This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/2235EF78F12011F0BFBF3F154E6F56BC.roa File: 2235EF78F12011F0BFBF3F154E6F56BC.roa (raw, json) Hash identifier: fBLKl5jgTUMvzH803oj5W057wVg5s8TT2eU4MMmeh6U= Subject key identifier: 31:80:DA:73:A0:A3:FB:9A:03:79:EC:04:93:36:ED:1E:07:23:3A:49 Certificate issuer: /CN=A9116B0C/serialNumber=D5B16768914A80C93124629610CC40502AAED0E9 Certificate serial: 04 Authority key identifier: D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/2235EF78F12011F0BFBF3F154E6F56BC.roa Signing time: Wed 14 Jan 2026 08:07:56 +0000 ROA not before: Wed 14 Jan 2026 08:07:56 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 134186 IP address blocks: 163.61.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 07:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B0C, serialNumber=D5B16768914A80C93124629610CC40502AAED0E9 Validity Not Before: Jan 14 08:07:56 2026 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69674edc-3d78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f0:e3:05:96:75:26:f9:60:02:9f:1d:9e:dc: f2:aa:3c:d7:09:11:c1:3e:0d:dc:ab:9b:00:85:44: 65:4e:9e:e4:06:63:e0:e8:49:25:46:7c:52:6c:95: b1:e7:17:ab:d7:b0:cc:ee:8d:7e:5d:e3:d9:00:2d: 93:29:aa:f7:2b:40:37:5c:fa:c9:82:a8:15:b5:01: 6d:27:3c:d6:77:14:a8:ae:84:a1:09:49:b5:02:b3: 30:ba:93:84:f1:e6:74:b2:77:49:be:3c:a7:ca:7c: bb:f2:8e:22:9f:e8:67:83:97:df:48:4f:c5:8b:c5: 00:83:5d:75:dc:77:83:bd:4f:d3:cb:70:5d:ca:37: 32:13:80:51:29:96:78:9e:b6:19:82:e3:ef:ec:d9: e5:ee:69:6a:ea:9a:14:e2:38:97:a3:a4:5f:18:f3: 85:52:13:a3:b7:96:a1:b2:bb:a1:4e:93:9d:21:80: 4a:41:c9:ed:79:39:95:58:08:a9:06:94:71:f2:f6: 93:7e:39:75:41:0f:44:cb:9b:d9:86:2d:3c:d7:67: 20:f4:c9:79:be:85:bf:50:8f:a3:a2:11:ea:1c:85: 01:89:2b:25:6a:55:ca:77:e9:d6:fc:5c:40:92:2f: 35:a4:2e:1a:25:8c:be:a0:9e:f0:45:16:d5:ef:22: ef:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:80:DA:73:A0:A3:FB:9A:03:79:EC:04:93:36:ED:1E:07:23:3A:49 X509v3 Authority Key Identifier: keyid:D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/2235EF78F12011F0BFBF3F154E6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.153.0/24 Signature Algorithm: sha256WithRSAEncryption 87:60:b1:2d:75:a1:d3:cc:2d:00:1e:18:a9:02:b5:aa:64:86: 9c:d7:92:93:8c:59:14:2d:82:ec:db:5a:0b:dc:e9:c1:0a:fd: f1:34:6b:1b:28:f8:40:c8:9f:cd:9f:51:40:59:5f:74:99:93: 55:cf:22:6c:19:3f:b0:8d:9e:1e:c9:6b:2b:13:79:70:23:52: 1b:a1:29:7c:b4:78:38:c0:38:4b:7c:06:09:73:b8:c6:a3:fe: 84:2d:fa:bf:ae:d7:71:d8:65:02:8a:92:7d:af:15:4f:a2:4c: d7:05:27:33:31:69:ed:2f:a6:91:2b:9f:f0:6a:d6:05:3a:6a: 36:32:ca:14:ed:3c:9a:8f:8f:7e:2c:a3:9e:a7:68:f6:43:6a: ca:29:9e:d5:79:cd:63:f6:5c:5a:d7:0b:7f:08:db:4f:02:df: 91:c9:01:bd:b0:53:9c:51:8c:59:8c:75:d3:48:d3:d2:3e:9b: b2:7d:bf:18:0c:04:6e:8a:22:cd:99:4f:9e:b2:f8:dc:33:2c: f3:d2:ad:bd:28:d0:31:00:3b:fe:7a:49:a7:72:d5:8d:a1:65: ed:bf:32:fb:3c:dc:cc:fa:95:64:31:a3:7a:ba:dc:5f:71:d8: 08:92:4a:ea:7a:58:c6:dc:6a:3a:3f:55:cc:e5:04:3a:28:69: 06:73:db:4e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTEx NkIwQzExMC8GA1UEBRMoRDVCMTY3Njg5MTRBODBDOTMxMjQ2Mjk2MTBDQzQwNTAy QUFFRDBFOTAeFw0yNjAxMTQwODA3NTZaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5Njc0ZWRjLTNkNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCr8OMFlnUm+WACnx2e3PKqPNcJEcE+DdyrmwCFRGVOnuQGY+DoSSVGfFJslbHn F6vXsMzujX5d49kALZMpqvcrQDdc+smCqBW1AW0nPNZ3FKiuhKEJSbUCszC6k4Tx 5nSyd0m+PKfKfLvyjiKf6GeDl99IT8WLxQCDXXXcd4O9T9PLcF3KNzITgFEplnie thmC4+/s2eXuaWrqmhTiOJejpF8Y84VSE6O3lqGyu6FOk50hgEpBye15OZVYCKkG lHHy9pN+OXVBD0TLm9mGLTzXZyD0yXm+hb9Qj6OiEeochQGJKyVqVcp36db8XECS LzWkLholjL6gnvBFFtXvIu8bAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUMYDac6Cj +5oDeewEkzbtHgcjOkkwHwYDVR0jBBgwFoAU1bFnaJFKgMkxJGKWEMxAUCqu0Okw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2QjBDL0I2MTM4NkU2RjEx QzExRjBBMzhGMjg0NzRENkY1NkJDLzFiRm5hSkZLZ01reEpHS1dFTXhBVUNxdTBP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMWJGbmFKRktnTWt4SkdLV0VNeEFVQ3F1ME9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkIwQy9CNjEzODZFNkYxMUMxMUYwQTM4RjI4NDc0RDZGNTZCQy8yMjM1RUY3OEYx MjAxMUYwQkZCRjNGMTU0RTZGNTZCQy5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM9mTANBgkqhkiG9w0BAQsFAAOCAQEAh2CxLXWh08wtAB4Y qQK1qmSGnNeSk4xZFC2C7NtaC9zpwQr98TRrGyj4QMifzZ9RQFlfdJmTVc8ibBk/ sI2eHslrKxN5cCNSG6EpfLR4OMA4S3wGCXO4xqP+hC36v67XcdhlAoqSfa8VT6JM 1wUnMzFp7S+mkSuf8GrWBTpqNjLKFO08mo+Pfiyjnqdo9kNqyime1XnNY/ZcWtcL fwjbTwLfkckBvbBTnFGMWYx100jT0j6bsn2/GAwEbooizZlPnrL43DMs89KtvSjQ MQA7/npJp3LVjaFl7b8y+zzczPqVZDGjerrcX3HYCJJK6npYxtxqOj9VzOUEOihp BnPbTg== -----END CERTIFICATE-----Generated at Sun Jan 25 07:37:44 2026 by rpki-client