This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/AD7B2798CDCA11F096B9035EC4F9AE02.roa File: AD7B2798CDCA11F096B9035EC4F9AE02.roa (raw, json) Hash identifier: 9AZNpWMBQO5+BmyYbBmo4faP647OYT7C6DNutUy5NOo= Subject key identifier: 72:9B:1C:2F:C0:A6:DC:9E:1A:AF:B9:EB:13:A4:8B:49:F4:1E:B8:26 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 1388 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/AD7B2798CDCA11F096B9035EC4F9AE02.roa Signing time: Sat 20 Dec 2025 17:14:32 +0000 ROA not before: Sat 20 Dec 2025 17:14:32 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137937 IP address blocks: 2403:cfc0:100d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5000 (0x1388) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Dec 20 17:14:32 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6946d978-8c50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f7:3f:f6:62:70:c1:d5:0c:04:b3:d5:5e:e8: 49:a4:e7:e3:35:6e:12:88:ca:42:fe:97:0a:8d:b5: ff:24:b4:cc:6d:bf:49:1d:aa:69:a1:cc:10:26:c9: 8d:de:17:1c:6d:b2:04:23:c6:e7:6d:8d:d7:8a:7c: 20:ab:73:95:17:0a:81:8e:6e:97:a1:2f:55:54:b2: 75:f9:cf:45:d9:90:76:f3:24:2e:71:17:30:d9:ab: c4:0a:9e:11:61:0f:6b:72:1c:30:24:42:1d:37:50: 8b:73:a7:3b:89:17:db:bd:44:27:f2:fe:6b:ac:dc: 59:e8:9a:d1:2d:f0:16:a9:36:5f:79:b1:50:22:65: d8:87:a6:8d:58:4f:e1:aa:c4:8c:2f:bd:02:85:4b: 79:82:9c:f2:e1:99:7f:57:00:47:d0:ec:eb:61:4b: ff:35:68:d6:76:a9:55:91:62:cd:b9:c8:97:c5:de: 2a:1f:96:59:cf:dc:94:e7:61:af:b2:65:59:d6:d0: 93:89:09:2c:3c:03:a1:f6:0b:8a:10:46:6e:14:2e: c0:e1:99:78:35:22:38:b2:5b:3f:77:e4:02:2e:d0: e2:07:af:db:d2:e9:51:20:13:00:ba:33:81:85:8d: 3b:b4:7c:7f:d2:c8:0e:e7:f1:02:35:77:30:23:5c: ac:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:9B:1C:2F:C0:A6:DC:9E:1A:AF:B9:EB:13:A4:8B:49:F4:1E:B8:26 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/AD7B2798CDCA11F096B9035EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cfc0:100d::/48 Signature Algorithm: sha256WithRSAEncryption a6:b1:4f:a8:52:9e:6d:21:b5:8b:14:05:98:1d:8b:98:96:d6: 58:f3:15:c4:ab:f0:ba:84:c2:13:4d:f5:a2:07:60:bc:2a:d8: 6f:58:11:c0:a9:9c:32:fe:41:53:a1:83:3b:d1:e9:81:13:69: b3:2f:51:57:29:ef:87:0b:bd:10:52:4a:6d:5c:29:53:7a:fa: 8a:7b:b3:24:8c:d7:30:08:6b:91:0a:5a:ab:ed:5e:e8:fe:6c: 22:92:74:52:9f:7d:17:4d:7b:c3:1f:ed:d3:cf:88:f4:ac:8d: d0:98:50:92:2f:3e:c7:2d:5b:d1:0e:60:9d:48:05:d1:fa:6a: d4:8c:c5:e9:8a:7c:f8:4e:ed:be:c8:71:f5:3c:42:2c:8b:5d: 3f:99:ba:81:22:fe:fc:33:3b:53:75:65:d1:78:be:79:32:f5: 2f:ef:4b:fa:2a:d5:20:26:73:c8:e7:de:3c:c6:bd:64:d9:3c: 3e:8c:0d:df:a3:dd:3d:ee:03:b8:b0:00:eb:54:d3:ac:1e:d0: ce:2c:71:5f:23:5c:e6:a3:d4:58:0b:79:d5:af:d5:54:96:be: 43:5b:26:3c:b0:65:0e:d7:29:91:aa:ac:38:99:79:01:da:7f: 97:4a:03:1a:6d:ff:2b:1e:3f:21:04:ba:6f:df:8b:90:3f:53: 23:ef:c6:bb -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICE4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUxMjIwMTcxNDMyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ2ZDk3OC04YzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfc/9mJwwdUMBLPVXuhJpOfjNW4SiMpC/pcKjbX/JLTMbb9JHappocwQJsmN 3hccbbIEI8bnbY3Xinwgq3OVFwqBjm6XoS9VVLJ1+c9F2ZB28yQucRcw2avECp4R YQ9rchwwJEIdN1CLc6c7iRfbvUQn8v5rrNxZ6JrRLfAWqTZfebFQImXYh6aNWE/h qsSML70ChUt5gpzy4Zl/VwBH0OzrYUv/NWjWdqlVkWLNuciXxd4qH5ZZz9yU52Gv smVZ1tCTiQksPAOh9guKEEZuFC7A4Zl4NSI4sls/d+QCLtDiB6/b0ulRIBMAujOB hY07tHx/0sgO5/ECNXcwI1ys3wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHKbHC/A ptyeGq+56xOki0n0HrgmMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNjE2NjZDMEVENjg5MTFFOEI2ODExNDMzQzRGOUFFMDIvQUQ3QjI3OThD RENBMTFGMDk2QjkwMzVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkA8/AEA0wDQYJKoZIhvcNAQELBQADggEBAKaxT6hSnm0h tYsUBZgdi5iW1ljzFcSr8LqEwhNN9aIHYLwq2G9YEcCpnDL+QVOhgzvR6YETabMv UVcp74cLvRBSSm1cKVN6+op7sySM1zAIa5EKWqvtXuj+bCKSdFKffRdNe8Mf7dPP iPSsjdCYUJIvPsctW9EOYJ1IBdH6atSMxemKfPhO7b7IcfU8QiyLXT+ZuoEi/vwz O1N1ZdF4vnky9S/vS/oq1SAmc8jn3jzGvWTZPD6MDd+j3T3uA7iwAOtU06we0M4s cV8jXOaj1FgLedWv1VSWvkNbJjywZQ7XKZGqrDiZeQHaf5dKAxpt/ysePyEEum/f i5A/UyPvxrs= -----END CERTIFICATE-----Generated at Sun Dec 21 03:47:13 2025 by rpki-client