This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/6156C7F6A27311EFBF7D5E22C4F9AE02.roa File: 6156C7F6A27311EFBF7D5E22C4F9AE02.roa (raw, json) Hash identifier: ceTwvMYwQqsLHm4yTmcf0XG7NHCl6BydA2YN+2QfQZA= Subject key identifier: DB:57:05:51:49:2C:6E:87:94:65:4C:1A:ED:9A:7B:15:9C:D6:70:4E Certificate issuer: /CN=A91F7537/serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Certificate serial: D4 Authority key identifier: 21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/6156C7F6A27311EFBF7D5E22C4F9AE02.roa Signing time: Mon 29 Dec 2025 05:24:36 +0000 ROA not before: Mon 29 Dec 2025 05:24:36 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 153456 IP address blocks: 2001:df4:a040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 05:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7537, serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Validity Not Before: Dec 29 05:24:36 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69521094-d877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ea:34:b0:80:e9:d4:57:d0:a5:04:03:78:ac: 71:93:ee:b5:37:f8:f2:cd:fc:8b:a3:d1:09:46:de: 76:22:c1:18:28:d0:34:c6:35:c5:f6:30:aa:95:4b: b7:1c:dc:c2:6a:79:fd:f8:21:18:23:c5:66:9e:ff: 45:88:55:a8:bc:fd:ca:51:39:db:46:31:6a:fc:cd: 09:1a:71:5a:35:f5:a9:22:20:43:e9:36:f5:37:a4: 98:c2:6a:ee:77:0f:bf:1b:6f:1e:3e:43:9f:f3:e8: 68:5f:fb:73:6b:5f:a4:8a:db:c7:ff:a5:16:79:40: ff:37:76:25:0f:c0:52:da:ed:5f:ad:67:1a:3c:28: 13:8e:b4:b6:e9:1e:b6:2e:85:e4:52:9e:0f:09:95: 07:6b:01:45:97:98:59:9f:9a:c9:4a:af:e0:79:d2: 3c:6d:30:57:5a:4b:b3:57:d2:9e:81:33:dc:70:be: 9f:66:e8:c6:93:7d:fb:b5:c7:cb:61:a5:85:99:21: 9c:46:d7:af:ce:6d:52:46:73:f7:3c:54:10:b2:c8: 5e:a8:06:70:66:54:ab:6a:dd:5c:f5:6d:25:cc:bb: 98:71:37:da:fc:e5:88:6f:bf:b0:bb:d2:2c:31:d5: 43:8b:dd:53:98:42:84:d7:5d:97:cd:ea:bb:63:fb: 78:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:57:05:51:49:2C:6E:87:94:65:4C:1A:ED:9A:7B:15:9C:D6:70:4E X509v3 Authority Key Identifier: keyid:21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/6156C7F6A27311EFBF7D5E22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:a040::/48 Signature Algorithm: sha256WithRSAEncryption 27:8e:d0:a7:b9:d0:a1:49:8e:8e:5b:1b:db:a1:e7:3b:c8:67: 85:d6:79:d7:c7:98:a9:c5:d1:cb:26:1d:12:31:13:1f:ef:4b: 0e:fc:06:cb:8b:0f:0e:5d:22:d2:15:95:a9:59:0c:87:4e:d7: 52:42:36:2d:be:7b:fe:cd:04:ef:8c:41:f6:9b:c7:37:f8:0c: 8b:f2:bf:e2:75:08:84:c1:6d:3e:87:12:6d:6d:56:92:d4:3f: f0:50:ee:b2:6a:a9:39:e7:06:67:0f:c1:15:59:c4:08:b9:bc: e8:b8:0f:82:49:6a:85:37:19:61:fb:b3:6a:30:b6:68:6b:b3: 87:89:2d:32:52:9d:f9:5c:f2:3c:59:35:2e:d2:8b:12:ed:4f: 41:c1:5f:7f:3e:74:f3:e6:ea:0e:56:89:5a:37:2a:49:7e:d4: eb:95:9a:d3:bf:78:06:34:a0:00:bf:c6:23:c2:be:ab:ce:9d: fd:17:ed:28:d9:9e:2c:34:97:5a:80:74:75:7e:c6:2a:22:d4: bb:37:62:0f:20:6c:c0:0d:c3:52:b1:f6:cc:47:9a:66:dd:06: 08:66:ac:8d:cc:6d:3c:5e:82:be:34:81:fa:c7:7b:5b:48:7e: ba:43:e9:fc:b9:64:1f:2c:c4:fd:7b:ab:b9:0c:54:a4:85:4e: 53:5f:88:af -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Rjc1MzcxMTAvBgNVBAUTKDIxMDk0NkNEQTlERTc1REVGOTYwOTg5NUZCRjIxRUQ4 NEM3MkY0RTcwHhcNMjUxMjI5MDUyNDM2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTUyMTA5NC1kODc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+o0sIDp1FfQpQQDeKxxk+61N/jyzfyLo9EJRt52IsEYKNA0xjXF9jCqlUu3 HNzCann9+CEYI8Vmnv9FiFWovP3KUTnbRjFq/M0JGnFaNfWpIiBD6Tb1N6SYwmru dw+/G28ePkOf8+hoX/tza1+kitvH/6UWeUD/N3YlD8BS2u1frWcaPCgTjrS26R62 LoXkUp4PCZUHawFFl5hZn5rJSq/gedI8bTBXWkuzV9KegTPccL6fZujGk337tcfL YaWFmSGcRtevzm1SRnP3PFQQssheqAZwZlSrat1c9W0lzLuYcTfa/OWIb7+wu9Is MdVDi91TmEKE112Xzeq7Y/t4DwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNtXBVFJ LG6HlGVMGu2aexWc1nBOMB8GA1UdIwQYMBaAFCEJRs2p3nXe+WCYlfvyHthMcvTn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzUzNy84N0RENTQ4Q0Ey NzExMUVGQTM5MkYwNzlDNEY5QUUwMi9JUWxHemFuZWRkNzVZSmlWLV9JZTJFeHk5 T2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRbEd6YW5lZGQ3NVlKaVYtX0llMkV4eTlPYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjc1MzcvODdERDU0OENBMjcxMTFFRkEzOTJGMDc5QzRGOUFFMDIvNjE1NkM3RjZB MjczMTFFRkJGN0Q1RTIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30oEAwDQYJKoZIhvcNAQELBQADggEBACeO0Ke50KFJ jo5bG9uh5zvIZ4XWedfHmKnF0csmHRIxEx/vSw78BsuLDw5dItIVlalZDIdO11JC Ni2+e/7NBO+MQfabxzf4DIvyv+J1CITBbT6HEm1tVpLUP/BQ7rJqqTnnBmcPwRVZ xAi5vOi4D4JJaoU3GWH7s2owtmhrs4eJLTJSnflc8jxZNS7SixLtT0HBX38+dPPm 6g5WiVo3Kkl+1OuVmtO/eAY0oAC/xiPCvqvOnf0X7SjZniw0l1qAdHV+xioi1Ls3 Yg8gbMANw1Kx9sxHmmbdBghmrI3MbTxegr40gfrHe1tIfrpD6fy5ZB8sxP17q7kM VKSFTlNfiK8= -----END CERTIFICATE-----Generated at Wed Dec 31 03:36:43 2025 by rpki-client