This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8AC8/E9BE05DCB13C11EFAAF9D731C4F9AE02/9074B02EB13D11EF9EFDE433C4F9AE02.roa File: 9074B02EB13D11EF9EFDE433C4F9AE02.roa (raw, json) Hash identifier: RkmuCWxqlpHmWpOaRBLMJ2P+u9OeiwJKIwutK9CNC9M= Subject key identifier: F2:E8:B5:C5:DA:36:A5:CF:53:41:A1:AC:37:0F:17:D3:33:CB:FA:45 Certificate issuer: /CN=A91B8AC8/serialNumber=E2E6306675D5F54D207B6782A96C7AA967B1FC91 Certificate serial: CA Authority key identifier: E2:E6:30:66:75:D5:F5:4D:20:7B:67:82:A9:6C:7A:A9:67:B1:FC:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4uYwZnXV9U0ge2eCqWx6qWex_JE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8AC8/E9BE05DCB13C11EFAAF9D731C4F9AE02/9074B02EB13D11EF9EFDE433C4F9AE02.roa Signing time: Mon 15 Dec 2025 05:25:16 +0000 ROA not before: Mon 15 Dec 2025 05:25:16 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 9433 IP address blocks: 2001:4530::/32 maxlen: 32 2001:4530:1::/48 maxlen: 48 2001:4530:2::/48 maxlen: 48 2001:4530:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8AC8/E9BE05DCB13C11EFAAF9D731C4F9AE02/4uYwZnXV9U0ge2eCqWx6qWex_JE.crl rsync://rpki.apnic.net/member_repository/A91B8AC8/E9BE05DCB13C11EFAAF9D731C4F9AE02/4uYwZnXV9U0ge2eCqWx6qWex_JE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4uYwZnXV9U0ge2eCqWx6qWex_JE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8AC8, serialNumber=E2E6306675D5F54D207B6782A96C7AA967B1FC91 Validity Not Before: Dec 15 05:25:16 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=693f9bbc-384a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ef:c7:9f:a5:7b:f0:06:e5:9a:ce:e7:c8:d4: ef:7f:08:38:4d:f7:8a:b7:22:6e:46:de:9d:ae:54: 89:4c:ed:a2:05:00:f3:24:bd:14:9f:25:37:ca:43: 92:18:c6:56:0d:0e:e9:bc:86:80:b2:f3:c1:6e:e8: 38:90:67:57:f0:0e:f8:0a:25:c4:b9:2c:fb:dd:37: dc:a1:89:a9:4d:e8:41:75:49:69:79:9b:93:8e:8f: a1:67:b6:71:0b:77:01:b6:7e:77:cc:ec:45:cb:5b: 22:06:2c:c7:b4:78:a8:b9:de:af:f6:3e:1d:1f:13: fd:54:d8:42:29:7c:20:07:03:e5:42:93:43:a6:3f: 30:93:b6:5f:c6:4d:e3:40:b6:73:ac:eb:2b:7e:a7: d0:a5:05:04:d7:69:f3:f9:10:4a:11:54:b2:13:38: 25:d4:1a:b1:83:97:13:ac:d3:1a:b8:63:db:d0:99: b4:da:3e:c5:fe:3d:64:e9:99:ee:0b:65:6b:cc:b8: f4:58:eb:b7:85:94:d1:f7:db:87:08:bf:98:04:53: b7:c5:ff:8e:fd:d6:5c:2e:a2:c0:3d:e8:f0:90:91: ef:43:9d:48:e9:17:01:c0:a2:7e:73:69:56:68:d0: 7b:52:89:65:82:b2:69:82:18:1f:63:8d:bb:ab:ec: 2b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:E8:B5:C5:DA:36:A5:CF:53:41:A1:AC:37:0F:17:D3:33:CB:FA:45 X509v3 Authority Key Identifier: keyid:E2:E6:30:66:75:D5:F5:4D:20:7B:67:82:A9:6C:7A:A9:67:B1:FC:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8AC8/E9BE05DCB13C11EFAAF9D731C4F9AE02/4uYwZnXV9U0ge2eCqWx6qWex_JE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4uYwZnXV9U0ge2eCqWx6qWex_JE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8AC8/E9BE05DCB13C11EFAAF9D731C4F9AE02/9074B02EB13D11EF9EFDE433C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:4530::/32 Signature Algorithm: sha256WithRSAEncryption 49:7c:bd:79:6e:87:cb:ba:3d:b9:58:52:62:bb:89:87:83:a5: 59:f3:06:6a:4d:b6:ee:2a:b0:5f:02:8d:5e:40:02:79:54:46: ba:ed:ce:a7:f8:19:40:20:05:f2:f6:16:2a:c5:a8:22:a0:e0: 1e:a8:c3:e5:fb:c1:0e:4e:c8:00:49:5a:41:59:ef:d4:fb:39: 0a:91:4e:17:a3:d0:eb:15:fd:27:cc:fd:4a:5f:64:36:b1:78: 14:9f:35:3f:de:29:38:f9:aa:73:93:f3:15:57:0c:99:3b:33: 7e:6a:74:dc:7f:43:fd:d3:ce:6c:a6:87:84:fe:5b:94:7f:7b: cc:d6:88:dc:98:aa:86:fa:c1:68:09:ef:83:e1:a6:6f:35:4b: 5b:b3:9e:52:1d:da:e0:f3:0f:ef:4b:91:86:2f:d3:ab:b4:89: e9:eb:9a:73:f3:18:e0:7b:78:3b:78:f2:0a:50:84:64:6e:0d: 05:c1:d5:26:9a:96:e9:8f:a5:f1:c1:4e:83:66:e9:61:f6:45: ab:06:a1:6c:cf:e8:c5:c0:8f:40:a1:94:e5:51:0a:0d:57:bf: bf:7b:7f:ac:18:c9:cd:57:37:1e:75:d8:4b:2b:d4:67:11:1f: 7a:bf:54:3f:13:7e:38:41:3a:08:b3:e5:a1:e2:cf:9c:c0:13: d3:e2:e0:b7 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhBQzgxMTAvBgNVBAUTKEUyRTYzMDY2NzVENUY1NEQyMDdCNjc4MkE5NkM3QUE5 NjdCMUZDOTEwHhcNMjUxMjE1MDUyNTE2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNmOWJiYy0zODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwe/Hn6V78Ablms7nyNTvfwg4TfeKtyJuRt6drlSJTO2iBQDzJL0UnyU3ykOS GMZWDQ7pvIaAsvPBbug4kGdX8A74CiXEuSz73TfcoYmpTehBdUlpeZuTjo+hZ7Zx C3cBtn53zOxFy1siBizHtHioud6v9j4dHxP9VNhCKXwgBwPlQpNDpj8wk7Zfxk3j QLZzrOsrfqfQpQUE12nz+RBKEVSyEzgl1Bqxg5cTrNMauGPb0Jm02j7F/j1k6Znu C2VrzLj0WOu3hZTR99uHCL+YBFO3xf+O/dZcLqLAPejwkJHvQ51I6RcBwKJ+c2lW aNB7UollgrJpghgfY427q+wryQIDAQABo4ICljCCApIwHQYDVR0OBBYEFPLotcXa NqXPU0GhrDcPF9Mzy/pFMB8GA1UdIwQYMBaAFOLmMGZ11fVNIHtngqlseqlnsfyR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEFDOC9FOUJFMDVEQ0Ix M0MxMUVGQUFGOUQ3MzFDNEY5QUUwMi80dVl3Wm5YVjlVMGdlMmVDcVd4NnFXZXhf SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1WXdablhWOVUwZ2UyZUNxV3g2cVdleF9KRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhBQzgvRTlCRTA1RENCMTNDMTFFRkFBRjlENzMxQzRGOUFFMDIvOTA3NEIwMkVC MTNEMTFFRjlFRkRFNDMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAgAUUwMA0GCSqGSIb3DQEBCwUAA4IBAQBJfL15bofLuj25 WFJiu4mHg6VZ8wZqTbbuKrBfAo1eQAJ5VEa67c6n+BlAIAXy9hYqxagioOAeqMPl +8EOTsgASVpBWe/U+zkKkU4Xo9DrFf0nzP1KX2Q2sXgUnzU/3ik4+apzk/MVVwyZ OzN+anTcf0P9085spoeE/luUf3vM1ojcmKqG+sFoCe+D4aZvNUtbs55SHdrg8w/v S5GGL9OrtInp65pz8xjge3g7ePIKUIRkbg0FwdUmmpbpj6XxwU6DZulh9kWrBqFs z+jFwI9AoZTlUQoNV7+/e3+sGMnNVzceddhLK9RnER96v1Q/E344QToIs+Wh4s+c wBPT4uC3 -----END CERTIFICATE-----Generated at Sat Dec 20 01:44:42 2025 by rpki-client