This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/0953844ADF0811F0898BFB0E5D6F56BC.roa File: 0953844ADF0811F0898BFB0E5D6F56BC.roa (raw, json) Hash identifier: CgKRAghGqDalEkNqfOQq8B3FU3Akxe86uC1I0MJW/hI= Subject key identifier: 2D:DD:25:21:25:7D:11:F6:CC:9C:A6:2C:18:17:22:E7:1E:0F:B4:18 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 378A Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/0953844ADF0811F0898BFB0E5D6F56BC.roa Signing time: Fri 16 Jan 2026 16:13:37 +0000 ROA not before: Fri 16 Jan 2026 16:13:37 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 41239 IP address blocks: 2402:d680::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:26:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14218 (0x378a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 16 16:13:37 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=696a63b1-04fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ee:74:bc:e4:5c:a8:47:36:3a:4f:6d:c2:bf: 12:23:f3:e6:63:d8:56:e2:e6:23:9b:de:2e:de:b5: ed:7e:c6:c6:46:17:4b:5c:51:3c:4e:16:8c:73:94: 84:8b:f2:75:08:8b:4b:b8:8d:d2:c4:83:cd:dc:e3: 8a:77:eb:c5:fe:cf:d9:b3:fb:8f:53:22:64:b0:ca: 91:49:20:ff:05:f4:f4:3e:96:44:32:57:2a:ba:09: 2d:d8:82:70:9f:95:9c:7e:6d:93:3e:41:60:03:28: 68:3e:74:e8:10:9b:b5:c6:60:07:04:26:21:cd:5e: d1:d7:34:45:59:3d:50:8e:2e:d4:e9:a3:06:6e:37: 83:09:79:4f:d5:ac:cc:44:f4:87:d4:54:ee:e4:21: 3f:a8:73:21:23:ad:91:69:5f:54:f0:13:69:02:db: 65:5d:80:af:f0:ac:9e:5b:ff:9e:39:b6:d7:45:b8: 64:62:e4:3a:4a:c1:c1:92:d7:89:46:3b:88:55:7f: 22:a2:ba:50:55:58:a6:2d:88:3a:29:c5:27:8b:73: c2:87:ae:2a:23:af:16:98:b6:40:66:5c:ca:ac:9f: 35:70:5e:b3:cd:25:3f:b7:44:c2:84:ee:97:52:c9: 22:fc:26:46:ee:fd:90:b1:ea:d4:d2:5d:95:86:f4: 6e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:DD:25:21:25:7D:11:F6:CC:9C:A6:2C:18:17:22:E7:1E:0F:B4:18 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/0953844ADF0811F0898BFB0E5D6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:d680::/34 Signature Algorithm: sha256WithRSAEncryption a8:bd:98:8e:e2:0a:a2:c7:44:6f:70:cd:15:76:48:6f:11:aa: 65:a8:c5:0c:f5:b0:29:df:c8:5c:42:f6:0a:dc:9a:2d:34:1d: c0:2e:77:bc:0e:7e:8a:af:25:9c:35:ae:ad:bf:6b:a0:79:57: 9e:9d:e6:f7:ef:d3:e7:02:b2:82:5d:17:f0:80:74:8d:e8:96: f4:5b:6f:22:cd:ef:1e:53:1f:97:5f:a9:e1:58:a8:8a:ac:9e: f2:33:d3:cb:6b:bb:4e:0c:57:80:e1:df:cd:fe:3e:e1:7b:fa: 76:97:7f:3f:94:0c:a9:0a:57:06:51:d4:94:1c:d8:48:fd:11: 1f:b5:32:fb:e2:8c:6c:87:1b:f7:6d:f1:13:91:dd:c2:57:72: 73:fd:f7:4a:45:ad:e2:de:fa:b2:08:86:85:cd:f1:36:3d:14: 55:ad:63:2b:28:c1:c6:80:af:16:64:16:18:6c:d2:5e:1c:e3: d0:a5:37:f3:e0:06:2b:47:c8:02:e9:96:fa:21:d7:33:23:86: 87:59:c6:b2:c0:c1:7f:50:95:fb:64:ff:4f:b1:ec:27:e7:ef: 5d:b1:61:c6:a0:f3:81:c5:59:26:77:45:0c:84:ba:2c:0e:c8: 3c:85:ca:99:69:b2:65:b4:15:b9:e5:ed:58:bf:1c:2a:99:ea: 5f:10:a1:46 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICN4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjYwMTE2MTYxMzM3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTZhNjNiMS0wNGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuO50vORcqEc2Ok9twr8SI/PmY9hW4uYjm94u3rXtfsbGRhdLXFE8ThaMc5SE i/J1CItLuI3SxIPN3OOKd+vF/s/Zs/uPUyJksMqRSSD/BfT0PpZEMlcqugkt2IJw n5Wcfm2TPkFgAyhoPnToEJu1xmAHBCYhzV7R1zRFWT1Qji7U6aMGbjeDCXlP1azM RPSH1FTu5CE/qHMhI62RaV9U8BNpAttlXYCv8KyeW/+eObbXRbhkYuQ6SsHBkteJ RjuIVX8iorpQVVimLYg6KcUni3PCh64qI68WmLZAZlzKrJ81cF6zzSU/t0TChO6X Uski/CZG7v2QserU0l2VhvRu/QIDAQABo4IClzCCApMwHQYDVR0OBBYEFC3dJSEl fRH2zJymLBgXIuceD7QYMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvMDk1Mzg0NEFE RjA4MTFGMDg5OEJGQjBFNUQ2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgYkAtaAADANBgkqhkiG9w0BAQsFAAOCAQEAqL2YjuIKosdE b3DNFXZIbxGqZajFDPWwKd/IXEL2CtyaLTQdwC53vA5+iq8lnDWurb9roHlXnp3m 9+/T5wKygl0X8IB0jeiW9FtvIs3vHlMfl1+p4Vioiqye8jPTy2u7TgxXgOHfzf4+ 4Xv6dpd/P5QMqQpXBlHUlBzYSP0RH7Uy++KMbIcb923xE5Hdwldyc/33SkWt4t76 sgiGhc3xNj0UVa1jKyjBxoCvFmQWGGzSXhzj0KU38+AGK0fIAumW+iHXMyOGh1nG ssDBf1CV+2T/T7HsJ+fvXbFhxqDzgcVZJndFDIS6LA7IPIXKmWmyZbQVueXtWL8c KpnqXxChRg== -----END CERTIFICATE-----Generated at Sun Jan 25 09:19:04 2026 by rpki-client