This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154515/788C7706F5FE11F091DB0CDE536F56BC/21F007E0F5FF11F0A5E3E8DF536F56BC.roa File: 21F007E0F5FF11F0A5E3E8DF536F56BC.roa (raw, json) Hash identifier: ZAt6K6k60nqrShg6eRI2J0s1p1pyz1r0uhqZ+HQMgpo= Subject key identifier: 7B:3E:C2:3A:BF:24:E9:16:52:17:A9:2F:6B:63:90:70:43:FC:C7:BB Certificate issuer: /CN=A9154515/serialNumber=43FBDDD5DB779A6B1EC48B3637FA97B318665B1B Certificate serial: 02 Authority key identifier: 43:FB:DD:D5:DB:77:9A:6B:1E:C4:8B:36:37:FA:97:B3:18:66:5B:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q_vd1dt3mmsexIs2N_qXsxhmWxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154515/788C7706F5FE11F091DB0CDE536F56BC/21F007E0F5FF11F0A5E3E8DF536F56BC.roa Signing time: Tue 20 Jan 2026 12:54:18 +0000 ROA not before: Tue 20 Jan 2026 12:54:18 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 142647 IP address blocks: 2001:df6:9b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154515/788C7706F5FE11F091DB0CDE536F56BC/Q_vd1dt3mmsexIs2N_qXsxhmWxs.crl rsync://rpki.apnic.net/member_repository/A9154515/788C7706F5FE11F091DB0CDE536F56BC/Q_vd1dt3mmsexIs2N_qXsxhmWxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q_vd1dt3mmsexIs2N_qXsxhmWxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 07:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154515, serialNumber=43FBDDD5DB779A6B1EC48B3637FA97B318665B1B Validity Not Before: Jan 20 12:54:18 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=696f7afa-3c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:94:18:3a:3a:a0:df:0a:f6:97:d4:a3:51:c8: 74:dd:20:5a:c2:e7:e0:eb:82:e2:e4:50:ce:54:6f: 9f:6d:d1:bb:b9:93:6e:99:a7:98:de:bd:f5:62:64: 7a:b6:cb:b8:d4:cb:97:85:f9:35:60:b3:5a:7b:f8: 2b:92:4e:96:f8:8c:e8:ff:fd:dc:40:8c:ef:f1:12: b9:14:44:a4:4b:ee:a8:fd:6d:03:ee:de:4a:3b:4f: 98:c9:b3:a3:d5:31:00:5c:42:cb:af:7c:2c:a8:aa: 27:51:fa:6e:19:12:1d:f0:59:99:18:1a:c4:87:45: 98:b8:98:99:de:da:4a:5c:7d:71:63:65:2b:1c:89: b3:5c:de:e7:91:1a:d4:e6:41:bf:b0:19:ca:98:39: 07:1d:10:5b:a0:4c:7a:f2:38:3b:79:4f:2f:3e:f1: 32:e5:1d:4c:6c:09:f6:1a:86:04:d2:30:6e:6d:03: b8:86:dd:9b:0a:60:45:72:42:71:9a:86:35:77:e4: 11:f9:c2:dd:51:30:82:db:9c:36:4f:ac:88:b2:7d: 9e:a0:d7:03:a6:e8:09:eb:51:c7:63:47:9a:3d:23: d4:25:32:14:b3:e1:29:8f:9d:4e:9b:76:21:c9:ac: 61:55:58:7e:19:1c:76:33:39:58:21:2d:37:cf:24: da:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3E:C2:3A:BF:24:E9:16:52:17:A9:2F:6B:63:90:70:43:FC:C7:BB X509v3 Authority Key Identifier: keyid:43:FB:DD:D5:DB:77:9A:6B:1E:C4:8B:36:37:FA:97:B3:18:66:5B:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154515/788C7706F5FE11F091DB0CDE536F56BC/Q_vd1dt3mmsexIs2N_qXsxhmWxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q_vd1dt3mmsexIs2N_qXsxhmWxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154515/788C7706F5FE11F091DB0CDE536F56BC/21F007E0F5FF11F0A5E3E8DF536F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:9b40::/48 Signature Algorithm: sha256WithRSAEncryption ad:41:8c:16:0a:2b:78:f0:4d:0f:04:f4:dd:90:b5:ca:68:ef: e7:37:cb:e2:4c:80:6d:5e:24:af:55:f1:0e:81:cb:e3:da:98: f6:60:71:33:0f:12:10:12:62:e3:fb:a0:9c:06:33:57:8d:49: 5b:25:14:a4:b6:c0:e6:46:31:49:64:e9:96:0f:fc:42:2d:d8: b1:df:40:c3:66:89:74:65:45:03:37:d8:33:e7:0f:d7:5d:83: d8:76:03:72:97:2f:50:d9:17:32:2f:12:bb:3e:71:7e:f7:87: ff:92:93:eb:1a:34:1b:7b:e3:5e:9a:11:e5:ab:ad:bd:c6:34: e8:fc:35:5d:ab:ec:1a:c4:69:8d:8a:4e:f3:85:bc:6a:4e:8b: 56:ee:20:93:51:f9:f7:4b:28:df:bf:c8:53:f9:d2:e2:eb:f2: 39:0a:c4:34:2b:cf:cc:04:3f:e2:8d:35:fb:b5:81:d0:b1:18: 04:eb:0a:0d:87:be:91:44:0f:db:f9:24:77:2e:15:79:9f:40: 10:12:25:34:0d:69:9a:fd:af:c6:9e:7e:55:c7:cd:33:4e:94: 00:1d:2d:11:a6:c8:19:a4:ac:36:f1:3b:fa:41:66:d0:63:78: 58:7d:f0:7d:fa:a0:5e:a2:fa:a7:a2:6e:6f:9f:54:f7:fa:04: 4d:c9:c0:84 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTE1 NDUxNTExMC8GA1UEBRMoNDNGQkRERDVEQjc3OUE2QjFFQzQ4QjM2MzdGQTk3QjMx ODY2NUIxQjAeFw0yNjAxMjAxMjU0MThaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NmY3YWZhLTNjNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCNlBg6OqDfCvaX1KNRyHTdIFrC5+DrguLkUM5Ub59t0bu5k26Zp5jevfViZHq2 y7jUy5eF+TVgs1p7+CuSTpb4jOj//dxAjO/xErkURKRL7qj9bQPu3ko7T5jJs6PV MQBcQsuvfCyoqidR+m4ZEh3wWZkYGsSHRZi4mJne2kpcfXFjZSscibNc3ueRGtTm Qb+wGcqYOQcdEFugTHryODt5Ty8+8TLlHUxsCfYahgTSMG5tA7iG3ZsKYEVyQnGa hjV35BH5wt1RMILbnDZPrIiyfZ6g1wOm6AnrUcdjR5o9I9QlMhSz4SmPnU6bdiHJ rGFVWH4ZHHYzOVghLTfPJNphAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUez7COr8k 6RZSF6kva2OQcEP8x7swHwYDVR0jBBgwFoAUQ/vd1dt3mmsexIs2N/qXsxhmWxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0NTE1Lzc4OEM3NzA2RjVG RTExRjA5MURCMENERTUzNkY1NkJDL1FfdmQxZHQzbW1zZXhJczJOX3FYc3hobVd4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUV92ZDFkdDNtbXNleElzMk5fcVhzeGhtV3hzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDUxNS83ODhDNzcwNkY1RkUxMUYwOTFEQjBDREU1MzZGNTZCQy8yMUYwMDdFMEY1 RkYxMUYwQTVFM0U4REY1MzZGNTZCQy5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfabQDANBgkqhkiG9w0BAQsFAAOCAQEArUGMFgorePBN DwT03ZC1ymjv5zfL4kyAbV4kr1XxDoHL49qY9mBxMw8SEBJi4/ugnAYzV41JWyUU pLbA5kYxSWTplg/8Qi3Ysd9Aw2aJdGVFAzfYM+cP112D2HYDcpcvUNkXMi8Suz5x fveH/5KT6xo0G3vjXpoR5autvcY06Pw1XavsGsRpjYpO84W8ak6LVu4gk1H590so 37/IU/nS4uvyOQrENCvPzAQ/4o01+7WB0LEYBOsKDYe+kUQP2/kkdy4VeZ9AEBIl NA1pmv2vxp5+VcfNM06UAB0tEabIGaSsNvE7+kFm0GN4WH3wffqgXqL6p6Jub59U 9/oETcnAhA== -----END CERTIFICATE-----Generated at Sun Jan 25 07:26:59 2026 by rpki-client