This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/21EF23B2E16811F0AE4839883A6F56BC.roa File: 21EF23B2E16811F0AE4839883A6F56BC.roa (raw, json) Hash identifier: IplB0gM9Uuw4HNboDvbREthelLfiR2zwPB1/OskSGfA= Subject key identifier: D0:E3:FF:74:95:02:49:FA:03:59:68:F9:6C:22:D4:B5:A7:AC:D8:57 Certificate issuer: /CN=A914BE8E/serialNumber=DB0887E25CC0D0CF7688DB5DDDF4196532CD47A6 Certificate serial: 0E Authority key identifier: DB:08:87:E2:5C:C0:D0:CF:76:88:DB:5D:DD:F4:19:65:32:CD:47:A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2wiH4lzA0M92iNtd3fQZZTLNR6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/21EF23B2E16811F0AE4839883A6F56BC.roa Signing time: Thu 25 Dec 2025 08:03:01 +0000 ROA not before: Thu 25 Dec 2025 08:03:01 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 9484 IP address blocks: 138.252.220.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/2wiH4lzA0M92iNtd3fQZZTLNR6Y.crl rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/2wiH4lzA0M92iNtd3fQZZTLNR6Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2wiH4lzA0M92iNtd3fQZZTLNR6Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 07:06:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BE8E, serialNumber=DB0887E25CC0D0CF7688DB5DDDF4196532CD47A6 Validity Not Before: Dec 25 08:03:01 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=694cefb5-1fda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f8:5b:bd:81:f6:ad:71:1e:d1:07:20:47:d0: 74:a3:4f:25:70:5f:de:b0:f0:23:97:66:d1:dd:a6: 8c:c3:3a:17:6d:b5:dc:f5:81:f8:4c:a0:6b:a5:cf: 7c:6c:99:b3:81:ea:77:55:72:b2:9b:9f:21:a0:fd: 65:70:ac:3c:72:f9:31:a4:e4:c7:f8:1f:ef:ca:2c: d4:05:4e:4b:b3:74:f9:d3:35:ab:bd:68:fe:fb:2e: a5:70:bc:15:a2:3f:bc:3a:d3:d4:16:3a:9a:ff:a9: bb:9f:06:2d:c9:a8:6c:26:f3:73:e1:b1:6b:fc:59: 22:83:25:e8:b8:9c:c2:f1:c2:6c:ac:97:1b:1e:77: 26:d7:47:69:d5:23:12:c5:49:ae:42:12:f0:55:fb: c3:1d:f2:37:46:f9:8a:fa:a2:a3:cc:73:d2:44:26: 75:1b:62:d3:7f:c0:cb:ba:9c:03:b7:25:dc:98:ae: e8:3d:e1:a0:91:78:f7:c5:0b:12:22:49:ed:96:21: 33:a2:fe:a9:ee:30:9d:28:98:52:92:71:83:fe:7a: 80:d7:00:b0:7b:40:39:6b:99:2b:3e:6e:61:39:11: 6a:5a:28:27:51:9a:63:7c:60:f7:de:53:1b:5d:2a: d7:6c:5d:8c:ae:25:9b:5a:cf:f9:fc:f5:03:5c:92: a1:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E3:FF:74:95:02:49:FA:03:59:68:F9:6C:22:D4:B5:A7:AC:D8:57 X509v3 Authority Key Identifier: keyid:DB:08:87:E2:5C:C0:D0:CF:76:88:DB:5D:DD:F4:19:65:32:CD:47:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/2wiH4lzA0M92iNtd3fQZZTLNR6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2wiH4lzA0M92iNtd3fQZZTLNR6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/21EF23B2E16811F0AE4839883A6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.220.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:4e:8d:ac:9b:0e:8b:0e:42:05:69:1d:7b:8a:d7:5b:1c:ae: 2a:0a:56:35:b6:05:43:3a:20:6f:fd:e0:b7:85:03:e4:31:a0: 7b:ff:59:d2:6f:fb:3b:f5:d5:39:0a:a7:18:67:a1:b8:ff:34: cb:bd:f1:53:03:02:8a:64:74:56:8f:4b:1b:cd:c3:08:7f:2b: bb:da:46:6d:b3:29:ed:31:6b:de:03:d3:46:6e:bc:9b:68:4b: 59:39:aa:46:ae:1f:73:8c:dc:2d:8a:f0:c9:fe:a7:19:33:eb: ea:10:99:a8:90:eb:b0:25:b0:8f:57:42:61:3c:40:bf:71:3a: 19:06:7e:8f:04:44:e6:4f:d5:ea:e5:44:8a:99:ca:d5:2e:aa: ec:b3:f5:d3:2a:37:1a:d0:2e:a8:d4:4b:52:a3:89:b8:54:ca: ae:6d:f6:ed:ff:24:1a:5b:8a:58:cd:7f:65:cd:ed:5e:60:26: fd:08:77:81:06:1b:22:16:39:48:0c:0b:31:24:e4:34:73:5e: a7:be:a4:75:50:79:aa:21:37:c0:09:7b:7f:61:dc:c6:b0:76: eb:75:01:6e:1b:95:ea:48:2f:03:c7:e7:fd:44:be:46:96:17: bb:c4:6f:b6:a3:b5:30:58:77:4c:cb:f0:91:3d:74:d1:d9:75: 0d:a6:5c:23 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTE0 QkU4RTExMC8GA1UEBRMoREIwODg3RTI1Q0MwRDBDRjc2ODhEQjVERERGNDE5NjUz MkNENDdBNjAeFw0yNTEyMjUwODAzMDFaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NGNlZmI1LTFmZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDX+Fu9gfatcR7RByBH0HSjTyVwX96w8COXZtHdpozDOhdttdz1gfhMoGulz3xs mbOB6ndVcrKbnyGg/WVwrDxy+TGk5Mf4H+/KLNQFTkuzdPnTNau9aP77LqVwvBWi P7w609QWOpr/qbufBi3JqGwm83PhsWv8WSKDJei4nMLxwmyslxsedybXR2nVIxLF Sa5CEvBV+8Md8jdG+Yr6oqPMc9JEJnUbYtN/wMu6nAO3JdyYrug94aCRePfFCxIi Se2WITOi/qnuMJ0omFKScYP+eoDXALB7QDlrmSs+bmE5EWpaKCdRmmN8YPfeUxtd KtdsXYyuJZtaz/n89QNckqHVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0OP/dJUC SfoDWWj5bCLUtaes2FcwHwYDVR0jBBgwFoAU2wiH4lzA0M92iNtd3fQZZTLNR6Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRCRThFLzQ5Qzc3NDg4RTE0 NjExRjA5MTY0RTBBODcxNkY1NkJDLzJ3aUg0bHpBME05MmlOdGQzZlFaWlRMTlI2 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMndpSDRsekEwTTkyaU50ZDNmUVpaVExOUjZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkU4RS80OUM3NzQ4OEUxNDYxMUYwOTE2NEUwQTg3MTZGNTZCQy8yMUVGMjNCMkUx NjgxMUYwQUU0ODM5ODgzQTZGNTZCQy5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr83DANBgkqhkiG9w0BAQsFAAOCAQEAXk6NrJsOiw5CBWkd e4rXWxyuKgpWNbYFQzogb/3gt4UD5DGge/9Z0m/7O/XVOQqnGGehuP80y73xUwMC imR0Vo9LG83DCH8ru9pGbbMp7TFr3gPTRm68m2hLWTmqRq4fc4zcLYrwyf6nGTPr 6hCZqJDrsCWwj1dCYTxAv3E6GQZ+jwRE5k/V6uVEipnK1S6q7LP10yo3GtAuqNRL UqOJuFTKrm327f8kGluKWM1/Zc3tXmAm/Qh3gQYbIhY5SAwLMSTkNHNep76kdVB5 qiE3wAl7f2HcxrB263UBbhuV6kgvA8fn/US+RpYXu8RvtqO1MFh3TMvwkT100dl1 DaZcIw== -----END CERTIFICATE-----Generated at Mon Dec 29 15:11:14 2025 by rpki-client