This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/642A8EA2887911ECAFCDDE1FC4F9AE02.roa File: 642A8EA2887911ECAFCDDE1FC4F9AE02.roa (raw, json) Hash identifier: EY9KwkGQCsbs1MqQbJgggG8QXozMeXajqta7rUD1mjY= Subject key identifier: 63:B7:5B:A0:AF:1E:35:77:00:D7:26:F7:64:A9:5E:59:D4:11:4E:CF Certificate issuer: /CN=A9112DB1/serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5 Certificate serial: 04B0 Authority key identifier: 22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/642A8EA2887911ECAFCDDE1FC4F9AE02.roa Signing time: Fri 28 Nov 2025 22:55:27 +0000 ROA not before: Fri 28 Nov 2025 22:55:27 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 147293 IP address blocks: 2001:df0:64c0::/48 maxlen: 48 2400:8a20:120::/48 maxlen: 48 2400:8a20:121::/48 maxlen: 48 2400:8a20:122::/48 maxlen: 48 2400:8a20:130::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1200 (0x4b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112DB1, serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5 Validity Not Before: Nov 28 22:55:27 2025 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=692a285e-2f5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f1:e6:6c:82:ed:c1:27:07:63:a7:c3:ce:4d: 0f:bf:b8:6c:25:da:5e:b2:f4:97:6e:10:c6:38:ad: 0a:4f:94:35:80:77:05:61:5e:d0:5c:51:b2:20:2c: 1a:b5:c4:3d:36:1d:f0:b9:4a:49:84:48:8a:d4:99: e0:b4:d9:77:a6:3f:30:8e:70:bd:f9:ee:2e:83:42: 90:03:73:af:04:e6:46:ae:84:03:15:0f:65:b9:c9: 0f:58:34:31:51:73:2a:9e:51:b5:20:d7:61:2d:09: 34:98:1c:b9:79:24:87:2a:bd:69:66:68:27:ea:0e: 07:af:b3:33:e0:4b:48:32:9e:8f:72:95:d3:36:46: 13:8d:f9:f9:d6:fb:c7:21:e9:46:a7:72:9e:0b:91: aa:c4:61:b7:7a:b6:b6:36:12:9d:cc:91:17:d0:ef: 53:0a:ad:72:f3:12:7e:8e:0b:44:9f:8b:26:67:20: cc:09:fb:18:ef:b9:c3:77:dc:be:5c:c9:01:b7:0e: 1b:ff:c3:f7:c5:18:de:f0:f2:19:63:e2:1c:91:41: 30:42:17:99:d4:65:e2:e8:0c:17:04:eb:bb:ed:65: 24:37:7b:c6:94:ae:e5:32:db:a5:fd:5c:80:3a:ea: 0f:50:18:cf:99:e1:88:87:d0:6c:93:eb:bb:62:f8: d3:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B7:5B:A0:AF:1E:35:77:00:D7:26:F7:64:A9:5E:59:D4:11:4E:CF X509v3 Authority Key Identifier: keyid:22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/642A8EA2887911ECAFCDDE1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:64c0::/48 2400:8a20:120::-2400:8a20:122:ffff:ffff:ffff:ffff:ffff 2400:8a20:130::/48 Signature Algorithm: sha256WithRSAEncryption 6c:ca:28:f8:ad:3e:cd:9c:71:f5:b0:a2:8a:e9:75:e3:fb:6c: 8c:31:e2:eb:92:4e:26:bb:43:f6:0a:88:a4:c3:c3:d9:d5:01: 16:39:a6:f4:12:79:13:0d:d0:c9:26:33:8d:39:88:e1:2f:59: 66:50:cd:17:15:8c:61:8a:df:cd:92:95:c6:83:b9:7c:b9:65: ee:b5:71:3a:31:94:7f:65:34:7e:77:ec:f7:c8:e6:01:6d:79: b6:42:c5:c5:a0:fd:05:bf:c5:1a:83:10:23:1f:8b:58:e5:2d: f4:88:77:b1:e7:c2:d1:86:04:81:33:c2:d6:9a:cb:5c:80:b0: 7b:be:92:db:7b:29:da:87:e9:2e:78:49:f0:5d:ad:23:57:bb: f3:98:ec:f5:22:ee:ef:3b:cf:46:13:43:5c:68:7a:fa:29:3b: fe:4d:ec:13:c7:86:0d:27:f5:ec:d7:0c:ca:2a:bc:d4:ef:e7: ec:92:bd:5b:92:92:65:33:2c:7a:15:45:42:b7:b0:19:80:70: 36:b6:35:92:54:0d:91:f6:07:b0:fd:c6:e8:4d:39:30:e9:46: 6b:33:d2:e1:ea:0b:8b:e3:89:9a:75:ca:df:f5:78:11:d2:42: ad:03:c4:85:ff:bb:41:69:f7:4c:11:c9:4f:13:31:a2:77:27: 4a:2a:bd:b2 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICBLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJEQjExMTAvBgNVBAUTKDIyRURGOUVCNjYwODdGRDBFOTgxN0FFNzM2QzAwMzlE MTg4MDg4RDUwHhcNMjUxMTI4MjI1NTI3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJhMjg1ZS0yZjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPHmbILtwScHY6fDzk0Pv7hsJdpesvSXbhDGOK0KT5Q1gHcFYV7QXFGyICwa tcQ9Nh3wuUpJhEiK1JngtNl3pj8wjnC9+e4ug0KQA3OvBOZGroQDFQ9luckPWDQx UXMqnlG1INdhLQk0mBy5eSSHKr1pZmgn6g4Hr7Mz4EtIMp6PcpXTNkYTjfn51vvH IelGp3KeC5GqxGG3era2NhKdzJEX0O9TCq1y8xJ+jgtEn4smZyDMCfsY77nDd9y+ XMkBtw4b/8P3xRje8PIZY+IckUEwQheZ1GXi6AwXBOu77WUkN3vGlK7lMtul/VyA OuoPUBjPmeGIh9Bsk+u7YvjTdQIDAQABo4ICtTCCArEwHQYDVR0OBBYEFGO3W6Cv HjV3ANcm92SpXlnUEU7PMB8GA1UdIwQYMBaAFCLt+etmCH/Q6YF65zbAA50YgIjV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkRCMS8zRkE2OTIwMDgz QzAxMUVDQjU0QjM5N0ZDNEY5QUUwMi9JdTM1NjJZSWY5RHBnWHJuTnNBRG5SaUFp TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l1MzU2MllJZjlEcGdYcm5Oc0FEblJpQWlOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTJEQjEvM0ZBNjkyMDA4M0MwMTFFQ0I1NEIzOTdGQzRGOUFFMDIvNjQyQThFQTI4 ODc5MTFFQ0FGQ0RERTFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgACMCYDBwAgAQ3wZMAwEgMHBSQAiiABIAMHACQAiiABIgMHACQAiiAB MDANBgkqhkiG9w0BAQsFAAOCAQEAbMoo+K0+zZxx9bCiiul14/tsjDHi65JOJrtD 9gqIpMPD2dUBFjmm9BJ5Ew3QySYzjTmI4S9ZZlDNFxWMYYrfzZKVxoO5fLll7rVx OjGUf2U0fnfs98jmAW15tkLFxaD9Bb/FGoMQIx+LWOUt9Ih3sefC0YYEgTPC1prL XICwe76S23sp2ofpLnhJ8F2tI1e785js9SLu7zvPRhNDXGh6+ik7/k3sE8eGDSf1 7NcMyiq81O/n7JK9W5KSZTMsehVFQrewGYBwNrY1klQNkfYHsP3G6E05MOlGazPS 4eoLi+OJmnXK3/V4EdJCrQPEhf+7QWn3TBHJTxMxoncnSiq9sg== -----END CERTIFICATE-----Generated at Sat Dec 6 13:27:33 2025 by rpki-client