This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/246315A2AE5811EFAFE7FF84C4F9AE02.roa File: 246315A2AE5811EFAFE7FF84C4F9AE02.roa (raw, json) Hash identifier: MXLScbZrX+ixKdw+PkZ2ou8n1e3yrgCRyU1xYRmvDJE= Subject key identifier: 9D:E4:D2:CB:CC:83:F9:8E:CC:FF:B4:16:B5:16:D8:EA:21:D2:EF:CC Certificate issuer: /CN=A912B12A/serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Certificate serial: CB Authority key identifier: EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/246315A2AE5811EFAFE7FF84C4F9AE02.roa Signing time: Wed 17 Dec 2025 06:24:24 +0000 ROA not before: Wed 17 Dec 2025 06:24:24 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 17557 IP address blocks: 2401:db60::/34 maxlen: 34 2401:db60:4000::/34 maxlen: 34 2401:db60:8000::/34 maxlen: 34 2401:db60:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:50:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B12A, serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Validity Not Before: Dec 17 06:24:24 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69424c98-e54b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:45:92:d2:cb:4f:f0:13:58:56:ee:5d:d0:89: db:d7:47:14:2f:4a:8b:03:84:fb:d8:8f:75:ae:27: 6d:c4:47:f1:dc:1b:90:03:68:8a:54:7a:dd:dd:8c: 01:0d:ae:db:c2:14:ce:ec:db:ca:9f:6d:67:96:5c: 33:a3:ea:7c:ce:0a:6a:7e:06:3a:a9:c9:b7:79:58: 8d:6f:1a:1e:22:cd:27:67:00:55:7e:8b:f5:78:fe: 15:70:ea:cd:08:a0:bb:dc:f1:e0:d7:e6:df:54:93: 0d:73:e2:96:b0:92:4e:f1:be:25:6a:c4:8d:4d:7a: 2c:9b:15:5c:ca:0d:68:a2:02:a8:d2:a0:43:d7:5d: 8d:76:83:72:28:c2:7c:cc:8e:e9:dc:62:31:a6:70: 4d:22:f9:4a:f0:59:0c:70:a5:95:56:14:30:01:1e: 21:b0:03:3d:78:45:58:b0:af:af:cd:97:fc:ea:64: 0f:b0:c2:fa:8a:63:9f:7d:2d:5d:e8:e1:81:f6:3d: 5f:34:2d:a8:25:6b:e6:b5:43:42:3c:b1:fa:50:f1: 6b:05:82:0a:75:28:d5:57:20:07:bf:3e:12:36:7f: 7d:0c:14:ff:18:0b:ce:93:b4:8f:c1:c5:06:a0:8d: f8:80:25:34:c1:2d:73:75:f8:0a:fe:9d:31:9b:48: 48:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E4:D2:CB:CC:83:F9:8E:CC:FF:B4:16:B5:16:D8:EA:21:D2:EF:CC X509v3 Authority Key Identifier: keyid:EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/246315A2AE5811EFAFE7FF84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:db60::/32 Signature Algorithm: sha256WithRSAEncryption 2d:4f:dd:f0:7b:e4:e5:84:2b:cb:cc:d9:4b:eb:17:91:f2:32: 01:65:6c:31:a4:fd:d7:21:40:21:de:64:a8:c5:d2:98:d1:4f: d3:e6:dd:2c:53:48:48:85:de:ac:f5:79:83:da:3d:7d:73:3c: f1:98:6c:bd:35:9c:03:3e:59:db:f9:31:c4:f9:a9:66:f0:3e: b9:7f:e9:af:ac:7e:b0:9e:da:46:79:30:30:24:a7:70:66:73: 25:c4:54:b8:8a:2f:14:99:d4:4d:6b:c1:b1:f7:ec:a8:0a:17: 64:5c:20:90:5a:1d:ef:d7:e2:51:60:b5:a7:78:f2:b9:3e:0f: 1c:1f:86:98:1f:e4:72:48:aa:8d:fa:cd:8c:b5:35:98:b2:22: aa:4f:a0:a5:a3:3a:13:dc:65:9a:b0:9c:a1:bf:e5:78:49:6a: 4a:f0:15:20:b0:f1:5d:1c:d0:a7:c8:d1:19:ac:4a:ea:da:b1: d1:a4:0f:b0:aa:f0:cc:59:a4:bd:b2:11:22:f5:d5:60:a1:14: 5e:62:10:ad:6f:d2:c7:73:21:45:87:82:f7:0e:3d:b2:a5:94: 53:f6:76:e8:8d:01:59:1f:10:f9:1b:f8:23:d4:c1:63:93:8c: 70:3f:a5:cb:44:02:bd:1c:09:8d:18:cc:fa:33:82:fa:97:77: 87:65:16:0b -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIxMkExMTAvBgNVBAUTKEVDRkYzMjQ0MEM0RUUxRDI3OTQzQ0RCNzJBN0Q0OTEw NjM0MDJERjEwHhcNMjUxMjE3MDYyNDI0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQyNGM5OC1lNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0WS0stP8BNYVu5d0Inb10cUL0qLA4T72I91ridtxEfx3BuQA2iKVHrd3YwB Da7bwhTO7NvKn21nllwzo+p8zgpqfgY6qcm3eViNbxoeIs0nZwBVfov1eP4VcOrN CKC73PHg1+bfVJMNc+KWsJJO8b4lasSNTXosmxVcyg1oogKo0qBD112NdoNyKMJ8 zI7p3GIxpnBNIvlK8FkMcKWVVhQwAR4hsAM9eEVYsK+vzZf86mQPsML6imOffS1d 6OGB9j1fNC2oJWvmtUNCPLH6UPFrBYIKdSjVVyAHvz4SNn99DBT/GAvOk7SPwcUG oI34gCU0wS1zdfgK/p0xm0hI8wIDAQABo4ICljCCApIwHQYDVR0OBBYEFJ3k0svM g/mOzP+0FrUW2Ooh0u/MMB8GA1UdIwQYMBaAFOz/MkQMTuHSeUPNtyp9SRBjQC3x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjEyQS9COUQ0Q0Y0MkFF M0QxMUVGOTZCNzZDNkFDNEY5QUUwMi83UDh5UkF4TzRkSjVRODIzS24xSkVHTkFM ZkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdQOHlSQXhPNGRKNVE4MjNLbjFKRUdOQUxmRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkIxMkEvQjlENENGNDJBRTNEMTFFRjk2Qjc2QzZBQzRGOUFFMDIvMjQ2MzE1QTJB RTU4MTFFRkFGRTdGRjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAdtgMA0GCSqGSIb3DQEBCwUAA4IBAQAtT93we+TlhCvL zNlL6xeR8jIBZWwxpP3XIUAh3mSoxdKY0U/T5t0sU0hIhd6s9XmD2j19czzxmGy9 NZwDPlnb+THE+alm8D65f+mvrH6wntpGeTAwJKdwZnMlxFS4ii8UmdRNa8Gx9+yo ChdkXCCQWh3v1+JRYLWnePK5Pg8cH4aYH+RySKqN+s2MtTWYsiKqT6ClozoT3GWa sJyhv+V4SWpK8BUgsPFdHNCnyNEZrErq2rHRpA+wqvDMWaS9shEi9dVgoRReYhCt b9LHcyFFh4L3Dj2ypZRT9nbojQFZHxD5G/gj1MFjk4xwP6XLRAK9HAmNGMz6M4L6 l3eHZRYL -----END CERTIFICATE-----Generated at Sun Jan 25 10:46:38 2026 by rpki-client