This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158682/0729DD2ED5BA11F0AB90DA7CC4F9AE02/C5D7EA08D5CF11F0A0EA7C48C4F9AE02.roa File: C5D7EA08D5CF11F0A0EA7C48C4F9AE02.roa (raw, json) Hash identifier: UQqZB27tXe9lrZzq0AP0ajBaHWQmUOmhOsTlBf5Xzg8= Subject key identifier: 2E:FD:2D:93:E8:58:62:68:01:3E:A8:A5:41:81:2A:5D:FA:1A:52:65 Certificate issuer: /CN=A9158682/serialNumber=23E1E4259FABCD49FD58CCD46CF200CD121E2EAC Certificate serial: 03 Authority key identifier: 23:E1:E4:25:9F:AB:CD:49:FD:58:CC:D4:6C:F2:00:CD:12:1E:2E:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-HkJZ-rzUn9WMzUbPIAzRIeLqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158682/0729DD2ED5BA11F0AB90DA7CC4F9AE02/C5D7EA08D5CF11F0A0EA7C48C4F9AE02.roa Signing time: Wed 10 Dec 2025 13:54:40 +0000 ROA not before: Wed 10 Dec 2025 13:54:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 15932 IP address blocks: 2403:d300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158682/0729DD2ED5BA11F0AB90DA7CC4F9AE02/I-HkJZ-rzUn9WMzUbPIAzRIeLqw.crl rsync://rpki.apnic.net/member_repository/A9158682/0729DD2ED5BA11F0AB90DA7CC4F9AE02/I-HkJZ-rzUn9WMzUbPIAzRIeLqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-HkJZ-rzUn9WMzUbPIAzRIeLqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 07:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158682, serialNumber=23E1E4259FABCD49FD58CCD46CF200CD121E2EAC Validity Not Before: Dec 10 13:54:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69397ba0-25f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f2:df:c5:56:86:9c:9a:4e:ea:8c:9f:87:0f: 80:2e:f6:2e:86:fb:99:ab:67:c1:ef:6e:16:a7:20: 9f:96:c3:b1:7f:78:6f:1d:7f:7f:d7:b0:51:69:f2: 20:11:59:b4:62:23:bc:9f:68:58:ba:1f:da:16:78: 6c:59:da:26:6a:04:60:7f:7d:b3:30:57:73:1a:25: 3d:01:b4:9c:9e:80:9d:17:89:ce:99:aa:50:85:15: a9:bb:c2:77:e7:b7:0e:94:f3:01:b0:c5:4f:79:a8: 96:f2:90:1b:37:ab:ac:40:24:7d:65:a9:7a:24:de: 3c:43:95:40:92:0f:9e:d3:12:85:4b:43:84:79:a6: 5f:2c:62:76:51:a8:f3:60:23:c3:41:8d:5f:5d:49: a9:7c:53:d2:77:af:47:bf:db:ca:a3:9e:dc:1f:5e: 71:74:9f:b6:ad:19:5d:a2:00:61:5d:af:a9:cd:85: cf:6e:e8:3e:32:23:96:7f:7d:16:3d:02:2b:45:ce: 66:69:e4:59:d4:3e:3d:b2:3a:24:d4:c9:36:5b:fd: 48:de:d4:94:85:88:4a:0d:4b:32:6a:91:80:6c:8b: 15:5f:ae:b5:22:41:15:06:5b:eb:2a:39:38:bf:e5: 09:72:51:53:04:63:fa:af:7f:9c:59:a5:c6:52:57: 07:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:FD:2D:93:E8:58:62:68:01:3E:A8:A5:41:81:2A:5D:FA:1A:52:65 X509v3 Authority Key Identifier: keyid:23:E1:E4:25:9F:AB:CD:49:FD:58:CC:D4:6C:F2:00:CD:12:1E:2E:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158682/0729DD2ED5BA11F0AB90DA7CC4F9AE02/I-HkJZ-rzUn9WMzUbPIAzRIeLqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-HkJZ-rzUn9WMzUbPIAzRIeLqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158682/0729DD2ED5BA11F0AB90DA7CC4F9AE02/C5D7EA08D5CF11F0A0EA7C48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:d300::/32 Signature Algorithm: sha256WithRSAEncryption ae:e4:f6:4f:95:34:38:7f:9a:fb:5b:65:7a:4d:76:f7:6b:0c: 44:b7:48:f5:9b:9a:27:d0:6e:2e:7c:6e:c2:08:28:32:c0:6d: 32:94:92:c1:b2:59:6b:28:77:f2:76:02:8f:d3:8c:81:e6:89: fa:3e:af:d9:10:2f:5e:89:20:21:c4:e1:3a:6e:5c:ad:48:e4: de:8e:51:c5:93:2e:75:21:9f:a8:71:19:ca:70:96:da:f1:dc: 6e:26:32:fb:7c:cf:64:20:bd:8c:f3:1d:59:21:fd:6b:21:4a: 01:7e:81:17:69:e0:70:89:fd:68:6f:51:ee:51:02:35:e9:13: 00:d6:3c:5a:89:0c:9d:04:2c:9a:33:5f:80:53:56:f8:42:87: 5d:f2:1a:1d:fe:1b:31:26:f1:d0:00:a5:45:9d:cc:d2:0c:e1: ea:4d:f5:5f:b9:a7:df:93:76:ca:c5:9c:f2:23:90:c9:42:27: 68:1f:52:c7:98:81:cc:3c:0b:4f:c2:aa:53:9c:09:2e:f6:72: 93:9f:d5:d7:cb:b9:c2:a7:ae:2d:b0:3b:48:56:45:12:1b:b2: 63:ce:db:7e:ce:8c:bd:84:b6:ff:23:a6:2a:83:63:1c:e9:0c: 86:8e:25:60:43:fa:f4:57:4e:cd:c5:4d:82:30:18:67:03:27: c5:83:47:6c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODY4MjExMC8GA1UEBRMoMjNFMUU0MjU5RkFCQ0Q0OUZENThDQ0Q0NkNGMjAwQ0Qx MjFFMkVBQzAeFw0yNTEyMTAxMzU0NDBaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5Mzk3YmEwLTI1ZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC08t/FVoacmk7qjJ+HD4Au9i6G+5mrZ8HvbhanIJ+Ww7F/eG8df3/XsFFp8iAR WbRiI7yfaFi6H9oWeGxZ2iZqBGB/fbMwV3MaJT0BtJyegJ0Xic6ZqlCFFam7wnfn tw6U8wGwxU95qJbykBs3q6xAJH1lqXok3jxDlUCSD57TEoVLQ4R5pl8sYnZRqPNg I8NBjV9dSal8U9J3r0e/28qjntwfXnF0n7atGV2iAGFdr6nNhc9u6D4yI5Z/fRY9 AitFzmZp5FnUPj2yOiTUyTZb/Uje1JSFiEoNSzJqkYBsixVfrrUiQRUGW+sqOTi/ 5QlyUVMEY/qvf5xZpcZSVwfbAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQULv0tk+hY YmgBPqilQYEqXfoaUmUwHwYDVR0jBBgwFoAUI+HkJZ+rzUn9WMzUbPIAzRIeLqww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NjgyLzA3MjlERDJFRDVC QTExRjBBQjkwREE3Q0M0RjlBRTAyL0ktSGtKWi1yelVuOVdNelViUElBelJJZUxx dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSS1Ia0paLXJ6VW45V016VWJQSUF6UkllTHF3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODY4Mi8wNzI5REQyRUQ1QkExMUYwQUI5MERBN0NDNEY5QUUwMi9DNUQ3RUEwOEQ1 Q0YxMUYwQTBFQTdDNDhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQD0wAwDQYJKoZIhvcNAQELBQADggEBAK7k9k+VNDh/mvtb ZXpNdvdrDES3SPWbmifQbi58bsIIKDLAbTKUksGyWWsod/J2Ao/TjIHmifo+r9kQ L16JICHE4TpuXK1I5N6OUcWTLnUhn6hxGcpwltrx3G4mMvt8z2QgvYzzHVkh/Wsh SgF+gRdp4HCJ/WhvUe5RAjXpEwDWPFqJDJ0ELJozX4BTVvhCh13yGh3+GzEm8dAA pUWdzNIM4epN9V+5p9+TdsrFnPIjkMlCJ2gfUseYgcw8C0/CqlOcCS72cpOf1dfL ucKnri2wO0hWRRIbsmPO237OjL2Etv8jpiqDYxzpDIaOJWBD+vRXTs3FTYIwGGcD J8WDR2w= -----END CERTIFICATE-----Generated at Fri Dec 19 22:04:16 2025 by rpki-client