This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/CF2F506C8A0F11EA9DFF7F19C4F9AE02.roa File: CF2F506C8A0F11EA9DFF7F19C4F9AE02.roa (raw, json) Hash identifier: quIz4T4yVr2qFDWO8rHZkKK2ikeMSuNEyDrr7sIbSbk= Subject key identifier: 26:3B:51:47:2B:FB:15:CD:56:2D:DF:C3:B9:E2:37:CF:9E:7B:7F:2D Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1A26 Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/CF2F506C8A0F11EA9DFF7F19C4F9AE02.roa Signing time: Thu 08 Jan 2026 17:13:45 +0000 ROA not before: Thu 08 Jan 2026 17:13:45 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 0 IP address blocks: 43.249.212.0/22 maxlen: 22 114.141.72.0/21 maxlen: 21 124.158.24.0/22 maxlen: 22 202.9.70.0/23 maxlen: 23 202.74.62.0/23 maxlen: 23 2404:4e00:ff::/48 maxlen: 48 2404:4e00:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:12:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6694 (0x1a26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A, serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Jan 8 17:13:45 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695fe5c9-4141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fe:7c:3a:8a:a0:3d:93:0a:84:30:fc:9d:5c: 53:12:83:a2:db:d7:a0:51:6d:ce:7b:b1:93:cb:2d: 45:1d:10:39:60:2a:b3:8b:e9:59:c1:09:59:ec:ca: b8:20:91:9a:d1:d2:fa:e8:bd:01:3b:8f:18:9b:87: 26:9f:ac:22:04:3a:14:27:42:d7:24:6a:d5:47:d2: e0:00:72:45:f2:58:3a:61:43:f0:46:a6:e6:71:fb: 1c:85:6e:ed:76:62:e2:0f:3b:09:cd:cb:af:20:c6: 00:11:6a:ba:6a:65:a9:72:77:8e:e0:b2:9b:1e:4e: 58:e8:3e:19:f8:b2:d5:13:08:f0:4f:9a:5e:72:e0: cf:b4:8d:54:d2:90:57:ab:70:66:93:2f:b9:f8:99: 3a:74:ac:6e:d3:b7:22:17:ec:2e:89:0a:3e:a6:61: 94:af:92:ff:61:48:29:9d:7a:da:6a:33:fe:19:87: 61:7b:61:c2:e1:e7:d0:eb:b8:3e:b1:1f:f2:8e:8a: 9d:72:f4:42:b0:79:24:82:af:4c:91:f6:dd:98:e9: e5:77:73:cb:da:0d:69:7f:4b:f2:50:4a:86:35:ea: 18:e9:e5:bf:02:f5:fe:92:df:b1:e3:3e:d6:85:65: 91:a0:07:05:92:10:5d:7a:b4:7e:d3:26:96:60:f9: 20:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:3B:51:47:2B:FB:15:CD:56:2D:DF:C3:B9:E2:37:CF:9E:7B:7F:2D X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/CF2F506C8A0F11EA9DFF7F19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.249.212.0/22 114.141.72.0/21 124.158.24.0/22 202.9.70.0/23 202.74.62.0/23 IPv6: 2404:4e00:ff::/48 2404:4e00:6000::/40 Signature Algorithm: sha256WithRSAEncryption b7:d1:b7:9d:1a:1d:55:68:29:41:5f:a1:f7:4a:c4:4e:42:99: 6d:8f:58:97:bb:fc:72:d8:d2:35:1c:6b:5d:cc:94:18:22:35: 09:27:1d:58:bf:ae:20:ce:dc:86:6f:82:7f:e6:96:62:3a:60: 4e:ad:0e:44:1c:4f:87:12:bc:d5:8b:e7:7c:63:45:1e:f6:b1: 92:8a:5c:21:f8:c5:b5:d0:07:85:59:22:86:8b:90:3a:08:f9: d6:bc:e3:77:40:f8:0e:f3:04:34:e1:51:9e:68:af:e7:a5:b0: a3:4b:41:28:87:30:f9:9c:b9:d6:ea:3d:7a:fa:aa:f4:54:64: fd:a1:db:e5:73:35:86:70:55:12:dc:7a:0e:af:f0:af:bd:93: 73:db:76:f1:b6:97:00:85:6c:9d:aa:5c:9c:26:21:4b:72:a7: d9:99:fe:e6:f5:35:9c:64:5c:a7:e7:8a:8d:5d:39:70:71:b9: 56:7e:b3:5e:d5:96:4c:74:bb:c5:1a:b2:4c:68:3e:7a:24:d6: 11:49:a5:c2:74:d6:a1:17:29:fc:f5:04:8d:b9:f6:a0:33:94: ef:f0:d8:cc:9a:5d:8a:88:05:fe:68:97:2d:12:39:bc:11:03: 08:bc:72:52:a6:73:21:9d:a9:ed:cc:8b:00:24:6b:11:5e:f4: 65:ea:25:6a -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgICGiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjYwMTA4MTcxMzQ1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVmZTVjOS00MTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/58OoqgPZMKhDD8nVxTEoOi29egUW3Oe7GTyy1FHRA5YCqzi+lZwQlZ7Mq4 IJGa0dL66L0BO48Ym4cmn6wiBDoUJ0LXJGrVR9LgAHJF8lg6YUPwRqbmcfschW7t dmLiDzsJzcuvIMYAEWq6amWpcneO4LKbHk5Y6D4Z+LLVEwjwT5pecuDPtI1U0pBX q3Bmky+5+Jk6dKxu07ciF+wuiQo+pmGUr5L/YUgpnXraajP+GYdhe2HC4efQ67g+ sR/yjoqdcvRCsHkkgq9MkfbdmOnld3PL2g1pf0vyUEqGNeoY6eW/AvX+kt+x4z7W hWWRoAcFkhBderR+0yaWYPkg/wIDAQABo4ICxjCCAsIwHQYDVR0OBBYEFCY7UUcr +xXNVi3fw7niN8+ee38tMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvQ0YyRjUwNkM4 QTBGMTFFQTlERkY3RjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUAYIKwYBBQUHAQcBAf8E QTA/MCQEAgABMB4DBAIr+dQDBANyjUgDBAJ8nhgDBAHKCUYDBAHKSj4wFwQCAAIw EQMHACQETgAA/wMGACQETgBgMA0GCSqGSIb3DQEBCwUAA4IBAQC30bedGh1VaClB X6H3SsROQpltj1iXu/xy2NI1HGtdzJQYIjUJJx1Yv64gztyGb4J/5pZiOmBOrQ5E HE+HErzVi+d8Y0Ue9rGSilwh+MW10AeFWSKGi5A6CPnWvON3QPgO8wQ04VGeaK/n pbCjS0EohzD5nLnW6j16+qr0VGT9odvlczWGcFUS3HoOr/CvvZNz23bxtpcAhWyd qlycJiFLcqfZmf7m9TWcZFyn54qNXTlwcblWfrNe1ZZMdLvFGrJMaD56JNYRSaXC dNahFyn89QSNufagM5Tv8NjMml2KiAX+aJctEjm8EQMIvHJSpnMhnantzIsAJGsR XvRl6iVq -----END CERTIFICATE-----Generated at Sun Jan 25 14:22:55 2026 by rpki-client