This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/1BDAA63E12B211EBA631032CC4F9AE02.roa File: 1BDAA63E12B211EBA631032CC4F9AE02.roa (raw, json) Hash identifier: 5xWWm5B7YxaTci+cj4GRnwpowZUui6TAGk8vPkARCxI= Subject key identifier: C5:3F:EF:1F:01:14:2D:80:41:4A:A8:B7:E7:13:27:B3:93:98:D3:6B Certificate issuer: /CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Certificate serial: 0868 Authority key identifier: E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/1BDAA63E12B211EBA631032CC4F9AE02.roa Signing time: Tue 16 Dec 2025 21:17:29 +0000 ROA not before: Tue 16 Dec 2025 21:17:29 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 213262 IP address blocks: 2406:9dc0:30::/44 maxlen: 44 2406:9dc0:30::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 20:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2152 (0x868) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B625F, serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Validity Not Before: Dec 16 21:17:29 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6941cc69-aaf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:12:b0:a0:28:8d:32:1a:7b:fd:96:bc:41:7a: b8:ac:9d:7d:0d:26:fb:12:b4:ce:d5:c8:42:22:8c: 0a:b1:d9:0c:4e:31:7c:1a:f3:81:f6:79:cc:91:5a: cb:73:7e:b7:2e:69:2a:f0:91:a8:d8:90:fe:26:ac: 15:4b:d3:db:96:d0:6c:48:a3:0c:4a:af:34:ee:35: ef:33:0a:d6:f8:3f:09:01:cc:aa:b9:94:91:8a:ee: c2:ae:0f:5e:cb:b8:8f:60:bd:76:24:be:a7:ba:03: 1e:f3:20:df:14:8f:c0:0a:56:b1:cd:7f:12:48:48: 4c:0b:a1:72:43:05:97:0c:38:49:7d:98:3c:27:f0: e7:b0:7d:75:bd:8c:79:cb:f0:1c:78:22:3c:a5:fb: 8b:3d:dc:19:ca:ec:c1:67:00:c3:75:8d:72:e5:42: 87:f7:3b:37:d5:05:1f:6e:99:c0:22:a8:41:08:38: 3e:d2:bc:17:0a:29:f8:a1:00:2f:b3:3e:f8:0f:f2: b2:a0:7e:bd:c7:6d:24:9b:71:56:15:5a:e7:74:89: d9:4a:65:70:66:91:0a:b6:fc:20:2d:a6:bc:89:49: 2b:6f:57:42:fe:44:88:ed:5c:ea:c0:21:77:b6:68: c3:2d:69:51:9f:af:7e:e4:7e:0a:e3:a9:64:fd:fd: 14:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:3F:EF:1F:01:14:2D:80:41:4A:A8:B7:E7:13:27:B3:93:98:D3:6B X509v3 Authority Key Identifier: keyid:E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/1BDAA63E12B211EBA631032CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:9dc0:30::/44 Signature Algorithm: sha256WithRSAEncryption af:83:6e:d1:f0:c2:4b:aa:a9:bb:0a:8a:c6:75:31:8c:63:69: 1e:6f:09:d8:4a:f8:0d:5d:22:34:74:4f:23:3a:9f:7a:7e:d1: ce:b2:f4:9e:8c:4a:36:26:d5:aa:2f:48:b0:31:26:80:96:ad: 17:10:fa:fa:74:f6:82:57:20:06:d1:64:25:22:b9:f3:5d:32: fa:d3:2e:a1:f9:4d:a1:d0:49:d6:82:49:71:4a:61:d9:15:2b: 3f:46:9f:c3:be:96:b8:f6:ec:f1:1a:cf:48:bb:fe:6e:26:82: 25:63:3c:23:c4:4f:dd:7f:4d:44:ec:35:23:09:ed:b0:0b:1d: 33:9c:ed:69:17:9b:32:22:f6:d6:3f:67:35:02:c1:a0:f3:c3: 15:02:7a:4e:11:d3:9a:75:4a:f1:53:b0:6b:e1:06:f1:88:6d: 32:37:5e:ad:e2:d4:95:11:b1:24:98:cb:de:75:0e:a3:81:c8: 60:74:33:e6:f8:cb:f5:ed:03:88:d9:ec:4c:c8:da:7c:39:64: c3:49:b3:62:80:71:c1:7a:2a:0d:3b:7a:dc:64:f5:68:b9:0a: 27:0a:1e:b0:27:f1:a1:1a:46:ee:5d:60:5e:25:d7:09:0e:a9: 88:3f:50:09:d7:fc:53:83:ba:42:3f:86:b1:61:e2:ed:0f:34: 54:55:f3:36 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyNUYxMTAvBgNVBAUTKEUxNTVCODJBODdEMjhFODc3NjAyRjk5NEY4RkZEM0U3 NDRBQUY0ODAwHhcNMjUxMjE2MjExNzI5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQxY2M2OS1hYWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhKwoCiNMhp7/Za8QXq4rJ19DSb7ErTO1chCIowKsdkMTjF8GvOB9nnMkVrL c363Lmkq8JGo2JD+JqwVS9PbltBsSKMMSq807jXvMwrW+D8JAcyquZSRiu7Crg9e y7iPYL12JL6nugMe8yDfFI/AClaxzX8SSEhMC6FyQwWXDDhJfZg8J/DnsH11vYx5 y/AceCI8pfuLPdwZyuzBZwDDdY1y5UKH9zs31QUfbpnAIqhBCDg+0rwXCin4oQAv sz74D/KyoH69x20km3FWFVrndInZSmVwZpEKtvwgLaa8iUkrb1dC/kSI7VzqwCF3 tmjDLWlRn69+5H4K46lk/f0UJwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMU/7x8B FC2AQUqot+cTJ7OTmNNrMB8GA1UdIwQYMBaAFOFVuCqH0o6HdgL5lPj/0+dEqvSA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjI1Ri8yMkQ5MUY3MjEx Q0UxMUVCOEFEMDVBMkJDNEY5QUUwMi80Vlc0S29mU2pvZDJBdm1VLVBfVDUwU3E5 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWVzRLb2ZTam9kMkF2bVUtUF9UNTBTcTlJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYyNUYvMjJEOTFGNzIxMUNFMTFFQjhBRDA1QTJCQzRGOUFFMDIvMUJEQUE2M0Ux MkIyMTFFQkE2MzEwMzJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBp3AADAwDQYJKoZIhvcNAQELBQADggEBAK+DbtHwwkuq qbsKisZ1MYxjaR5vCdhK+A1dIjR0TyM6n3p+0c6y9J6MSjYm1aovSLAxJoCWrRcQ +vp09oJXIAbRZCUiufNdMvrTLqH5TaHQSdaCSXFKYdkVKz9Gn8O+lrj27PEaz0i7 /m4mgiVjPCPET91/TUTsNSMJ7bALHTOc7WkXmzIi9tY/ZzUCwaDzwxUCek4R05p1 SvFTsGvhBvGIbTI3Xq3i1JURsSSYy951DqOByGB0M+b4y/XtA4jZ7EzI2nw5ZMNJ s2KAccF6Kg07etxk9Wi5CicKHrAn8aEaRu5dYF4l1wkOqYg/UAnX/FODukI/hrFh 4u0PNFRV8zY= -----END CERTIFICATE-----Generated at Sun Dec 21 06:33:57 2025 by rpki-client