This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/453489B8BE6311EE90BF9241C4F9AE02.roa File: 453489B8BE6311EE90BF9241C4F9AE02.roa (raw, json) Hash identifier: FodKXS0TzbSfOmAlxgs1FAfJLdqFJAQgdw0d4FctwUc= Subject key identifier: E4:B5:7C:3D:62:C9:E1:F5:D5:C8:CA:8C:2D:DF:AB:FB:92:C4:44:63 Certificate issuer: /CN=A9144F59/serialNumber=C7B2647350380A6A34E34E32CEFE3519937E97C8 Certificate serial: 1747 Authority key identifier: C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/453489B8BE6311EE90BF9241C4F9AE02.roa Signing time: Mon 08 Dec 2025 16:25:34 +0000 ROA not before: Mon 08 Dec 2025 16:25:33 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 152326 IP address blocks: 110.235.159.0/24 maxlen: 24 2400:6a80:8660::/46 maxlen: 46 2400:6a80:8664::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.crl rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:25:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5959 (0x1747) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59, serialNumber=C7B2647350380A6A34E34E32CEFE3519937E97C8 Validity Not Before: Dec 8 16:25:33 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6936fbfd-2c88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:95:de:4e:2b:ea:cd:3d:da:01:5e:6c:0a:8e: 44:55:2b:14:8e:17:58:e1:13:d3:8f:e8:8d:f8:93: dd:c8:87:1d:97:86:e8:9f:59:2c:82:2f:61:4c:17: 63:49:78:f9:64:6b:d6:a9:4f:6e:7e:81:d7:1a:03: 4b:c3:02:85:bb:05:0c:ff:02:98:64:5a:2a:c5:3e: 51:73:94:76:8e:82:e4:ca:b2:5c:96:27:d2:73:1c: e7:10:7f:33:e2:d4:96:cd:80:b8:a0:07:c3:4d:b4: 3f:8a:f7:4a:be:6f:79:90:29:cd:8a:50:16:c0:00: ac:00:2b:5e:24:e0:85:48:1e:4c:aa:b8:46:8e:42: c3:68:8f:aa:78:2c:8b:ea:0c:d4:61:29:e8:10:90: 6c:7f:e2:59:32:5e:69:71:78:6d:2b:64:1b:4d:27: cf:d6:c3:eb:bb:bd:1f:7f:f2:99:b4:a9:32:61:03: 7c:cf:a1:45:a5:98:a3:6b:6d:c7:a4:c3:40:f9:ce: b5:eb:6c:21:a2:4a:96:e0:a9:e5:bb:33:9b:15:94: 52:7d:5f:ba:f9:71:b6:96:a0:e9:da:7f:6d:9f:69: 58:2e:cd:53:eb:31:7f:a0:ec:24:0b:98:04:12:ed: 7f:85:82:a0:a1:56:36:06:4f:4e:80:dc:9a:51:0d: 62:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B5:7C:3D:62:C9:E1:F5:D5:C8:CA:8C:2D:DF:AB:FB:92:C4:44:63 X509v3 Authority Key Identifier: keyid:C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/453489B8BE6311EE90BF9241C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.235.159.0/24 IPv6: 2400:6a80:8660::/45 Signature Algorithm: sha256WithRSAEncryption 42:d5:e1:54:1b:6b:86:3d:71:32:09:b3:80:02:5a:f1:ed:f4: 6d:90:10:f1:f9:0f:fa:85:89:47:ce:33:82:63:73:a6:48:0b: 58:f0:c6:29:9b:a0:e1:32:c5:e7:79:f9:fb:fe:34:29:81:fa: b1:fa:6b:2c:59:22:6b:12:6b:5a:bc:b4:10:92:23:eb:30:d6: 29:fb:25:92:d8:8f:7b:6b:2b:07:ee:dc:7b:98:fb:7c:ea:93: 11:5a:98:3e:2f:46:f9:ea:08:d2:f9:71:db:22:ef:d7:32:2e: 6a:ae:86:41:e3:9a:f3:d9:a9:01:ac:84:e8:ae:92:d9:be:9c: 36:f7:0a:26:0d:c1:b4:77:f6:bf:c0:31:20:01:88:75:0c:96: 03:09:94:0b:da:b0:90:fe:45:6e:0d:3f:4f:62:49:72:b2:71: f0:82:e9:09:7e:63:bc:27:a7:8c:68:5c:e6:8a:32:cd:27:37: f8:2f:d6:d7:28:c4:86:23:ef:e1:08:1a:bb:fa:b3:41:8d:2d: f0:89:73:dc:b7:04:80:4d:4e:84:4a:ec:17:4c:ee:d7:9f:d5: cd:c5:5a:1d:01:a5:13:23:af:7b:f5:6d:91:aa:d0:65:7b:29: 34:ee:df:ca:a7:21:2e:46:fe:45:34:fd:4b:4e:c6:cf:14:76: 27:fe:61:12 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICF0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKEM3QjI2NDczNTAzODBBNkEzNEUzNEUzMkNFRkUzNTE5 OTM3RTk3QzgwHhcNMjUxMjA4MTYyNTMzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM2ZmJmZC0yYzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpXeTivqzT3aAV5sCo5EVSsUjhdY4RPTj+iN+JPdyIcdl4bon1ksgi9hTBdj SXj5ZGvWqU9ufoHXGgNLwwKFuwUM/wKYZFoqxT5Rc5R2joLkyrJclifScxznEH8z 4tSWzYC4oAfDTbQ/ivdKvm95kCnNilAWwACsACteJOCFSB5MqrhGjkLDaI+qeCyL 6gzUYSnoEJBsf+JZMl5pcXhtK2QbTSfP1sPru70ff/KZtKkyYQN8z6FFpZija23H pMNA+c6162whokqW4KnluzObFZRSfV+6+XG2lqDp2n9tn2lYLs1T6zF/oOwkC5gE Eu1/hYKgoVY2Bk9OgNyaUQ1iBQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOS1fD1i yeH11cjKjC3fq/uSxERjMB8GA1UdIwQYMBaAFMeyZHNQOApqNONOMs7+NRmTfpfI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80Qjk1OEJDRTAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi94N0prYzFBNENtbzA0MDR5enY0MUdaTi1s OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g3SmtjMUE0Q21vMDQwNHl6djQxR1pOLWw4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRGNTkvNEI5NThCQ0UwMENCMTFFOEJFQjFFRjEwQzRGOUFFMDIvNDUzNDg5QjhC RTYzMTFFRTkwQkY5MjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABu658wDwQCAAIwCQMHAyQAaoCGYDANBgkqhkiG9w0BAQsF AAOCAQEAQtXhVBtrhj1xMgmzgAJa8e30bZAQ8fkP+oWJR84zgmNzpkgLWPDGKZug 4TLF53n5+/40KYH6sfprLFkiaxJrWry0EJIj6zDWKfslktiPe2srB+7ce5j7fOqT EVqYPi9G+eoI0vlx2yLv1zIuaq6GQeOa89mpAayE6K6S2b6cNvcKJg3BtHf2v8Ax IAGIdQyWAwmUC9qwkP5Fbg0/T2JJcrJx8ILpCX5jvCenjGhc5ooyzSc3+C/W1yjE hiPv4Qgau/qzQY0t8Ilz3LcEgE1OhErsF0zu15/VzcVaHQGlEyOve/VtkarQZXsp NO7fyqchLkb+RTT9S07GzxR2J/5hEg== -----END CERTIFICATE-----Generated at Sun Dec 21 17:55:20 2025 by rpki-client