This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915825D/E58B2268A44611EF8D58A624C4F9AE02/B035E67615D311F09BAD2971C4F9AE02.roa File: B035E67615D311F09BAD2971C4F9AE02.roa (raw, json) Hash identifier: 8mH5PvPf9pHbSYiWRVrXvreSz7Fd1s9R44spF+2kUro= Subject key identifier: 86:92:89:C6:08:0D:0D:65:4F:1D:DE:3E:7F:0D:66:8F:E7:4C:A5:68 Certificate issuer: /CN=A915825D/serialNumber=B88BD5D5B9B8646D8E43E64C127B8481A418C636 Certificate serial: DC Authority key identifier: B8:8B:D5:D5:B9:B8:64:6D:8E:43:E6:4C:12:7B:84:81:A4:18:C6:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uIvV1bm4ZG2OQ-ZMEnuEgaQYxjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915825D/E58B2268A44611EF8D58A624C4F9AE02/B035E67615D311F09BAD2971C4F9AE02.roa Signing time: Sat 27 Dec 2025 05:24:47 +0000 ROA not before: Sat 27 Dec 2025 05:24:47 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136396 IP address blocks: 2001:df4:8a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915825D/E58B2268A44611EF8D58A624C4F9AE02/uIvV1bm4ZG2OQ-ZMEnuEgaQYxjY.crl rsync://rpki.apnic.net/member_repository/A915825D/E58B2268A44611EF8D58A624C4F9AE02/uIvV1bm4ZG2OQ-ZMEnuEgaQYxjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uIvV1bm4ZG2OQ-ZMEnuEgaQYxjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 04:50:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915825D, serialNumber=B88BD5D5B9B8646D8E43E64C127B8481A418C636 Validity Not Before: Dec 27 05:24:47 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=694f6d9e-e7a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:55:51:fb:6c:0c:e0:a7:28:96:70:34:7f:b7: 5c:fc:f7:f2:ba:e1:b2:f4:36:65:33:91:d1:2c:c0: ca:50:e7:c1:70:ab:b0:b2:9f:b6:32:69:48:3e:c5: 63:a3:9c:bb:3d:70:ca:28:a1:5f:f6:e9:d1:46:66: 84:94:3c:6b:cd:07:21:0c:d6:a2:79:1b:01:51:9f: 22:74:67:62:22:b1:87:1f:de:b4:24:03:96:fc:e6: 03:77:4d:10:56:72:e2:ad:76:d9:fc:73:3b:b0:36: c9:2f:e9:f7:93:1d:59:d6:b8:d1:fe:26:24:dd:52: 6b:31:28:cb:df:dc:fd:05:e5:4c:d0:dd:d8:57:3e: e2:d7:a2:75:78:b1:84:e3:3b:74:a3:0d:4c:8b:e0: 9c:af:71:d5:03:9b:43:10:60:bd:dd:2a:22:b2:d3: 61:0d:23:af:6c:b1:19:ad:b8:d6:67:02:bc:91:fa: 87:1a:dc:b5:8b:33:b6:a0:3d:ea:9c:8b:2f:f8:16: b2:50:86:ad:f6:2d:b7:11:c3:5f:a0:98:87:d9:0d: e5:c9:27:05:66:f7:59:b7:46:28:96:8a:dd:ed:76: c6:7a:f6:0b:4c:7e:0f:78:eb:8a:7d:09:14:d1:44: eb:07:2f:27:8d:ea:8d:80:ca:eb:bf:0d:d9:8b:79: ed:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:92:89:C6:08:0D:0D:65:4F:1D:DE:3E:7F:0D:66:8F:E7:4C:A5:68 X509v3 Authority Key Identifier: keyid:B8:8B:D5:D5:B9:B8:64:6D:8E:43:E6:4C:12:7B:84:81:A4:18:C6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915825D/E58B2268A44611EF8D58A624C4F9AE02/uIvV1bm4ZG2OQ-ZMEnuEgaQYxjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uIvV1bm4ZG2OQ-ZMEnuEgaQYxjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915825D/E58B2268A44611EF8D58A624C4F9AE02/B035E67615D311F09BAD2971C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:8a40::/48 Signature Algorithm: sha256WithRSAEncryption 3f:89:8c:8f:54:93:06:f5:93:78:84:ac:d1:9b:54:95:20:42: 32:3d:9d:e1:e1:1b:49:82:1a:a9:ff:b9:9b:9d:17:3f:b6:8f: cf:3c:bb:fd:2b:e6:7d:96:7f:74:5f:7d:89:2a:73:2e:7d:9e: f0:92:19:4b:03:08:46:3f:09:9c:a4:8b:5f:85:5e:0d:1e:29: 55:f2:52:00:82:00:ed:63:cf:e1:c6:a2:fe:fa:a3:8f:74:72: 46:d6:5d:53:a8:01:9f:33:51:8b:f9:b7:32:74:31:e9:6e:9d: 65:11:49:7f:7d:d3:f4:4f:4d:1c:53:71:fc:4e:89:e2:59:bc: 7e:0a:20:a7:52:6b:24:44:ce:6a:c4:33:bf:85:6b:a9:51:0a: f9:5c:15:6e:f5:53:ed:b3:16:bc:fc:63:b1:83:c2:78:94:9e: 36:87:bc:45:32:c9:5f:c4:31:55:d7:fa:ca:71:3b:10:5f:4b: b9:9a:40:3f:b6:4c:54:7c:37:34:ce:2b:42:f4:59:56:b6:4d: 75:4d:5a:c7:91:de:95:06:42:e9:d9:76:90:30:3b:a2:26:69: 12:31:2f:29:40:51:c8:21:62:71:5a:e5:7a:fe:da:ab:18:41: 90:71:ce:d2:d8:32:b8:63:92:a8:3c:4a:a3:94:7a:37:24:5b: 7c:99:e8:2d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTgyNUQxMTAvBgNVBAUTKEI4OEJENUQ1QjlCODY0NkQ4RTQzRTY0QzEyN0I4NDgx QTQxOEM2MzYwHhcNMjUxMjI3MDUyNDQ3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTRmNmQ5ZS1lN2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlVR+2wM4KcolnA0f7dc/PfyuuGy9DZlM5HRLMDKUOfBcKuwsp+2MmlIPsVj o5y7PXDKKKFf9unRRmaElDxrzQchDNaieRsBUZ8idGdiIrGHH960JAOW/OYDd00Q VnLirXbZ/HM7sDbJL+n3kx1Z1rjR/iYk3VJrMSjL39z9BeVM0N3YVz7i16J1eLGE 4zt0ow1Mi+Ccr3HVA5tDEGC93SoistNhDSOvbLEZrbjWZwK8kfqHGty1izO2oD3q nIsv+BayUIat9i23EcNfoJiH2Q3lyScFZvdZt0Yolord7XbGevYLTH4PeOuKfQkU 0UTrBy8njeqNgMrrvw3Zi3ntNQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIaSicYI DQ1lTx3ePn8NZo/nTKVoMB8GA1UdIwQYMBaAFLiL1dW5uGRtjkPmTBJ7hIGkGMY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODI1RC9FNThCMjI2OEE0 NDYxMUVGOEQ1OEE2MjRDNEY5QUUwMi91SXZWMWJtNFpHMk9RLVpNRW51RWdhUVl4 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VJdlYxYm00WkcyT1EtWk1FbnVFZ2FRWXhqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgyNUQvRTU4QjIyNjhBNDQ2MTFFRjhENThBNjI0QzRGOUFFMDIvQjAzNUU2NzYx NUQzMTFGMDlCQUQyOTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30ikAwDQYJKoZIhvcNAQELBQADggEBAD+JjI9Ukwb1 k3iErNGbVJUgQjI9neHhG0mCGqn/uZudFz+2j888u/0r5n2Wf3RffYkqcy59nvCS GUsDCEY/CZyki1+FXg0eKVXyUgCCAO1jz+HGov76o490ckbWXVOoAZ8zUYv5tzJ0 MelunWURSX990/RPTRxTcfxOieJZvH4KIKdSayREzmrEM7+Fa6lRCvlcFW71U+2z Frz8Y7GDwniUnjaHvEUyyV/EMVXX+spxOxBfS7maQD+2TFR8NzTOK0L0WVa2TXVN WseR3pUGQunZdpAwO6ImaRIxLylAUcghYnFa5Xr+2qsYQZBxztLYMrhjkqg8SqOU ejckW3yZ6C0= -----END CERTIFICATE-----Generated at Sun Jan 11 20:42:01 2026 by rpki-client