This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/0C21BBAC373711F08FA9BD3DC4F9AE02.roa File: 0C21BBAC373711F08FA9BD3DC4F9AE02.roa (raw, json) Hash identifier: o8g8BiOgmVHVzswzRKLrO3Y0f0RfD3gZqIklITdkjzE= Subject key identifier: 40:EC:CF:39:36:46:4B:CA:8E:B3:06:2D:9E:93:8A:DB:2A:D8:1F:C5 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 0268 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/0C21BBAC373711F08FA9BD3DC4F9AE02.roa Signing time: Wed 03 Dec 2025 01:59:37 +0000 ROA not before: Wed 03 Dec 2025 01:59:37 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 31898 IP address blocks: 65.254.64.0/19 maxlen: 24 66.116.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 616 (0x268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Dec 3 01:59:37 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=692f9989-f625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:47:ab:87:28:06:7b:a4:de:a9:e5:3f:5a:59: f5:54:c6:b4:12:d0:68:a2:3e:e8:1a:1e:d1:c7:3a: f5:a9:6d:27:d7:0b:53:47:60:f1:91:b7:93:dd:af: e8:28:57:c1:46:f9:c4:75:38:df:30:a5:35:ad:41: 73:0d:0c:16:8c:2b:53:eb:33:9b:65:f6:cd:ca:d3: 43:37:69:81:1a:96:14:54:5c:a6:65:49:31:db:ea: 9f:fc:48:bb:6b:bb:ae:d6:e1:c1:45:7a:2f:3d:1e: 1b:d6:30:9c:01:0d:ca:8b:8b:01:71:ff:3a:b7:f1: a6:05:49:50:45:b2:82:92:29:92:16:dd:ab:4d:bd: 9b:49:79:33:f0:9a:08:4d:15:60:7a:bc:cd:29:c7: a9:11:cc:e9:9e:35:ae:15:77:6e:50:86:f1:d9:8e: 19:4f:14:f6:60:16:26:8e:39:c3:c7:6f:01:dd:0a: a8:da:b5:10:d0:38:20:5f:cf:63:9e:67:40:af:1a: c4:f9:63:8d:78:75:20:29:bf:23:6b:da:ff:1e:e2: 1c:df:7c:59:59:7b:21:62:9b:58:95:3d:cf:7f:8c: 41:19:fd:50:cb:52:8f:e6:a7:c8:20:c0:94:a2:19: df:db:43:3f:57:e0:db:82:a4:ce:a5:5d:19:06:d4: ac:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:EC:CF:39:36:46:4B:CA:8E:B3:06:2D:9E:93:8A:DB:2A:D8:1F:C5 X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/0C21BBAC373711F08FA9BD3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 65.254.64.0/19 66.116.192.0/18 Signature Algorithm: sha256WithRSAEncryption 01:eb:3a:ad:1d:43:01:8c:d5:98:b1:b2:a7:03:71:2e:c9:ca: a1:5f:22:ed:7e:9e:f2:7f:6e:02:b9:2c:6c:03:ab:81:d6:1a: 5a:0a:4d:00:35:a3:fc:6d:c8:c3:6b:65:33:15:40:8a:c9:bf: 60:4e:d7:2a:3e:59:c8:f5:cd:39:82:92:0f:78:c7:7b:11:5a: 0d:03:60:ae:a5:38:8d:94:e0:14:b2:10:10:35:28:80:66:b2: 90:fa:26:8b:fc:ad:8c:81:37:51:0f:34:32:6f:60:a9:e8:75: 0b:e8:cb:37:d6:cb:6b:65:15:9d:42:0f:b1:f5:df:77:07:cc: c9:8b:63:b4:ff:80:c1:81:e2:2e:80:7a:bd:c9:5f:41:88:e9: 2a:8a:c5:7d:10:2c:65:7a:03:f0:ac:4f:8f:0e:76:6b:bc:04: b0:59:dc:91:f7:6f:68:f0:fc:5d:61:aa:9d:ec:4d:56:dd:99: 60:dd:ce:92:00:fb:5a:a1:9f:a1:19:ee:2e:17:68:47:c6:88: c4:51:fd:20:c1:d9:3a:8e:3b:97:02:a6:f5:43:8c:31:38:fc: a5:a5:d7:3f:41:81:69:bc:2f:e1:ff:d5:ba:32:b9:cc:47:23: b9:d1:1a:07:f3:36:41:aa:74:41:02:83:a2:17:c3:cb:af:22: ea:22:27:e3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjUxMjAzMDE1OTM3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmOTk4OS1mNjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEerhygGe6TeqeU/Wln1VMa0EtBooj7oGh7Rxzr1qW0n1wtTR2DxkbeT3a/o KFfBRvnEdTjfMKU1rUFzDQwWjCtT6zObZfbNytNDN2mBGpYUVFymZUkx2+qf/Ei7 a7uu1uHBRXovPR4b1jCcAQ3Ki4sBcf86t/GmBUlQRbKCkimSFt2rTb2bSXkz8JoI TRVgerzNKcepEczpnjWuFXduUIbx2Y4ZTxT2YBYmjjnDx28B3Qqo2rUQ0DggX89j nmdArxrE+WONeHUgKb8ja9r/HuIc33xZWXshYptYlT3Pf4xBGf1Qy1KP5qfIIMCU ohnf20M/V+DbgqTOpV0ZBtSszwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEDszzk2 RkvKjrMGLZ6Titsq2B/FMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzc0OEUvNEQ3ODkyNkE0RkE5MTFFREFERTUxNTdDQzRGOUFFMDIvMEMyMUJCQUMz NzM3MTFGMDhGQTlCRDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAVB/kADBAZCdMAwDQYJKoZIhvcNAQELBQADggEBAAHrOq0d QwGM1ZixsqcDcS7JyqFfIu1+nvJ/bgK5LGwDq4HWGloKTQA1o/xtyMNrZTMVQIrJ v2BO1yo+Wcj1zTmCkg94x3sRWg0DYK6lOI2U4BSyEBA1KIBmspD6Jov8rYyBN1EP NDJvYKnodQvoyzfWy2tlFZ1CD7H133cHzMmLY7T/gMGB4i6Aer3JX0GI6SqKxX0Q LGV6A/CsT48Odmu8BLBZ3JH3b2jw/F1hqp3sTVbdmWDdzpIA+1qhn6EZ7i4XaEfG iMRR/SDB2TqOO5cCpvVDjDE4/KWl1z9BgWm8L+H/1boyucxHI7nRGgfzNkGqdEEC g6IXw8uvIuoiJ+M= -----END CERTIFICATE-----Generated at Sun Dec 7 03:32:27 2025 by rpki-client