This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/335B84084C9611E7B9D8512DC4F9AE02.roa File: 335B84084C9611E7B9D8512DC4F9AE02.roa (raw, json) Hash identifier: WxOb0+mkj3uTgZnPmRy7eAmBIRzU3gJS47Igx4XGAqQ= Subject key identifier: 2D:BD:30:B9:DC:30:C5:6A:3A:69:53:08:93:A5:E6:A5:56:B9:64:E8 Certificate issuer: /CN=A9150D27/serialNumber=FFCD20DCA68DE432F2191B7B633286BC987E42EC Certificate serial: 1D62 Authority key identifier: FF:CD:20:DC:A6:8D:E4:32:F2:19:1B:7B:63:32:86:BC:98:7E:42:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/335B84084C9611E7B9D8512DC4F9AE02.roa Signing time: Fri 12 Dec 2025 16:14:08 +0000 ROA not before: Fri 12 Dec 2025 16:14:08 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 51964 IP address blocks: 202.167.0.0/17 maxlen: 32 202.167.128.0/18 maxlen: 32 202.167.192.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.crl rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 15:59:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7522 (0x1d62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150D27, serialNumber=FFCD20DCA68DE432F2191B7B633286BC987E42EC Validity Not Before: Dec 12 16:14:08 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=693c3f50-051b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e7:86:95:8b:09:d2:69:ae:9e:aa:7e:de:52: b9:03:b4:69:51:a8:97:5d:b3:13:68:5c:bc:27:57: 26:1f:d9:0f:59:d4:6d:6c:c2:61:72:71:1c:08:1a: d1:9f:8d:8a:85:66:58:77:16:c5:a2:98:0a:3c:4b: 17:d7:9f:d3:9a:fc:f0:09:64:1e:a1:c0:68:a7:c7: 41:70:ca:f0:6a:6a:77:31:d2:a9:3f:3a:66:49:69: 64:05:cc:6a:32:db:58:bd:59:af:43:eb:36:cf:52: 53:c9:3e:62:ec:70:cf:c8:93:b9:e6:03:3e:d7:59: 26:1f:40:b8:ee:8c:83:b3:c4:92:6d:56:ac:5e:46: a1:26:9b:e8:4d:c0:06:cb:aa:08:a1:12:bf:3d:59: 11:22:1c:c6:b8:7c:94:1d:1d:02:c3:fd:54:65:73: c3:4d:d9:37:ad:ea:e2:4e:14:f5:cb:a3:60:21:b9: 28:9e:10:6e:f6:00:17:4c:bd:3f:de:0a:1a:c8:4d: 1c:62:11:9b:f9:70:94:c2:f5:95:8d:b2:bb:fa:27: b8:3c:a0:46:ce:82:92:ca:47:73:fb:36:af:09:4a: 0f:95:ed:25:7a:6f:f0:61:d7:f1:70:3b:93:e5:d1: 9a:53:ee:9c:02:2b:bc:67:0f:8c:98:8b:d3:8b:de: 34:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BD:30:B9:DC:30:C5:6A:3A:69:53:08:93:A5:E6:A5:56:B9:64:E8 X509v3 Authority Key Identifier: keyid:FF:CD:20:DC:A6:8D:E4:32:F2:19:1B:7B:63:32:86:BC:98:7E:42:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/335B84084C9611E7B9D8512DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.167.0.0-202.167.207.255 Signature Algorithm: sha256WithRSAEncryption a3:10:8a:47:ee:90:e4:16:26:67:0c:04:f5:5e:37:d7:e9:ac: 8a:6f:b8:98:16:86:bc:ea:92:20:c8:13:a7:0e:c2:e7:1e:97: ee:50:36:6f:fd:82:8b:a5:8a:d1:29:fc:71:38:12:1e:e6:5e: 9a:3f:3a:40:12:f4:23:c0:7b:a2:9f:d7:9b:c7:9d:3a:d5:11: 64:17:1e:ad:9d:8c:e9:72:59:5c:e4:33:2c:7c:b8:93:4b:88: 3c:ac:6d:db:8e:00:e2:0c:d2:c4:a0:f8:65:3c:3c:83:a7:59: 3f:04:18:60:e0:d4:1f:b2:3c:14:33:30:57:55:2c:b5:0f:c3: e3:05:95:3b:ed:a0:3b:fc:f9:32:be:17:a1:88:e4:6b:65:5e: 20:8e:4c:a6:b1:b3:8e:b1:39:ae:51:fd:e7:af:3b:be:8c:27: bb:56:ac:b5:7a:5f:1b:60:a7:ec:f4:34:6e:94:24:de:85:e0: f0:f6:4d:b0:ae:89:5c:dd:19:77:dc:7c:6b:d5:13:8e:f2:ed: 7e:13:b0:ae:2c:df:8f:6e:8e:c0:7f:c7:d4:28:50:24:d8:85: c6:47:15:cd:04:18:7c:15:da:28:22:01:ec:47:72:55:19:94: e0:3b:b7:f1:d1:eb:9a:42:7b:0f:cd:7c:e6:eb:32:47:f9:11: 58:6c:e2:85 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICHWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBEMjcxMTAvBgNVBAUTKEZGQ0QyMERDQTY4REU0MzJGMjE5MUI3QjYzMzI4NkJD OTg3RTQyRUMwHhcNMjUxMjEyMTYxNDA4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNjM2Y1MC0wNTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+eGlYsJ0mmunqp+3lK5A7RpUaiXXbMTaFy8J1cmH9kPWdRtbMJhcnEcCBrR n42KhWZYdxbFopgKPEsX15/TmvzwCWQeocBop8dBcMrwamp3MdKpPzpmSWlkBcxq MttYvVmvQ+s2z1JTyT5i7HDPyJO55gM+11kmH0C47oyDs8SSbVasXkahJpvoTcAG y6oIoRK/PVkRIhzGuHyUHR0Cw/1UZXPDTdk3reriThT1y6NgIbkonhBu9gAXTL0/ 3goayE0cYhGb+XCUwvWVjbK7+ie4PKBGzoKSykdz+zavCUoPle0lem/wYdfxcDuT 5dGaU+6cAiu8Zw+MmIvTi940mQIDAQABo4ICnDCCApgwHQYDVR0OBBYEFC29MLnc MMVqOmlTCJOl5qVWuWToMB8GA1UdIwQYMBaAFP/NINymjeQy8hkbe2MyhryYfkLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEQyNy8yQTYxQ0E4QUQz NTkxMUU2QjU1QUZBNzBDNEY5QUUwMi9fODBnM0thTjVETHlHUnQ3WXpLR3ZKaC1R dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL184MGczS2FONURMeUdSdDdZektHdkpoLVF1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBEMjcvMkE2MUNBOEFEMzU5MTFFNkI1NUFGQTcwQzRGOUFFMDIvMzM1Qjg0MDg0 Qzk2MTFFN0I5RDg1MTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQcBAf8E FzAVMBMEAgABMA0wCwMDAMqnAwQEyqfAMA0GCSqGSIb3DQEBCwUAA4IBAQCjEIpH 7pDkFiZnDAT1XjfX6ayKb7iYFoa86pIgyBOnDsLnHpfuUDZv/YKLpYrRKfxxOBIe 5l6aPzpAEvQjwHuin9ebx5061RFkFx6tnYzpcllc5DMsfLiTS4g8rG3bjgDiDNLE oPhlPDyDp1k/BBhg4NQfsjwUMzBXVSy1D8PjBZU77aA7/PkyvhehiORrZV4gjkym sbOOsTmuUf3nrzu+jCe7Vqy1el8bYKfs9DRulCTeheDw9k2wrolc3Rl33Hxr1ROO 8u1+E7CuLN+Pbo7Af8fUKFAk2IXGRxXNBBh8FdooIgHsR3JVGZTgO7fx0euaQnsP zXzm6zJH+RFYbOKF -----END CERTIFICATE-----Generated at Wed Dec 31 10:28:13 2025 by rpki-client