This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B40B2/DAD01D34DA3611F0A933D24C8CD3641D/78A0CEEADA3811F080F82F148DD3641D.roa File: 78A0CEEADA3811F080F82F148DD3641D.roa (raw, json) Hash identifier: bk4EeRva85W97+CiKewXLYDpwnyH7MjBoZhPwCfegxg= Subject key identifier: 7F:05:6B:1F:0F:69:8C:59:ED:3D:D2:15:D4:EA:E9:6D:AE:04:A5:34 Certificate issuer: /CN=A91B40B2/serialNumber=03928427D2F53C8FBA97FCFE3FC653A50F1659FE Certificate serial: 02 Authority key identifier: 03:92:84:27:D2:F5:3C:8F:BA:97:FC:FE:3F:C6:53:A5:0F:16:59:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5KEJ9L1PI-6l_z-P8ZTpQ8WWf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B40B2/DAD01D34DA3611F0A933D24C8CD3641D/78A0CEEADA3811F080F82F148DD3641D.roa Signing time: Tue 16 Dec 2025 04:34:13 +0000 ROA not before: Tue 16 Dec 2025 04:34:13 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 154432 IP address blocks: 2402:3f60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B40B2/DAD01D34DA3611F0A933D24C8CD3641D/A5KEJ9L1PI-6l_z-P8ZTpQ8WWf4.crl rsync://rpki.apnic.net/member_repository/A91B40B2/DAD01D34DA3611F0A933D24C8CD3641D/A5KEJ9L1PI-6l_z-P8ZTpQ8WWf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5KEJ9L1PI-6l_z-P8ZTpQ8WWf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 07:02:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B40B2, serialNumber=03928427D2F53C8FBA97FCFE3FC653A50F1659FE Validity Not Before: Dec 16 04:34:13 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6940e144-4262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f9:41:94:62:fc:9e:53:72:63:25:bc:b7:f9: ed:64:7d:8f:c9:33:ef:d2:a7:83:d5:ba:7b:3d:5e: b6:f7:41:0c:85:ca:b0:39:45:12:64:e4:69:61:40: 70:59:e6:11:56:f0:17:c0:a5:5a:96:b3:41:0b:4c: 73:c8:6d:11:ce:22:3f:ad:ea:f2:ff:8d:a8:0b:aa: 4b:1b:0d:d6:a9:0e:5c:01:b1:96:aa:20:82:03:f6: 5b:74:76:98:07:69:51:6e:79:13:3a:ad:d0:11:f8: de:6b:ec:1e:74:eb:38:b4:0d:4d:ee:36:b6:aa:b8: da:6f:91:00:2c:e7:c2:d4:92:0f:d1:00:81:a1:aa: c7:c0:9f:a0:7a:4f:2e:bd:aa:c8:10:08:a7:e0:52: 33:46:db:b0:53:29:e0:2f:bc:a5:27:81:01:bb:6f: 37:5a:0e:7d:81:8d:8e:9b:bd:fd:d7:32:f9:12:fb: d2:a6:f1:8f:3f:ad:b4:51:e9:6f:6c:88:10:52:60: 1d:e9:61:10:b7:9c:16:3f:6c:8b:a3:6f:2b:2a:e5: 79:36:04:f0:67:9f:fa:90:10:18:e5:c1:c2:4c:2e: 24:95:f3:07:ae:cb:8e:6f:d5:85:5c:06:05:fe:9d: 2d:c0:0f:74:cc:b7:24:5c:23:5a:83:f1:d2:dc:f4: b1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:05:6B:1F:0F:69:8C:59:ED:3D:D2:15:D4:EA:E9:6D:AE:04:A5:34 X509v3 Authority Key Identifier: keyid:03:92:84:27:D2:F5:3C:8F:BA:97:FC:FE:3F:C6:53:A5:0F:16:59:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B40B2/DAD01D34DA3611F0A933D24C8CD3641D/A5KEJ9L1PI-6l_z-P8ZTpQ8WWf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5KEJ9L1PI-6l_z-P8ZTpQ8WWf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B40B2/DAD01D34DA3611F0A933D24C8CD3641D/78A0CEEADA3811F080F82F148DD3641D.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:3f60::/32 Signature Algorithm: sha256WithRSAEncryption 48:50:83:75:b6:38:59:d7:e7:a3:e3:d6:35:ee:65:9b:a6:1e: 7f:80:92:19:a8:e8:3d:88:75:f0:82:8e:5e:b0:13:d2:09:b2: 46:17:c4:a5:b7:f3:75:d0:4f:01:2a:95:7a:60:c2:e8:85:16: e7:53:5b:7c:e0:71:7f:69:89:29:39:41:14:bc:87:9d:7d:d4: 3b:11:22:d6:2e:ba:c1:b9:fc:f1:2b:c4:2c:3d:3f:77:83:b2: 0c:f9:12:84:ea:d5:08:ac:15:e3:01:96:3a:52:21:3e:1c:a3: d9:14:3c:87:da:76:a0:3d:43:ec:0f:74:88:b7:a6:50:18:89: fe:18:26:e8:50:b7:38:9c:37:7d:a3:a0:6a:eb:9e:d7:26:82: 28:1f:9b:c0:28:a1:be:37:cb:ff:3e:41:1e:15:a5:b2:94:9a: 05:ae:13:21:11:aa:2a:7e:60:b2:24:c0:e7:3e:0d:86:69:f7: 7f:8a:fa:01:0c:5a:7b:6b:cf:b3:49:de:4f:fc:42:e2:dd:c0: a2:e8:de:6b:ed:6e:43:d1:ba:5f:53:3c:a9:a9:c4:57:ea:ba: d3:4e:57:78:17:e4:1a:ee:1a:7c:07:1c:03:9a:9c:0b:f9:f8: fc:c9:d0:c3:e2:d8:28:a7:70:ce:14:da:39:98:67:79:16:89: ee:f5:e7:13 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDBCMjExMC8GA1UEBRMoMDM5Mjg0MjdEMkY1M0M4RkJBOTdGQ0ZFM0ZDNjUzQTUw RjE2NTlGRTAeFw0yNTEyMTYwNDM0MTNaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NDBlMTQ0LTQyNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCe+UGUYvyeU3JjJby3+e1kfY/JM+/Sp4PVuns9Xrb3QQyFyrA5RRJk5GlhQHBZ 5hFW8BfApVqWs0ELTHPIbRHOIj+t6vL/jagLqksbDdapDlwBsZaqIIID9lt0dpgH aVFueRM6rdAR+N5r7B506zi0DU3uNraquNpvkQAs58LUkg/RAIGhqsfAn6B6Ty69 qsgQCKfgUjNG27BTKeAvvKUngQG7bzdaDn2BjY6bvf3XMvkS+9Km8Y8/rbRR6W9s iBBSYB3pYRC3nBY/bIujbysq5Xk2BPBnn/qQEBjlwcJMLiSV8weuy45v1YVcBgX+ nS3AD3TMtyRcI1qD8dLc9LFLAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUfwVrHw9p jFntPdIV1Orpba4EpTQwHwYDVR0jBBgwFoAUA5KEJ9L1PI+6l/z+P8ZTpQ8WWf4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MEIyL0RBRDAxRDM0REEz NjExRjBBOTMzRDI0QzhDRDM2NDFEL0E1S0VKOUwxUEktNmxfei1QOFpUcFE4V1dm NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQTVLRUo5TDFQSS02bF96LVA4WlRwUThXV2Y0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDBCMi9EQUQwMUQzNERBMzYxMUYwQTkzM0QyNEM4Q0QzNjQxRC83OEEwQ0VFQURB MzgxMUYwODBGODJGMTQ4REQzNjQxRC5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQCP2AwDQYJKoZIhvcNAQELBQADggEBAEhQg3W2OFnX56Pj 1jXuZZumHn+Akhmo6D2IdfCCjl6wE9IJskYXxKW383XQTwEqlXpgwuiFFudTW3zg cX9piSk5QRS8h5191DsRItYuusG5/PErxCw9P3eDsgz5EoTq1QisFeMBljpSIT4c o9kUPIfadqA9Q+wPdIi3plAYif4YJuhQtzicN32joGrrntcmgigfm8Aoob43y/8+ QR4VpbKUmgWuEyERqip+YLIkwOc+DYZp93+K+gEMWntrz7NJ3k/8QuLdwKLo3mvt bkPRul9TPKmpxFfqutNOV3gX5BruGnwHHAOanAv5+PzJ0MPi2CincM4U2jmYZ3kW ie715xM= -----END CERTIFICATE-----Generated at Fri Dec 19 18:58:59 2025 by rpki-client