This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/2E96A63A690A11EF9525E980C4F9AE02.roa File: 2E96A63A690A11EF9525E980C4F9AE02.roa (raw, json) Hash identifier: 4gpvAniE6HSvKn1r2+8S4mH+/QJhWbiSRqm86gbRBaI= Subject key identifier: 10:A6:6A:81:9D:E7:1F:14:77:B5:36:12:C0:04:53:B9:F6:61:D1:AB Certificate issuer: /CN=A9157D7A/serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Certificate serial: 0834 Authority key identifier: 40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/2E96A63A690A11EF9525E980C4F9AE02.roa Signing time: Fri 09 Jan 2026 15:27:10 +0000 ROA not before: Fri 09 Jan 2026 15:27:10 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 45820 IP address blocks: 14.194.0.0/18 maxlen: 24 14.194.64.0/18 maxlen: 24 14.194.128.0/18 maxlen: 24 14.194.208.0/20 maxlen: 24 14.194.240.0/20 maxlen: 24 14.195.0.0/18 maxlen: 24 14.195.64.0/19 maxlen: 24 14.195.96.0/19 maxlen: 24 14.195.128.0/18 maxlen: 24 14.195.192.0/20 maxlen: 24 14.195.208.0/20 maxlen: 24 14.195.240.0/20 maxlen: 24 49.200.0.0/14 maxlen: 14 49.200.0.0/19 maxlen: 24 49.200.40.0/21 maxlen: 24 49.200.48.0/21 maxlen: 24 49.200.56.0/22 maxlen: 24 49.200.60.0/22 maxlen: 24 49.200.96.0/21 maxlen: 24 49.200.104.0/21 maxlen: 24 49.200.112.0/21 maxlen: 24 49.200.120.0/21 maxlen: 24 49.200.128.0/21 maxlen: 24 49.200.136.0/21 maxlen: 24 49.200.144.0/21 maxlen: 24 49.200.152.0/21 maxlen: 24 49.200.160.0/21 maxlen: 24 49.202.208.0/24 maxlen: 24 49.249.0.0/17 maxlen: 24 49.249.128.0/18 maxlen: 24 115.160.217.0/24 maxlen: 24 182.156.0.0/18 maxlen: 22 182.156.0.0/22 maxlen: 24 182.156.4.0/23 maxlen: 24 182.156.8.0/21 maxlen: 24 182.156.16.0/22 maxlen: 24 182.156.22.0/23 maxlen: 24 182.156.24.0/21 maxlen: 23 182.156.24.0/23 maxlen: 24 182.156.28.0/22 maxlen: 24 182.156.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:40:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D7A, serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Validity Not Before: Jan 9 15:27:10 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69611e4e-5fae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:10:19:94:89:94:21:f6:e9:56:d7:fc:4d:7d: 43:b5:8a:c9:16:21:5c:0e:fb:6b:59:9e:13:c4:f6: c6:5f:b6:23:68:b5:48:52:fe:a4:b7:ed:36:48:78: 6c:f3:3c:26:0d:eb:79:bf:0e:3e:d3:31:17:10:a2: 0b:a2:32:32:22:2f:88:38:7d:80:8b:6f:10:a1:d6: a8:57:16:89:a6:04:be:e2:4c:0c:45:7e:88:4d:cc: 80:a4:9b:52:87:1e:89:44:2e:ac:88:06:ec:3f:b1: 42:ad:88:d4:a4:46:63:c4:bd:00:d3:41:e5:ca:e3: 7d:72:df:d0:77:9e:4e:2a:5e:9d:1e:5c:71:7f:06: 25:81:ef:fe:5c:9b:e9:0d:0e:e4:2e:a1:b3:5f:1e: ac:a1:1c:69:8c:9f:f8:06:ab:cd:a6:fe:34:7d:ce: d5:ca:4a:ec:5a:c3:d4:02:0d:1f:ae:da:cd:9d:88: 35:f7:4f:08:d6:7c:53:57:73:38:b4:d7:be:00:f3: 4e:b2:56:3b:e3:8c:33:7c:cc:1a:79:51:a1:b1:4e: 09:1a:d3:45:98:04:a6:ed:05:05:db:59:89:ab:e0: 49:0a:79:6a:ca:e5:0c:b6:bf:0b:f0:6f:85:e3:8b: 48:4b:65:46:10:cc:cb:22:f0:7c:1d:3e:d0:69:e6: e7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:A6:6A:81:9D:E7:1F:14:77:B5:36:12:C0:04:53:B9:F6:61:D1:AB X509v3 Authority Key Identifier: keyid:40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/2E96A63A690A11EF9525E980C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.194.0.0-14.194.191.255 14.194.208.0/20 14.194.240.0-14.195.223.255 14.195.240.0/20 49.200.0.0/14 49.249.0.0-49.249.191.255 115.160.217.0/24 182.156.0.0/18 Signature Algorithm: sha256WithRSAEncryption 51:9b:3a:95:05:8a:e8:9b:aa:c2:75:81:81:22:d9:12:7b:de: 7b:42:b0:ce:f5:22:0a:0b:91:a4:81:79:46:4d:db:7a:37:ea: a0:38:54:ef:81:28:f4:1e:c6:48:df:93:c2:11:c2:6e:11:2c: 21:63:18:d7:41:4a:d4:af:91:28:c2:ba:eb:4a:3e:dc:9e:74: 74:d3:80:6b:f3:4b:c6:c4:84:03:85:b6:a1:7e:cd:5c:16:80: 84:e8:6a:63:e9:81:61:5c:33:a2:48:0c:b6:af:93:15:68:c6: 85:51:02:4e:68:80:13:b7:b3:48:f1:44:95:47:75:a6:a4:ff: b2:2d:bc:c7:0d:23:29:1d:f6:2e:48:61:c4:8f:8a:7a:27:4b: 77:b3:60:2a:57:ee:9c:be:ce:8a:47:12:9d:04:3b:81:11:ae: 02:75:0a:08:70:c6:fa:5c:08:86:ae:77:bd:7d:6c:95:f8:a7: 2f:a9:77:9c:34:82:7d:e7:ee:6e:9d:b4:e0:0f:16:0b:29:ae: 05:d6:c2:2a:d6:c5:24:2e:2a:02:01:48:27:02:07:2e:79:26: 54:3b:00:85:9d:ef:e2:73:48:52:92:c0:e0:65:16:3d:5c:89: 65:cf:51:17:b3:e6:1b:ea:01:a7:90:1b:1d:d9:81:9f:1c:67: e9:a8:f5:ec -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEN0ExMTAvBgNVBAUTKDQwMUI0Mjk5MDZDOTBFQTAzRUNGQzYxQjE1QkE0RUYx MjM5MDMzNzkwHhcNMjYwMTA5MTUyNzEwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDDA02OTYxMWU0ZS01ZmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRAZlImUIfbpVtf8TX1DtYrJFiFcDvtrWZ4TxPbGX7YjaLVIUv6kt+02SHhs 8zwmDet5vw4+0zEXEKILojIyIi+IOH2Ai28QodaoVxaJpgS+4kwMRX6ITcyApJtS hx6JRC6siAbsP7FCrYjUpEZjxL0A00HlyuN9ct/Qd55OKl6dHlxxfwYlge/+XJvp DQ7kLqGzXx6soRxpjJ/4BqvNpv40fc7VykrsWsPUAg0frtrNnYg1908I1nxTV3M4 tNe+APNOslY744wzfMwaeVGhsU4JGtNFmASm7QUF21mJq+BJCnlqyuUMtr8L8G+F 44tIS2VGEMzLIvB8HT7QaebnZQIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFBCmaoGd 5x8Ud7U2EsAEU7n2YdGrMB8GA1UdIwQYMBaAFEAbQpkGyQ6gPs/GGxW6TvEjkDN5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q3QS81RERDQ0NDNjk5 MTUxMUVCOTY3MjcyNDNDNEY5QUUwMi9RQnRDbVFiSkRxQS16OFliRmJwTzhTT1FN M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCdENtUWJKRHFBLXo4WWJGYnBPOFNPUU0zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEN0EvNUREQ0NDQzY5OTE1MTFFQjk2NzI3MjQzQzRGOUFFMDIvMkU5NkE2M0E2 OTBBMTFFRjk1MjVFOTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXgYIKwYBBQUHAQcBAf8E TzBNMEsEAgABMEUwCwMDAQ7CAwQGDsKAAwQEDsLQMAwDBAQOwvADBAUOw8ADBAQO w/ADAwIxyDALAwMAMfkDBAYx+YADBABzoNkDBAa2nAAwDQYJKoZIhvcNAQELBQAD ggEBAFGbOpUFiuibqsJ1gYEi2RJ73ntCsM71IgoLkaSBeUZN23o36qA4VO+BKPQe xkjfk8IRwm4RLCFjGNdBStSvkSjCuutKPtyedHTTgGvzS8bEhAOFtqF+zVwWgITo amPpgWFcM6JIDLavkxVoxoVRAk5ogBO3s0jxRJVHdaak/7ItvMcNIykd9i5IYcSP inonS3ezYCpX7py+zopHEp0EO4ERrgJ1CghwxvpcCIaud719bJX4py+pd5w0gn3n 7m6dtOAPFgsprgXWwirWxSQuKgIBSCcCBy55JlQ7AIWd7+JzSFKSwOBlFj1ciWXP URez5hvqAaeQGx3ZgZ8cZ+mo9ew= -----END CERTIFICATE-----Generated at Sun Jan 25 09:45:00 2026 by rpki-client