This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/2D810A88AB4011EF849D9515C4F9AE02.roa File: 2D810A88AB4011EF849D9515C4F9AE02.roa (raw, json) Hash identifier: Rc9brTS9qhrwUI4y6KFA7OXRuq+HA76Zn61TGx8tdAs= Subject key identifier: 2B:0C:6A:61:EC:06:24:A4:50:59:78:ED:1D:EC:80:A5:7B:EC:E5:6E Certificate issuer: /CN=A9172FC5/serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509 Certificate serial: C1 Authority key identifier: FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/2D810A88AB4011EF849D9515C4F9AE02.roa Signing time: Wed 03 Dec 2025 04:34:19 +0000 ROA not before: Wed 03 Dec 2025 04:34:19 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 132233 IP address blocks: 2401:d820::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509 Validity Not Before: Dec 3 04:34:19 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=692fbdca-5ced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2a:d0:1a:d3:e4:39:b6:64:d3:0b:07:f2:85: e6:f1:0a:15:d1:0b:27:82:bf:8d:b6:3f:16:66:13: 10:64:9d:2d:fd:32:29:e5:56:e2:ed:2e:a2:16:fa: 7b:43:59:1c:59:bb:47:53:3f:48:79:49:bf:34:20: be:5f:16:1a:2d:13:49:b5:8f:9c:d4:6d:4b:4c:e9: ea:35:a0:86:ee:b7:28:c5:02:b8:68:d4:5f:c3:9a: 8b:7d:98:5b:fd:a8:86:54:c5:5d:ca:46:0d:a4:cb: 3f:95:c7:80:a9:99:b0:d6:28:f1:05:0c:4f:18:c9: aa:cb:ca:97:c4:99:63:73:66:cc:e3:4b:58:91:71: 35:94:db:83:50:92:e6:c1:d4:c8:e7:27:fe:16:26: 5d:aa:45:b0:2b:89:31:0a:bf:eb:7e:fb:e1:12:53: 66:2f:e4:48:57:66:85:2a:10:5b:92:95:d7:d0:c9: 0d:ab:5a:d0:41:38:ad:b6:9c:b2:66:48:da:4a:f7: ee:d0:e1:cb:6b:95:07:9a:d6:b6:5a:3a:42:ff:95: 50:f0:7d:52:55:47:a9:48:b6:81:65:6c:08:b9:ee: a8:e4:26:64:04:e7:92:bf:f0:9b:56:55:94:43:f7: 32:73:8c:35:bc:82:b1:3d:65:63:99:79:ae:d1:26: ae:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:0C:6A:61:EC:06:24:A4:50:59:78:ED:1D:EC:80:A5:7B:EC:E5:6E X509v3 Authority Key Identifier: keyid:FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/2D810A88AB4011EF849D9515C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d820::/32 Signature Algorithm: sha256WithRSAEncryption 31:e0:58:85:b0:77:28:be:d7:fc:be:ad:3d:b4:e2:0a:51:d8: 1d:df:8d:77:49:8d:1b:16:ad:a0:15:d2:12:a6:32:68:d2:f1: 44:2b:52:05:58:2b:37:14:90:91:54:d5:be:de:58:de:2b:dd: 14:1f:f5:6f:7b:30:d7:70:e1:17:4d:40:bc:1f:fe:fa:c1:d1: 4f:b6:1d:67:be:88:34:39:b7:fb:1c:cc:41:b8:78:9d:58:3c: 6d:ea:3e:e9:b5:91:c3:3a:87:5e:82:da:7c:b7:ae:47:a7:12: 88:17:0d:a0:7b:c2:d7:c0:7f:6a:65:89:b5:61:0e:3d:f9:ef: 77:58:dd:62:2b:e9:0f:0b:8d:2b:82:b5:e4:f2:6c:38:4d:36: 8c:29:bf:c0:62:ac:17:f1:e1:83:2a:60:69:fe:05:2a:1e:8b: 2a:6b:5a:3a:7d:b7:f9:43:32:a5:5e:88:cd:36:31:f7:7f:da: 80:67:9c:9f:23:27:ef:2a:bb:01:17:13:c8:aa:45:45:9c:c1: 1e:13:d2:68:20:ea:1d:b4:1b:e1:ad:02:ff:f7:45:bd:c9:4e: 8e:54:d5:2a:3c:3a:8c:0c:a5:4d:9a:13:d2:84:20:4d:2c:5d: 0b:d0:b5:30:a0:9c:5a:4f:4b:6c:68:4a:45:30:89:49:f3:36: be:f7:3f:f9 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJGQzUxMTAvBgNVBAUTKEZEODhERUY5QTZCRERCRUE1OTM4OUVEQzYxNzFBQURD QTEwNkI1MDkwHhcNMjUxMjAzMDQzNDE5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmYmRjYS01Y2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSrQGtPkObZk0wsH8oXm8QoV0Qsngr+Ntj8WZhMQZJ0t/TIp5Vbi7S6iFvp7 Q1kcWbtHUz9IeUm/NCC+XxYaLRNJtY+c1G1LTOnqNaCG7rcoxQK4aNRfw5qLfZhb /aiGVMVdykYNpMs/lceAqZmw1ijxBQxPGMmqy8qXxJljc2bM40tYkXE1lNuDUJLm wdTI5yf+FiZdqkWwK4kxCr/rfvvhElNmL+RIV2aFKhBbkpXX0MkNq1rQQTittpyy ZkjaSvfu0OHLa5UHmta2WjpC/5VQ8H1SVUepSLaBZWwIue6o5CZkBOeSv/CbVlWU Q/cyc4w1vIKxPWVjmXmu0SauKQIDAQABo4ICljCCApIwHQYDVR0OBBYEFCsMamHs BiSkUFl47R3sgKV77OVuMB8GA1UdIwQYMBaAFP2I3vmmvdvqWTie3GFxqtyhBrUJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkZDNS9FREFCRDIzMEFC M0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9fWWplLWFhOTItcFpPSjdjWVhHcTNLRUd0 UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZamUtYWE5Mi1wWk9KN2NZWEdxM0tFR3RRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJGQzUvRURBQkQyMzBBQjNGMTFFRkJFMDJDRjE0QzRGOUFFMDIvMkQ4MTBBODhB QjQwMTFFRjg0OUQ5NTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAdggMA0GCSqGSIb3DQEBCwUAA4IBAQAx4FiFsHcovtf8 vq09tOIKUdgd3413SY0bFq2gFdISpjJo0vFEK1IFWCs3FJCRVNW+3ljeK90UH/Vv ezDXcOEXTUC8H/76wdFPth1nvog0Obf7HMxBuHidWDxt6j7ptZHDOodegtp8t65H pxKIFw2ge8LXwH9qZYm1YQ49+e93WN1iK+kPC40rgrXk8mw4TTaMKb/AYqwX8eGD KmBp/gUqHosqa1o6fbf5QzKlXojNNjH3f9qAZ5yfIyfvKrsBFxPIqkVFnMEeE9Jo IOodtBvhrQL/90W9yU6OVNUqPDqMDKVNmhPShCBNLF0L0LUwoJxaT0tsaEpFMIlJ 8za+9z/5 -----END CERTIFICATE-----Generated at Sun Dec 7 01:09:02 2025 by rpki-client