This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/53F3631AE09A11F0A599D036446F56BC.roa File: 53F3631AE09A11F0A599D036446F56BC.roa (raw, json) Hash identifier: cen/2QQHHB2Ce/BPby3zzwtq3/K2nBJUeNhySuETspw= Subject key identifier: 1D:09:A0:1A:AE:B9:22:B2:8F:A9:08:03:05:92:BE:96:48:17:D6:8C Certificate issuer: /CN=A91DB53B/serialNumber=864B889A537871098526541F0EB91256FDAFA7B1 Certificate serial: 03 Authority key identifier: 86:4B:88:9A:53:78:71:09:85:26:54:1F:0E:B9:12:56:FD:AF:A7:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkuImlN4cQmFJlQfDrkSVv2vp7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/53F3631AE09A11F0A599D036446F56BC.roa Signing time: Wed 24 Dec 2025 07:29:49 +0000 ROA not before: Wed 24 Dec 2025 07:29:49 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 154402 IP address blocks: 2402:3d20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.crl rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkuImlN4cQmFJlQfDrkSVv2vp7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 07:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB53B, serialNumber=864B889A537871098526541F0EB91256FDAFA7B1 Validity Not Before: Dec 24 07:29:49 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=694b966c-9f2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:52:3d:ea:6b:70:d8:e3:05:0d:9e:4b:be:3a: 00:72:35:21:a5:da:58:e9:52:e0:62:da:22:3c:13: 1d:95:7c:ec:9f:5c:7a:4f:b8:a3:46:e8:8b:04:2d: 68:95:f1:6d:fd:68:7c:0a:56:11:f9:9c:b7:67:3d: d4:1e:43:e8:4c:ff:77:30:b9:ec:77:5a:ff:6f:eb: 06:27:ea:6e:8a:ef:ac:13:f3:0e:fd:fc:ed:17:53: fb:60:05:4b:01:dc:50:22:ef:e3:3a:50:fd:31:58: 64:a5:d9:ca:a1:fc:1b:f7:10:d8:65:61:c0:5c:38: 5a:68:1e:2c:f8:52:92:e4:b7:79:26:fb:5a:45:4a: 48:50:ad:05:74:a4:b6:4a:72:cb:91:25:5c:ae:bf: 11:b6:6f:10:5d:52:0d:a0:0b:46:c7:bd:4a:e3:30: 4e:24:1a:63:64:1b:2a:6d:35:b2:fc:ef:ce:d5:64: d0:8b:d5:c1:a7:36:2e:43:10:30:7f:fb:cb:61:55: 8f:fc:a9:bd:4c:89:5f:89:b9:f3:10:3d:b6:db:13: 07:2d:7e:e5:9e:f2:6f:b0:76:d3:32:4f:f3:df:42: 17:22:a0:86:4b:a8:68:bd:8c:dd:85:d8:68:e9:61: f3:ad:c7:80:f4:7a:28:6f:a5:0e:e9:9c:a7:e0:d5: 8e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:09:A0:1A:AE:B9:22:B2:8F:A9:08:03:05:92:BE:96:48:17:D6:8C X509v3 Authority Key Identifier: keyid:86:4B:88:9A:53:78:71:09:85:26:54:1F:0E:B9:12:56:FD:AF:A7:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkuImlN4cQmFJlQfDrkSVv2vp7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/53F3631AE09A11F0A599D036446F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:3d20::/32 Signature Algorithm: sha256WithRSAEncryption 32:8d:57:9d:98:d9:a1:13:61:ff:2f:14:3a:12:56:d3:63:26: 8f:7f:da:5e:a5:5d:6d:82:03:45:4f:1b:62:b8:82:88:3c:48: 59:a0:c0:8d:62:b0:ab:b1:f0:82:d9:78:45:0f:cd:08:9e:fb: 9b:00:b6:4b:a3:cb:a1:a3:2e:5e:1d:f6:8e:03:b9:88:f6:bb: 02:2e:5b:83:5f:39:59:4d:5c:37:dd:a3:69:0e:a7:2b:ca:93: 11:64:59:26:ca:f3:19:7d:19:59:5d:23:e7:95:41:fb:80:55: 4f:2b:68:e1:f4:26:3a:79:6b:43:57:0d:1f:a8:25:03:a9:e2: ff:a0:48:5d:65:e4:2c:0d:28:09:03:db:f8:29:66:f1:eb:e2: c7:04:41:13:3a:3f:4c:10:bf:d0:46:43:e1:c4:9f:17:de:c2: 16:51:ef:e5:12:f5:59:ca:59:db:fd:46:0d:4a:4e:41:d2:6c: fa:45:c4:3c:b1:1f:67:a2:a1:54:e0:2b:ab:50:57:d3:d9:ba: 60:94:58:b2:63:a5:fe:10:f1:f6:e4:79:f2:de:b6:76:45:51: 72:71:c6:d2:91:3b:f9:bb:82:54:ac:7c:33:81:50:ae:eb:9f: c5:71:e8:e8:a6:9b:45:a4:1f:bb:93:fe:29:61:01:f8:1f:b4: d4:89:b9:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFE QjUzQjExMC8GA1UEBRMoODY0Qjg4OUE1Mzc4NzEwOTg1MjY1NDFGMEVCOTEyNTZG REFGQTdCMTAeFw0yNTEyMjQwNzI5NDlaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NGI5NjZjLTlmMmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCUj3qa3DY4wUNnku+OgByNSGl2ljpUuBi2iI8Ex2VfOyfXHpPuKNG6IsELWiV 8W39aHwKVhH5nLdnPdQeQ+hM/3cwuex3Wv9v6wYn6m6K76wT8w79/O0XU/tgBUsB 3FAi7+M6UP0xWGSl2cqh/Bv3ENhlYcBcOFpoHiz4UpLkt3km+1pFSkhQrQV0pLZK csuRJVyuvxG2bxBdUg2gC0bHvUrjME4kGmNkGyptNbL8787VZNCL1cGnNi5DEDB/ +8thVY/8qb1MiV+JufMQPbbbEwctfuWe8m+wdtMyT/PfQhcioIZLqGi9jN2F2Gjp YfOtx4D0eihvpQ7pnKfg1Y7vAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUHQmgGq65 IrKPqQgDBZK+lkgX1owwHwYDVR0jBBgwFoAUhkuImlN4cQmFJlQfDrkSVv2vp7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCNTNCLzAwREE5RDY4RTAx QTExRjA4QUQzRUI4RDYyNkY1NkJDL2hrdUltbE40Y1FtRkpsUWZEcmtTVnYydnA3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGt1SW1sTjRjUW1GSmxRZkRya1NWdjJ2cDdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjUzQi8wMERBOUQ2OEUwMUExMUYwOEFEM0VCOEQ2MjZGNTZCQy81M0YzNjMxQUUw OUExMUYwQTU5OUQwMzY0NDZGNTZCQy5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQCPSAwDQYJKoZIhvcNAQELBQADggEBADKNV52Y2aETYf8v FDoSVtNjJo9/2l6lXW2CA0VPG2K4gog8SFmgwI1isKux8ILZeEUPzQie+5sAtkuj y6GjLl4d9o4DuYj2uwIuW4NfOVlNXDfdo2kOpyvKkxFkWSbK8xl9GVldI+eVQfuA VU8raOH0Jjp5a0NXDR+oJQOp4v+gSF1l5CwNKAkD2/gpZvHr4scEQRM6P0wQv9BG Q+HEnxfewhZR7+US9VnKWdv9Rg1KTkHSbPpFxDyxH2eioVTgK6tQV9PZumCUWLJj pf4Q8fbkefLetnZFUXJxxtKRO/m7glSsfDOBUK7rn8Vx6Oimm0WkH7uT/ilhAfgf tNSJuag= -----END CERTIFICATE-----Generated at Wed Dec 24 15:48:28 2025 by rpki-client