This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB41/18D7955617BE11ED8B325938C4F9AE02/22D1D50A58BC11ED96790F65C4F9AE02.roa File: 22D1D50A58BC11ED96790F65C4F9AE02.roa (raw, json) Hash identifier: 1w6R+Y36BRswSm5nVdy4wtIC4/IN06yXyCbCLxbXF6M= Subject key identifier: 77:E4:C6:D5:CE:F4:A9:54:F9:67:D2:B2:4B:64:5A:7A:A9:E5:F1:24 Certificate issuer: /CN=A917EB41/serialNumber=9F43B26ABA728E82F626337FA26521F8E69FBBCB Certificate serial: 02E0 Authority key identifier: 9F:43:B2:6A:BA:72:8E:82:F6:26:33:7F:A2:65:21:F8:E6:9F:BB:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n0OyarpyjoL2JjN_omUh-Oafu8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB41/18D7955617BE11ED8B325938C4F9AE02/22D1D50A58BC11ED96790F65C4F9AE02.roa Signing time: Thu 01 Jan 2026 01:20:19 +0000 ROA not before: Thu 01 Jan 2026 01:20:19 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 9824 IP address blocks: 27.136.0.0/13 maxlen: 24 42.144.0.0/13 maxlen: 24 59.166.0.0/16 maxlen: 24 59.168.0.0/14 maxlen: 24 60.58.0.0/15 maxlen: 24 60.60.0.0/15 maxlen: 24 60.62.0.0/16 maxlen: 24 61.21.0.0/16 maxlen: 24 61.22.0.0/15 maxlen: 24 61.24.0.0/14 maxlen: 24 110.128.0.0/13 maxlen: 24 116.64.0.0/15 maxlen: 24 116.214.16.0/21 maxlen: 24 116.220.0.0/14 maxlen: 24 119.168.0.0/13 maxlen: 24 124.140.0.0/14 maxlen: 24 124.144.0.0/15 maxlen: 24 125.8.0.0/13 maxlen: 24 203.165.0.0/16 maxlen: 24 210.20.0.0/16 maxlen: 24 210.194.0.0/16 maxlen: 24 220.152.0.0/18 maxlen: 24 220.152.64.0/19 maxlen: 24 2001:ff0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB41/18D7955617BE11ED8B325938C4F9AE02/n0OyarpyjoL2JjN_omUh-Oafu8s.crl rsync://rpki.apnic.net/member_repository/A917EB41/18D7955617BE11ED8B325938C4F9AE02/n0OyarpyjoL2JjN_omUh-Oafu8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n0OyarpyjoL2JjN_omUh-Oafu8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 736 (0x2e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB41, serialNumber=9F43B26ABA728E82F626337FA26521F8E69FBBCB Validity Not Before: Jan 1 01:20:19 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6955cbd3-384d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:18:c5:31:d1:40:03:80:b4:e0:6f:cb:44:ea: 0e:2a:c2:c8:06:d5:f1:6e:ba:4e:3e:1a:ed:fa:c9: cc:8d:eb:f7:4a:88:5c:28:63:7c:7e:54:27:9a:38: 15:ac:4e:99:ff:87:aa:81:df:5d:65:0e:58:cf:d6: 7e:b7:da:9a:9b:84:53:4a:da:9a:a0:18:6f:41:d5: 7d:c9:95:7e:44:99:0d:d4:cb:85:c6:21:f6:e9:b1: 1a:fa:5f:78:f7:64:8c:40:5d:c0:62:8c:e0:e7:14: ef:bc:0e:75:82:e3:2f:36:e8:4c:d5:8f:82:7b:de: fd:2f:3e:12:60:d6:75:d5:18:4e:f6:ca:a9:22:f1: 65:05:64:b3:52:2c:7f:45:7a:1a:22:ef:06:9c:fa: 83:85:37:63:ae:99:6c:30:0f:a3:42:0b:30:ed:9c: a5:0d:06:44:4e:e3:31:aa:39:fb:3a:42:88:bc:49: d5:d4:f9:b8:ad:db:42:12:ce:0c:b1:fd:3f:83:58: 10:16:c8:7a:ed:b1:58:6b:5b:73:11:e7:71:62:99: 8b:13:b4:55:a7:4a:46:02:c8:db:37:7d:5e:b0:99: ef:63:1d:58:73:bc:4d:b8:38:bc:b0:68:ea:a1:89: cf:18:46:ae:9a:5e:bf:f8:dc:81:86:08:8f:0a:d3: 36:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E4:C6:D5:CE:F4:A9:54:F9:67:D2:B2:4B:64:5A:7A:A9:E5:F1:24 X509v3 Authority Key Identifier: keyid:9F:43:B2:6A:BA:72:8E:82:F6:26:33:7F:A2:65:21:F8:E6:9F:BB:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB41/18D7955617BE11ED8B325938C4F9AE02/n0OyarpyjoL2JjN_omUh-Oafu8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n0OyarpyjoL2JjN_omUh-Oafu8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB41/18D7955617BE11ED8B325938C4F9AE02/22D1D50A58BC11ED96790F65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.136.0.0/13 42.144.0.0/13 59.166.0.0/16 59.168.0.0/14 60.58.0.0-60.62.255.255 61.21.0.0-61.27.255.255 110.128.0.0/13 116.64.0.0/15 116.214.16.0/21 116.220.0.0/14 119.168.0.0/13 124.140.0.0-124.145.255.255 125.8.0.0/13 203.165.0.0/16 210.20.0.0/16 210.194.0.0/16 220.152.0.0-220.152.95.255 IPv6: 2001:ff0::/32 Signature Algorithm: sha256WithRSAEncryption 08:45:74:16:83:e3:18:d9:bd:17:fd:82:4d:93:a0:0a:49:1d: 6b:52:10:2f:59:27:cb:c5:0f:f9:5b:98:6d:66:45:df:f3:fc: 78:ac:18:d4:fa:96:55:f2:d2:0c:ef:bd:1f:b9:bc:1b:76:50: 2b:cb:9b:47:06:d5:dd:f8:02:62:03:f7:b3:40:40:f7:a7:4d: 8c:fc:88:1d:52:df:91:f7:ab:0e:c6:d1:32:43:51:c8:fb:31: 23:d7:a3:72:4f:d2:36:94:e1:77:b3:72:98:5e:df:48:9e:6b: 56:c5:39:1d:6d:ee:0a:64:68:0a:7f:bb:4f:6a:dd:05:b2:cd: 0f:cb:95:48:c0:40:c3:e5:18:59:fe:98:81:f6:16:d2:c2:34: 3f:6d:8d:4f:fb:53:64:29:93:db:49:67:a0:2c:e7:ba:bb:5d: 2c:51:9d:cc:e0:82:f5:06:69:71:a1:3e:76:80:9c:01:a1:db: e0:3c:7c:37:bd:af:63:e6:89:23:ee:87:8a:32:fe:f2:73:2d: 00:e9:44:14:8c:76:4b:3b:ba:c1:61:e4:93:ca:d3:8e:10:e1: e7:66:e7:34:db:4e:fd:a6:03:0e:72:bb:5e:df:af:68:d3:1c: 0b:c0:01:91:80:1a:81:f3:4f:ec:d3:c0:9a:54:2c:7f:37:bc: b1:a2:d4:86 -----BEGIN CERTIFICATE----- MIIF8DCCBNigAwIBAgICAuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx N0VCNDExMTAvBgNVBAUTKDlGNDNCMjZBQkE3MjhFODJGNjI2MzM3RkEyNjUyMUY4 RTY5RkJCQ0IwHhcNMjYwMTAxMDEyMDE5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU1Y2JkMy0zODRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRjFMdFAA4C04G/LROoOKsLIBtXxbrpOPhrt+snMjev3SohcKGN8flQnmjgV rE6Z/4eqgd9dZQ5Yz9Z+t9qam4RTStqaoBhvQdV9yZV+RJkN1MuFxiH26bEa+l94 92SMQF3AYozg5xTvvA51guMvNuhM1Y+Ce979Lz4SYNZ11RhO9sqpIvFlBWSzUix/ RXoaIu8GnPqDhTdjrplsMA+jQgsw7ZylDQZETuMxqjn7OkKIvEnV1Pm4rdtCEs4M sf0/g1gQFsh67bFYa1tzEedxYpmLE7RVp0pGAsjbN31esJnvYx1Yc7xNuDi8sGjq oYnPGEauml6/+NyBhgiPCtM2NQIDAQABo4IDFDCCAxAwHQYDVR0OBBYEFHfkxtXO 9KlU+WfSsktkWnqp5fEkMB8GA1UdIwQYMBaAFJ9Dsmq6co6C9iYzf6JlIfjmn7vL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUI0MS8xOEQ3OTU1NjE3 QkUxMUVEOEIzMjU5MzhDNEY5QUUwMi9uME95YXJweWpvTDJKak5fb21VaC1PYWZ1 OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24wT3lhcnB5am9MMkpqTl9vbVVoLU9hZnU4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VCNDEvMThENzk1NTYxN0JFMTFFRDhCMzI1OTM4QzRGOUFFMDIvMjJEMUQ1MEE1 OEJDMTFFRDk2NzkwRjY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgZ0GCCsGAQUFBwEHAQH/ BIGNMIGKMHkEAgABMHMDAwMbiAMDAyqQAwMAO6YDAwI7qDAKAwMBPDoDAwA8PjAK AwMAPRUDAwI9GAMDA26AAwMBdEADBAN01hADAwJ03AMDA3eoMAoDAwJ8jAMDAXyQ AwMDfQgDAwDLpQMDANIUAwMA0sIwCwMDA9yYAwQF3JhAMA0EAgACMAcDBQAgAQ/w MA0GCSqGSIb3DQEBCwUAA4IBAQAIRXQWg+MY2b0X/YJNk6AKSR1rUhAvWSfLxQ/5 W5htZkXf8/x4rBjU+pZV8tIM770fubwbdlAry5tHBtXd+AJiA/ezQED3p02M/Igd Ut+R96sOxtEyQ1HI+zEj16NyT9I2lOF3s3KYXt9InmtWxTkdbe4KZGgKf7tPat0F ss0Py5VIwEDD5RhZ/piB9hbSwjQ/bY1P+1NkKZPbSWegLOe6u10sUZ3M4IL1Bmlx oT52gJwBodvgPHw3va9j5okj7oeKMv7ycy0A6UQUjHZLO7rBYeSTytOOEOHnZuc0 2079pgMOcrte369o0xwLwAGRgBqB80/s08CaVCx/N7yxotSG -----END CERTIFICATE-----Generated at Mon Jan 26 09:46:04 2026 by rpki-client