:e3:6b:a7:27:80:a6:3a:7e:47:31:50:a0:5d:e0:19: 72:dd:89:e8:62:8c:18:8b:85:e8:72:59:46:6f:3c:17:33:ac: 11:37:c0:da -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDMzgxMTAvBgNVBAUTKDc4QTdEMzVFRjlDNDc3NUU3NENCQTNEMTY2QjYxQjc1 OTAyNDE1MjMwHhcNMjUxMTI5MDQwMzA2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJhNzA3YS02OTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufpcHvZGzzNDI7eD2LnLuwlGzLbiVIgAGY3kzJkvohe1feQ74rfIt2vibONa 8y6blUryk5hv/vsEmljUVddLuxbjvfUrkEUCDPxQXyjkWHSFvv5Zb9DljdOEKSq9 LaWcRNR0s38CIdIYhIEnkLiYINBCIMXWcFtMKgUznQI+f4yMwSbanAC/+Y4PA9Sh zzEtj22ttbkhY+vz1yjQrUM2vxc/ENReb9E/CCFza3vC7wbOhQnq7hJ/IMhoOvcr P6hpsEtS2tRlcT4D5yKD3H7PTFa/9VviA9JgxSrQMknbt4y+wUaj0SUDUBnSQnIA a2bUciSiY+cdpjPdroa4+HSZTwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFESEvtTT AB9vh1h4AS3TkhiikbvjMB8GA1UdIwQYMBaAFHin0175xHdedMuj0Wa2G3WQJBUj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkMzOC8wREU4OTM0MEE5 OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9lS2ZUWHZuRWQxNTB5NlBSWnJZYmRaQWtG U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VLZlRYdm5FZDE1MHk2UFJaclliZFpBa0ZTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDJDMzgvMERFODkzNDBBOThDMTFFRjkzNTBGQjYzQzRGOUFFMDIvOERERDBENTZB OThDMTFFRkFBQzBGMzY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30lsAwDQYJKoZIhvcNAQELBQADggEBABBR4ibGNSZV gdbXI05RCnaktWkv95W4qpvXb3plLLQoerFqeiJ2bzq/O225HFRIN/NENPxONkdP aa4ZQO4pMVQEUxce1hP7vJLNDfIc5C2n1KIAOaMpk95U7LDeSHnAmz6mLoGIPf8L bB5EJhuhBrfTob4jAGasxBbDPsaOfjVc7PoOZ4N184vo+97Q6nMSl71KWnJRcjRR w58G9g/1taluTNwgJM8a1FCg2/7yL78lsdVmMHV1xsjfOBSAexV0nCFIB8mjuCDu ZeSi/f9+2OdkQiNbI1LEDyehXeNrpyeApjp+RzFQoF3gGXLdiehijBiLhehyWUZv PBczrBE3wNo= -----END CERTIFICATE-----Generated at Wed Dec 3 16:08:55 2025 by rpki-client