This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B39/5AEF222CD29311F08CA65D77C4F9AE02/98127914D29411F0BA72510FC4F9AE02.roa File: 98127914D29411F0BA72510FC4F9AE02.roa (raw, json) Hash identifier: cJUf464wfN4hlFnC0PZnSNNiMNLf0O5oWZ+yW9kxGh8= Subject key identifier: 8B:C4:42:F3:04:DF:7E:BF:9D:55:49:88:09:B7:04:81:72:EA:96:5A Certificate issuer: /CN=A91E9B39/serialNumber=70D8D82B221A71220EFD583D92F736175E5D02F1 Certificate serial: 02 Authority key identifier: 70:D8:D8:2B:22:1A:71:22:0E:FD:58:3D:92:F7:36:17:5E:5D:02:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNjYKyIacSIO_Vg9kvc2F15dAvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B39/5AEF222CD29311F08CA65D77C4F9AE02/98127914D29411F0BA72510FC4F9AE02.roa Signing time: Sat 06 Dec 2025 11:13:30 +0000 ROA not before: Sat 06 Dec 2025 11:13:30 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 135147 IP address blocks: 2001:df6:3ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B39/5AEF222CD29311F08CA65D77C4F9AE02/cNjYKyIacSIO_Vg9kvc2F15dAvE.crl rsync://rpki.apnic.net/member_repository/A91E9B39/5AEF222CD29311F08CA65D77C4F9AE02/cNjYKyIacSIO_Vg9kvc2F15dAvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNjYKyIacSIO_Vg9kvc2F15dAvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B39, serialNumber=70D8D82B221A71220EFD583D92F736175E5D02F1 Validity Not Before: Dec 6 11:13:30 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69340fd9-39bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b9:ab:95:ee:14:ab:3d:6e:27:2f:f5:07:dd: 78:ba:ad:4b:5c:3b:4c:f2:14:1b:3f:6e:9a:ea:18: 36:09:1e:82:f5:b7:e8:36:af:68:2c:45:ff:0c:a3: be:3a:4f:e7:7e:26:8e:15:f2:21:9b:af:a6:6a:e9: 79:b5:7a:f5:b3:4a:72:6d:21:e1:8b:00:9d:87:46: 65:e6:80:4a:b9:62:1b:b5:7d:2f:93:83:80:02:5e: 87:b2:5e:3f:03:5f:3f:ce:7e:15:38:c6:c9:34:51: 5c:01:c4:5c:40:c1:0f:20:e5:84:c4:80:3d:25:4a: 87:7b:58:6f:e3:3b:f4:9e:1a:3d:60:1e:4f:cd:e4: b0:73:01:1d:01:89:bc:0f:1e:d7:27:9f:0f:d4:72: 0e:92:40:a8:be:48:51:fa:91:a9:24:b1:cc:ce:d2: cb:2c:13:41:6e:e8:fd:8d:fe:42:d0:6c:84:e0:be: ae:0b:96:45:f4:bb:ec:95:b9:fd:57:14:3d:cc:73: 53:c1:05:4e:3c:73:63:07:a7:fa:9a:87:38:9a:46: 46:a6:39:30:9f:23:0d:42:39:44:1f:cc:a3:81:f0: fe:99:e6:ca:95:db:aa:3a:fb:70:87:64:b5:a4:d2: 07:b7:a7:30:ba:96:6c:a7:57:b0:bd:ba:1a:10:df: b0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C4:42:F3:04:DF:7E:BF:9D:55:49:88:09:B7:04:81:72:EA:96:5A X509v3 Authority Key Identifier: keyid:70:D8:D8:2B:22:1A:71:22:0E:FD:58:3D:92:F7:36:17:5E:5D:02:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B39/5AEF222CD29311F08CA65D77C4F9AE02/cNjYKyIacSIO_Vg9kvc2F15dAvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNjYKyIacSIO_Vg9kvc2F15dAvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B39/5AEF222CD29311F08CA65D77C4F9AE02/98127914D29411F0BA72510FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:3ec0::/48 Signature Algorithm: sha256WithRSAEncryption aa:c8:21:00:e1:6f:3c:b7:5c:53:9b:7f:07:2f:b7:75:42:8b: 8d:eb:bf:7d:1b:cd:b8:26:8f:47:2e:60:22:78:37:19:f0:06: 09:6c:72:8c:c1:b6:b4:1a:27:f5:18:53:44:c6:be:a1:c5:9e: 32:69:2e:a4:0e:f2:bd:63:03:0c:c6:ea:e3:27:06:bd:b8:a5: ac:c2:e1:e8:47:0b:14:b3:69:bf:f8:43:13:85:d1:4c:d3:0d: 0c:cd:b2:a3:fd:a0:bc:4c:4a:a6:04:c3:94:97:53:39:04:b5: f8:79:22:98:fa:de:e6:db:53:c5:7b:b1:aa:02:a7:9e:10:f8: 30:4c:41:d0:49:4c:18:c7:de:8e:7d:ce:73:13:ab:7c:b1:8f: 3b:48:8e:78:6e:01:6d:8b:9c:db:fa:60:5e:5c:d7:51:ac:f3: 18:23:0c:d2:f9:5d:71:2a:68:29:92:ff:92:b8:18:89:b6:98: d2:da:d1:7b:a0:25:81:30:fe:b2:bd:97:3d:67:61:43:bb:5e: d2:48:36:03:cb:b1:91:41:1d:6a:bc:28:0a:2f:b8:d9:cf:6a: 5d:a6:04:d2:e4:57:34:02:85:57:fa:a6:b4:ac:62:5e:39:fd: ce:be:7e:89:9d:3e:8c:2b:e7:12:af:0e:6b:1a:11:3d:36:28: 2f:2e:97:c3 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OUIzOTExMC8GA1UEBRMoNzBEOEQ4MkIyMjFBNzEyMjBFRkQ1ODNEOTJGNzM2MTc1 RTVEMDJGMTAeFw0yNTEyMDYxMTEzMzBaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MzQwZmQ5LTM5YmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDduauV7hSrPW4nL/UH3Xi6rUtcO0zyFBs/bprqGDYJHoL1t+g2r2gsRf8Mo746 T+d+Jo4V8iGbr6Zq6Xm1evWzSnJtIeGLAJ2HRmXmgEq5Yhu1fS+Tg4ACXoeyXj8D Xz/OfhU4xsk0UVwBxFxAwQ8g5YTEgD0lSod7WG/jO/SeGj1gHk/N5LBzAR0BibwP Htcnnw/Ucg6SQKi+SFH6kakksczO0sssE0Fu6P2N/kLQbITgvq4LlkX0u+yVuf1X FD3Mc1PBBU48c2MHp/qahziaRkamOTCfIw1COUQfzKOB8P6Z5sqV26o6+3CHZLWk 0ge3pzC6lmynV7C9uhoQ37CVAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUi8RC8wTf fr+dVUmICbcEgXLqllowHwYDVR0jBBgwFoAUcNjYKyIacSIO/Vg9kvc2F15dAvEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5QjM5LzVBRUYyMjJDRDI5 MzExRjA4Q0E2NUQ3N0M0RjlBRTAyL2NOallLeUlhY1NJT19WZzlrdmMyRjE1ZEF2 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY05qWUt5SWFjU0lPX1ZnOWt2YzJGMTVkQXZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUIzOS81QUVGMjIyQ0QyOTMxMUYwOENBNjVENzdDNEY5QUUwMi85ODEyNzkxNEQy OTQxMUYwQkE3MjUxMEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfY+wDANBgkqhkiG9w0BAQsFAAOCAQEAqsghAOFvPLdc U5t/By+3dUKLjeu/fRvNuCaPRy5gIng3GfAGCWxyjMG2tBon9RhTRMa+ocWeMmku pA7yvWMDDMbq4ycGvbilrMLh6EcLFLNpv/hDE4XRTNMNDM2yo/2gvExKpgTDlJdT OQS1+HkimPre5ttTxXuxqgKnnhD4MExB0ElMGMfejn3OcxOrfLGPO0iOeG4BbYuc 2/pgXlzXUazzGCMM0vldcSpoKZL/krgYibaY0trRe6AlgTD+sr2XPWdhQ7te0kg2 A8uxkUEdarwoCi+42c9qXaYE0uRXNAKFV/qmtKxiXjn9zr5+iZ0+jCvnEq8OaxoR PTYoLy6Xww== -----END CERTIFICATE-----Generated at Sat Dec 20 01:12:04 2025 by rpki-client