This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/68EBA63A48B911EFB80D9535C4F9AE02.roa File: 68EBA63A48B911EFB80D9535C4F9AE02.roa (raw, json) Hash identifier: ZnI50yqFcr2ELLioYXVsT9vWtso0eeegYr2DVc7jh/4= Subject key identifier: 86:B7:D9:79:E2:40:17:08:F2:F2:9E:92:CD:D3:E4:9B:05:1F:D0:7F Certificate issuer: /CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Certificate serial: 012F Authority key identifier: C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/68EBA63A48B911EFB80D9535C4F9AE02.roa Signing time: Sat 17 Jan 2026 05:47:45 +0000 ROA not before: Sat 17 Jan 2026 05:47:45 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 6453 IP address blocks: 192.8.33.0/24 maxlen: 24 192.8.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 03:58:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F, serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Validity Not Before: Jan 17 05:47:45 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=696b2281-8964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9c:81:32:90:dd:bc:0f:49:9e:84:26:f9:6c: af:a3:b3:70:96:9d:b9:85:6c:1f:c0:6f:d9:38:e3: a1:9d:68:88:e7:95:51:55:f8:dc:23:4c:f4:f6:52: 18:92:c7:4f:47:48:0b:c8:9c:fd:72:8f:4e:9c:1a: 05:56:fa:6a:54:64:ef:9d:c3:1f:46:2e:94:c3:05: fa:5b:90:38:2a:b3:ce:28:37:a7:a0:fd:a1:b4:af: 17:41:b8:d3:2e:03:c3:38:f7:ec:41:64:11:f6:2f: e8:12:03:a4:93:dc:8d:40:24:95:af:2c:fa:41:1b: fa:6e:50:11:73:20:d0:ad:8c:96:58:c1:b8:6a:6a: 2c:88:98:28:90:fa:2f:91:21:e5:63:bd:36:74:32: 46:96:9a:e5:3c:26:59:ed:12:24:e0:95:5f:34:64: 00:d6:6f:77:b6:42:25:22:86:75:06:a3:e3:50:38: ac:f5:f1:eb:96:79:74:1b:b5:01:02:ef:d2:88:0f: 5b:c1:35:6a:84:f4:35:db:63:64:dc:72:9a:c7:ff: 92:75:01:70:22:3c:5f:0a:49:33:bf:d6:80:e7:47: eb:8b:0a:ed:16:ba:3e:59:e1:99:29:f9:8f:de:65: b5:cf:36:d9:03:26:6f:3b:10:bf:36:41:8b:2f:61: 4e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B7:D9:79:E2:40:17:08:F2:F2:9E:92:CD:D3:E4:9B:05:1F:D0:7F X509v3 Authority Key Identifier: keyid:C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/68EBA63A48B911EFB80D9535C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.8.33.0/24 192.8.238.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:55:f4:cd:89:00:32:88:15:50:bf:ec:60:ee:45:8a:70:cf: 5c:11:f3:71:58:2b:95:fb:ac:38:b7:6e:2f:da:50:b5:c5:ae: 32:db:53:61:2b:83:e0:78:82:6e:8a:8a:d2:e3:33:8d:11:e4: 91:15:a3:15:7b:c5:07:3e:e2:d1:bc:b6:20:16:43:a2:30:1f: e7:83:2d:72:f4:1e:9e:e9:67:c2:ce:29:b9:e2:50:87:98:88: 2a:d7:fa:80:1e:2c:5c:28:95:2a:95:80:97:31:52:0f:d7:f8: b7:d5:ac:f4:d9:b5:f9:0d:71:4b:16:09:8e:ae:06:3d:97:e7: 9b:31:51:5f:51:da:25:a2:65:53:af:2b:28:37:0b:76:05:40: a2:36:71:64:c3:93:e4:db:53:d3:bc:0e:45:b4:c1:ce:4a:ce: 5d:fd:dd:2a:2c:8e:ac:5c:b6:c5:f0:c1:5a:d6:ea:a4:3b:33: 1f:a5:5e:6c:d0:b5:53:29:da:2c:a4:89:11:69:43:17:13:6d: 74:b7:3d:32:f6:a9:ee:88:fd:6e:43:b4:33:68:3e:9e:c3:bd: ba:aa:c8:8a:6b:26:25:b1:a4:0e:14:50:02:31:fa:8b:62:6b: fc:f2:8f:fd:80:90:00:dd:11:87:32:64:a2:f6:74:94:9a:f5: 84:c8:6a:45 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc4MkYxMTAvBgNVBAUTKEM4NjAzNjU3NTUyNDQ4RUQ1QkJBRUQ3MTcyNEQyMjIw RjAzQkY3QzYwHhcNMjYwMTE3MDU0NzQ1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTZiMjI4MS04OTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5yBMpDdvA9JnoQm+Wyvo7Nwlp25hWwfwG/ZOOOhnWiI55VRVfjcI0z09lIY ksdPR0gLyJz9co9OnBoFVvpqVGTvncMfRi6UwwX6W5A4KrPOKDenoP2htK8XQbjT LgPDOPfsQWQR9i/oEgOkk9yNQCSVryz6QRv6blARcyDQrYyWWMG4amosiJgokPov kSHlY702dDJGlprlPCZZ7RIk4JVfNGQA1m93tkIlIoZ1BqPjUDis9fHrlnl0G7UB Au/SiA9bwTVqhPQ122Nk3HKax/+SdQFwIjxfCkkzv9aA50friwrtFro+WeGZKfmP 3mW1zzbZAyZvOxC/NkGLL2FO/wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIa32Xni QBcI8vKeks3T5JsFH9B/MB8GA1UdIwQYMBaAFMhgNldVJEjtW7rtcXJNIiDwO/fG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzgyRi82RDIwNzVGNjQw NzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi95R0EyVjFVa1NPMWJ1dTF4Y2swaUlQQTc5 OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lHQTJWMVVrU08xYnV1MXhjazBpSVBBNzk4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc4MkYvNkQyMDc1RjY0MDcwMTFFRkJEQTlENjZGQzRGOUFFMDIvNjhFQkE2M0E0 OEI5MTFFRkI4MEQ5NTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADACCEDBADACO4wDQYJKoZIhvcNAQELBQADggEBAB1V9M2J ADKIFVC/7GDuRYpwz1wR83FYK5X7rDi3bi/aULXFrjLbU2Erg+B4gm6KitLjM40R 5JEVoxV7xQc+4tG8tiAWQ6IwH+eDLXL0Hp7pZ8LOKbniUIeYiCrX+oAeLFwolSqV gJcxUg/X+LfVrPTZtfkNcUsWCY6uBj2X55sxUV9R2iWiZVOvKyg3C3YFQKI2cWTD k+TbU9O8DkW0wc5Kzl393SosjqxctsXwwVrW6qQ7Mx+lXmzQtVMp2iykiRFpQxcT bXS3PTL2qe6I/W5DtDNoPp7DvbqqyIprJiWxpA4UUAIx+otia/zyj/2AkADdEYcy ZKL2dJSa9YTIakU= -----END CERTIFICATE-----Generated at Wed Jan 21 13:20:30 2026 by rpki-client