This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EDD8F8E0721A11EFBDE87567C4F9AE02.roa File: EDD8F8E0721A11EFBDE87567C4F9AE02.roa (raw, json) Hash identifier: imt76Mjk417cOBt/Soykkl2D6+Fw3xxqi7tvTBC6yVs= Subject key identifier: BA:AF:0D:95:E0:45:82:94:F7:CA:84:26:5C:01:B2:1C:49:79:CC:DB Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 01A7 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EDD8F8E0721A11EFBDE87567C4F9AE02.roa Signing time: Wed 31 Dec 2025 04:24:06 +0000 ROA not before: Wed 31 Dec 2025 04:24:06 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 132482 IP address blocks: 2001:3c8:2705::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 04:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:06 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6954a566-e685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:96:60:78:72:e1:c7:82:64:30:bd:4a:f9:a8: e6:26:d7:d8:f6:da:d3:54:9a:1e:75:3c:07:97:b9: 28:86:94:b2:bb:98:19:d7:5a:78:be:13:49:10:bf: 19:86:78:a5:f3:0b:e6:26:ba:dc:e9:da:7a:6e:c4: cd:48:e3:df:59:cf:e9:03:47:3c:57:c8:73:a0:a4: f9:94:e0:ef:ee:ee:be:f7:3e:7f:5f:87:25:58:83: 07:7f:bc:e0:de:c7:c1:83:27:2a:05:53:6c:b8:ae: 35:76:5b:f9:52:1a:5c:d0:d6:a3:3c:63:d1:3c:0c: 06:12:36:78:07:40:a2:f6:2e:54:25:33:97:f2:28: 68:aa:e8:ec:4f:9d:3a:6d:dd:bd:84:21:a7:e4:cd: f1:0c:2c:cc:b9:b3:4d:6a:eb:8b:b4:2a:47:fe:84: a1:46:3f:93:97:6a:83:31:ee:12:77:99:4b:37:37: df:ee:f4:41:79:55:c8:59:9c:81:31:72:1a:d3:65: 91:b2:63:db:17:32:b6:53:86:98:6f:14:c5:d3:b3: 64:a9:3d:49:da:84:ce:5d:20:ea:81:a1:04:db:47: fb:3b:f7:6f:57:10:29:56:d4:7b:88:d6:05:e2:f0: 84:1e:d0:81:23:28:f1:c9:65:ca:7d:a9:a9:90:af: af:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:AF:0D:95:E0:45:82:94:F7:CA:84:26:5C:01:B2:1C:49:79:CC:DB X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EDD8F8E0721A11EFBDE87567C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:3c8:2705::/48 Signature Algorithm: sha256WithRSAEncryption 8b:c9:08:bf:8d:2e:5d:13:b9:0a:5f:93:2b:ed:94:d6:9d:c1: ba:ec:d1:eb:41:05:9e:84:b1:e3:be:bd:6c:1d:b1:0f:c7:36: e9:46:13:98:e8:f6:8f:b0:01:ce:19:44:07:34:cd:a0:10:a9: 21:0c:bd:05:1c:49:5a:9e:5f:09:31:be:c1:6d:ce:8b:82:9a: 68:d3:f8:27:b3:a2:43:f1:88:13:49:97:f0:41:fd:42:15:80: ad:b3:d6:bf:19:bf:ba:60:81:59:55:98:0c:d7:3b:c1:a6:16: ae:eb:ec:3d:e1:a3:b9:09:91:a1:57:df:d4:e5:59:09:44:76: 7e:cc:aa:cc:77:dc:ba:3a:4c:f2:13:9d:02:92:73:7b:28:b2: 8b:5e:f7:d1:c6:f8:bf:d3:ff:3a:e8:69:7e:43:6f:8b:a7:6e: e5:64:c4:06:b4:02:5a:98:fa:d5:74:68:fa:06:bb:21:e2:94: 09:b2:6f:3b:01:9c:22:c0:aa:ed:83:d1:04:83:5f:e7:1c:8c: 09:73:4f:3e:41:c4:8b:70:11:6d:6a:7b:d0:47:03:54:88:6d: a4:22:e2:9d:90:8a:ce:92:35:39:dc:80:84:f4:1e:30:cc:11: 45:28:53:92:9c:7a:48:e3:4e:9e:15:c7:55:39:1b:3a:61:fc: 78:bf:35:4b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDA2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU0YTU2Ni1lNjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5ZgeHLhx4JkML1K+ajmJtfY9trTVJoedTwHl7kohpSyu5gZ11p4vhNJEL8Z hnil8wvmJrrc6dp6bsTNSOPfWc/pA0c8V8hzoKT5lODv7u6+9z5/X4clWIMHf7zg 3sfBgycqBVNsuK41dlv5Uhpc0NajPGPRPAwGEjZ4B0Ci9i5UJTOX8ihoqujsT506 bd29hCGn5M3xDCzMubNNauuLtCpH/oShRj+Tl2qDMe4Sd5lLNzff7vRBeVXIWZyB MXIa02WRsmPbFzK2U4aYbxTF07NkqT1J2oTOXSDqgaEE20f7O/dvVxApVtR7iNYF 4vCEHtCBIyjxyWXKfampkK+vmQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLqvDZXg RYKU98qEJlwBshxJeczbMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRUREOEY4RTA3 MjFBMTFFRkJERTg3NTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQPIJwUwDQYJKoZIhvcNAQELBQADggEBAIvJCL+NLl0T uQpfkyvtlNadwbrs0etBBZ6EseO+vWwdsQ/HNulGE5jo9o+wAc4ZRAc0zaAQqSEM vQUcSVqeXwkxvsFtzouCmmjT+CezokPxiBNJl/BB/UIVgK2z1r8Zv7pggVlVmAzX O8GmFq7r7D3ho7kJkaFX39TlWQlEdn7Mqsx33Lo6TPITnQKSc3sosote99HG+L/T /zroaX5Db4unbuVkxAa0AlqY+tV0aPoGuyHilAmybzsBnCLAqu2D0QSDX+ccjAlz Tz5BxItwEW1qe9BHA1SIbaQi4p2Qis6SNTncgIT0HjDMEUUoU5KcekjjTp4Vx1U5 Gzph/Hi/NUs= -----END CERTIFICATE-----Generated at Sat Jan 3 04:19:52 2026 by rpki-client