This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/538172167F5211ED8A16EF81C4F9AE02.roa File: 538172167F5211ED8A16EF81C4F9AE02.roa (raw, json) Hash identifier: QI0N51GUnt6D89PVuaGZxxJ/g8NWosolCP7fujkw4UM= Subject key identifier: 57:B3:CB:85:3B:85:5C:8A:B5:85:47:E2:45:A2:97:D6:12:F6:CC:17 Certificate issuer: /CN=A91A3E3F/serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Certificate serial: 0254 Authority key identifier: 59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/538172167F5211ED8A16EF81C4F9AE02.roa Signing time: Wed 17 Dec 2025 02:21:19 +0000 ROA not before: Wed 17 Dec 2025 02:21:19 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 45139 IP address blocks: 2404:f801:8020::/48 maxlen: 48 2404:f801:802c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F, serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Validity Not Before: Dec 17 02:21:19 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6942139f-c984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:61:18:49:8d:c0:d3:dc:71:98:9e:72:11:7b: d0:61:f2:92:c1:5a:76:ec:ff:b9:79:50:4f:f9:36: a5:c3:8b:fa:03:b9:ab:53:65:91:c0:2a:65:7b:0b: 02:0e:f3:51:c5:ca:b4:31:d3:6f:9c:69:37:1c:71: 6e:42:fe:29:19:a2:ab:1c:a0:7a:48:1c:4e:57:1c: fe:95:bf:9d:36:92:fd:a7:32:36:32:4a:7c:69:52: cb:46:f8:e9:c7:e9:f7:6c:f4:70:dc:95:1b:d9:13: 26:54:55:f3:00:83:be:8b:4d:65:f7:fe:81:2c:72: 28:6c:de:b2:11:cc:04:30:e5:7c:c7:b2:bb:ff:14: 5f:2a:78:8f:92:99:c2:ac:51:e9:75:43:04:b9:9e: 1f:dc:b9:4e:3e:a1:9f:58:22:ca:5e:c6:bf:28:78: 1b:31:e0:9a:d6:c8:a9:99:1d:93:9c:07:7d:fd:e3: 45:2c:73:a4:0b:48:55:74:89:f5:90:14:61:6d:05: f0:5f:38:24:cb:3f:0a:de:97:1b:49:38:ae:3c:bc: c9:18:38:25:11:87:38:62:4f:b7:36:96:05:5e:21: 7c:83:e5:33:75:13:cc:f5:cc:a7:10:ee:47:b0:ce: 1d:6a:ac:17:9c:ac:09:65:18:42:52:6d:81:ef:60: ad:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:B3:CB:85:3B:85:5C:8A:B5:85:47:E2:45:A2:97:D6:12:F6:CC:17 X509v3 Authority Key Identifier: keyid:59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/538172167F5211ED8A16EF81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f801:8020::/48 2404:f801:802c::/48 Signature Algorithm: sha256WithRSAEncryption 33:cd:d3:6d:94:bd:5a:97:91:bb:ac:63:ad:52:77:58:84:26: 2f:99:4b:3f:0a:8d:f6:eb:83:e4:19:4b:86:48:d2:98:9e:04: 49:b2:c8:0b:04:af:93:17:c1:c5:42:ad:65:46:c3:bd:5a:3d: 19:f5:94:71:8c:70:83:39:5e:a0:3f:3e:4f:c4:f0:78:25:58: 85:ed:51:d4:80:da:cf:5b:2b:eb:63:85:60:3a:70:96:9d:01: 88:ef:39:8a:e9:9e:f0:ec:b8:17:fd:ac:ca:ab:cd:23:8b:f5: f1:12:fa:a6:3e:42:c4:7e:0f:ea:94:63:69:c0:61:06:ce:54: dc:8b:34:eb:35:1a:8b:25:1e:80:e6:45:f4:d5:0f:41:ff:33: aa:e2:72:d1:10:bf:d5:39:5a:4c:e6:2d:44:04:8d:c2:3c:8a: 33:99:f7:c0:95:5d:09:d3:d5:c5:1b:3a:48:90:93:fc:58:a3: 4b:74:c5:0d:14:67:0d:91:98:b1:b0:8c:aa:32:ee:41:b4:df: a7:e2:06:14:d3:d9:ff:6b:43:f0:9a:4c:48:30:ef:15:4f:ce: de:69:ba:b8:47:ac:f1:47:03:60:f1:81:b2:a2:b2:98:fe:aa: cb:60:5e:65:a1:9d:c8:94:e0:04:fd:9f:73:23:82:83:39:42: 0f:fa:bf:61 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDU5RERDMzk2OUI5ODYzQ0ZCNUExNTUyOEFBNEEzOTFB RjIzMzdGNDMwHhcNMjUxMjE3MDIyMTE5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQyMTM5Zi1jOTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkGEYSY3A09xxmJ5yEXvQYfKSwVp27P+5eVBP+Talw4v6A7mrU2WRwCplewsC DvNRxcq0MdNvnGk3HHFuQv4pGaKrHKB6SBxOVxz+lb+dNpL9pzI2Mkp8aVLLRvjp x+n3bPRw3JUb2RMmVFXzAIO+i01l9/6BLHIobN6yEcwEMOV8x7K7/xRfKniPkpnC rFHpdUMEuZ4f3LlOPqGfWCLKXsa/KHgbMeCa1sipmR2TnAd9/eNFLHOkC0hVdIn1 kBRhbQXwXzgkyz8K3pcbSTiuPLzJGDglEYc4Yk+3NpYFXiF8g+UzdRPM9cynEO5H sM4daqwXnKwJZRhCUm2B72CtbQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFezy4U7 hVyKtYVH4kWil9YS9swXMB8GA1UdIwQYMBaAFFndw5abmGPPtaFVKKpKORryM39D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi9GQkRGRkVDMDc2 ODYxMUVEQTZDQjNGNDFDNEY5QUUwMi9XZDNEbHB1WVk4LTFvVlVvcWtvNUd2SXpm ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dkM0RscHVZWTgtMW9WVW9xa281R3ZJemYwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvRkJERkZFQzA3Njg2MTFFREE2Q0IzRjQxQzRGOUFFMDIvNTM4MTcyMTY3 RjUyMTFFRDhBMTZFRjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBPgBgCADBwAkBPgBgCwwDQYJKoZIhvcNAQELBQADggEB ADPN022UvVqXkbusY61Sd1iEJi+ZSz8Kjfbrg+QZS4ZI0pieBEmyyAsEr5MXwcVC rWVGw71aPRn1lHGMcIM5XqA/Pk/E8HglWIXtUdSA2s9bK+tjhWA6cJadAYjvOYrp nvDsuBf9rMqrzSOL9fES+qY+QsR+D+qUY2nAYQbOVNyLNOs1GoslHoDmRfTVD0H/ M6rictEQv9U5WkzmLUQEjcI8ijOZ98CVXQnT1cUbOkiQk/xYo0t0xQ0UZw2RmLGw jKoy7kG036fiBhTT2f9rQ/CaTEgw7xVPzt5purhHrPFHA2DxgbKispj+qstgXmWh nciU4AT9n3MjgoM5Qg/6v2E= -----END CERTIFICATE-----Generated at Sun Dec 21 06:09:10 2025 by rpki-client