This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/DC76F25EBCFD11EFAF51D253C4F9AE02.roa File: DC76F25EBCFD11EFAF51D253C4F9AE02.roa (raw, json) Hash identifier: 3kSsbmp5huWEzylEUYdx0oiOaN6SnRVFNm6WlSLEixg= Subject key identifier: F6:AD:62:E2:FA:FD:05:1B:1C:C4:A8:74:07:24:15:2A:D6:17:6F:C9 Certificate issuer: /CN=A91921AE/serialNumber=82A769DD746C831F4C4DB29D6A65DE08D6AD95ED Certificate serial: D3 Authority key identifier: 82:A7:69:DD:74:6C:83:1F:4C:4D:B2:9D:6A:65:DE:08:D6:AD:95:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqdp3XRsgx9MTbKdamXeCNatle0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/DC76F25EBCFD11EFAF51D253C4F9AE02.roa Signing time: Mon 29 Dec 2025 05:24:51 +0000 ROA not before: Mon 29 Dec 2025 05:24:51 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136396 IP address blocks: 2001:df4:adc0::/48 maxlen: 48 2001:df4:adc1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/gqdp3XRsgx9MTbKdamXeCNatle0.crl rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/gqdp3XRsgx9MTbKdamXeCNatle0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqdp3XRsgx9MTbKdamXeCNatle0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 04:54:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91921AE, serialNumber=82A769DD746C831F4C4DB29D6A65DE08D6AD95ED Validity Not Before: Dec 29 05:24:51 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695210a3-6cd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2e:df:90:d2:9a:08:d4:92:ae:7e:40:ab:0f: a9:3c:f0:f5:78:3d:b5:37:83:6f:d9:86:0c:9b:8c: f5:a1:b8:2c:1b:00:9f:f6:f2:54:b0:b5:cf:f5:d0: c2:34:9d:57:03:59:1d:15:d0:46:91:bd:14:88:90: 85:2a:45:b6:12:71:c1:84:2b:26:57:04:b9:a2:56: 2f:38:c4:ea:4d:1e:f1:d1:3d:7d:1a:7c:a8:ae:29: 98:b4:a4:a0:9d:0e:55:a7:df:04:28:ff:f1:bd:3b: 8b:ac:92:02:de:5b:13:59:d6:f3:aa:c2:7c:db:a3: 35:71:6d:b6:0e:09:91:43:3f:3e:1b:12:81:12:d9: 08:fb:96:43:a2:db:5d:9a:a4:80:d2:99:89:1c:c7: fa:10:a8:1e:a5:4e:d3:8f:62:95:cc:30:ec:c0:20: c5:5d:1f:48:87:4a:10:b0:51:e0:16:09:2c:f8:50: 32:0e:7d:97:17:03:28:11:22:a8:bc:08:e6:3b:65: 1d:7f:46:72:26:f0:53:7e:5d:6b:63:a8:56:44:59: a1:9b:84:c0:e4:5b:27:0d:92:4f:30:3f:25:e3:5e: 4b:e9:08:af:ac:4f:a1:9f:be:19:73:08:93:e9:8d: f9:03:b3:5d:86:ad:f5:37:dd:2c:78:01:54:e5:3b: 20:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:AD:62:E2:FA:FD:05:1B:1C:C4:A8:74:07:24:15:2A:D6:17:6F:C9 X509v3 Authority Key Identifier: keyid:82:A7:69:DD:74:6C:83:1F:4C:4D:B2:9D:6A:65:DE:08:D6:AD:95:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/gqdp3XRsgx9MTbKdamXeCNatle0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqdp3XRsgx9MTbKdamXeCNatle0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/DC76F25EBCFD11EFAF51D253C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:adc0::/47 Signature Algorithm: sha256WithRSAEncryption c1:ae:c4:e5:4a:80:e2:ce:81:ee:e5:05:a5:4e:9a:ac:bf:3d: ea:bf:0e:73:d5:12:7a:aa:30:73:a6:51:60:0d:e4:05:b8:cd: 3c:3f:cf:c6:59:65:f0:e9:cf:e7:b9:79:6d:d3:17:e2:56:1c: cc:51:d0:b2:dd:e0:51:04:92:9c:a1:7f:1a:d7:4a:05:38:d9: b4:68:bc:11:9d:d4:58:bc:ae:79:eb:44:c4:35:17:15:78:7d: 17:b8:90:9a:0b:dc:00:c9:d5:16:ca:1a:d9:46:e7:79:7c:75: 91:5e:fd:dd:f2:89:09:f5:7e:49:c7:de:1c:d4:d4:31:33:a7: e9:7f:80:d5:2b:4d:18:6e:cf:c3:68:7e:2b:b8:77:18:31:c0: 0b:d7:48:ce:f1:92:e1:9c:ec:93:dc:3f:28:86:2a:7a:50:32: 03:69:da:bc:a9:f8:7e:91:61:38:2a:5f:4e:cf:58:00:dc:1d: e4:a2:e9:30:2f:46:7f:df:b8:ad:5b:76:61:78:c8:4c:ef:0f: 52:7b:b0:37:7d:58:68:a4:5b:a8:2f:3a:6e:b3:b5:26:60:13: a5:8a:16:3a:9f:40:5f:bb:c7:ff:05:2e:42:c6:5e:7a:3f:c8: 34:d0:ff:71:87:d5:6c:80:9a:0d:f7:dc:2d:46:a6:57:83:1f: 0b:d3:45:8b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTIxQUUxMTAvBgNVBAUTKDgyQTc2OURENzQ2QzgzMUY0QzREQjI5RDZBNjVERTA4 RDZBRDk1RUQwHhcNMjUxMjI5MDUyNDUxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTUyMTBhMy02Y2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAry7fkNKaCNSSrn5Aqw+pPPD1eD21N4Nv2YYMm4z1obgsGwCf9vJUsLXP9dDC NJ1XA1kdFdBGkb0UiJCFKkW2EnHBhCsmVwS5olYvOMTqTR7x0T19GnyorimYtKSg nQ5Vp98EKP/xvTuLrJIC3lsTWdbzqsJ826M1cW22DgmRQz8+GxKBEtkI+5ZDottd mqSA0pmJHMf6EKgepU7Tj2KVzDDswCDFXR9Ih0oQsFHgFgks+FAyDn2XFwMoESKo vAjmO2Udf0ZyJvBTfl1rY6hWRFmhm4TA5FsnDZJPMD8l415L6QivrE+hn74ZcwiT 6Y35A7Ndhq31N90seAFU5TsgpQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPatYuL6 /QUbHMSodAckFSrWF2/JMB8GA1UdIwQYMBaAFIKnad10bIMfTE2ynWpl3gjWrZXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjFBRS83NDkxMkIyQ0FD NzMxMUVGQTNDQkQxNEFDNEY5QUUwMi9ncWRwM1hSc2d4OU1UYktkYW1YZUNOYXRs ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dxZHAzWFJzZ3g5TVRiS2RhbVhlQ05hdGxlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTIxQUUvNzQ5MTJCMkNBQzczMTFFRkEzQ0JEMTRBQzRGOUFFMDIvREM3NkYyNUVC Q0ZEMTFFRkFGNTFEMjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEgAQ30rcAwDQYJKoZIhvcNAQELBQADggEBAMGuxOVKgOLO ge7lBaVOmqy/Peq/DnPVEnqqMHOmUWAN5AW4zTw/z8ZZZfDpz+e5eW3TF+JWHMxR 0LLd4FEEkpyhfxrXSgU42bRovBGd1Fi8rnnrRMQ1FxV4fRe4kJoL3ADJ1RbKGtlG 53l8dZFe/d3yiQn1fknH3hzU1DEzp+l/gNUrTRhuz8Nofiu4dxgxwAvXSM7xkuGc 7JPcPyiGKnpQMgNp2ryp+H6RYTgqX07PWADcHeSi6TAvRn/fuK1bdmF4yEzvD1J7 sDd9WGikW6gvOm6ztSZgE6WKFjqfQF+7x/8FLkLGXno/yDTQ/3GH1WyAmg333C1G pleDHwvTRYs= -----END CERTIFICATE-----Generated at Sun Jan 11 20:39:03 2026 by rpki-client