This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/FF3178EAB14B11EFB6CD146AC4F9AE02.roa File: FF3178EAB14B11EFB6CD146AC4F9AE02.roa (raw, json) Hash identifier: pR/AYlcoSeqOspa7u7n734XUDFYwytW2eGkt0XW/tEY= Subject key identifier: 17:C6:D2:8D:7D:5B:42:B3:D6:69:34:5A:A3:F4:88:77:5B:44:1A:25 Certificate issuer: /CN=A914E0FE/serialNumber=B02795D2E09E3AAA3E36D2B592D2E0E9FBB7EFBD Certificate serial: BE Authority key identifier: B0:27:95:D2:E0:9E:3A:AA:3E:36:D2:B5:92:D2:E0:E9:FB:B7:EF:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/FF3178EAB14B11EFB6CD146AC4F9AE02.roa Signing time: Tue 25 Nov 2025 04:22:02 +0000 ROA not before: Tue 25 Nov 2025 04:22:02 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 142634 IP address blocks: 2001:df4:ad40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.crl rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:54:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=B02795D2E09E3AAA3E36D2B592D2E0E9FBB7EFBD Validity Not Before: Nov 25 04:22:02 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69252eea-b50e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e3:54:13:ac:6c:b7:03:5d:26:d9:4d:c3:ed: 35:90:d6:dd:62:59:33:62:53:12:fb:d7:98:88:c2: 06:26:d5:08:8b:6b:b2:20:9b:a6:c6:76:46:8d:39: f6:70:e1:83:50:fe:64:14:69:56:6a:0e:f9:c9:6a: 4c:71:5b:49:50:d2:7e:4e:9a:47:36:85:fd:b0:e3: b7:08:02:c7:97:57:ca:48:04:b1:54:ae:8c:3f:9d: 28:a7:fd:df:27:7d:33:6e:f9:1b:1a:3c:7d:bd:07: d0:a8:5d:d0:d6:5a:bb:34:32:9a:90:44:b1:b9:40: ec:a8:88:ff:61:19:c0:d1:c4:89:24:f5:12:10:44: b4:dc:85:d7:a3:25:02:71:4f:04:bf:93:f6:2d:09: 91:07:d7:a9:26:a5:00:02:bb:8e:72:38:9a:29:99: 12:5f:86:2b:57:d3:3e:7d:5d:9c:79:5c:55:b6:4f: 24:61:de:48:7b:85:35:02:78:d4:6d:f6:be:d1:05: 76:dc:83:bc:50:bc:81:32:2a:a9:ca:12:6c:9f:aa: 70:e7:52:72:02:99:17:a8:07:c7:eb:7a:ab:0f:c4: e5:81:60:b1:d0:55:b7:33:9f:7c:f8:70:ee:d9:d0: 47:f0:7a:4e:91:dc:54:f8:b8:05:c1:c8:a0:08:ed: 68:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:C6:D2:8D:7D:5B:42:B3:D6:69:34:5A:A3:F4:88:77:5B:44:1A:25 X509v3 Authority Key Identifier: keyid:B0:27:95:D2:E0:9E:3A:AA:3E:36:D2:B5:92:D2:E0:E9:FB:B7:EF:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/FF3178EAB14B11EFB6CD146AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:ad40::/48 Signature Algorithm: sha256WithRSAEncryption 97:e2:6a:ce:70:98:f3:0d:98:9a:83:35:df:32:02:9e:2d:d5: 9f:8c:3d:e6:bf:46:91:c2:9f:1f:58:19:f0:66:9f:be:b8:0f: 05:9a:1d:5d:3a:40:d4:9d:ce:dd:a7:58:2a:78:f7:88:25:ee: 7c:e9:af:7f:71:37:58:7a:57:97:7f:d5:76:29:c4:21:3a:72: 56:61:7b:7f:08:b3:0f:2d:5f:a9:77:60:87:07:72:fa:6d:18: 20:76:d2:dd:b0:ff:29:e6:73:46:84:c4:f2:c7:bb:59:19:b9: f2:bd:78:39:45:68:84:03:d6:75:ba:24:87:a9:2d:34:c8:ab: ea:72:d3:c8:c8:f6:02:0a:ce:f6:05:5a:17:de:6d:2e:2a:91: 4f:c3:cb:f8:95:5f:06:d0:df:28:17:01:03:25:63:6e:7b:01: 30:e4:6d:ff:ee:1f:3d:1f:f7:dd:97:68:fb:ab:aa:61:6e:c1: dc:db:05:ab:e3:bd:43:99:be:c7:ae:1e:c8:9c:c5:5b:36:40: b8:8e:e0:27:d8:9b:49:df:13:01:61:93:c1:22:9d:b1:45:74: 52:4b:cb:ae:f8:e2:42:59:c0:81:9a:47:a5:4c:55:ee:04:f5: 19:ad:3a:9d:5d:18:93:cf:0c:3e:5a:35:e5:54:ba:44:4b:5f: 97:c1:df:12 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwRkUxMTAvBgNVBAUTKEIwMjc5NUQyRTA5RTNBQUEzRTM2RDJCNTkyRDJFMEU5 RkJCN0VGQkQwHhcNMjUxMTI1MDQyMjAyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI1MmVlYS1iNTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoONUE6xstwNdJtlNw+01kNbdYlkzYlMS+9eYiMIGJtUIi2uyIJumxnZGjTn2 cOGDUP5kFGlWag75yWpMcVtJUNJ+TppHNoX9sOO3CALHl1fKSASxVK6MP50op/3f J30zbvkbGjx9vQfQqF3Q1lq7NDKakESxuUDsqIj/YRnA0cSJJPUSEES03IXXoyUC cU8Ev5P2LQmRB9epJqUAAruOcjiaKZkSX4YrV9M+fV2ceVxVtk8kYd5Ie4U1AnjU bfa+0QV23IO8ULyBMiqpyhJsn6pw51JyApkXqAfH63qrD8TlgWCx0FW3M598+HDu 2dBH8HpOkdxU+LgFwcigCO1osQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBfG0o19 W0Kz1mk0WqP0iHdbRBolMB8GA1UdIwQYMBaAFLAnldLgnjqqPjbStZLS4On7t++9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBGRS8zNzMzNEJFMkFC Q0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9zQ2VWMHVDZU9xby1OdEsxa3RMZzZmdTM3 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NDZVYwdUNlT3FvLU50SzFrdExnNmZ1Mzc3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUwRkUvMzczMzRCRTJBQkNBMTFFRkE5OTREMTI5QzRGOUFFMDIvRkYzMTc4RUFC MTRCMTFFRkI2Q0QxNDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30rUAwDQYJKoZIhvcNAQELBQADggEBAJfias5wmPMN mJqDNd8yAp4t1Z+MPea/RpHCnx9YGfBmn764DwWaHV06QNSdzt2nWCp494gl7nzp r39xN1h6V5d/1XYpxCE6clZhe38Isw8tX6l3YIcHcvptGCB20t2w/ynmc0aExPLH u1kZufK9eDlFaIQD1nW6JIepLTTIq+py08jI9gIKzvYFWhfebS4qkU/Dy/iVXwbQ 3ygXAQMlY257ATDkbf/uHz0f992XaPurqmFuwdzbBavjvUOZvseuHsicxVs2QLiO 4CfYm0nfEwFhk8EinbFFdFJLy6744kJZwIGaR6VMVe4E9RmtOp1dGJPPDD5aNeVU ukRLX5fB3xI= -----END CERTIFICATE-----Generated at Sun Dec 7 01:54:38 2025 by rpki-client