This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/CBA514345AD611F0B344B779C4F9AE02.roa File: CBA514345AD611F0B344B779C4F9AE02.roa (raw, json) Hash identifier: ZoSQYr35p9lvePv6z4h+/wRPh9dqRmUkfHvsxsAGrCg= Subject key identifier: A9:C9:32:DE:8D:91:32:AC:B1:C1:8F:2C:13:3A:F3:9B:DB:BA:A5:D7 Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 0369 Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/CBA514345AD611F0B344B779C4F9AE02.roa Signing time: Fri 14 Nov 2025 23:45:43 +0000 ROA not before: Fri 14 Nov 2025 23:45:43 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 4768 IP address blocks: 167.179.196.0/24 maxlen: 24 167.179.197.0/24 maxlen: 24 167.179.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:20:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 873 (0x369) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB, serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Nov 14 23:45:43 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6917bf27-fa2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e8:2e:97:67:dd:a9:e2:23:cd:35:e9:3b:a7: 44:7b:24:7b:de:40:76:db:ed:91:9b:52:98:03:97: 3a:18:e1:1b:57:d7:4e:7c:7a:84:cf:5e:e4:3e:ba: 72:b4:34:76:ae:9c:7e:42:20:be:57:82:96:7b:0d: 63:40:03:07:a3:b4:18:ea:5e:b3:63:c1:04:86:00: 0d:49:4a:8e:cf:42:7a:0c:d1:dd:4a:37:e7:bc:25: e6:f3:9b:63:13:7b:c9:f6:61:6a:62:ed:08:e5:72: c5:b6:a5:f8:24:84:94:01:89:c9:4c:63:89:09:2a: a7:6f:2e:82:61:09:fb:d8:40:b7:a3:72:f8:c2:4d: 1f:4f:9b:61:61:06:f4:c1:af:b5:24:6e:e3:32:3c: e0:f9:18:e3:56:6c:66:82:ea:e6:7a:63:cd:e9:c9: 13:d1:3f:64:57:46:bb:49:ac:5e:ea:7e:7d:94:aa: ce:62:d4:45:2a:9d:fb:c2:f1:97:11:1f:bc:6f:af: e1:32:60:93:7d:3b:ef:90:e7:f6:c1:79:31:f9:a3: dd:04:8c:2f:bc:7a:22:9d:a7:cf:00:25:ce:9a:a3: b9:93:af:22:a0:99:0e:6e:d2:16:eb:f0:7b:75:84: ae:9b:6e:51:a8:fa:95:e0:0b:57:a0:e5:52:42:c5: 09:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:C9:32:DE:8D:91:32:AC:B1:C1:8F:2C:13:3A:F3:9B:DB:BA:A5:D7 X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/CBA514345AD611F0B344B779C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.179.196.0/23 167.179.208.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:2a:8a:99:f7:97:75:54:a5:ee:de:ff:0c:07:62:9b:9d:ca: df:c8:b5:01:fd:1d:1e:94:00:7d:32:47:0b:3c:bd:31:07:cc: 3a:27:35:72:23:a2:38:09:a3:e4:cd:87:39:51:cf:35:b0:40: 20:c1:c5:9b:2f:21:9a:80:26:e5:80:b0:3d:89:1e:5f:b8:a6: 76:9c:06:cb:67:d4:1a:b0:85:6a:6f:1a:d4:73:4d:46:d2:db: fc:0b:d3:45:a5:5f:79:1f:8b:ab:ac:b2:05:db:36:d3:1a:69: b4:7b:c2:9f:5d:e1:5a:65:39:cb:10:de:76:16:86:14:cf:a2: c1:1c:f0:fa:cd:9c:24:08:4e:c1:8d:1d:cd:0e:7f:b6:b4:06: b8:87:99:ff:e7:ec:85:fc:db:a5:72:4a:05:8c:30:5d:f2:73: ac:09:6b:63:99:37:bd:0a:ac:06:dc:2c:e5:03:50:db:05:31: 74:ca:10:d0:6f:a1:87:f3:e7:45:45:be:0e:cb:87:df:59:26: 55:2f:e0:ee:67:2f:f8:01:eb:d1:1a:e4:4a:e7:a3:1f:11:e1: 1b:86:a7:aa:ad:84:19:17:2d:ae:24:7c:da:50:bd:5d:23:1e: bc:c1:1b:70:15:57:42:01:6e:e5:ba:95:99:94:fa:d6:70:c7: 24:68:ff:15 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjUxMTE0MjM0NTQzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTE3YmYyNy1mYTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOgul2fdqeIjzTXpO6dEeyR73kB22+2Rm1KYA5c6GOEbV9dOfHqEz17kPrpy tDR2rpx+QiC+V4KWew1jQAMHo7QY6l6zY8EEhgANSUqOz0J6DNHdSjfnvCXm85tj E3vJ9mFqYu0I5XLFtqX4JISUAYnJTGOJCSqnby6CYQn72EC3o3L4wk0fT5thYQb0 wa+1JG7jMjzg+RjjVmxmgurmemPN6ckT0T9kV0a7Saxe6n59lKrOYtRFKp37wvGX ER+8b6/hMmCTfTvvkOf2wXkx+aPdBIwvvHoinafPACXOmqO5k68ioJkObtIW6/B7 dYSum25RqPqV4AtXoOVSQsUJpQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKnJMt6N kTKsscGPLBM685vbuqXXMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZCREIvNjU3RTBGMzRENjRCMTFFQ0FCMjBFMzZCQzRGOUFFMDIvQ0JBNTE0MzQ1 QUQ2MTFGMEIzNDRCNzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGns8QDBACns9AwDQYJKoZIhvcNAQELBQADggEBAFoqipn3 l3VUpe7e/wwHYpudyt/ItQH9HR6UAH0yRws8vTEHzDonNXIjojgJo+TNhzlRzzWw QCDBxZsvIZqAJuWAsD2JHl+4pnacBstn1BqwhWpvGtRzTUbS2/wL00WlX3kfi6us sgXbNtMaabR7wp9d4VplOcsQ3nYWhhTPosEc8PrNnCQITsGNHc0Of7a0BriHmf/n 7IX826VySgWMMF3yc6wJa2OZN70KrAbcLOUDUNsFMXTKENBvoYfz50VFvg7Lh99Z JlUv4O5nL/gB69Ea5Ernox8R4RuGp6qthBkXLa4kfNpQvV0jHrzBG3AVV0IBbuW6 lZmU+tZwxyRo/xU= -----END CERTIFICATE-----Generated at Sat Dec 6 23:22:59 2025 by rpki-client