This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/4D7DE09E9BFB11EF8E975D70C4F9AE02.roa File: 4D7DE09E9BFB11EF8E975D70C4F9AE02.roa (raw, json) Hash identifier: UGlQ7ArlsMtnVStcMzbq3puKKEXptiKFpSrfkoZ8QJA= Subject key identifier: 61:D1:5A:2B:DE:AC:40:28:35:75:EA:7F:81:20:8E:E8:A9:BC:DF:26 Certificate issuer: /CN=A9142489/serialNumber=AAE5759A7E98AA7458598DE3C19AA1797F00F5F5 Certificate serial: DE Authority key identifier: AA:E5:75:9A:7E:98:AA:74:58:59:8D:E3:C1:9A:A1:79:7F:00:F5:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/quV1mn6YqnRYWY3jwZqheX8A9fU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/4D7DE09E9BFB11EF8E975D70C4F9AE02.roa Signing time: Sat 03 Jan 2026 05:23:54 +0000 ROA not before: Sat 03 Jan 2026 05:23:54 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 153393 IP address blocks: 2401:d4e0::/48 maxlen: 48 2401:d4e0:1::/48 maxlen: 48 2401:d4e0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.crl rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/quV1mn6YqnRYWY3jwZqheX8A9fU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 04:37:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142489, serialNumber=AAE5759A7E98AA7458598DE3C19AA1797F00F5F5 Validity Not Before: Jan 3 05:23:54 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6958a7ea-0ad1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:1c:7c:f0:e4:f3:3f:27:20:5c:8f:cc:67:f5: d3:f5:fa:22:0b:6e:ea:e2:67:02:4c:1f:c5:2c:af: 6b:79:18:4d:03:b0:2a:c7:4d:38:43:22:f3:be:ec: 44:5d:68:f9:bb:33:fd:2b:e0:84:b5:2f:69:a9:f7: f5:9a:46:ae:c9:79:da:87:20:2a:ce:2c:9f:fa:6b: 2f:e8:a6:9e:2b:f5:70:cb:0f:06:79:5f:c8:6f:88: 53:31:cc:6a:af:b8:1b:bf:1a:ed:22:9b:6b:df:15: 94:22:a1:b3:1c:14:cf:73:9c:cf:c1:d2:1e:bc:04: 08:62:36:07:b6:67:e9:49:9a:c8:48:83:81:58:da: b7:f5:c0:d0:9a:38:02:81:94:f3:a9:70:ff:78:d9: 26:2a:da:78:62:29:d1:9e:8b:04:20:f5:a2:8f:a1: 55:22:11:cf:73:83:d4:af:16:41:66:01:69:b6:75: fd:08:d8:32:41:84:5b:7d:48:04:6b:5d:f3:e7:91: e5:4b:88:7e:05:e2:42:0b:84:cc:02:f2:62:18:27: c4:38:3c:cf:1d:03:d4:23:fc:2b:9e:cb:a1:3a:5a: 34:2d:88:8f:2f:e4:00:b6:67:46:84:57:07:6e:c0: 6c:5a:5a:45:c3:b5:7e:1e:fa:4e:f7:00:60:e8:98: aa:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D1:5A:2B:DE:AC:40:28:35:75:EA:7F:81:20:8E:E8:A9:BC:DF:26 X509v3 Authority Key Identifier: keyid:AA:E5:75:9A:7E:98:AA:74:58:59:8D:E3:C1:9A:A1:79:7F:00:F5:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/quV1mn6YqnRYWY3jwZqheX8A9fU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/4D7DE09E9BFB11EF8E975D70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d4e0::-2401:d4e0:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3e:98:42:5f:17:27:62:7f:95:6e:d6:7f:b6:48:b4:b2:e9:76: 22:e0:2e:d1:1e:8c:70:c2:bd:32:bf:c1:18:02:5a:bf:07:05: 45:ef:c7:b9:0b:92:fe:5b:2e:8d:73:ee:bb:43:a6:c7:0a:f2: 14:ed:6e:36:2e:62:a8:18:c9:32:57:8e:88:05:45:65:31:36: b1:2f:e6:bd:49:12:4a:91:a8:30:e1:0a:5d:ad:c2:1f:0c:48: c9:55:6c:af:13:a5:39:db:65:37:5b:a0:a3:17:10:92:a2:98: 90:7b:41:9d:86:e4:d8:1e:d3:1e:ce:5b:f8:48:92:89:fa:00: ee:f0:26:9c:a4:09:f9:83:1f:2f:d7:fa:fb:d5:36:be:b6:20: ec:3c:c5:49:70:54:7e:ae:ad:70:79:e5:54:cc:b2:3b:d1:51: 05:50:d5:b8:2f:94:a1:e3:42:e2:68:b9:79:c7:45:c3:52:8e: 65:26:e0:a6:31:c0:03:ba:70:c3:4f:39:64:b0:10:5f:c4:77: 25:a0:48:a8:1e:79:dc:30:bd:41:29:b5:c5:a2:cd:ea:4d:92: 8f:cc:46:9e:ee:0c:36:8d:9a:6b:5c:29:17:49:01:da:c3:e7: f4:ee:3c:20:96:18:68:9f:8b:57:c4:f4:76:30:9c:be:75:61: 12:d3:1f:4f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NDI0ODkxMTAvBgNVBAUTKEFBRTU3NTlBN0U5OEFBNzQ1ODU5OERFM0MxOUFBMTc5 N0YwMEY1RjUwHhcNMjYwMTAzMDUyMzU0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU4YTdlYS0wYWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlBx88OTzPycgXI/MZ/XT9foiC27q4mcCTB/FLK9reRhNA7Aqx004QyLzvuxE XWj5uzP9K+CEtS9pqff1mkauyXnahyAqziyf+msv6KaeK/Vwyw8GeV/Ib4hTMcxq r7gbvxrtIptr3xWUIqGzHBTPc5zPwdIevAQIYjYHtmfpSZrISIOBWNq39cDQmjgC gZTzqXD/eNkmKtp4YinRnosEIPWij6FVIhHPc4PUrxZBZgFptnX9CNgyQYRbfUgE a13z55HlS4h+BeJCC4TMAvJiGCfEODzPHQPUI/wrnsuhOlo0LYiPL+QAtmdGhFcH bsBsWlpFw7V+HvpO9wBg6JiqBwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGHRWive rEAoNXXqf4EgjuipvN8mMB8GA1UdIwQYMBaAFKrldZp+mKp0WFmN48GaoXl/APX1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjQ4OS8zQTNGMjgzNjlC RkExMUVGQkVCOTg0NkVDNEY5QUUwMi9xdVYxbW42WXFuUllXWTNqd1pxaGVYOEE5 ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F1VjFtbjZZcW5SWVdZM2p3WnFoZVg4QTlmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI0ODkvM0EzRjI4MzY5QkZBMTFFRkJFQjk4NDZFQzRGOUFFMDIvNEQ3REUwOUU5 QkZCMTFFRjhFOTc1RDcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIwEAMFBSQB1OADBwAkAdTgAAIwDQYJKoZIhvcNAQELBQADggEB AD6YQl8XJ2J/lW7Wf7ZItLLpdiLgLtEejHDCvTK/wRgCWr8HBUXvx7kLkv5bLo1z 7rtDpscK8hTtbjYuYqgYyTJXjogFRWUxNrEv5r1JEkqRqDDhCl2twh8MSMlVbK8T pTnbZTdboKMXEJKimJB7QZ2G5Nge0x7OW/hIkon6AO7wJpykCfmDHy/X+vvVNr62 IOw8xUlwVH6urXB55VTMsjvRUQVQ1bgvlKHjQuJouXnHRcNSjmUm4KYxwAO6cMNP OWSwEF/EdyWgSKgeedwwvUEptcWizepNko/MRp7uDDaNmmtcKRdJAdrD5/TuPCCW GGifi1fE9HYwnL51YRLTH08= -----END CERTIFICATE-----Generated at Sun Jan 25 06:11:16 2026 by rpki-client