This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D9C5B55A498E11EF908FD222C4F9AE02.roa File: D9C5B55A498E11EF908FD222C4F9AE02.roa (raw, json) Hash identifier: CGn0Q55/AX22nfT4AGCKBK/ILhvxf+/fmsvng3DA1pY= Subject key identifier: 88:4A:DC:3F:1B:8B:80:7F:48:50:F2:28:D2:B0:0C:7E:95:D7:1D:08 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 0100 Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D9C5B55A498E11EF908FD222C4F9AE02.roa Signing time: Fri 07 Nov 2025 01:10:33 +0000 ROA not before: Fri 07 Nov 2025 01:10:33 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 7575 IP address blocks: 130.220.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Nov 7 01:10:33 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690d4709-832b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:33:35:53:67:59:03:5a:9c:8a:9b:36:5b:59: db:b5:5d:91:9a:10:48:9e:bb:28:b3:6c:bb:82:f1: fa:86:7f:1c:01:8e:b8:e9:a7:b5:07:db:fe:f4:e6: b5:1e:55:4f:56:78:2d:8e:c9:df:c5:cf:36:da:73: de:54:39:0e:99:7f:77:99:e5:2e:52:4c:44:8d:73: 0a:7b:fb:7e:2b:84:a5:e2:a6:24:f2:04:43:4a:4e: 2f:29:4b:c5:e4:a8:16:bd:0a:3b:ac:4e:95:39:69: ba:86:6e:eb:ae:42:ca:d3:46:91:f0:16:aa:63:32: 9f:2d:bd:fc:61:e9:a2:b3:73:ad:ca:22:2b:ce:2a: 2b:53:b4:c5:05:6c:17:9c:bd:4d:11:b6:42:a4:cd: 4d:79:10:44:ea:07:2d:57:9d:a0:c3:e5:f3:74:92: f5:82:51:e7:45:e5:44:63:ec:06:76:75:4c:a0:bc: 81:3e:82:32:15:db:83:d9:79:87:6b:85:1b:11:a9: 12:7e:e2:d0:27:af:1e:79:34:5d:ac:67:05:81:0c: 0c:58:5e:a3:c8:72:8a:8b:0a:6d:3a:f2:86:e6:95: fe:0d:14:07:ae:fa:cd:c8:8c:d1:9e:26:f5:99:82: fb:00:21:86:2e:5f:34:44:99:48:1c:28:4f:42:36: 2f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:4A:DC:3F:1B:8B:80:7F:48:50:F2:28:D2:B0:0C:7E:95:D7:1D:08 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D9C5B55A498E11EF908FD222C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.220.0.0/16 Signature Algorithm: sha256WithRSAEncryption 21:ef:f5:8f:0a:f6:3f:fb:7b:fa:de:50:2a:5f:ed:ed:7e:85: 44:6a:c5:47:11:fe:c6:f6:e6:ea:7b:dc:86:73:02:50:b0:56: be:c6:81:2e:66:f5:bb:ec:ec:5d:92:01:09:1e:5d:aa:40:af: 2b:41:04:54:2d:0c:92:dd:0f:ae:35:6c:f3:a1:b4:48:07:50: 9d:05:16:8c:96:80:b9:6b:51:36:6c:dd:bb:45:15:25:af:ff: 1d:71:6d:de:de:ab:1b:52:c2:4e:f3:85:91:71:52:76:14:56: 97:1c:0e:f5:6d:fa:ca:9b:71:77:77:b6:12:ed:99:56:4f:e9: 99:e2:a5:a8:16:97:bd:9a:cb:09:5b:26:bb:f9:64:7f:fa:9f: 89:54:f1:dd:5b:13:68:9d:cd:91:58:90:76:96:f6:8e:08:5f: 06:6b:a2:d2:54:4b:ba:58:f4:58:18:91:33:36:b2:c7:2d:2b: 82:9c:c4:a3:cd:52:24:ea:c6:2c:fb:4b:80:52:1a:f3:92:3a: 1a:a2:b2:91:1c:1d:ed:3d:0c:98:45:10:04:3c:9e:7b:e0:b1: 53:d0:5e:49:40:3a:fc:44:25:06:67:ff:4e:e7:16:2b:09:ee: 6a:d7:be:7b:25:6e:85:34:97:02:64:a4:bf:a7:77:27:8c:dd: ce:e1:02:fa -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjUxMTA3MDExMDMzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBkNDcwOS04MzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDM1U2dZA1qcips2W1nbtV2RmhBInrsos2y7gvH6hn8cAY646ae1B9v+9Oa1 HlVPVngtjsnfxc822nPeVDkOmX93meUuUkxEjXMKe/t+K4Sl4qYk8gRDSk4vKUvF 5KgWvQo7rE6VOWm6hm7rrkLK00aR8BaqYzKfLb38Yemis3OtyiIrziorU7TFBWwX nL1NEbZCpM1NeRBE6gctV52gw+XzdJL1glHnReVEY+wGdnVMoLyBPoIyFduD2XmH a4UbEakSfuLQJ68eeTRdrGcFgQwMWF6jyHKKiwptOvKG5pX+DRQHrvrNyIzRnib1 mYL7ACGGLl80RJlIHChPQjYvYwIDAQABo4IClDCCApAwHQYDVR0OBBYEFIhK3D8b i4B/SFDyKNKwDH6V1x0IMB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkYzQjYvNTBGMDExQzg0OEJBMTFFRkJENDUxNjNEQzRGOUFFMDIvRDlDNUI1NUE0 OThFMTFFRjkwOEZEMjIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCC3DANBgkqhkiG9w0BAQsFAAOCAQEAIe/1jwr2P/t7+t5Q Kl/t7X6FRGrFRxH+xvbm6nvchnMCULBWvsaBLmb1u+zsXZIBCR5dqkCvK0EEVC0M kt0PrjVs86G0SAdQnQUWjJaAuWtRNmzdu0UVJa//HXFt3t6rG1LCTvOFkXFSdhRW lxwO9W36yptxd3e2Eu2ZVk/pmeKlqBaXvZrLCVsmu/lkf/qfiVTx3VsTaJ3NkViQ dpb2jghfBmui0lRLulj0WBiRMzayxy0rgpzEo81SJOrGLPtLgFIa85I6GqKykRwd 7T0MmEUQBDyee+CxU9BeSUA6/EQlBmf/TucWKwnuate+eyVuhTSXAmSkv6d3J4zd zuEC+g== -----END CERTIFICATE-----Generated at Sat Dec 6 23:46:22 2025 by rpki-client