This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8F1DD9E017DC11EE959DE671C4F9AE02.roa File: 8F1DD9E017DC11EE959DE671C4F9AE02.roa (raw, json) Hash identifier: yQvc3ntNpG7BJNIHH6+Ojk1HrYYp15Nu10dcUFhCOA8= Subject key identifier: F8:34:08:83:DC:9C:4D:D6:DE:33:E7:1D:05:04:04:CF:07:34:C9:83 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0D57 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8F1DD9E017DC11EE959DE671C4F9AE02.roa Signing time: Sun 02 Nov 2025 19:08:20 +0000 ROA not before: Sun 02 Nov 2025 19:08:20 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 65120 IP address blocks: 1.9.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3415 (0xd57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 2 19:08:20 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6907ac24-1921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1e:55:1a:d8:d0:c8:c9:43:89:46:6e:51:07: 27:6b:da:61:c9:8b:87:42:d6:6f:10:78:19:3f:28: e7:67:ae:6a:40:9b:b8:e5:a7:d5:15:a7:1e:0b:a0: a1:58:d2:49:3b:43:22:f9:ef:72:6d:e0:38:ba:b3: d2:65:06:88:c6:99:8b:7f:f3:b0:30:a1:df:1a:5e: 7e:2a:81:8d:08:45:39:7a:8b:4d:c6:68:2c:58:23: fb:8c:cc:fe:1f:b7:d9:d1:e1:c4:54:60:dd:38:31: e5:67:0f:d4:04:60:f7:ac:45:4e:1f:52:9d:95:8d: 5b:3c:4c:78:a5:ca:36:71:25:c8:08:21:cc:70:32: 9a:a2:e0:be:fd:d7:7e:c7:6c:69:99:af:85:2e:e4: 2b:83:b9:1f:91:98:8b:6b:16:34:58:11:1c:8c:4d: be:f0:e4:73:a2:7b:28:a6:c4:69:a1:20:16:2a:f6: 36:ba:43:b9:f8:4c:b4:8b:54:81:29:85:bb:d2:31: 0b:cb:07:6d:6d:5a:a5:dc:98:1e:d0:37:3a:43:e5: ac:98:53:29:d4:6e:c3:2a:67:0d:8f:5d:0a:1f:1e: 7b:cd:1c:22:20:8f:c8:7d:93:9d:97:09:d5:db:19: a0:93:27:61:6b:a7:1e:2a:43:11:a7:ed:2c:2a:1c: a6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:34:08:83:DC:9C:4D:D6:DE:33:E7:1D:05:04:04:CF:07:34:C9:83 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8F1DD9E017DC11EE959DE671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.9.23.0/24 Signature Algorithm: sha256WithRSAEncryption 31:10:28:ba:c4:65:29:bd:36:c1:ef:09:c9:9f:60:ad:d5:c1: 0b:6b:5e:2f:f5:0e:4d:82:0c:f0:4d:0e:5c:8a:44:99:3b:68: 92:0c:5d:e1:8f:0b:5f:5e:9b:7b:42:bf:25:02:41:59:fb:53: e4:b5:5e:60:3b:1c:49:9f:a3:2f:50:1e:63:9e:86:8f:76:dd: c6:4a:ee:1a:00:34:9c:fa:fc:88:fa:04:d5:62:31:d0:af:a8: c6:0d:0f:d1:8b:bb:8f:4f:17:03:63:54:4c:c7:6d:e0:45:18: 41:f3:f1:e7:e2:c7:cc:ba:f9:bb:a5:db:91:4f:b2:db:68:d4: 1f:09:a7:d0:8c:90:85:74:a6:5e:ae:b5:bd:26:16:ce:2b:a2: 72:ee:03:18:e8:67:18:ba:b2:d4:69:8c:9d:44:6f:cc:81:12: 70:81:9f:de:de:b7:98:6e:a0:7c:9d:b2:d0:7b:0c:28:ea:61: 70:f9:e5:31:78:46:29:e2:56:8d:9d:6b:42:d0:f1:c9:27:9f: a8:5a:8a:57:d2:73:9d:02:26:7a:0a:26:fd:18:85:79:0b:11: 83:a6:32:69:20:e9:73:b2:57:b1:00:dc:84:07:15:ef:71:b0: 88:b5:27:0d:33:94:94:a3:c8:0b:ee:f7:cb:30:e6:26:05:a3: 44:13:ae:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUxMTAyMTkwODIwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3YWMyNC0xOTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnx5VGtjQyMlDiUZuUQcna9phyYuHQtZvEHgZPyjnZ65qQJu45afVFaceC6Ch WNJJO0Mi+e9ybeA4urPSZQaIxpmLf/OwMKHfGl5+KoGNCEU5eotNxmgsWCP7jMz+ H7fZ0eHEVGDdODHlZw/UBGD3rEVOH1KdlY1bPEx4pco2cSXICCHMcDKaouC+/dd+ x2xpma+FLuQrg7kfkZiLaxY0WBEcjE2+8ORzonsopsRpoSAWKvY2ukO5+Ey0i1SB KYW70jELywdtbVql3Jge0Dc6Q+WsmFMp1G7DKmcNj10KHx57zRwiII/IfZOdlwnV 2xmgkydha6ceKkMRp+0sKhymFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPg0CIPc nE3W3jPnHQUEBM8HNMmDMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvOEYxREQ5RTAx N0RDMTFFRTk1OURFNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAABCRcwDQYJKoZIhvcNAQELBQADggEBADEQKLrEZSm9NsHv CcmfYK3VwQtrXi/1Dk2CDPBNDlyKRJk7aJIMXeGPC19em3tCvyUCQVn7U+S1XmA7 HEmfoy9QHmOeho923cZK7hoANJz6/Ij6BNViMdCvqMYND9GLu49PFwNjVEzHbeBF GEHz8efix8y6+bul25FPstto1B8Jp9CMkIV0pl6utb0mFs4ronLuAxjoZxi6stRp jJ1Eb8yBEnCBn97et5huoHydstB7DCjqYXD55TF4RiniVo2da0LQ8cknn6hailfS c50CJnoKJv0YhXkLEYOmMmkg6XOyV7EA3IQHFe9xsIi1Jw0zlJSjyAvu98sw5iYF o0QTruc= -----END CERTIFICATE-----Generated at Sat Dec 6 22:08:01 2025 by rpki-client