This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D488/8D733ACAC11E11F08DDE8787C4F9AE02/038304DEC11F11F0A9F08209C4F9AE02.roa File: 038304DEC11F11F0A9F08209C4F9AE02.roa (raw, json) Hash identifier: fu9C1J/RBHwKsYSS8jZ8wBTqjXDttWgGA7zD9v4ueSU= Subject key identifier: 83:A8:0B:48:21:77:1D:88:1E:68:07:EE:92:F9:C8:3B:AE:47:55:3B Certificate issuer: /CN=A917D488/serialNumber=C43C8FEDA45510592298B5B953E279FBACE45A64 Certificate serial: 02 Authority key identifier: C4:3C:8F:ED:A4:55:10:59:22:98:B5:B9:53:E2:79:FB:AC:E4:5A:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDyP7aRVEFkimLW5U-J5-6zkWmQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D488/8D733ACAC11E11F08DDE8787C4F9AE02/038304DEC11F11F0A9F08209C4F9AE02.roa Signing time: Fri 14 Nov 2025 05:59:00 +0000 ROA not before: Fri 14 Nov 2025 05:59:00 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 154362 IP address blocks: 2001:df6:4ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D488/8D733ACAC11E11F08DDE8787C4F9AE02/xDyP7aRVEFkimLW5U-J5-6zkWmQ.crl rsync://rpki.apnic.net/member_repository/A917D488/8D733ACAC11E11F08DDE8787C4F9AE02/xDyP7aRVEFkimLW5U-J5-6zkWmQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDyP7aRVEFkimLW5U-J5-6zkWmQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:49:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D488, serialNumber=C43C8FEDA45510592298B5B953E279FBACE45A64 Validity Not Before: Nov 14 05:59:00 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6916c523-62ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:eb:ad:34:13:0f:9f:af:77:93:76:48:de:e8: 61:33:58:12:e7:ba:b5:2a:1b:63:ae:f6:40:0b:ed: 46:bf:42:6c:1a:14:49:d3:3a:e4:e6:7e:5e:2c:23: d1:d6:9c:4b:6e:bf:1d:e8:17:80:4a:a6:3a:88:8d: 16:11:1c:ff:bd:64:72:f4:d8:cb:94:54:06:17:33: fa:d2:be:31:83:2a:03:b9:12:0a:6a:16:ea:b1:c7: 79:14:f8:64:78:64:e1:1a:58:35:09:da:57:63:1c: 10:12:da:29:93:a7:b9:d0:dc:0e:37:48:fd:94:7f: 7d:cd:ff:01:70:8f:e7:b9:11:88:2f:02:d1:47:6f: c1:56:c4:0e:a5:e4:6e:22:b2:08:87:b1:0a:79:48: 3c:a1:04:d4:91:cd:b6:87:e9:21:b0:7a:dd:18:40: 06:ae:2b:0b:aa:fe:01:40:83:05:89:85:27:8a:17: eb:a2:29:8c:68:b7:c3:af:4b:f7:3d:78:30:2d:26: 1e:18:39:f9:5d:ef:a6:dd:2b:8c:88:7a:56:22:e8: 10:60:dc:fe:18:38:9b:eb:a2:4c:10:f2:33:ae:12: 00:1b:ca:59:b4:14:23:56:04:3c:2c:1e:4f:a5:2c: cf:c5:74:cc:3c:c3:a5:c6:ff:5f:f4:76:1d:c5:2c: 68:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:A8:0B:48:21:77:1D:88:1E:68:07:EE:92:F9:C8:3B:AE:47:55:3B X509v3 Authority Key Identifier: keyid:C4:3C:8F:ED:A4:55:10:59:22:98:B5:B9:53:E2:79:FB:AC:E4:5A:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D488/8D733ACAC11E11F08DDE8787C4F9AE02/xDyP7aRVEFkimLW5U-J5-6zkWmQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDyP7aRVEFkimLW5U-J5-6zkWmQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D488/8D733ACAC11E11F08DDE8787C4F9AE02/038304DEC11F11F0A9F08209C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:4ec0::/48 Signature Algorithm: sha256WithRSAEncryption 32:0b:6b:c5:7d:ee:46:b3:ac:f5:19:94:4a:9a:42:be:0d:92: 64:48:b5:db:3b:a1:63:69:56:42:d7:1a:34:5a:54:40:fe:2f: 31:87:c3:88:f5:3e:cd:a4:53:93:ab:b9:77:74:e1:48:74:04: 37:f7:1e:a8:39:d0:0f:cd:47:66:69:a1:7e:28:81:63:fc:ab: 7a:dc:ef:61:12:6a:42:0a:b0:d7:5e:af:43:5d:4c:10:be:9d: c0:eb:e3:03:af:fd:78:15:4e:f5:6e:37:d4:98:68:37:98:7d: c6:47:42:76:3c:c4:1d:e3:0c:fc:2a:0f:37:50:f4:8f:c8:75: 11:84:e0:33:83:7d:64:46:36:41:f3:56:69:72:c5:3f:77:72: ec:ff:c6:f8:40:a1:e6:d9:90:8e:e7:46:f3:54:9a:c2:b3:0b: 71:44:fd:a0:9e:79:08:bc:8c:f3:f0:e6:96:31:7e:07:2f:ca: 00:51:a7:e7:54:88:a3:2d:77:71:6f:96:47:5c:f6:8a:8b:d9: 81:bb:6e:30:2c:63:9f:67:57:f1:51:cd:7f:4d:e0:d1:bc:50: c3:d9:40:e7:a2:78:3e:fd:6a:8f:bd:7b:5f:7b:e5:94:40:cb: 85:57:f5:0c:91:49:cb:d0:36:f8:c7:67:da:2a:f4:de:66:69: 1f:9b:c1:b4 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDQ4ODExMC8GA1UEBRMoQzQzQzhGRURBNDU1MTA1OTIyOThCNUI5NTNFMjc5RkJB Q0U0NUE2NDAeFw0yNTExMTQwNTU5MDBaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MTZjNTIzLTYyYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG6600Ew+fr3eTdkje6GEzWBLnurUqG2Ou9kAL7Ua/QmwaFEnTOuTmfl4sI9HW nEtuvx3oF4BKpjqIjRYRHP+9ZHL02MuUVAYXM/rSvjGDKgO5EgpqFuqxx3kU+GR4 ZOEaWDUJ2ldjHBAS2imTp7nQ3A43SP2Uf33N/wFwj+e5EYgvAtFHb8FWxA6l5G4i sgiHsQp5SDyhBNSRzbaH6SGwet0YQAauKwuq/gFAgwWJhSeKF+uiKYxot8OvS/c9 eDAtJh4YOfld76bdK4yIelYi6BBg3P4YOJvrokwQ8jOuEgAbylm0FCNWBDwsHk+l LM/FdMw8w6XG/1/0dh3FLGilAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUg6gLSCF3 HYgeaAfukvnIO65HVTswHwYDVR0jBBgwFoAUxDyP7aRVEFkimLW5U+J5+6zkWmQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdENDg4LzhENzMzQUNBQzEx RTExRjA4RERFODc4N0M0RjlBRTAyL3hEeVA3YVJWRUZraW1MVzVVLUo1LTZ6a1dt US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveER5UDdhUlZFRmtpbUxXNVUtSjUtNnprV21RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDQ4OC84RDczM0FDQUMxMUUxMUYwOERERTg3ODdDNEY5QUUwMi8wMzgzMDRERUMx MUYxMUYwQTlGMDgyMDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfZOwDANBgkqhkiG9w0BAQsFAAOCAQEAMgtrxX3uRrOs 9RmUSppCvg2SZEi12zuhY2lWQtcaNFpUQP4vMYfDiPU+zaRTk6u5d3ThSHQEN/ce qDnQD81HZmmhfiiBY/yretzvYRJqQgqw116vQ11MEL6dwOvjA6/9eBVO9W431Jho N5h9xkdCdjzEHeMM/CoPN1D0j8h1EYTgM4N9ZEY2QfNWaXLFP3dy7P/G+ECh5tmQ judG81SawrMLcUT9oJ55CLyM8/DmljF+By/KAFGn51SIoy13cW+WR1z2iovZgbtu MCxjn2dX8VHNf03g0bxQw9lA56J4Pv1qj717X3vllEDLhVf1DJFJy9A2+Mdn2ir0 3mZpH5vBtA== -----END CERTIFICATE-----Generated at Fri Dec 19 19:08:47 2025 by rpki-client