This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/02BA60CCDADF11F08398647877D3641D.roa File: 02BA60CCDADF11F08398647877D3641D.roa (raw, json) Hash identifier: hf/xfhsCkjRD1riGUd+zheh13EXWwTkwTc7MH2aa3Mo= Subject key identifier: 58:0F:C1:18:CE:C2:03:5E:E8:BD:D5:A7:83:76:A8:AB:8D:3E:F3:1C Certificate issuer: /CN=A91CE9D6/serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Certificate serial: 0A70 Authority key identifier: 13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/02BA60CCDADF11F08398647877D3641D.roa Signing time: Wed 17 Dec 2025 00:26:21 +0000 ROA not before: Wed 17 Dec 2025 00:26:21 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138398 IP address blocks: 2001:df0:c480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2672 (0xa70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9D6, serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Validity Not Before: Dec 17 00:26:21 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6941f8ad-146b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:2f:0c:2a:55:22:fb:ec:f2:07:b7:b3:18:af: d9:ae:11:fc:74:e1:0e:3b:e7:02:fb:ef:91:68:d6: 29:1f:36:35:c8:36:a4:4b:f8:51:15:f7:ad:50:70: dc:52:f9:32:c8:d2:d5:9c:1d:ad:4b:ec:5b:cc:ef: af:c8:d6:95:cb:d4:a8:77:ef:eb:74:e2:da:25:97: 7f:82:35:1a:8b:b2:38:93:e4:ec:59:b5:ec:cd:3a: ff:42:85:7c:43:2c:ca:ec:a2:d5:a5:dd:8c:f3:24: 18:34:32:49:34:69:1e:e3:e0:5f:98:ab:5a:3c:9a: 38:69:14:6a:19:c4:0a:98:27:a8:40:21:07:13:dc: 25:ea:00:11:df:e0:f3:6a:1f:7e:85:d9:af:fa:1c: 8c:26:fb:08:92:ab:a9:23:58:c6:6a:21:47:19:ad: de:c2:91:86:36:43:36:0d:d3:3e:e8:7b:b0:e8:1c: ed:2f:50:3f:fd:fb:19:5f:a0:c4:80:02:f6:30:98: 66:2d:33:1d:b4:5d:32:6b:4d:7b:d6:c7:6c:a5:02: 25:c6:d1:18:d1:9b:d2:f6:dc:f2:4d:de:3d:52:a1: 42:cb:32:54:c2:87:be:0d:b5:8f:d9:a7:ff:ac:7d: a0:45:da:15:ae:84:32:de:8a:7f:c1:d1:1d:62:cc: 85:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:0F:C1:18:CE:C2:03:5E:E8:BD:D5:A7:83:76:A8:AB:8D:3E:F3:1C X509v3 Authority Key Identifier: keyid:13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/02BA60CCDADF11F08398647877D3641D.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:c480::/48 Signature Algorithm: sha256WithRSAEncryption ac:a1:d8:f2:c6:73:9b:dd:f0:5d:b9:5d:87:7e:32:5a:a6:9b: 37:84:6a:dc:d7:0b:33:c4:a6:7b:87:ed:49:9c:01:6a:62:fe: 95:cf:75:bd:d5:b5:29:eb:33:2e:df:ea:f8:b8:cc:64:9d:20: ab:13:21:83:10:64:b1:8f:a3:8f:c3:c2:c0:c6:17:08:cf:b6: 4e:4e:ed:8a:d3:5b:70:1c:91:43:c5:52:68:d3:92:8a:df:4e: 41:c3:48:00:f8:36:e3:41:da:be:d3:f6:09:cf:8b:4f:db:de: df:44:ff:85:46:57:12:ec:8f:fc:66:74:c9:3c:43:8d:15:b0: cc:91:c2:55:78:90:85:8d:f7:04:7e:0d:86:71:0e:c7:a4:59: d8:c0:78:6d:5d:27:06:5b:43:58:0a:4b:86:7c:92:0d:53:18: bd:12:38:fb:15:da:ba:7d:82:bc:9c:01:ae:9c:be:7e:08:af: cb:bd:4a:e4:e5:18:fa:5c:ee:bf:a8:77:d9:09:0a:a3:0a:14: 5e:eb:1c:04:79:3a:0e:6a:a5:b8:11:af:ee:29:c1:36:92:ed: f3:b8:28:2a:3c:19:70:ce:12:cf:09:d8:18:3f:2c:ef:ff:a8: 70:d0:89:94:64:a7:b3:20:73:d2:9e:ee:3c:7e:57:c5:f7:01: 21:24:eb:90 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RDYxMTAvBgNVBAUTKDEzNjc0MUJEOUU4NzBGMDZFQ0U1Q0IzNTVCOEM3NTcx Q0M5NkJBNzQwHhcNMjUxMjE3MDAyNjIxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQxZjhhZC0xNDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmC8MKlUi++zyB7ezGK/ZrhH8dOEOO+cC+++RaNYpHzY1yDakS/hRFfetUHDc UvkyyNLVnB2tS+xbzO+vyNaVy9Sod+/rdOLaJZd/gjUai7I4k+TsWbXszTr/QoV8 QyzK7KLVpd2M8yQYNDJJNGke4+BfmKtaPJo4aRRqGcQKmCeoQCEHE9wl6gAR3+Dz ah9+hdmv+hyMJvsIkqupI1jGaiFHGa3ewpGGNkM2DdM+6Huw6BztL1A//fsZX6DE gAL2MJhmLTMdtF0ya0171sdspQIlxtEY0ZvS9tzyTd49UqFCyzJUwoe+DbWP2af/ rH2gRdoVroQy3op/wdEdYsyFEwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFgPwRjO wgNe6L3Vp4N2qKuNPvMcMB8GA1UdIwQYMBaAFBNnQb2ehw8G7OXLNVuMdXHMlrp0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlENi85RTY2RjUxMjdB NTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3YnM1Y3MxVzR4MWNjeVd1 blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UyZEJ2WjZIRHdiczVjczFXNHgxY2N5V3VuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5RDYvOUU2NkY1MTI3QTU1MTFFQUJGQkU5NDdBQzRGOUFFMDIvMDJCQTYwQ0NE QURGMTFGMDgzOTg2NDc4NzdEMzY0MUQucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wxIAwDQYJKoZIhvcNAQELBQADggEBAKyh2PLGc5vd 8F25XYd+MlqmmzeEatzXCzPEpnuH7UmcAWpi/pXPdb3VtSnrMy7f6vi4zGSdIKsT IYMQZLGPo4/DwsDGFwjPtk5O7YrTW3AckUPFUmjTkorfTkHDSAD4NuNB2r7T9gnP i0/b3t9E/4VGVxLsj/xmdMk8Q40VsMyRwlV4kIWN9wR+DYZxDsekWdjAeG1dJwZb Q1gKS4Z8kg1TGL0SOPsV2rp9grycAa6cvn4Ir8u9SuTlGPpc7r+od9kJCqMKFF7r HAR5Og5qpbgRr+4pwTaS7fO4KCo8GXDOEs8J2Bg/LO//qHDQiZRkp7Mgc9Ke7jx+ V8X3ASEk65A= -----END CERTIFICATE-----Generated at Sat Dec 20 13:00:38 2025 by rpki-client