This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa File: 5BE6836E501B11F0928AD730C4F9AE02.roa (raw, json) Hash identifier: ot0PiXgJFtG3ow9OOuQQJ5zHZoHZdTDEI+ufokydrtM= Subject key identifier: A3:AE:F7:E7:5C:A0:DB:EE:BD:05:10:BA:FD:B4:0C:83:E0:1C:79:4B Certificate issuer: /CN=A91685E9/serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Certificate serial: DA Authority key identifier: F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa Signing time: Sat 06 Dec 2025 09:34:50 +0000 ROA not before: Sat 06 Dec 2025 09:34:50 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152565 IP address blocks: 2401:e920::/33 maxlen: 33 2401:e920:8000::/34 maxlen: 34 2401:e920:c00c::/48 maxlen: 48 2401:e920:fffa::/48 maxlen: 48 2401:e920:fffb::/48 maxlen: 48 2401:e920:fffc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 09:43:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91685E9, serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Validity Not Before: Dec 6 09:34:50 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6933f8ba-604d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6c:60:31:1c:3b:92:a4:f9:63:61:64:a7:97: ac:71:e3:a5:ff:fd:e1:d9:56:26:17:00:41:e7:60: b8:f9:c7:29:1e:e6:a2:85:11:dd:6b:1b:9c:30:03: 39:c9:c8:e3:6c:74:f3:29:43:09:8c:ca:53:fd:70: 5e:a8:77:03:e8:1f:e2:ea:af:30:5d:57:41:d8:1a: 55:c2:ce:f6:30:bd:ff:39:1e:fd:27:aa:cf:a0:f1: 7f:a6:87:04:7e:ae:07:20:13:5b:27:87:d0:9b:89: e8:59:97:a1:22:5b:aa:a1:db:2b:75:06:9f:45:80: 20:4f:ed:5f:a3:0e:c4:ae:d8:5f:81:18:0b:ce:3b: 54:a2:cf:4f:0f:13:ff:fd:37:41:30:6c:a7:82:9f: df:56:d9:18:3d:ad:be:ff:07:a6:74:b4:83:e8:4c: 5a:b2:76:a2:7f:c4:28:6a:38:0a:1c:aa:b0:78:03: 30:57:7f:35:cd:86:2c:19:53:ae:0c:15:26:53:4f: ef:0e:48:7f:52:79:d8:09:0e:61:82:55:1a:ea:30: 07:91:2c:0a:b0:c2:37:46:30:fc:ff:b3:bd:14:15: 1c:26:c5:6e:18:30:c2:e7:64:e3:e4:ce:da:58:4e: 3b:24:e3:4f:f8:e3:1c:32:76:fc:1f:71:37:1b:86: 1e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:AE:F7:E7:5C:A0:DB:EE:BD:05:10:BA:FD:B4:0C:83:E0:1C:79:4B X509v3 Authority Key Identifier: keyid:F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e920::-2401:e920:bfff:ffff:ffff:ffff:ffff:ffff 2401:e920:c00c::/48 2401:e920:fffa::-2401:e920:fffc:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption ae:5e:80:1b:77:fd:b8:c2:66:e6:5b:b0:61:32:a6:d6:a2:8e: a1:27:c7:eb:00:e0:dd:8e:c7:c6:4d:a0:b6:6c:13:f9:36:73: a4:bc:8f:54:d3:5a:7f:ff:35:44:64:27:b4:ed:c3:4e:6d:71: ba:cc:8a:0d:13:07:dc:67:dd:34:34:6b:67:87:dc:06:49:09: a1:27:47:22:57:1b:c0:c4:6a:10:d3:24:b5:89:2b:f6:cd:ee: b2:72:15:83:9a:2d:cb:ba:bd:e4:cf:da:1c:5d:d9:04:1d:ca: 30:31:d0:79:67:17:60:8a:b6:2e:d6:00:20:cd:41:20:a9:b8: 5c:03:f5:df:d3:6c:b9:ac:b5:8d:9a:9d:3c:44:a0:f9:80:cf: cb:38:4d:50:9c:75:f1:c2:da:1b:30:0f:20:b8:48:95:23:bf: 3f:19:a7:1c:60:9b:db:b2:c9:b7:50:0b:c9:21:40:ea:8d:b1: e5:5e:e5:c3:6e:ba:3b:53:a1:8e:fa:88:f7:4e:7f:02:c0:5c: bd:d6:ad:53:a4:de:f7:b5:5a:c5:8b:77:8a:18:dc:75:01:5a: ed:2d:50:f9:73:82:49:31:0e:55:bb:85:e8:30:09:64:dc:a5: f4:30:82:61:fa:5a:96:30:a0:78:41:ec:61:f1:de:9b:9c:6a: 93:42:a8:a8 -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg1RTkxMTAvBgNVBAUTKEY2OThCNUI0N0EwNkQ1MzA3REVDNjA4OTY5MDYzMDc0 QjY4RkY1Q0EwHhcNMjUxMjA2MDkzNDUwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMzZjhiYS02MDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGxgMRw7kqT5Y2Fkp5esceOl//3h2VYmFwBB52C4+ccpHuaihRHdaxucMAM5 ycjjbHTzKUMJjMpT/XBeqHcD6B/i6q8wXVdB2BpVws72ML3/OR79J6rPoPF/pocE fq4HIBNbJ4fQm4noWZehIluqodsrdQafRYAgT+1fow7ErthfgRgLzjtUos9PDxP/ /TdBMGyngp/fVtkYPa2+/wemdLSD6Exasnaif8QoajgKHKqweAMwV381zYYsGVOu DBUmU0/vDkh/UnnYCQ5hglUa6jAHkSwKsMI3RjD8/7O9FBUcJsVuGDDC52Tj5M7a WE47JONP+OMcMnb8H3E3G4YekwIDAQABo4ICvTCCArkwHQYDVR0OBBYEFKOu9+dc oNvuvQUQuv20DIPgHHlLMB8GA1UdIwQYMBaAFPaYtbR6BtUwfexgiWkGMHS2j/XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODVFOS9DOTI4MDQzQUQx NzYxMUVGOTVDNURFNUFDNEY5QUUwMi85cGkxdEhvRzFUQjk3R0NKYVFZd2RMYVA5 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlwaTF0SG9HMVRCOTdHQ0phUVl3ZExhUDljby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg1RTkvQzkyODA0M0FEMTc2MTFFRjk1QzVERTVBQzRGOUFFMDIvNUJFNjgzNkU1 MDFCMTFGMDkyOEFENzMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRwYIKwYBBQUHAQcBAf8E ODA2MDQEAgACMC4wDwMFBSQB6SADBgYkAekggAMHACQB6SDADDASAwcBJAHpIP/6 AwcAJAHpIP/8MA0GCSqGSIb3DQEBCwUAA4IBAQCuXoAbd/24wmbmW7BhMqbWoo6h J8frAODdjsfGTaC2bBP5NnOkvI9U01p//zVEZCe07cNObXG6zIoNEwfcZ900NGtn h9wGSQmhJ0ciVxvAxGoQ0yS1iSv2ze6ychWDmi3Lur3kz9ocXdkEHcowMdB5Zxdg irYu1gAgzUEgqbhcA/Xf02y5rLWNmp08RKD5gM/LOE1QnHXxwtobMA8guEiVI78/ GaccYJvbssm3UAvJIUDqjbHlXuXDbro7U6GO+oj3Tn8CwFy91q1TpN73tVrFi3eK GNx1AVrtLVD5c4JJMQ5Vu4XoMAlk3KX0MIJh+lqWMKB4Qexh8d6bnGqTQqio -----END CERTIFICATE-----Generated at Sat Dec 6 21:42:44 2025 by rpki-client