This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/02389B7670E811EFA8DBE571C4F9AE02.roa File: 02389B7670E811EFA8DBE571C4F9AE02.roa (raw, json) Hash identifier: VymoAbVW0Xjer0qffAdo09mun74sopBFqTSpIfpfxa8= Subject key identifier: AE:C3:8C:B8:43:4E:DC:AD:A6:D7:51:91:A4:56:2F:A0:3F:E8:83:C3 Certificate issuer: /CN=A91DBA5B/serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Certificate serial: F1 Authority key identifier: DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/02389B7670E811EFA8DBE571C4F9AE02.roa Signing time: Wed 17 Dec 2025 05:24:09 +0000 ROA not before: Wed 17 Dec 2025 05:24:09 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133453 IP address blocks: 2001:df4:4340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Validity Not Before: Dec 17 05:24:09 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69423e78-8046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b5:e0:bc:57:17:ff:3f:6b:f2:2d:bd:93:1b: 99:12:31:c2:85:01:f4:9d:85:12:f3:df:b2:19:9f: cf:9c:26:76:fd:1d:26:54:82:99:7c:b5:a7:af:9d: 45:5b:71:fc:98:74:ab:69:c0:fe:7b:7c:2a:af:3f: 13:cb:fb:bd:0e:f3:1f:4c:75:a1:51:c9:a9:aa:80: d2:f4:b7:ca:66:98:aa:14:57:75:56:ab:15:eb:08: 98:23:8c:cd:ac:5c:8d:30:cb:96:52:65:45:f0:85: aa:f5:89:25:61:f7:12:35:9b:74:c6:f5:c4:7f:6e: 64:39:19:b6:85:63:5a:68:d8:3c:95:cc:9c:ba:27: 3c:b0:86:43:6c:d3:06:06:a3:b4:a8:72:7b:56:70: 21:c7:6a:d0:b4:46:48:84:32:5c:8c:c3:9f:65:bc: e1:81:46:9d:17:7a:a9:96:f9:8c:e3:95:bb:b9:c7: 04:57:eb:13:56:d4:9d:aa:ee:fd:f3:85:b7:9a:6e: 0c:ed:b5:10:0b:27:f9:5c:86:b8:ad:21:30:c5:64: 13:60:cd:ef:01:83:de:81:f2:a1:9a:50:0e:77:15: 1c:3b:79:e2:71:97:43:dd:6c:ea:93:a8:87:da:43: 18:d1:7e:97:d1:8c:c4:db:d1:e3:75:4b:56:08:30: d0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:C3:8C:B8:43:4E:DC:AD:A6:D7:51:91:A4:56:2F:A0:3F:E8:83:C3 X509v3 Authority Key Identifier: keyid:DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/02389B7670E811EFA8DBE571C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:4340::/48 Signature Algorithm: sha256WithRSAEncryption 9b:31:6d:e4:9c:80:ea:c6:27:bb:54:54:3d:33:7d:27:05:d2: 48:8f:08:7e:52:72:5b:c8:19:8e:70:4f:03:d2:5d:35:3d:02: 43:19:38:df:d8:cf:a8:bb:2c:a1:11:89:26:03:91:48:87:32: 25:0e:2a:18:86:a9:c1:e0:c4:9c:d5:a3:0b:ab:f3:d5:5d:02: 1a:90:3a:cc:bd:46:11:15:4c:0c:6c:c9:3d:3d:f0:bd:5f:6e: 4b:f4:12:fd:f2:69:fe:af:f0:03:a6:8e:74:be:35:ef:3f:cf: 33:5f:69:67:bc:13:19:50:a1:79:66:20:dd:26:05:12:19:e2: 32:d3:92:48:0c:49:fa:55:dd:e2:ce:99:df:b9:78:c8:ac:3a: 3b:16:9d:cd:0a:d6:82:c9:b0:25:69:f2:8c:0e:35:d6:99:70: 9b:24:54:e6:81:17:9e:c5:49:c6:1f:2e:f4:7a:b0:c9:b5:3b: 56:39:29:f0:ef:07:e7:0a:d2:82:73:68:63:75:d1:02:86:d0: 87:a6:f2:57:60:7b:f1:eb:05:7d:7d:7f:79:1b:04:a5:1c:c9: 00:7f:87:a0:4b:e2:9d:a6:e9:b4:86:79:7f:cb:3d:35:ad:28: 0b:61:81:62:61:e5:ad:69:81:d4:b0:e5:b8:6c:d1:5e:db:14: bd:b1:10:04 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKERGNDdDRUNDNTdFQTg4QUVCOTZBMzg2NTU2MEI5RjIy NjBCQTk5MEUwHhcNMjUxMjE3MDUyNDA5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQyM2U3OC04MDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7XgvFcX/z9r8i29kxuZEjHChQH0nYUS89+yGZ/PnCZ2/R0mVIKZfLWnr51F W3H8mHSracD+e3wqrz8Ty/u9DvMfTHWhUcmpqoDS9LfKZpiqFFd1VqsV6wiYI4zN rFyNMMuWUmVF8IWq9YklYfcSNZt0xvXEf25kORm2hWNaaNg8lcycuic8sIZDbNMG BqO0qHJ7VnAhx2rQtEZIhDJcjMOfZbzhgUadF3qplvmM45W7uccEV+sTVtSdqu79 84W3mm4M7bUQCyf5XIa4rSEwxWQTYM3vAYPegfKhmlAOdxUcO3nicZdD3Wzqk6iH 2kMY0X6X0YzE29HjdUtWCDDQ8QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFK7DjLhD TtytptdRkaRWL6A/6IPDMB8GA1UdIwQYMBaAFN9HzsxX6oiuuWo4ZVYLnyJgupkO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi81ODAwNEFBQTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi8zMGZPekZmcWlLNjVhamhsVmd1ZkltQzZt UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMwZk96RmZxaUs2NWFqaGxWZ3VmSW1DNm1RNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJBNUIvNTgwMDRBQUE3MEU3MTFFRkI0NDRBRjcwQzRGOUFFMDIvMDIzODlCNzY3 MEU4MTFFRkE4REJFNTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30Q0AwDQYJKoZIhvcNAQELBQADggEBAJsxbeScgOrG J7tUVD0zfScF0kiPCH5SclvIGY5wTwPSXTU9AkMZON/Yz6i7LKERiSYDkUiHMiUO KhiGqcHgxJzVowur89VdAhqQOsy9RhEVTAxsyT098L1fbkv0Ev3yaf6v8AOmjnS+ Ne8/zzNfaWe8ExlQoXlmIN0mBRIZ4jLTkkgMSfpV3eLOmd+5eMisOjsWnc0K1oLJ sCVp8owONdaZcJskVOaBF57FScYfLvR6sMm1O1Y5KfDvB+cK0oJzaGN10QKG0Iem 8ldge/HrBX19f3kbBKUcyQB/h6BL4p2m6bSGeX/LPTWtKAthgWJh5a1pgdSw5bhs 0V7bFL2xEAQ= -----END CERTIFICATE-----Generated at Wed Dec 24 17:34:40 2025 by rpki-client