This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/137DD3E8E60C11F0A18B1E57676F56BC.roa File: 137DD3E8E60C11F0A18B1E57676F56BC.roa (raw, json) Hash identifier: TkstHBbXAtYjtjEwdXsQtgVEHyFPfD0MrlIZkoP77Xk= Subject key identifier: D0:81:AB:E8:CC:B4:84:97:D6:11:95:F8:4E:B3:99:7C:09:69:09:F5 Certificate issuer: /CN=A9149A0D/serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Certificate serial: 0832 Authority key identifier: 5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/137DD3E8E60C11F0A18B1E57676F56BC.roa Signing time: Mon 05 Jan 2026 04:17:11 +0000 ROA not before: Mon 05 Jan 2026 04:17:11 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 154346 IP address blocks: 2001:df7:3701::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:13:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2098 (0x832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A0D, serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Validity Not Before: Jan 5 04:17:11 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695b3b47-6d5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:75:65:9f:d5:82:02:3e:5c:84:08:85:d6:ca: de:3a:fd:bb:c5:10:1e:c4:ef:2d:df:8e:9a:f2:77: a9:29:0e:dc:04:fa:59:90:96:4c:10:50:63:dc:22: 03:d3:63:55:c8:f2:9f:08:e5:6c:88:9b:3e:dd:a1: 7b:51:2e:c2:5a:5a:8d:f5:68:55:40:6b:12:6c:74: 5c:a8:c6:d4:fe:e4:6a:e3:65:12:59:6b:75:a7:10: cc:55:d0:f0:66:6e:09:31:c0:e1:33:e2:2d:50:94: c9:59:a2:fb:ab:63:ee:8d:42:a9:b7:98:c2:87:23: 01:dd:a0:4a:63:df:dc:81:0e:45:99:7f:3c:5e:05: 5a:cb:62:88:e2:06:70:00:01:dd:d1:57:94:3a:c7: 25:f0:c1:9b:42:5b:71:29:a3:48:cf:bf:54:b8:e4: a4:57:38:3a:42:bc:00:01:46:3b:99:f6:2f:6e:cb: 89:eb:f1:4e:3a:3e:3f:2f:99:49:95:05:09:c8:c5: e1:6e:56:19:bb:f4:7e:6a:58:fc:7f:97:79:a9:fa: d3:3a:94:cd:bc:ed:c6:21:07:ba:5e:7d:a4:7c:90: 1d:5b:4c:77:cf:5f:d7:5c:7f:12:e9:6c:cb:ee:e6: 14:da:11:4f:43:c7:4d:c8:10:8b:e4:e4:4a:15:9a: 13:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:81:AB:E8:CC:B4:84:97:D6:11:95:F8:4E:B3:99:7C:09:69:09:F5 X509v3 Authority Key Identifier: keyid:5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/137DD3E8E60C11F0A18B1E57676F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df7:3701::/48 Signature Algorithm: sha256WithRSAEncryption 1c:9b:33:75:e6:80:bd:46:f0:c8:61:ac:da:49:7d:fd:a0:a7: 2c:63:38:5e:d7:b1:17:37:ff:6e:e6:57:2e:3a:9a:c8:c0:ce: b5:ca:82:cb:88:ab:a6:22:f5:5c:2c:51:73:22:15:a8:82:6c: 06:eb:a0:73:44:0d:87:a3:d0:62:a6:27:09:6f:d5:3c:b7:2c: c0:1a:12:a8:a1:34:12:39:c9:12:bf:34:ba:1f:d2:31:b9:45: a0:49:0e:d1:3b:ff:b4:ce:45:b2:38:a8:1f:90:5a:19:28:2b: b4:89:4e:cc:f4:54:36:1b:09:5d:e5:b8:56:6d:92:b5:e3:1b: 30:9a:d7:64:36:76:d9:be:3e:a7:73:a0:4e:f9:dc:4f:1d:16: bb:48:a7:5f:81:16:c6:ec:91:39:9d:7a:56:cc:d4:6b:24:b5: fa:69:0e:64:c9:7a:2b:5b:8e:b4:d4:9a:b5:24:3e:f0:f7:6d: 06:b0:d3:eb:b8:28:fd:ba:08:05:3d:3d:43:e3:fc:69:19:d8: a1:55:e5:8b:1f:9d:0f:22:fb:74:ae:e4:c3:06:06:55:66:a9: 23:f4:20:9d:0c:8e:2b:f7:31:00:1d:51:49:e2:52:3f:34:94: ae:95:e5:4f:e5:bb:98:8e:fc:d9:30:ea:b5:ac:c8:f8:63:88: d8:57:8b:78 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NDlBMEQxMTAvBgNVBAUTKDVGOEYwMTYxQjdBQ0JCMjU1RjEzQ0YwODFCNjY1MzYx OUI0RTJDMDIwHhcNMjYwMTA1MDQxNzExWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTViM2I0Ny02ZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73Vln9WCAj5chAiF1sreOv27xRAexO8t346a8nepKQ7cBPpZkJZMEFBj3CID 02NVyPKfCOVsiJs+3aF7US7CWlqN9WhVQGsSbHRcqMbU/uRq42USWWt1pxDMVdDw Zm4JMcDhM+ItUJTJWaL7q2PujUKpt5jChyMB3aBKY9/cgQ5FmX88XgVay2KI4gZw AAHd0VeUOscl8MGbQltxKaNIz79UuOSkVzg6QrwAAUY7mfYvbsuJ6/FOOj4/L5lJ lQUJyMXhblYZu/R+alj8f5d5qfrTOpTNvO3GIQe6Xn2kfJAdW0x3z1/XXH8S6WzL 7uYU2hFPQ8dNyBCL5ORKFZoTSQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNCBq+jM tISX1hGV+E6zmXwJaQn1MB8GA1UdIwQYMBaAFF+PAWG3rLslXxPPCBtmU2GbTiwC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUEwRC8wRkI3OTE2NEZC MTUxMUVBQjAxMUVDNkVDNEY5QUUwMi9YNDhCWWJlc3V5VmZFODhJRzJaVFladE9M QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0OEJZYmVzdXlWZkU4OElHMlpUWVp0T0xBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlBMEQvMEZCNzkxNjRGQjE1MTFFQUIwMTFFQzZFQzRGOUFFMDIvMTM3REQzRThF NjBDMTFGMEExOEIxRTU3Njc2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ33NwEwDQYJKoZIhvcNAQELBQADggEBABybM3XmgL1G 8MhhrNpJff2gpyxjOF7XsRc3/27mVy46msjAzrXKgsuIq6Yi9VwsUXMiFaiCbAbr oHNEDYej0GKmJwlv1Ty3LMAaEqihNBI5yRK/NLof0jG5RaBJDtE7/7TORbI4qB+Q WhkoK7SJTsz0VDYbCV3luFZtkrXjGzCa12Q2dtm+PqdzoE753E8dFrtIp1+BFsbs kTmdelbM1GsktfppDmTJeitbjrTUmrUkPvD3bQaw0+u4KP26CAU9PUPj/GkZ2KFV 5YsfnQ8i+3Su5MMGBlVmqSP0IJ0Mjiv3MQAdUUniUj80lK6V5U/lu5iO/Nkw6rWs yPhjiNhXi3g= -----END CERTIFICATE-----Generated at Sun Jan 25 09:03:40 2026 by rpki-client