This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/3CBCF5BED6D911F0B064CD5C85D3641D.roa File: 3CBCF5BED6D911F0B064CD5C85D3641D.roa (raw, json) Hash identifier: dyqXFCcUaP0MyJCMf/CgPJbAs32ejMPFahUoO/mRaLE= Subject key identifier: 1C:BE:DB:D1:DB:46:2E:C7:AC:38:CA:7E:58:3C:07:06:BC:16:C8:1C Certificate issuer: /CN=A9172989/serialNumber=AB69C74025489AFD61747FF9335B147E20BB25D4 Certificate serial: 04 Authority key identifier: AB:69:C7:40:25:48:9A:FD:61:74:7F:F9:33:5B:14:7E:20:BB:25:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/3CBCF5BED6D911F0B064CD5C85D3641D.roa Signing time: Thu 11 Dec 2025 21:34:56 +0000 ROA not before: Thu 11 Dec 2025 21:34:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 174 IP address blocks: 2402:4480::/33 maxlen: 33 2402:4480:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.crl rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 07:33:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172989, serialNumber=AB69C74025489AFD61747FF9335B147E20BB25D4 Validity Not Before: Dec 11 21:34:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=693b3900-17d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6c:45:cf:f1:e1:f3:5b:66:bc:65:80:e1:54: c4:61:63:f7:53:ea:84:22:da:da:35:9a:48:45:14: bd:3e:f1:d6:11:1c:3e:6b:81:69:20:fb:b9:fe:f7: ab:f9:a7:10:e3:f1:ed:3c:6c:9d:da:8e:8b:f4:45: f6:12:30:e7:7b:3a:f2:64:44:42:8d:1e:ae:9f:1d: 08:8a:78:fd:a8:ad:4b:42:a6:8b:88:2a:83:b8:be: 18:f3:1a:e0:fd:99:b8:f6:ca:61:14:60:d4:4f:6f: 2e:55:3c:80:76:1c:26:22:14:95:4f:37:ac:eb:00: 98:af:99:42:2f:82:44:55:2e:3b:f8:9d:b4:39:d7: e1:03:10:29:e5:ec:ef:d2:68:6a:0a:6b:4c:38:23: 3a:0c:a7:89:34:c3:27:86:e1:b2:98:18:4b:06:eb: b4:43:54:65:e9:c7:0d:72:c8:4c:55:33:e6:d0:8c: 35:40:4c:22:98:b9:1e:08:62:c5:b5:35:54:0d:70: 78:a3:50:9f:ab:d5:77:16:e9:72:08:29:f1:7e:36: c4:96:68:26:61:fe:23:a0:51:f7:7c:d1:87:74:c9: 2a:58:a6:76:33:9b:2a:b8:79:98:ab:7b:89:ee:2f: 82:e0:a3:e5:2f:a2:84:93:fd:43:b2:ff:e2:63:b2: 91:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:BE:DB:D1:DB:46:2E:C7:AC:38:CA:7E:58:3C:07:06:BC:16:C8:1C X509v3 Authority Key Identifier: keyid:AB:69:C7:40:25:48:9A:FD:61:74:7F:F9:33:5B:14:7E:20:BB:25:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/3CBCF5BED6D911F0B064CD5C85D3641D.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:4480::/32 Signature Algorithm: sha256WithRSAEncryption 5f:b5:43:a7:7b:46:e9:47:41:5b:a5:97:cc:cd:ac:68:b4:ff: c3:10:52:bf:a3:64:06:d4:de:b2:c4:45:31:d6:89:31:b9:10: 01:52:9a:5c:23:6b:2c:1e:53:fd:5c:5e:f9:0c:e8:92:71:4c: dc:8e:5f:1c:f3:0c:ad:33:37:26:f4:76:7b:61:dc:d5:1a:c0: f1:dc:bc:e3:92:df:15:9a:e2:d8:e7:97:0e:8d:a8:35:e1:8e: b0:40:a9:d2:94:d8:15:83:1a:89:18:d1:9b:09:b0:83:7b:05: a4:8e:4d:da:db:65:29:07:39:bf:99:f2:ff:7c:bb:45:8e:0a: ff:79:bb:ab:eb:6f:93:8c:7b:18:e8:89:cb:62:be:dc:bf:02: 86:7d:81:71:9c:ed:8c:2f:61:9f:b1:c0:1a:da:3e:99:6f:18: 05:99:5d:50:2f:3c:46:52:e5:ec:ef:5f:5c:cf:73:a2:39:5f: e3:ce:6d:ce:8b:d6:6a:b1:9e:74:97:9c:23:45:b0:c7:50:00: b2:cd:e4:83:db:92:7d:04:59:a1:f5:1d:99:31:8a:19:c8:fd: d5:8f:0a:db:cd:72:52:8e:4f:66:77:d7:2f:4b:7d:15:7e:01: 66:e6:4b:a5:99:d5:91:91:62:a3:38:f6:3c:85:3e:30:64:2d: 9f:08:84:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Mjk4OTExMC8GA1UEBRMoQUI2OUM3NDAyNTQ4OUFGRDYxNzQ3RkY5MzM1QjE0N0Uy MEJCMjVENDAeFw0yNTEyMTEyMTM0NTZaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5M2IzOTAwLTE3ZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdbEXP8eHzW2a8ZYDhVMRhY/dT6oQi2to1mkhFFL0+8dYRHD5rgWkg+7n+96v5 pxDj8e08bJ3ajov0RfYSMOd7OvJkREKNHq6fHQiKeP2orUtCpouIKoO4vhjzGuD9 mbj2ymEUYNRPby5VPIB2HCYiFJVPN6zrAJivmUIvgkRVLjv4nbQ51+EDECnl7O/S aGoKa0w4IzoMp4k0wyeG4bKYGEsG67RDVGXpxw1yyExVM+bQjDVATCKYuR4IYsW1 NVQNcHijUJ+r1XcW6XIIKfF+NsSWaCZh/iOgUfd80Yd0ySpYpnYzmyq4eZire4nu L4Lgo+UvooST/UOy/+JjspGBAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUHL7b0dtG LsesOMp+WDwHBrwWyBwwHwYDVR0jBBgwFoAUq2nHQCVImv1hdH/5M1sUfiC7JdQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyOTg5L0VGRkRENzE0RDZE NTExRjBCMDYzODRCNTgxRDM2NDFEL3EybkhRQ1ZJbXYxaGRIXzVNMXNVZmlDN0pk US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcTJuSFFDVkltdjFoZEhfNU0xc1VmaUM3SmRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Mjk4OS9FRkZERDcxNEQ2RDUxMUYwQjA2Mzg0QjU4MUQzNjQxRC8zQ0JDRjVCRUQ2 RDkxMUYwQjA2NENENUM4NUQzNjQxRC5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQCRIAwDQYJKoZIhvcNAQELBQADggEBAF+1Q6d7RulHQVul l8zNrGi0/8MQUr+jZAbU3rLERTHWiTG5EAFSmlwjayweU/1cXvkM6JJxTNyOXxzz DK0zNyb0dnth3NUawPHcvOOS3xWa4tjnlw6NqDXhjrBAqdKU2BWDGokY0ZsJsIN7 BaSOTdrbZSkHOb+Z8v98u0WOCv95u6vrb5OMexjoictivty/AoZ9gXGc7YwvYZ+x wBraPplvGAWZXVAvPEZS5ezvX1zPc6I5X+PObc6L1mqxnnSXnCNFsMdQALLN5IPb kn0EWaH1HZkxihnI/dWPCtvNclKOT2Z31y9LfRV+AWbmS6WZ1ZGRYqM49jyFPjBk LZ8IhLg= -----END CERTIFICATE-----Generated at Wed Dec 17 14:32:19 2025 by rpki-client