This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/0A7CA184B8C611F0B55B8B4EC4F9AE02.roa File: 0A7CA184B8C611F0B55B8B4EC4F9AE02.roa (raw, json) Hash identifier: h1zv5buc+Cn7JuifmG3cLQTCbFRzAjARZCrKCnqaFQY= Subject key identifier: 75:F8:BE:79:F2:4E:4A:65:3B:F0:AB:41:0D:8A:87:A1:F3:A9:4D:B2 Certificate issuer: /CN=A916708F/serialNumber=2D329912D69903B850097F8C6ED8571DAC7105AD Certificate serial: 0D0F Authority key identifier: 2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/0A7CA184B8C611F0B55B8B4EC4F9AE02.roa Signing time: Mon 10 Nov 2025 04:24:48 +0000 ROA not before: Mon 10 Nov 2025 04:24:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138640 IP address blocks: 123.136.28.0/24 maxlen: 24 2404:7e00:501::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.crl rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3343 (0xd0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916708F, serialNumber=2D329912D69903B850097F8C6ED8571DAC7105AD Validity Not Before: Nov 10 04:24:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6911690f-2179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3d:e1:fc:e2:97:01:31:a7:6d:74:6b:74:2f: 00:5b:ec:aa:cc:f2:59:46:e9:5f:30:4f:99:5f:61: 7d:82:3c:37:40:e0:c8:70:d7:8e:e9:8d:fb:64:e5: c3:fe:e2:f9:74:29:a8:0c:3f:15:ac:21:42:f3:df: 01:f4:ad:1a:05:c6:09:8a:3d:f6:90:a5:9c:ee:1f: f8:61:f6:5f:55:71:0d:6f:a2:1f:03:17:ac:1f:4c: 97:d6:ea:9d:af:1c:b9:0b:49:19:f7:d7:81:4f:c1: e6:69:5a:cf:b0:7f:2b:92:bd:ca:75:f3:94:b3:9f: a7:6f:48:51:14:de:e8:9f:8e:d7:83:23:4f:3c:f9: 91:5e:98:98:e7:05:21:13:41:ee:ef:48:a4:1b:0e: 44:70:4f:9f:36:0a:05:7d:66:6c:7b:47:49:2f:d2: a0:f1:0c:ed:3b:fb:6d:e0:5c:5b:f1:3d:8c:b0:59: 52:ee:a2:b5:3a:71:48:28:4e:d3:59:82:e5:02:23: 82:ad:e4:27:81:94:26:4b:52:5e:ee:94:ca:37:56: 89:cc:c2:59:a5:e8:14:45:f8:d9:4c:f6:05:f4:c8: 56:e0:eb:8f:af:b3:d3:f7:e6:31:db:72:9d:f5:3d: 5e:48:1c:d0:c3:60:58:9e:43:03:7a:e6:8f:cd:7e: f8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F8:BE:79:F2:4E:4A:65:3B:F0:AB:41:0D:8A:87:A1:F3:A9:4D:B2 X509v3 Authority Key Identifier: keyid:2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/0A7CA184B8C611F0B55B8B4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.136.28.0/24 IPv6: 2404:7e00:501::/48 Signature Algorithm: sha256WithRSAEncryption 46:e2:f4:1d:e2:25:60:23:e8:db:dc:ea:40:df:4e:96:a8:4b: c5:98:97:28:4d:48:66:2c:8c:9f:92:b8:6f:dd:27:82:a8:1d: 89:89:b6:f9:0b:25:8f:58:3b:2e:c1:80:b5:85:29:27:17:4c: 80:2a:69:0e:10:4c:c7:94:99:3c:ee:a2:1c:23:2b:80:47:a4: 8f:79:51:23:ab:46:03:99:66:e7:61:0d:4e:e0:b3:42:13:bd: f9:71:2b:90:89:40:2a:e6:b2:6a:f0:ad:38:7f:34:bd:b1:d6: 7a:4d:7c:1b:4e:c3:c4:d2:f7:23:aa:e7:99:32:bf:c1:8a:b1: 9e:b3:1a:b1:1c:34:40:6e:4f:92:97:cc:9c:16:4e:23:c9:6b: e8:fd:be:14:68:c2:54:a3:6d:dc:25:6d:10:81:3d:74:f3:bb: b3:ca:91:4d:d2:13:b8:9f:2f:22:a4:b8:6f:b8:eb:11:30:dc: 73:8b:3c:3c:6e:1c:6a:86:3c:5f:be:b0:7b:b8:15:68:72:70: e5:31:7a:f7:4a:42:1b:b1:41:79:19:c8:90:0f:61:f1:ee:23: fc:2e:3c:71:93:94:59:06:f4:c4:8f:2a:e0:8a:c7:c2:3b:aa: 0f:0d:8b:ee:cb:82:8f:d7:13:93:5c:fd:14:be:37:10:68:52: 52:1b:35:7a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwOEYxMTAvBgNVBAUTKDJEMzI5OTEyRDY5OTAzQjg1MDA5N0Y4QzZFRDg1NzFE QUM3MTA1QUQwHhcNMjUxMTEwMDQyNDQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OTExNjkwZi0yMTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsz3h/OKXATGnbXRrdC8AW+yqzPJZRulfME+ZX2F9gjw3QODIcNeO6Y37ZOXD /uL5dCmoDD8VrCFC898B9K0aBcYJij32kKWc7h/4YfZfVXENb6IfAxesH0yX1uqd rxy5C0kZ99eBT8HmaVrPsH8rkr3KdfOUs5+nb0hRFN7on47XgyNPPPmRXpiY5wUh E0Hu70ikGw5EcE+fNgoFfWZse0dJL9Kg8QztO/tt4Fxb8T2MsFlS7qK1OnFIKE7T WYLlAiOCreQngZQmS1Je7pTKN1aJzMJZpegURfjZTPYF9MhW4OuPr7PT9+Yx23Kd 9T1eSBzQw2BYnkMDeuaPzX74oQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHX4vnny TkplO/CrQQ2Kh6HzqU2yMB8GA1UdIwQYMBaAFC0ymRLWmQO4UAl/jG7YVx2scQWt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzA4Ri81NkRCMEYyNEYx NjMxMUU5OURCRURGNjVDNEY5QUUwMi9MVEtaRXRhWkE3aFFDWC1NYnRoWEhheHhC YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUS1pFdGFaQTdoUUNYLU1idGhYSGF4eEJhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjcwOEYvNTZEQjBGMjRGMTYzMTFFOTlEQkVERjY1QzRGOUFFMDIvMEE3Q0ExODRC OEM2MTFGMEI1NUI4QjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAB7iBwwDwQCAAIwCQMHACQEfgAFATANBgkqhkiG9w0BAQsF AAOCAQEARuL0HeIlYCPo29zqQN9OlqhLxZiXKE1IZiyMn5K4b90ngqgdiYm2+Qsl j1g7LsGAtYUpJxdMgCppDhBMx5SZPO6iHCMrgEekj3lRI6tGA5lm52ENTuCzQhO9 +XErkIlAKuayavCtOH80vbHWek18G07DxNL3I6rnmTK/wYqxnrMasRw0QG5PkpfM nBZOI8lr6P2+FGjCVKNt3CVtEIE9dPO7s8qRTdITuJ8vIqS4b7jrETDcc4s8PG4c aoY8X76we7gVaHJw5TF690pCG7FBeRnIkA9h8e4j/C48cZOUWQb0xI8q4IrHwjuq Dw2L7suCj9cTk1z9FL43EGhSUhs1eg== -----END CERTIFICATE-----Generated at Sat Dec 6 19:23:40 2025 by rpki-client