This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/43CE5D5A236911EEAC33285DC4F9AE02.roa File: 43CE5D5A236911EEAC33285DC4F9AE02.roa (raw, json) Hash identifier: Xj60cy/+MCefwRh5zgDSO/B9QlgMD6CuyCY3oxVXaNA= Subject key identifier: 30:84:AC:15:42:F2:8C:8A:89:06:3E:01:1D:D3:FF:40:E4:88:83:8D Certificate issuer: /CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Certificate serial: 0207 Authority key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/43CE5D5A236911EEAC33285DC4F9AE02.roa Signing time: Sun 07 Dec 2025 01:10:14 +0000 ROA not before: Sun 07 Dec 2025 01:10:14 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 9328 IP address blocks: 161.152.0.0/16 maxlen: 16 192.112.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 01:10:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD15, serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Validity Not Before: Dec 7 01:10:14 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6934d3f5-2a74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:30:23:17:49:ca:fb:d5:cc:95:9b:65:84:76: 7f:04:90:d8:1e:9c:ab:95:d2:0d:3c:fe:9e:0a:73: 40:32:c6:5f:b6:94:fa:40:25:0d:ef:9d:10:31:ac: cb:bc:e0:39:bc:bd:5c:fb:17:1a:b5:b0:23:96:d6: 33:35:10:3b:02:1c:cd:38:85:57:07:e6:17:a5:a1: a2:56:6f:a4:bf:dc:fc:0d:0e:28:ef:0e:b2:1a:af: 17:b7:68:98:31:73:8a:c3:79:b6:8b:41:c2:47:4f: 34:6c:5d:e1:c7:22:96:84:9e:bb:2b:94:4e:36:4b: f3:28:20:3a:39:4e:3b:b9:df:45:62:d2:d5:46:6c: 70:b3:ce:6f:37:66:1b:7d:88:77:e9:03:be:5e:77: 68:2d:f8:4a:a2:54:fa:9c:40:18:7b:4f:2e:9c:56: c9:fb:a0:6b:8d:e9:f7:18:81:73:fa:86:71:38:ce: dd:53:51:19:d1:14:71:1b:cf:a9:17:f1:58:ed:29: 49:78:3b:fe:cf:68:48:cb:7a:8c:dd:08:63:f2:62: c0:a0:ad:db:3d:cb:b3:c4:06:1c:22:ed:35:1b:ed: 55:b7:25:ef:60:f1:22:7a:25:d4:ad:f6:79:a6:81: 2f:4e:f4:24:52:27:65:e1:4b:96:34:50:11:2c:4f: 66:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:84:AC:15:42:F2:8C:8A:89:06:3E:01:1D:D3:FF:40:E4:88:83:8D X509v3 Authority Key Identifier: keyid:46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/43CE5D5A236911EEAC33285DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.152.0.0/16 192.112.215.0/24 Signature Algorithm: sha256WithRSAEncryption 28:7c:51:8e:6b:bc:a8:3f:f6:40:f3:b3:ab:2a:55:44:ef:83: 92:f4:e8:27:aa:a3:ab:34:45:15:39:b2:be:82:50:58:65:6c: 6f:a4:64:58:aa:a7:3b:c1:9f:7d:da:a1:8a:da:9a:17:38:c6: 6a:3a:e8:95:4e:ee:74:fa:33:c8:f4:1a:1c:fb:3f:4b:fd:1b: c0:39:f8:fb:d6:0d:e7:5c:62:f3:65:7c:2d:20:56:c9:cd:c0: cc:33:3e:32:6e:98:3c:d6:c4:f8:e0:6c:bb:72:df:9a:45:13: 79:ea:83:0d:33:ab:ce:a2:60:e8:ba:ec:a6:df:14:ee:ca:55: 40:ee:ad:f6:17:d7:ec:69:43:9b:7b:4c:eb:3d:33:c7:a1:5b: 85:07:fa:e3:35:69:95:89:f5:2c:10:84:3d:85:ea:3d:7d:22: 6b:d9:a2:e9:d7:22:23:e0:5f:48:03:bb:19:0d:ab:dd:60:6e: 07:f9:fe:bb:70:4c:76:96:84:61:d5:94:3e:27:8b:3f:c2:18: e2:10:2b:f8:32:bf:65:1e:36:d4:07:e4:7a:f2:34:5a:57:e9: 18:fc:7a:ca:ad:99:74:07:16:07:19:89:72:67:6b:da:8c:f2: 75:b4:da:d3:91:c9:30:8c:c6:c2:85:cd:80:62:a1:28:4f:5c: c9:6c:f1:d0 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMTUxMTAvBgNVBAUTKDQ2OEM2QTc5MkFCQjNFNDVGRUVFMjIyOEQyOEU3ODAz MTM3MkI0NTUwHhcNMjUxMjA3MDExMDE0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM0ZDNmNS0yYTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/DAjF0nK+9XMlZtlhHZ/BJDYHpyrldINPP6eCnNAMsZftpT6QCUN750QMazL vOA5vL1c+xcatbAjltYzNRA7AhzNOIVXB+YXpaGiVm+kv9z8DQ4o7w6yGq8Xt2iY MXOKw3m2i0HCR080bF3hxyKWhJ67K5RONkvzKCA6OU47ud9FYtLVRmxws85vN2Yb fYh36QO+XndoLfhKolT6nEAYe08unFbJ+6Brjen3GIFz+oZxOM7dU1EZ0RRxG8+p F/FY7SlJeDv+z2hIy3qM3Qhj8mLAoK3bPcuzxAYcIu01G+1VtyXvYPEieiXUrfZ5 poEvTvQkUidl4UuWNFARLE9m+QIDAQABo4ICmjCCApYwHQYDVR0OBBYEFDCErBVC 8oyKiQY+AR3T/0DkiIONMB8GA1UdIwQYMBaAFEaMankquz5F/u4iKNKOeAMTcrRV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQxNS9CREFEQTg2MEND NTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1BrWC03aUlvMG81NEF4Tnl0 RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JveHFlU3E3UGtYLTdpSW8wbzU0QXhOeXRGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkREMTUvQkRBREE4NjBDQzUyMTFFREE4MjkxRDEwQzRGOUFFMDIvNDNDRTVENUEy MzY5MTFFRUFDMzMyODVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDAwChmAMEAMBw1zANBgkqhkiG9w0BAQsFAAOCAQEAKHxRjmu8 qD/2QPOzqypVRO+DkvToJ6qjqzRFFTmyvoJQWGVsb6RkWKqnO8GffdqhitqaFzjG ajrolU7udPozyPQaHPs/S/0bwDn4+9YN51xi82V8LSBWyc3AzDM+Mm6YPNbE+OBs u3LfmkUTeeqDDTOrzqJg6Lrspt8U7spVQO6t9hfX7GlDm3tM6z0zx6FbhQf64zVp lYn1LBCEPYXqPX0ia9mi6dciI+BfSAO7GQ2r3WBuB/n+u3BMdpaEYdWUPieLP8IY 4hAr+DK/ZR421AfkevI0WlfpGPx6yq2ZdAcWBxmJcmdr2ozydbTa05HJMIzGwoXN gGKhKE9cyWzx0A== -----END CERTIFICATE-----Generated at Sun Dec 7 09:00:46 2025 by rpki-client