This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/A647525E853B11EFB513D149C4F9AE02.roa File: A647525E853B11EFB513D149C4F9AE02.roa (raw, json) Hash identifier: t1q6Mmlrz8mXbc1Vz8T8WidohHPsBk0Fmm5bZBubtH8= Subject key identifier: 61:28:04:4D:E1:8C:7E:8E:50:1E:CD:6D:D8:AA:43:5C:3E:50:91:A4 Certificate issuer: /CN=A9170EED/serialNumber=EDFE706C949B5ECF1DBBE460DBD04EFE7C1E128B Certificate serial: EA Authority key identifier: ED:FE:70:6C:94:9B:5E:CF:1D:BB:E4:60:DB:D0:4E:FE:7C:1E:12:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f5wbJSbXs8du-Rg29BO_nweEos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/A647525E853B11EFB513D149C4F9AE02.roa Signing time: Fri 05 Dec 2025 03:44:06 +0000 ROA not before: Fri 05 Dec 2025 03:44:06 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150154 IP address blocks: 2001:df4:5e40::/47 maxlen: 47 2001:df4:5e40::/48 maxlen: 48 2001:df4:5e41::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/7f5wbJSbXs8du-Rg29BO_nweEos.crl rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/7f5wbJSbXs8du-Rg29BO_nweEos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f5wbJSbXs8du-Rg29BO_nweEos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:44:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=EDFE706C949B5ECF1DBBE460DBD04EFE7C1E128B Validity Not Before: Dec 5 03:44:06 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69325506-b1d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:13:41:11:b1:09:8f:f8:13:b7:73:47:da:bb: 24:86:24:90:86:01:f0:e1:87:69:e9:08:b6:51:ee: b4:5b:c9:7c:4c:59:a3:b8:9c:a0:86:d0:be:4b:0b: 66:7e:78:cb:f4:84:fc:fe:7b:76:3d:fe:9c:4a:83: 89:76:82:6c:ce:f8:14:00:55:63:39:13:1f:51:ec: d2:2b:d4:b7:4f:55:a3:68:b5:9a:d9:c1:43:5e:9f: ec:fe:f9:c0:58:4e:95:b1:a1:4b:3f:05:9e:19:c0: 02:8e:d0:34:b6:0b:79:58:92:2e:10:ce:76:b4:64: 6e:00:4d:eb:df:36:d2:55:e0:e6:51:19:e6:ce:90: 6e:1e:3b:6d:db:94:09:be:10:15:87:08:b8:4b:41: 89:0e:6e:33:a1:fd:ff:fc:9d:6f:e4:56:33:b6:35: 84:4e:6f:cc:7e:87:a0:dd:43:81:8f:c3:c3:70:60: 72:95:23:c2:2f:5a:92:27:e9:48:3a:a4:ed:85:bd: 31:bb:a4:78:b6:66:b4:ab:f3:86:bc:53:ca:98:15: ee:b8:3d:6b:5f:69:84:39:12:7c:3c:3b:14:1d:75: 32:a1:a2:06:bc:4f:6e:5a:05:66:41:fa:24:f9:be: 34:10:86:ca:84:2b:34:f1:a5:fa:8e:21:bf:2b:b4: 56:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:28:04:4D:E1:8C:7E:8E:50:1E:CD:6D:D8:AA:43:5C:3E:50:91:A4 X509v3 Authority Key Identifier: keyid:ED:FE:70:6C:94:9B:5E:CF:1D:BB:E4:60:DB:D0:4E:FE:7C:1E:12:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/7f5wbJSbXs8du-Rg29BO_nweEos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f5wbJSbXs8du-Rg29BO_nweEos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/A647525E853B11EFB513D149C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:5e40::/47 Signature Algorithm: sha256WithRSAEncryption 11:d6:4a:54:56:c5:ab:aa:fa:b1:a7:49:fa:08:fe:84:e2:42: 67:22:ca:7b:68:08:3e:c7:b5:e8:f8:d3:f8:21:c3:f8:bb:d0: dc:72:b9:95:d4:e0:c9:d5:1b:73:2b:3c:30:2e:dc:df:63:a9: 40:e6:16:af:03:74:cc:6b:f6:e4:a3:85:01:aa:41:ca:54:db: 10:3b:dc:0a:36:08:09:88:4d:50:60:a8:94:e5:23:e3:d6:08: 62:32:cb:fe:ff:14:60:ac:db:1e:e8:20:70:0d:4c:40:8c:62: 6f:0e:3c:3a:14:e1:bb:ae:ee:97:4c:25:98:e1:84:41:c9:7b: c2:11:e4:ce:84:0e:a2:81:d4:42:de:4a:5a:59:69:f6:21:86: 0d:f9:09:97:d5:94:7e:97:47:6b:a1:54:04:7a:da:a5:7b:3c: ec:13:f3:6c:e9:2e:0a:a4:7e:8a:e1:ef:2c:b5:61:ab:40:58: ef:0f:5e:c4:f8:66:98:47:b5:ba:0e:a7:ff:09:53:b3:4c:51: f0:68:30:0e:90:d9:50:32:3b:3e:12:50:33:ec:b5:ca:98:0a: cc:e3:0f:9b:c5:8c:8f:82:29:7b:47:0b:26:7c:93:d0:cb:7c: 7d:53:bb:15:24:90:f0:31:10:59:ea:22:35:63:29:88:d1:b0: 5e:15:62:0d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKEVERkU3MDZDOTQ5QjVFQ0YxREJCRTQ2MERCRDA0RUZF N0MxRTEyOEIwHhcNMjUxMjA1MDM0NDA2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMyNTUwNi1iMWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxNBEbEJj/gTt3NH2rskhiSQhgHw4Ydp6Qi2Ue60W8l8TFmjuJyghtC+Swtm fnjL9IT8/nt2Pf6cSoOJdoJszvgUAFVjORMfUezSK9S3T1WjaLWa2cFDXp/s/vnA WE6VsaFLPwWeGcACjtA0tgt5WJIuEM52tGRuAE3r3zbSVeDmURnmzpBuHjtt25QJ vhAVhwi4S0GJDm4zof3//J1v5FYztjWETm/Mfoeg3UOBj8PDcGBylSPCL1qSJ+lI OqTthb0xu6R4tma0q/OGvFPKmBXuuD1rX2mEORJ8PDsUHXUyoaIGvE9uWgVmQfok +b40EIbKhCs08aX6jiG/K7RW8wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGEoBE3h jH6OUB7NbdiqQ1w+UJGkMB8GA1UdIwQYMBaAFO3+cGyUm17PHbvkYNvQTv58HhKL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zRkYzOTQwRTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi83ZjV3YkpTYlhzOGR1LVJnMjlCT19ud2VF b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmNXdiSlNiWHM4ZHUtUmcyOUJPX253ZUVvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBFRUQvM0ZGMzk0MEU4NTNCMTFFRkEzMDcyMzQ5QzRGOUFFMDIvQTY0NzUyNUU4 NTNCMTFFRkI1MTNEMTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEgAQ30XkAwDQYJKoZIhvcNAQELBQADggEBABHWSlRWxauq +rGnSfoI/oTiQmciyntoCD7Htej40/ghw/i70NxyuZXU4MnVG3MrPDAu3N9jqUDm Fq8DdMxr9uSjhQGqQcpU2xA73Ao2CAmITVBgqJTlI+PWCGIyy/7/FGCs2x7oIHAN TECMYm8OPDoU4buu7pdMJZjhhEHJe8IR5M6EDqKB1ELeSlpZafYhhg35CZfVlH6X R2uhVAR62qV7POwT82zpLgqkforh7yy1YatAWO8PXsT4ZphHtboOp/8JU7NMUfBo MA6Q2VAyOz4SUDPstcqYCszjD5vFjI+CKXtHCyZ8k9DLfH1TuxUkkPAxEFnqIjVj KYjRsF4VYg0= -----END CERTIFICATE-----Generated at Sat Dec 6 20:07:34 2025 by rpki-client