This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/A6A4A20E89B911EC8FDB572DC4F9AE02.roa File: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (raw, json) Hash identifier: 4ijPBPOAaTXJb677dP3lcdQkWKRIh34QpbisACynIlc= Subject key identifier: 77:93:26:43:C6:C3:FA:F9:91:3E:8E:50:EB:79:29:F5:75:DD:D9:FA Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 138E Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/A6A4A20E89B911EC8FDB572DC4F9AE02.roa Signing time: Sat 20 Dec 2025 17:14:37 +0000 ROA not before: Sat 20 Dec 2025 17:14:37 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 149020 IP address blocks: 2403:cfc0:1110::/44 maxlen: 48 2403:cfc0:1120::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5006 (0x138e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Dec 20 17:14:37 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6946d97d-c794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ac:ef:d7:b7:2e:b9:f0:9a:72:97:1d:9e:44: 1b:96:8c:db:b7:4f:cd:8b:2e:53:90:25:90:86:6d: 15:73:e6:36:41:20:24:30:d1:6f:f0:8f:bb:23:ff: 4a:f6:00:65:7f:76:64:14:f1:5d:75:b1:ee:1e:07: 4a:9f:8f:94:55:fa:4b:b5:f3:e7:7f:7a:9a:0c:1a: 21:77:26:6c:4a:77:b1:c8:41:77:54:65:e3:d0:5a: 51:56:bd:e7:6a:60:11:5d:ff:0e:cc:fd:fd:04:ea: 9c:c2:16:fe:ef:3a:9f:6a:f2:50:36:62:7e:0e:ff: 4d:8c:ff:44:9c:f0:04:25:a9:3a:2e:ea:31:ca:f9: f7:a5:09:52:48:81:b3:0e:2c:23:a7:77:a7:53:76: 84:0c:2b:dd:ea:a9:21:c7:55:80:cf:a2:20:d7:fb: 09:f7:71:0d:ee:ad:7f:b8:ff:4f:0f:49:03:1e:06: 5b:51:92:12:3f:6f:be:9f:cd:b2:51:58:05:16:51: 49:56:99:d2:b2:8c:b7:05:fd:23:6c:52:68:08:b2: dd:14:e9:1b:09:e5:0b:be:c5:7c:a5:44:d9:1d:b3: d2:c2:d8:24:bc:37:b4:cd:86:99:7e:ac:ab:c3:0b: 53:1c:9c:4f:4a:44:28:5d:38:8c:66:a8:44:76:96: 2c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:93:26:43:C6:C3:FA:F9:91:3E:8E:50:EB:79:29:F5:75:DD:D9:FA X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/A6A4A20E89B911EC8FDB572DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cfc0:1110::-2403:cfc0:112f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 1b:be:46:c1:ff:29:20:a8:06:b1:81:4b:7e:d1:df:fa:40:31: cc:d9:d3:a7:85:6e:6c:6d:5d:e0:6f:29:b7:ee:d8:04:8c:a0: af:fe:2e:fd:1b:5c:6d:8e:d5:12:57:4c:ab:4c:0f:d3:a1:85: 92:0d:0b:fb:85:00:83:9e:aa:1f:46:ab:84:5d:89:06:5f:37: a5:07:3f:92:07:e0:b7:cc:84:7e:1f:d4:26:c4:09:5a:99:6e: 3a:37:9c:a5:55:1f:0e:4f:08:93:76:ce:85:61:ad:00:06:dd: cc:0d:19:78:4b:4b:ff:d6:07:a1:53:3a:3e:fb:d3:61:da:97: 6b:1b:59:db:3e:75:b6:23:5a:45:e9:45:67:f5:bf:c6:cc:6a: 6f:81:11:fe:13:3e:88:60:51:9b:7c:e6:75:3f:3d:b6:d3:f6: 89:f7:39:06:d8:c3:17:cd:97:73:fe:68:db:42:7f:c6:ac:1c: 47:94:17:f1:e1:c7:47:97:5c:de:57:ff:c8:fd:10:ed:ca:e0: 24:fb:b9:9c:04:76:03:79:7e:89:c8:10:15:20:4b:d0:af:b4: 93:6c:58:37:32:66:95:3e:12:b0:82:44:e8:02:ff:70:fe:ba: cf:19:6c:52:17:0b:1d:cd:65:aa:49:cb:c9:8e:06:46:1b:d3: e0:65:aa:e5 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICE44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUxMjIwMTcxNDM3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ2ZDk3ZC1jNzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6zv17cuufCacpcdnkQblozbt0/Niy5TkCWQhm0Vc+Y2QSAkMNFv8I+7I/9K 9gBlf3ZkFPFddbHuHgdKn4+UVfpLtfPnf3qaDBohdyZsSnexyEF3VGXj0FpRVr3n amARXf8OzP39BOqcwhb+7zqfavJQNmJ+Dv9NjP9EnPAEJak6Luoxyvn3pQlSSIGz Diwjp3enU3aEDCvd6qkhx1WAz6Ig1/sJ93EN7q1/uP9PD0kDHgZbUZISP2++n82y UVgFFlFJVpnSsoy3Bf0jbFJoCLLdFOkbCeULvsV8pUTZHbPSwtgkvDe0zYaZfqyr wwtTHJxPSkQoXTiMZqhEdpYsjwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFHeTJkPG w/r5kT6OUOt5KfV13dn6MB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNjE2NjZDMEVENjg5MTFFOEI2ODExNDMzQzRGOUFFMDIvQTZBNEEyMEU4 OUI5MTFFQzhGREI1NzJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHBCQDz8AREAMHBCQDz8ARIDANBgkqhkiG9w0BAQsFAAOC AQEAG75Gwf8pIKgGsYFLftHf+kAxzNnTp4VubG1d4G8pt+7YBIygr/4u/RtcbY7V EldMq0wP06GFkg0L+4UAg56qH0arhF2JBl83pQc/kgfgt8yEfh/UJsQJWpluOjec pVUfDk8Ik3bOhWGtAAbdzA0ZeEtL/9YHoVM6PvvTYdqXaxtZ2z51tiNaRelFZ/W/ xsxqb4ER/hM+iGBRm3zmdT89ttP2ifc5BtjDF82Xc/5o20J/xqwcR5QX8eHHR5dc 3lf/yP0Q7crgJPu5nAR2A3l+icgQFSBL0K+0k2xYNzJmlT4SsIJE6AL/cP66zxls UhcLHc1lqknLyY4GRhvT4GWq5Q== -----END CERTIFICATE-----Generated at Sat Dec 20 21:42:03 2025 by rpki-client