This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/1AC9199AD3CB11EF84052053C4F9AE02.roa File: 1AC9199AD3CB11EF84052053C4F9AE02.roa (raw, json) Hash identifier: OQTqW8pXrnZ75U98rmAzOs9tNk2NfK8jTdXd75zvE4c= Subject key identifier: 33:8D:A0:AB:36:28:8D:26:6F:69:DE:1E:60:EA:0D:7D:A0:49:88:35 Certificate issuer: /CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Certificate serial: 232D Authority key identifier: 69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/1AC9199AD3CB11EF84052053C4F9AE02.roa Signing time: Thu 08 Jan 2026 05:10:05 +0000 ROA not before: Thu 08 Jan 2026 05:10:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141177 IP address blocks: 43.250.48.0/22 maxlen: 24 45.64.114.0/23 maxlen: 23 45.64.114.0/24 maxlen: 24 45.64.115.0/24 maxlen: 24 2404:7c00:2::/48 maxlen: 48 2404:7c00:10::/44 maxlen: 44 2404:7c00:20::/44 maxlen: 44 2404:7c00:20::/48 maxlen: 48 2404:7c00:39::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:40:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9005 (0x232d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119333, serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Validity Not Before: Jan 8 05:10:05 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=695f3c2c-ddb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:04:ee:33:70:7b:ae:16:87:c4:e5:c6:f2:75: c8:3d:2f:1c:ea:c3:e2:c9:a3:b8:98:ee:05:4f:01: 1f:32:c4:cf:fa:08:00:18:ff:31:b7:e9:39:72:da: e9:18:45:a7:8d:4e:fd:1f:c4:54:a9:47:a2:d7:c3: 75:f5:68:d6:b8:ff:21:41:9a:5f:da:a5:cf:c0:44: 3d:ca:67:11:0f:d7:aa:a0:d4:2f:a0:06:44:98:0c: 86:fa:56:55:60:24:b8:02:52:a2:90:0b:9d:60:50: cb:a6:c4:ad:2b:61:8e:d8:fd:6c:7a:de:96:69:f0: 57:f3:45:2e:00:ea:5a:d0:de:17:af:29:f6:49:64: 00:68:1c:2c:b8:22:62:eb:04:df:94:8d:4c:3c:55: 2d:0e:2c:65:18:76:d8:7b:18:3b:d5:0a:77:0c:1f: 18:f7:8c:63:cb:10:7b:e9:55:fb:db:30:b3:fe:e7: b2:a7:f5:cc:6d:2a:8a:66:42:34:49:5d:67:0c:4b: c1:39:77:b5:fa:20:e9:20:f5:2e:c4:34:88:76:dd: 9f:69:6d:a8:79:5f:45:0d:ab:99:b1:25:15:4c:cb: f5:ce:c0:46:0b:03:e9:9e:5c:68:e0:1c:a8:fc:7a: ed:90:64:6b:01:4d:aa:c6:9e:ef:76:e9:fb:7b:3a: 46:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:8D:A0:AB:36:28:8D:26:6F:69:DE:1E:60:EA:0D:7D:A0:49:88:35 X509v3 Authority Key Identifier: keyid:69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/1AC9199AD3CB11EF84052053C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.48.0/22 45.64.114.0/23 IPv6: 2404:7c00:2::/48 2404:7c00:10::-2404:7c00:2f:ffff:ffff:ffff:ffff:ffff 2404:7c00:39::/48 Signature Algorithm: sha256WithRSAEncryption 1d:0d:37:cb:6f:a3:61:e8:ec:31:9c:e0:ea:17:cf:ce:8c:9c: e8:08:48:5a:3d:6b:e0:fc:1c:27:77:63:f8:f2:3a:ea:6b:89: ef:e1:d6:e3:2e:fa:46:55:b6:31:18:ad:42:a1:cf:f0:a8:b0: 55:1f:37:9d:96:49:e2:9e:9e:6d:d9:b0:f2:35:ee:d8:ce:ab: e2:3a:1a:f6:65:7f:00:ef:dc:89:f7:28:8b:92:3d:3b:69:d8: 95:58:58:a2:54:5f:35:f5:fd:03:b7:b7:f8:6d:f7:81:17:bc: d3:e8:09:67:00:6a:38:45:b2:14:d1:0b:0f:57:83:1d:3f:47: 6f:1a:b7:08:69:04:3e:b0:bd:a2:46:56:5e:e9:18:a7:88:02: 15:07:0e:a1:19:42:b5:aa:9e:ca:ad:61:41:5e:e0:13:3b:bf: ac:64:df:5f:97:09:39:0b:6d:e2:da:b6:ad:92:19:70:4e:fa: e2:22:b2:e4:f2:e0:36:e2:13:e8:41:80:d3:11:78:7a:f2:0d: 47:09:ff:c1:a5:7c:79:36:c9:9f:b6:fa:22:4d:43:82:60:03: 52:b1:35:eb:97:74:ac:32:ef:20:af:6d:99:8f:66:07:46:4b: 50:ce:bf:cd:db:2e:98:ca:3e:97:bf:b3:c5:53:a3:09:9a:29: 03:98:b7:2a -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgICIy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzMzMxMTAvBgNVBAUTKDY5OUU2NzQyNTY3QkU3MzI5Q0MzQTc4NkRFQjc4NTdF MkMyNDIwRjkwHhcNMjYwMTA4MDUxMDA1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVmM2MyYy1kZGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqATuM3B7rhaHxOXG8nXIPS8c6sPiyaO4mO4FTwEfMsTP+ggAGP8xt+k5ctrp GEWnjU79H8RUqUei18N19WjWuP8hQZpf2qXPwEQ9ymcRD9eqoNQvoAZEmAyG+lZV YCS4AlKikAudYFDLpsStK2GO2P1set6WafBX80UuAOpa0N4Xryn2SWQAaBwsuCJi 6wTflI1MPFUtDixlGHbYexg71Qp3DB8Y94xjyxB76VX72zCz/ueyp/XMbSqKZkI0 SV1nDEvBOXe1+iDpIPUuxDSIdt2faW2oeV9FDauZsSUVTMv1zsBGCwPpnlxo4Byo /HrtkGRrAU2qxp7vdun7ezpGkQIDAQABo4ICyTCCAsUwHQYDVR0OBBYEFDONoKs2 KI0mb2neHmDqDX2gSYg1MB8GA1UdIwQYMBaAFGmeZ0JWe+cynMOnht63hX4sJCD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzMy8wNjVEQTNCQUI4 NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6S2N3NmVHM3JlRmZpd2tJ UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaNW5RbFo3NXpLY3c2ZUczcmVGZml3a0lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkzMzMvMDY1REEzQkFCODQ0MTFFNUI1MzU3QjJGQzRGOUFFMDIvMUFDOTE5OUFE M0NCMTFFRjg0MDUyMDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUwYIKwYBBQUHAQcBAf8E RDBCMBIEAgABMAwDBAIr+jADBAEtQHIwLAQCAAIwJgMHACQEfAAAAjASAwcEJAR8 AAAQAwcEJAR8AAAgAwcAJAR8AAA5MA0GCSqGSIb3DQEBCwUAA4IBAQAdDTfLb6Nh 6OwxnODqF8/OjJzoCEhaPWvg/Bwnd2P48jrqa4nv4dbjLvpGVbYxGK1Coc/wqLBV Hzedlkninp5t2bDyNe7YzqviOhr2ZX8A79yJ9yiLkj07adiVWFiiVF819f0Dt7f4 bfeBF7zT6AlnAGo4RbIU0QsPV4MdP0dvGrcIaQQ+sL2iRlZe6RiniAIVBw6hGUK1 qp7KrWFBXuATO7+sZN9flwk5C23i2ratkhlwTvriIrLk8uA24hPoQYDTEXh68g1H Cf/BpXx5NsmftvoiTUOCYANSsTXrl3SsMu8gr22Zj2YHRktQzr/N2y6Yyj6Xv7PF U6MJmikDmLcq -----END CERTIFICATE-----Generated at Sun Jan 25 13:52:51 2026 by rpki-client