This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/F552E6BA05A111F082D17325C4F9AE02.roa File: F552E6BA05A111F082D17325C4F9AE02.roa (raw, json) Hash identifier: MnXiugmqriFLqkbSnhttbB7+tt/du9Da3+b1UZuGfIk= Subject key identifier: 66:49:75:00:AF:F1:F9:E4:20:67:3E:C2:59:C5:9C:24:76:D0:30:3C Certificate issuer: /CN=A9167FBA/serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Certificate serial: 8B Authority key identifier: 15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/F552E6BA05A111F082D17325C4F9AE02.roa Signing time: Tue 09 Dec 2025 04:43:50 +0000 ROA not before: Tue 09 Dec 2025 04:43:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 153469 IP address blocks: 2401:dce0::/32 maxlen: 32 2401:dce0::/48 maxlen: 48 2401:dce0:1::/48 maxlen: 48 2401:dce0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 05:30:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Validity Not Before: Dec 9 04:43:50 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6937a906-2ddd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8b:4c:6b:40:90:e8:b5:e9:8a:f1:a3:13:41: 06:eb:0d:c7:d4:ae:4c:1a:48:4d:30:02:ec:01:f1: 87:95:ca:94:ac:dd:0a:b4:6e:50:89:18:65:da:a4: 8b:0b:9b:7e:05:9b:4e:68:36:ee:a7:22:82:0b:84: c5:4b:12:07:7b:05:71:e3:c6:20:fe:2d:26:f8:0d: 0e:69:f7:6f:d2:32:b2:a5:24:82:fb:a6:b5:43:b6: a9:89:a9:b7:e7:9f:e4:c1:66:1a:51:ef:4a:ce:74: 33:8d:aa:ef:8f:42:35:c1:1e:40:2c:ab:e3:03:17: 87:3f:60:f1:10:07:65:0f:5f:3c:eb:05:aa:cc:a2: 7c:70:c9:63:7e:b7:a6:89:06:72:be:df:ec:45:a9: 0a:a4:92:5f:eb:9e:bc:04:fd:ea:66:ef:76:0c:9b: 79:07:2d:d8:10:8c:13:78:95:04:2b:4c:b9:91:7c: 04:ab:dd:6b:29:50:6d:72:c2:2e:ba:61:3f:b4:95: a4:6b:7b:4e:5b:eb:fb:84:07:6b:6e:23:e5:ee:2e: 54:40:71:8b:39:2d:42:fc:4b:99:19:d7:f6:b5:0f: 24:24:b9:83:c7:f9:2a:0f:5e:e0:ff:e6:21:94:f9: a8:48:ab:eb:63:26:05:da:d8:3e:62:15:68:be:26: b3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:49:75:00:AF:F1:F9:E4:20:67:3E:C2:59:C5:9C:24:76:D0:30:3C X509v3 Authority Key Identifier: keyid:15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/F552E6BA05A111F082D17325C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:dce0::/32 Signature Algorithm: sha256WithRSAEncryption 38:ef:12:24:a4:da:7d:ea:50:df:b2:22:a9:f7:a5:4d:0c:c1: 2b:9e:5c:d1:46:9e:7e:72:80:8d:10:61:78:92:ce:fa:57:71: 4a:e0:7c:0b:2f:30:9c:09:1a:de:a0:d9:ae:f7:dd:a7:7d:ce: d3:0f:a6:16:3a:36:2b:e5:49:64:e4:15:f5:a3:44:5d:02:88: b6:76:ca:8f:dd:df:50:f8:80:9c:3b:49:e2:b5:1f:bf:fd:21: 87:f4:47:69:07:1c:99:54:10:66:ca:a5:a4:62:36:72:84:27: fa:28:90:ae:c2:da:b7:4b:0f:bc:c5:a6:ab:be:7a:85:21:14: 4f:a5:ba:cc:fb:1a:26:53:c2:41:cf:51:08:bd:ef:35:68:67: 19:b6:ce:d2:6a:4b:b9:e6:a4:3b:bb:e5:ff:a0:5d:39:b6:c4: fe:28:76:f0:f2:02:47:12:b8:53:9c:ac:58:3d:c0:b1:af:6e: 85:5d:77:5b:b0:99:06:38:f8:b2:a5:e4:26:3f:e0:bf:cb:a4: 80:a6:36:aa:53:d7:05:db:e8:5c:79:1c:8d:97:f5:35:63:e8: a6:9e:ad:57:bb:c9:a6:40:8c:f5:94:5d:08:d5:84:10:bd:57: cc:59:0a:75:98:79:92:4a:1c:85:41:a5:8e:25:e3:c7:70:62: 84:76:77:cf -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGQkExMTAvBgNVBAUTKDE1M0M5OEQzMzEzQ0M2NEVEQjlBRTE1QUJBM0I1NDNF NDgwNDU5OTAwHhcNMjUxMjA5MDQ0MzUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM3YTkwNi0yZGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4tMa0CQ6LXpivGjE0EG6w3H1K5MGkhNMALsAfGHlcqUrN0KtG5QiRhl2qSL C5t+BZtOaDbupyKCC4TFSxIHewVx48Yg/i0m+A0Oafdv0jKypSSC+6a1Q7apiam3 55/kwWYaUe9KznQzjarvj0I1wR5ALKvjAxeHP2DxEAdlD1886wWqzKJ8cMljfrem iQZyvt/sRakKpJJf6568BP3qZu92DJt5By3YEIwTeJUEK0y5kXwEq91rKVBtcsIu umE/tJWka3tOW+v7hAdrbiPl7i5UQHGLOS1C/EuZGdf2tQ8kJLmDx/kqD17g/+Yh lPmoSKvrYyYF2tg+YhVoviazxwIDAQABo4ICljCCApIwHQYDVR0OBBYEFGZJdQCv 8fnkIGc+wlnFnCR20DA8MB8GA1UdIwQYMBaAFBU8mNMxPMZO25rhWro7VD5IBFmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZCQS80QjZFMDBGQzA0 OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9GVHlZMHpFOHhrN2JtdUZhdWp0VVBrZ0VX WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZUeVkwekU4eGs3Ym11RmF1anRVUGtnRVdaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdGQkEvNEI2RTAwRkMwNDhGMTFGMDg3MkU4NTQ3QzRGOUFFMDIvRjU1MkU2QkEw NUExMTFGMDgyRDE3MzI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAdzgMA0GCSqGSIb3DQEBCwUAA4IBAQA47xIkpNp96lDf siKp96VNDMErnlzRRp5+coCNEGF4ks76V3FK4HwLLzCcCRreoNmu992nfc7TD6YW OjYr5Ulk5BX1o0RdAoi2dsqP3d9Q+ICcO0nitR+//SGH9EdpBxyZVBBmyqWkYjZy hCf6KJCuwtq3Sw+8xaarvnqFIRRPpbrM+xomU8JBz1EIve81aGcZts7Saku55qQ7 u+X/oF05tsT+KHbw8gJHErhTnKxYPcCxr26FXXdbsJkGOPiypeQmP+C/y6SApjaq U9cF2+hceRyNl/U1Y+imnq1Xu8mmQIz1lF0I1YQQvVfMWQp1mHmSShyFQaWOJePH cGKEdnfP -----END CERTIFICATE-----Generated at Wed Dec 31 08:16:26 2025 by rpki-client