This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917928F/16FF5F825B9D11EFB1D42146C4F9AE02/CEF77C10FB3811EF8D87CD5DC4F9AE02.roa File: CEF77C10FB3811EF8D87CD5DC4F9AE02.roa (raw, json) Hash identifier: pnn78z2d158KlV20VmyheguMXeReVieYGEjGhzfoYNM= Subject key identifier: CA:33:68:A3:85:CF:11:65:F5:D2:A8:0E:06:04:22:5B:75:D6:C7:10 Certificate issuer: /CN=A917928F/serialNumber=550B160FF4F5DD7D84AC3E8B959DD79A42FB57DA Certificate serial: 0117 Authority key identifier: 55:0B:16:0F:F4:F5:DD:7D:84:AC:3E:8B:95:9D:D7:9A:42:FB:57:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQsWD_T13X2ErD6LlZ3XmkL7V9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917928F/16FF5F825B9D11EFB1D42146C4F9AE02/CEF77C10FB3811EF8D87CD5DC4F9AE02.roa Signing time: Thu 15 Jan 2026 05:24:06 +0000 ROA not before: Thu 15 Jan 2026 05:24:06 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 153494 IP address blocks: 59.152.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917928F/16FF5F825B9D11EFB1D42146C4F9AE02/VQsWD_T13X2ErD6LlZ3XmkL7V9o.crl rsync://rpki.apnic.net/member_repository/A917928F/16FF5F825B9D11EFB1D42146C4F9AE02/VQsWD_T13X2ErD6LlZ3XmkL7V9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQsWD_T13X2ErD6LlZ3XmkL7V9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917928F, serialNumber=550B160FF4F5DD7D84AC3E8B959DD79A42FB57DA Validity Not Before: Jan 15 05:24:06 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=696879f6-d49a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:16:b5:f9:71:a7:cb:55:fb:89:a4:11:74:df: 89:5f:cd:2b:7c:8b:29:18:04:37:08:bc:09:2b:93: 6e:33:86:35:74:a8:ce:99:92:34:92:6a:ce:60:10: 17:64:a3:c2:6b:aa:b4:72:29:4f:e2:16:10:ad:e1: 5f:41:9b:f5:e9:d9:33:9a:00:74:92:07:c5:ad:9e: 1f:68:4e:af:9f:ef:23:56:21:da:6f:8e:f9:b3:a5: 8f:33:5e:89:bb:a4:c2:0d:f5:d0:c1:75:7c:84:9a: fd:be:84:28:e8:b7:3a:67:8c:44:dd:8d:85:0e:49: bc:63:d0:58:2a:b7:aa:0a:d7:a8:37:27:07:0e:c6: e0:12:61:cc:c9:b9:81:59:b6:83:de:70:07:28:e4: 2d:c4:62:4d:ba:2b:b8:0f:46:54:d5:4b:c2:2d:59: 83:ea:0f:c9:63:60:8b:2d:0f:99:e3:01:2d:36:88: 14:c1:c3:fb:92:15:47:17:3f:e3:43:04:3f:88:d0: 4e:7c:18:d0:d5:e5:52:e1:8c:2f:e1:e8:14:48:12: 85:59:a6:b7:1e:b5:9f:9a:bb:2a:8d:24:66:c0:1c: a8:59:4e:e0:6b:2c:dd:6b:e9:f5:8d:c9:05:e2:4e: dd:01:69:8c:24:c1:49:06:fe:8e:33:07:7a:8f:b8: cc:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:33:68:A3:85:CF:11:65:F5:D2:A8:0E:06:04:22:5B:75:D6:C7:10 X509v3 Authority Key Identifier: keyid:55:0B:16:0F:F4:F5:DD:7D:84:AC:3E:8B:95:9D:D7:9A:42:FB:57:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917928F/16FF5F825B9D11EFB1D42146C4F9AE02/VQsWD_T13X2ErD6LlZ3XmkL7V9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQsWD_T13X2ErD6LlZ3XmkL7V9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917928F/16FF5F825B9D11EFB1D42146C4F9AE02/CEF77C10FB3811EF8D87CD5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.152.48.0/22 Signature Algorithm: sha256WithRSAEncryption 75:84:94:b4:84:a0:fa:c0:07:87:77:ec:bf:9a:d0:6f:18:95: 2f:be:ce:61:75:7a:ce:62:87:e4:8f:67:68:7a:8d:89:c0:d2: ec:f4:48:a9:b1:bd:c4:8e:af:1f:48:ad:68:e2:cc:dd:65:38: 59:10:94:66:b9:04:d0:83:d8:2a:f4:90:0c:5e:ae:1b:86:af: 13:50:6b:f6:48:7c:e2:41:20:86:bc:f2:42:3d:96:b4:af:89: 3b:d0:6f:3a:0f:e0:27:7a:d4:2b:79:48:63:85:43:03:1a:a4: 27:3e:7a:5e:6e:82:45:81:02:e2:80:90:b6:cd:f9:b4:33:87: 9c:cf:8a:15:6b:6c:0c:96:bb:c6:1a:c4:df:7b:90:45:a4:bb: 6f:78:ff:5c:67:1f:e1:ef:f3:2b:f5:f9:e5:cc:12:c8:42:94: 80:fe:9a:2f:76:d6:26:d1:9c:7a:43:e1:46:57:74:b9:d1:16: da:ad:2c:94:15:1a:bc:29:58:00:f2:05:c9:52:69:aa:a4:03: f2:9f:0b:03:c0:de:c9:c1:e8:74:06:04:f8:a9:1a:52:12:95: f1:2f:76:38:48:b6:56:0e:77:fe:a5:0a:7d:7a:a1:0c:43:73: ff:e0:75:20:c3:a5:61:d4:66:d6:de:53:37:c3:2c:d3:d4:ce: 60:57:e3:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzkyOEYxMTAvBgNVBAUTKDU1MEIxNjBGRjRGNUREN0Q4NEFDM0U4Qjk1OURENzlB NDJGQjU3REEwHhcNMjYwMTE1MDUyNDA2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY4NzlmNi1kNDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ra1+XGny1X7iaQRdN+JX80rfIspGAQ3CLwJK5NuM4Y1dKjOmZI0kmrOYBAX ZKPCa6q0cilP4hYQreFfQZv16dkzmgB0kgfFrZ4faE6vn+8jViHab475s6WPM16J u6TCDfXQwXV8hJr9voQo6Lc6Z4xE3Y2FDkm8Y9BYKreqCteoNycHDsbgEmHMybmB WbaD3nAHKOQtxGJNuiu4D0ZU1UvCLVmD6g/JY2CLLQ+Z4wEtNogUwcP7khVHFz/j QwQ/iNBOfBjQ1eVS4Ywv4egUSBKFWaa3HrWfmrsqjSRmwByoWU7gayzda+n1jckF 4k7dAWmMJMFJBv6OMwd6j7jMDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMozaKOF zxFl9dKoDgYEIlt11scQMB8GA1UdIwQYMBaAFFULFg/09d19hKw+i5Wd15pC+1fa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTI4Ri8xNkZGNUY4MjVC OUQxMUVGQjFENDIxNDZDNEY5QUUwMi9WUXNXRF9UMTNYMkVyRDZMbFozWG1rTDdW OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZRc1dEX1QxM1gyRXJENkxsWjNYbWtMN1Y5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzkyOEYvMTZGRjVGODI1QjlEMTFFRkIxRDQyMTQ2QzRGOUFFMDIvQ0VGNzdDMTBG QjM4MTFFRjhEODdDRDVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAI7mDAwDQYJKoZIhvcNAQELBQADggEBAHWElLSEoPrAB4d3 7L+a0G8YlS++zmF1es5ih+SPZ2h6jYnA0uz0SKmxvcSOrx9IrWjizN1lOFkQlGa5 BNCD2Cr0kAxerhuGrxNQa/ZIfOJBIIa88kI9lrSviTvQbzoP4Cd61Ct5SGOFQwMa pCc+el5ugkWBAuKAkLbN+bQzh5zPihVrbAyWu8YaxN97kEWku294/1xnH+Hv8yv1 +eXMEshClID+mi921ibRnHpD4UZXdLnRFtqtLJQVGrwpWADyBclSaaqkA/KfCwPA 3snB6HQGBPipGlISlfEvdjhItlYOd/6lCn16oQxDc//gdSDDpWHUZtbeUzfDLNPU zmBX49Y= -----END CERTIFICATE-----Generated at Sun Jan 25 14:21:52 2026 by rpki-client