This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/C21FA1CE080511EAA9457C67C4F9AE02.roa File: C21FA1CE080511EAA9457C67C4F9AE02.roa (raw, json) Hash identifier: dSHlc69pRBGdn38cVlmBltnXpffbwXc9Xns6KXz/aJM= Subject key identifier: 89:1E:90:A9:57:82:68:B2:12:84:05:FB:7B:D8:2B:50:7E:6B:5B:B8 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 1389 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/C21FA1CE080511EAA9457C67C4F9AE02.roa Signing time: Sat 20 Dec 2025 17:14:33 +0000 ROA not before: Sat 20 Dec 2025 17:14:33 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139263 IP address blocks: 2403:cfc0:1011::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5001 (0x1389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Dec 20 17:14:33 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6946d979-796b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:68:aa:74:05:14:b2:0e:45:46:bb:f1:6f:ad: c8:e1:29:2e:41:f8:ce:14:4e:eb:7c:ec:fb:eb:7d: ca:24:7b:50:1f:84:72:f7:c5:28:2c:fb:f8:a5:92: 7e:11:6b:e0:74:3a:52:f1:20:88:3e:7b:62:e4:f2: 69:56:ad:b6:d1:90:69:0d:4a:ec:c2:4b:24:08:cd: 7b:b0:de:20:3e:b9:11:62:8c:1a:17:17:12:0e:ff: 2e:db:02:b2:c1:ee:80:72:44:1c:26:6a:fb:c8:a2: 7f:68:19:41:9e:1f:d7:5e:35:97:29:e9:44:50:11: 1f:ce:f6:04:d2:1b:b0:87:99:93:20:84:c2:0d:6e: df:1e:ae:43:6f:71:fe:6d:dd:32:a1:af:2f:27:61: 20:fe:d3:f2:41:af:a1:5d:b2:dc:c4:f4:ab:8c:07: 26:0e:ee:c2:b4:db:fb:5b:64:d1:fd:8c:49:36:8c: 2a:a3:6d:13:c4:cd:bb:22:c5:ae:62:ac:20:e6:c7: 8a:f9:a3:f8:81:02:a0:c0:29:6b:09:c7:0b:3d:bc: 22:d7:92:83:9a:74:c3:fa:2f:81:e3:a5:36:8e:23: 74:ca:f7:ef:b3:7a:34:e4:3c:7b:3c:4e:fc:1b:48: c9:2d:44:31:b1:f4:68:fe:a5:d7:3a:65:56:f2:d3: 9b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:1E:90:A9:57:82:68:B2:12:84:05:FB:7B:D8:2B:50:7E:6B:5B:B8 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/C21FA1CE080511EAA9457C67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cfc0:1011::/48 Signature Algorithm: sha256WithRSAEncryption 35:f1:4a:58:f7:02:36:3a:79:fd:49:a2:ed:df:33:21:21:67: fe:d6:ac:0c:c2:02:2d:a6:ed:53:e3:bc:7f:2f:b5:e7:fd:11: 57:b0:d2:d6:eb:49:90:ff:1a:51:76:3c:58:0b:e0:ae:d3:12: b1:20:28:bf:3e:ac:22:13:6d:4b:41:5f:8c:5b:ac:14:b4:7c: 5b:b7:54:94:a5:d2:55:aa:87:2e:ca:bf:b4:d5:fd:bd:5d:cb: 16:d2:66:1c:a3:0b:ef:a9:6d:cb:ef:a0:31:a8:43:5c:78:62: 5c:0d:7c:1d:99:7b:99:9e:8d:38:9f:03:fe:b4:4a:92:c9:8a: 55:a8:c4:17:0b:30:89:08:d7:c0:18:50:41:1f:43:fa:c5:5b: ef:78:a8:ff:31:9e:35:3e:ad:17:03:f5:e5:27:92:52:ba:28: 3d:77:6d:8a:29:b9:db:c7:df:0f:b4:e6:07:8d:58:31:e8:1b: 60:6a:b8:57:4c:b2:d8:18:16:6d:db:85:aa:7b:ae:a6:1a:85: b2:32:cf:7c:c2:33:b0:13:dd:99:c3:89:b8:52:c1:f6:9f:5f: 59:83:ce:40:88:08:43:15:cb:78:e3:1f:0e:40:a4:28:11:1d: e1:53:cd:95:04:bf:ea:1e:6a:e6:08:2f:f9:bb:c2:e4:56:d6: bb:da:0e:44 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICE4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUxMjIwMTcxNDMzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ2ZDk3OS03OTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl2iqdAUUsg5FRrvxb63I4SkuQfjOFE7rfOz7633KJHtQH4Ry98UoLPv4pZJ+ EWvgdDpS8SCIPnti5PJpVq220ZBpDUrswkskCM17sN4gPrkRYowaFxcSDv8u2wKy we6AckQcJmr7yKJ/aBlBnh/XXjWXKelEUBEfzvYE0huwh5mTIITCDW7fHq5Db3H+ bd0yoa8vJ2Eg/tPyQa+hXbLcxPSrjAcmDu7CtNv7W2TR/YxJNowqo20TxM27IsWu Yqwg5seK+aP4gQKgwClrCccLPbwi15KDmnTD+i+B46U2jiN0yvfvs3o05Dx7PE78 G0jJLUQxsfRo/qXXOmVW8tObewIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIkekKlX gmiyEoQF+3vYK1B+a1u4MB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNjE2NjZDMEVENjg5MTFFOEI2ODExNDMzQzRGOUFFMDIvQzIxRkExQ0Uw ODA1MTFFQUE5NDU3QzY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkA8/AEBEwDQYJKoZIhvcNAQELBQADggEBADXxSlj3AjY6 ef1Jou3fMyEhZ/7WrAzCAi2m7VPjvH8vtef9EVew0tbrSZD/GlF2PFgL4K7TErEg KL8+rCITbUtBX4xbrBS0fFu3VJSl0lWqhy7Kv7TV/b1dyxbSZhyjC++pbcvvoDGo Q1x4YlwNfB2Ze5mejTifA/60SpLJilWoxBcLMIkI18AYUEEfQ/rFW+94qP8xnjU+ rRcD9eUnklK6KD13bYopudvH3w+05geNWDHoG2BquFdMstgYFm3bhap7rqYahbIy z3zCM7AT3ZnDibhSwfafX1mDzkCICEMVy3jjHw5ApCgRHeFTzZUEv+oeauYIL/m7 wuRW1rvaDkQ= -----END CERTIFICATE-----Generated at Sun Dec 21 07:24:30 2025 by rpki-client