This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/321730E4F5D211F0882E5659486F56BC.roa File: 321730E4F5D211F0882E5659486F56BC.roa (raw, json) Hash identifier: Hhg8Ggs1fdizlqeoLRDgynmLJgt9f+jSTtC9+1Y44fs= Subject key identifier: 86:F4:4C:6E:88:1C:A2:4B:B7:37:7E:FD:2E:5F:7B:14:65:06:04:6F Certificate issuer: /CN=A91174DD/serialNumber=19BE1321188F0976D32E836D1AFBA546276657E3 Certificate serial: 02 Authority key identifier: 19:BE:13:21:18:8F:09:76:D3:2E:83:6D:1A:FB:A5:46:27:66:57:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gb4TIRiPCXbTLoNtGvulRidmV-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/321730E4F5D211F0882E5659486F56BC.roa Signing time: Tue 20 Jan 2026 07:32:38 +0000 ROA not before: Tue 20 Jan 2026 07:32:38 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 142177 IP address blocks: 192.42.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/Gb4TIRiPCXbTLoNtGvulRidmV-M.crl rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/Gb4TIRiPCXbTLoNtGvulRidmV-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gb4TIRiPCXbTLoNtGvulRidmV-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 07:11:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91174DD, serialNumber=19BE1321188F0976D32E836D1AFBA546276657E3 Validity Not Before: Jan 20 07:32:38 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=696f2f96-b15a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c2:91:82:65:db:2d:f8:97:b7:82:be:3a:34: a5:75:69:e3:a5:1b:d9:24:29:8f:c8:0e:fa:42:42: 79:d7:95:c2:37:f6:0c:43:08:98:31:d4:fb:9f:f7: 3c:c6:a4:f6:c0:72:c1:96:7e:d2:f4:29:72:22:d8: ab:c4:65:0e:96:12:fb:e4:2f:27:87:59:5a:89:3d: 53:92:1f:b5:41:59:8d:67:80:e1:50:fa:6e:03:a1: f7:d6:44:a4:57:c3:9e:b8:01:5a:ee:7c:3b:f2:e9: da:13:99:6b:3d:0f:56:d6:49:39:68:6b:a4:cd:df: 50:20:39:82:a4:44:fe:68:03:6f:0b:69:55:8d:00: 50:b8:ee:a9:60:0d:fa:e2:86:e3:65:ab:2d:7e:97: 15:ed:37:47:20:1f:4b:41:32:e2:b9:90:a4:5d:de: 09:93:c3:df:79:91:1a:b7:44:9f:77:d6:92:b9:b5: ed:71:d4:dd:6d:d7:38:62:85:af:e2:71:87:89:8b: 97:27:21:71:0d:6d:3e:9d:1d:5c:16:2b:32:04:68: 8b:57:47:fb:5b:83:80:10:0d:63:4c:37:c9:6d:04: c8:f3:24:ca:0e:a9:09:5b:4f:b1:a8:b4:8a:0c:f6: 8b:99:19:37:f7:e4:ac:76:91:c8:7d:6f:06:a6:b1: 26:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F4:4C:6E:88:1C:A2:4B:B7:37:7E:FD:2E:5F:7B:14:65:06:04:6F X509v3 Authority Key Identifier: keyid:19:BE:13:21:18:8F:09:76:D3:2E:83:6D:1A:FB:A5:46:27:66:57:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/Gb4TIRiPCXbTLoNtGvulRidmV-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gb4TIRiPCXbTLoNtGvulRidmV-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/321730E4F5D211F0882E5659486F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.42.86.0/24 Signature Algorithm: sha256WithRSAEncryption 78:c1:de:2a:1b:b8:d7:83:16:a6:95:34:46:c2:b1:2a:6a:74: 23:5c:3e:47:4b:59:de:5f:c4:25:c6:8e:66:bc:79:ed:1f:c9: eb:f1:d6:a1:49:f0:5c:4c:2b:b6:10:0e:db:98:d7:91:7f:ad: f3:dd:ee:c8:e4:6f:ca:3c:ae:bf:d4:1d:81:59:3a:93:39:71: 26:4f:2c:74:f6:51:43:ca:7a:a5:ab:19:ab:12:ea:7a:c9:2b: f7:55:10:3d:d4:14:ea:19:79:b2:70:b9:48:13:bc:a7:1a:85: 0f:10:16:2f:76:e0:75:b7:52:6f:61:ea:ff:0a:a2:86:da:f3: fc:2b:59:6f:fb:3e:c0:0c:b4:2f:31:06:0d:ca:62:2b:bb:0f: 0f:cc:88:30:b9:1c:91:2b:ef:ed:eb:b7:89:76:50:dc:22:3f: 32:69:ac:c8:42:b9:fa:61:10:1d:a0:8b:29:3e:13:e8:de:ed: 77:eb:06:a5:9a:eb:66:de:d6:83:e4:57:c5:59:59:14:26:bd: cc:9c:37:1c:24:b4:37:3a:11:c5:39:d3:54:a6:8a:ce:97:5b: af:ce:c6:dc:5c:30:2d:8b:a7:6c:00:46:f5:aa:08:1d:14:7a: c6:a1:ed:7a:e2:3e:5c:a3:dd:09:94:18:d4:ed:bc:f0:fd:68: 08:99:df:46 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTEx NzRERDExMC8GA1UEBRMoMTlCRTEzMjExODhGMDk3NkQzMkU4MzZEMUFGQkE1NDYy NzY2NTdFMzAeFw0yNjAxMjAwNzMyMzhaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NmYyZjk2LWIxNWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdwpGCZdst+Je3gr46NKV1aeOlG9kkKY/IDvpCQnnXlcI39gxDCJgx1Puf9zzG pPbAcsGWftL0KXIi2KvEZQ6WEvvkLyeHWVqJPVOSH7VBWY1ngOFQ+m4DoffWRKRX w564AVrufDvy6doTmWs9D1bWSTloa6TN31AgOYKkRP5oA28LaVWNAFC47qlgDfri huNlqy1+lxXtN0cgH0tBMuK5kKRd3gmTw995kRq3RJ931pK5te1x1N1t1zhiha/i cYeJi5cnIXENbT6dHVwWKzIEaItXR/tbg4AQDWNMN8ltBMjzJMoOqQlbT7GotIoM 9ouZGTf35Kx2kch9bwamsSbDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhvRMbogc oku3N379Ll97FGUGBG8wHwYDVR0jBBgwFoAUGb4TIRiPCXbTLoNtGvulRidmV+Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NEREL0Q5NDc2MzE4RjVE MDExRjBBMDY1MTdEMjQ3NkY1NkJDL0diNFRJUmlQQ1hiVExvTnRHdnVsUmlkbVYt TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2I0VElSaVBDWGJUTG9OdEd2dWxSaWRtVi1NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzRERC9EOTQ3NjMxOEY1RDAxMUYwQTA2NTE3RDI0NzZGNTZCQy8zMjE3MzBFNEY1 RDIxMUYwODgyRTU2NTk0ODZGNTZCQy5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMAqVjANBgkqhkiG9w0BAQsFAAOCAQEAeMHeKhu414MWppU0 RsKxKmp0I1w+R0tZ3l/EJcaOZrx57R/J6/HWoUnwXEwrthAO25jXkX+t893uyORv yjyuv9QdgVk6kzlxJk8sdPZRQ8p6pasZqxLqeskr91UQPdQU6hl5snC5SBO8pxqF DxAWL3bgdbdSb2Hq/wqihtrz/CtZb/s+wAy0LzEGDcpiK7sPD8yIMLkckSvv7eu3 iXZQ3CI/MmmsyEK5+mEQHaCLKT4T6N7td+sGpZrrZt7Wg+RXxVlZFCa9zJw3HCS0 NzoRxTnTVKaKzpdbr87G3FwwLYunbABG9aoIHRR6xqHteuI+XKPdCZQY1O288P1o CJnfRg== -----END CERTIFICATE-----Generated at Sun Jan 25 17:41:40 2026 by rpki-client