This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/A716CA94954611EC9B320352C4F9AE02.roa File: A716CA94954611EC9B320352C4F9AE02.roa (raw, json) Hash identifier: uTjJg4ld3wAkfp4bASyeuSGU8PR4oaKlDvy4j1UVWtw= Subject key identifier: B0:6C:9E:DD:FF:F5:FC:83:C8:99:76:F5:D8:8A:5A:A1:78:94:A3:17 Certificate issuer: /CN=A917DEA4/serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Certificate serial: 07A5 Authority key identifier: B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/A716CA94954611EC9B320352C4F9AE02.roa Signing time: Mon 22 Dec 2025 17:10:21 +0000 ROA not before: Mon 22 Dec 2025 17:10:21 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17762 IP address blocks: 14.96.1.0/24 maxlen: 24 14.96.2.0/23 maxlen: 24 14.96.70.0/23 maxlen: 24 14.96.192.0/21 maxlen: 24 14.96.200.0/22 maxlen: 24 14.96.204.0/22 maxlen: 24 14.96.208.0/22 maxlen: 24 14.96.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 21:41:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1957 (0x7a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DEA4, serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Validity Not Before: Dec 22 17:10:21 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69497b7c-b4ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:da:17:62:f2:18:8b:a2:cd:bb:ee:02:8b:7d: 05:ab:8a:49:60:5d:c9:8c:9c:e8:43:c4:ec:3b:dc: 78:97:a3:c7:62:e1:f0:3a:bf:05:1a:c6:77:ee:21: 8f:6e:5c:03:bd:98:fa:ab:d4:4a:c6:70:ca:3b:12: 70:ae:99:aa:db:ef:40:ad:2c:6d:3c:5f:65:7f:d1: 24:f2:b7:8b:65:2c:72:af:53:6c:e8:2e:06:e4:23: ef:cd:5f:14:9c:56:4d:87:6b:7b:12:57:30:1f:84: f8:7c:ed:03:3d:1f:d4:91:0a:16:de:68:1c:2c:85: db:cc:35:ba:2c:4e:e8:77:c0:58:66:ca:90:44:c0: 95:0e:98:73:75:75:bd:fb:4f:70:df:19:6b:49:b8: ab:70:51:de:b8:ec:91:ff:9d:bd:cc:8c:c9:9c:45: b3:fa:cf:89:eb:b1:79:da:1d:eb:9a:69:05:19:4c: f1:b7:8f:0b:f2:06:fd:16:6a:0d:90:63:be:c7:61: 6d:ad:2e:3e:92:e2:ef:94:c2:22:36:a0:c9:84:2a: c9:29:09:74:63:c0:7b:8b:3e:e8:14:fe:e6:c6:05: b6:f7:d0:60:5b:8a:4a:e4:96:57:13:4f:a2:3d:5f: 8e:ce:bf:bf:4b:54:7e:da:f1:cf:8f:d9:f9:8b:e8: ff:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:6C:9E:DD:FF:F5:FC:83:C8:99:76:F5:D8:8A:5A:A1:78:94:A3:17 X509v3 Authority Key Identifier: keyid:B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/A716CA94954611EC9B320352C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.96.1.0-14.96.3.255 14.96.70.0/23 14.96.192.0-14.96.215.255 Signature Algorithm: sha256WithRSAEncryption 95:a3:ac:d0:ba:15:1d:f6:92:7d:69:5a:cf:a4:c7:77:51:2a: 3f:ee:9c:44:e7:2c:bd:f1:bf:07:f8:a3:ad:12:94:8b:91:d1: 08:5e:51:81:fb:50:b3:fc:bc:88:40:57:36:c3:43:2c:98:f9: 28:7c:42:d8:2b:bc:58:b9:a9:48:1e:83:3a:f4:f0:4f:73:80: f6:5c:40:02:81:66:6c:7e:a0:0f:43:10:e9:73:2f:d4:30:fe: 66:ab:61:f5:92:84:a8:9e:1c:26:63:9f:63:86:19:16:b2:b5: 55:01:66:0a:1f:23:75:36:9f:b5:f2:70:74:9a:9b:6d:53:6a: 0a:a8:16:f3:ae:dd:5a:c2:43:03:8b:3e:81:1d:9a:bc:57:e9: 79:df:69:7c:a4:e0:bd:a2:2d:87:5b:21:98:ae:77:60:e4:eb: d2:54:2c:83:28:83:a9:aa:cb:51:e6:fd:bc:d8:e5:68:50:ea: 7a:86:c6:07:90:db:0c:ae:6a:48:7e:f2:9b:11:b4:7c:16:28: f2:b7:bd:d8:3c:6f:fb:a4:40:c0:f6:9d:0d:e7:36:f0:47:96: d0:79:33:fd:1e:7c:a0:57:0a:87:97:a7:6b:6e:9a:d1:cb:00: f0:84:a0:cc:f5:15:9a:27:ce:f2:f7:23:27:6b:6e:06:cb:0d: 6c:b3:fa:53 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICB6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RFQTQxMTAvBgNVBAUTKEI0RDZGRkQ1REZGOUVBQzQxM0FCNDQwOEUwOTYzN0Iw OTQ5NERCQzgwHhcNMjUxMjIyMTcxMDIxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ5N2I3Yy1iNGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7doXYvIYi6LNu+4Ci30Fq4pJYF3JjJzoQ8TsO9x4l6PHYuHwOr8FGsZ37iGP blwDvZj6q9RKxnDKOxJwrpmq2+9ArSxtPF9lf9Ek8reLZSxyr1Ns6C4G5CPvzV8U nFZNh2t7ElcwH4T4fO0DPR/UkQoW3mgcLIXbzDW6LE7od8BYZsqQRMCVDphzdXW9 +09w3xlrSbircFHeuOyR/529zIzJnEWz+s+J67F52h3rmmkFGUzxt48L8gb9FmoN kGO+x2FtrS4+kuLvlMIiNqDJhCrJKQl0Y8B7iz7oFP7mxgW299BgW4pK5JZXE0+i PV+Ozr+/S1R+2vHPj9n5i+j/wQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFLBsnt3/ 9fyDyJl29diKWqF4lKMXMB8GA1UdIwQYMBaAFLTW/9Xf+erEE6tECOCWN7CUlNvI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REVBNC9BMjQyNkI2MDk4 MjkxMUVCQjc4ODIwODFDNEY5QUUwMi90TmJfMWRfNTZzUVRxMFFJNEpZM3NKU1Uy OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROYl8xZF81NnNRVHEwUUk0Slkzc0pTVTI4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RFQTQvQTI0MjZCNjA5ODI5MTFFQkI3ODgyMDgxQzRGOUFFMDIvQTcxNkNBOTQ5 NTQ2MTFFQzlCMzIwMzUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIwDAMEAA5gAQMEAg5gAAMEAQ5gRjAMAwQGDmDAAwQDDmDQMA0G CSqGSIb3DQEBCwUAA4IBAQCVo6zQuhUd9pJ9aVrPpMd3USo/7pxE5yy98b8H+KOt EpSLkdEIXlGB+1Cz/LyIQFc2w0MsmPkofELYK7xYualIHoM69PBPc4D2XEACgWZs fqAPQxDpcy/UMP5mq2H1koSonhwmY59jhhkWsrVVAWYKHyN1Np+18nB0mpttU2oK qBbzrt1awkMDiz6BHZq8V+l532l8pOC9oi2HWyGYrndg5OvSVCyDKIOpqstR5v28 2OVoUOp6hsYHkNsMrmpIfvKbEbR8Fijyt73YPG/7pEDA9p0N5zbwR5bQeTP9Hnyg VwqHl6drbprRywDwhKDM9RWaJ87y9yMna24Gyw1ss/pT -----END CERTIFICATE-----Generated at Wed Dec 31 03:32:49 2025 by rpki-client