This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/DD2F3D28E8A311F0962A42EF556F56BC.roa File: DD2F3D28E8A311F0962A42EF556F56BC.roa (raw, json) Hash identifier: uH76ub+Yxg/NeN4NZguk0O049t+6uu0D6FmQkiqbWKo= Subject key identifier: D6:C8:C2:A9:EC:5D:98:AA:24:59:B8:FC:B8:25:75:EF:30:8D:16:45 Certificate issuer: /CN=A9168221/serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Certificate serial: 68 Authority key identifier: 2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/DD2F3D28E8A311F0962A42EF556F56BC.roa Signing time: Sat 03 Jan 2026 12:58:14 +0000 ROA not before: Sat 03 Jan 2026 12:58:14 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 133190 IP address blocks: 163.61.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168221, serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Validity Not Before: Jan 3 12:58:14 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69591265-b34e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1b:a8:e2:75:09:ea:a0:0d:71:2e:97:73:b0: c4:21:0b:5b:5f:cc:3c:09:34:59:01:86:eb:ab:f9: 7e:67:4d:65:f2:45:37:39:5c:26:50:f3:4b:d4:38: a8:45:fc:c6:d3:7c:f3:2b:4b:e7:e8:0f:63:b5:d8: 43:73:9e:6f:c7:ad:49:48:07:ab:96:63:23:75:a4: 8f:5b:c4:a0:9a:c1:aa:74:8b:1e:43:9f:c8:16:b4: 78:0e:07:bc:67:6d:6c:db:41:4b:8a:5d:0a:5c:67: 52:12:75:48:1d:ba:71:d7:0d:d0:10:a6:f3:f0:52: 97:ae:e2:35:13:86:7c:c9:27:a2:5e:07:9e:61:9c: 11:fe:03:91:b8:2e:b7:fd:50:f2:8f:8c:c0:cf:1e: 6d:76:eb:ca:a2:1c:7c:aa:9a:b4:0d:0a:04:b3:0f: 47:cb:1d:37:f0:56:88:8d:bd:00:ad:87:06:d2:c4: d1:03:12:50:2c:7e:b2:9d:8e:b1:cb:fc:47:b9:b7: 19:2d:d5:02:64:f0:c7:f0:52:02:e3:22:ee:9b:f8: 28:48:85:04:45:17:a8:67:11:1d:a4:fb:9a:ed:7c: a7:0f:37:3f:54:9b:18:a3:8c:56:ce:92:97:ef:35: 8a:72:b9:78:48:dd:a5:12:b7:85:59:88:6e:93:cc: 95:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C8:C2:A9:EC:5D:98:AA:24:59:B8:FC:B8:25:75:EF:30:8D:16:45 X509v3 Authority Key Identifier: keyid:2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/DD2F3D28E8A311F0962A42EF556F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.248.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:71:82:95:95:c6:44:f2:1b:bf:b3:5e:9b:3a:fa:d6:f2:48: a4:61:64:26:ba:57:23:8b:70:2e:dd:74:ce:f1:e3:e8:69:5a: 0c:58:ca:ec:17:b5:40:64:3e:08:40:5a:76:84:20:01:90:af: 4e:90:58:00:65:ba:4e:49:ae:c2:62:1a:1d:f0:9b:e1:a5:3a: 30:72:f3:b3:b2:12:fe:b2:02:1f:c7:b3:9a:83:c7:db:f5:4e: 42:55:2e:01:e3:34:f3:b2:c6:fd:b5:96:a3:1b:af:0b:fb:22: b2:9d:22:c6:52:22:da:19:ba:97:b3:e3:88:d8:ba:54:5a:58: 56:bc:60:2d:9c:4a:53:d6:41:84:b9:f4:33:6c:30:b3:4b:7d: a4:b8:84:ad:56:59:c6:54:22:f1:5b:fe:3c:57:d2:bc:9e:2d: 4c:ef:b6:2b:f4:80:6e:c8:52:cf:56:fc:ac:ff:4e:a3:28:71: 7b:6d:ff:78:fc:0b:cd:23:a2:2a:45:15:10:9f:66:49:89:c1: f0:b9:5c:25:db:d9:15:bd:99:fb:9f:bf:fa:9b:d5:bb:2f:eb: 40:b0:38:cf:b1:97:35:56:82:ac:03:ee:bd:ec:29:f6:14:2b: 0f:2b:4c:aa:bf:84:1c:8b:0d:04:bc:71:4e:2b:f3:cc:72:e4: a8:21:e4:27 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODIyMTExMC8GA1UEBRMoMkM2N0QyMTY5NkIzQTFDMUJDMkNFNDlGQ0JFMEE3QTUz QTM3RDNBNjAeFw0yNjAxMDMxMjU4MTRaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NTkxMjY1LWIzNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdG6jidQnqoA1xLpdzsMQhC1tfzDwJNFkBhuur+X5nTWXyRTc5XCZQ80vUOKhF /MbTfPMrS+foD2O12ENznm/HrUlIB6uWYyN1pI9bxKCawap0ix5Dn8gWtHgOB7xn bWzbQUuKXQpcZ1ISdUgdunHXDdAQpvPwUpeu4jUThnzJJ6JeB55hnBH+A5G4Lrf9 UPKPjMDPHm1268qiHHyqmrQNCgSzD0fLHTfwVoiNvQCthwbSxNEDElAsfrKdjrHL /Ee5txkt1QJk8MfwUgLjIu6b+ChIhQRFF6hnER2k+5rtfKcPNz9UmxijjFbOkpfv NYpyuXhI3aUSt4VZiG6TzJX5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU1sjCqexd mKokWbj8uCV17zCNFkUwHwYDVR0jBBgwFoAULGfSFpazocG8LOSfy+CnpTo306Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4MjIxLzMzNTM1Q0IwNjU0 QzExRjA4QjM5RTcxQ0M0RjlBRTAyL0xHZlNGcGF6b2NHOExPU2Z5LUNucFRvMzA2 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTEdmU0ZwYXpvY0c4TE9TZnktQ25wVG8zMDZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODIyMS8zMzUzNUNCMDY1NEMxMUYwOEIzOUU3MUNDNEY5QUUwMi9ERDJGM0QyOEU4 QTMxMUYwOTYyQTQyRUY1NTZGNTZCQy5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM9+DANBgkqhkiG9w0BAQsFAAOCAQEADnGClZXGRPIbv7Ne mzr61vJIpGFkJrpXI4twLt10zvHj6GlaDFjK7Be1QGQ+CEBadoQgAZCvTpBYAGW6 TkmuwmIaHfCb4aU6MHLzs7IS/rICH8ezmoPH2/VOQlUuAeM087LG/bWWoxuvC/si sp0ixlIi2hm6l7PjiNi6VFpYVrxgLZxKU9ZBhLn0M2wws0t9pLiErVZZxlQi8Vv+ PFfSvJ4tTO+2K/SAbshSz1b8rP9Ooyhxe23/ePwLzSOiKkUVEJ9mSYnB8LlcJdvZ Fb2Z+5+/+pvVuy/rQLA4z7GXNVaCrAPuvewp9hQrDytMqr+EHIsNBLxxTivzzHLk qCHkJw== -----END CERTIFICATE-----Generated at Sun Jan 25 09:04:39 2026 by rpki-client