This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/F8A618E05E3511F0ACCE4C26C4F9AE02.roa File: F8A618E05E3511F0ACCE4C26C4F9AE02.roa (raw, json) Hash identifier: /vK2ytfzdp/jeK0M80/Zmuq2APa5GK7Dlrkw7zxK/Z4= Subject key identifier: 3B:4F:02:94:99:A2:D4:F4:F8:47:00:EE:61:41:4A:F5:F9:00:8C:88 Certificate issuer: /CN=A9191A09/serialNumber=ACF2C8D0DCFBA74516B33CEBE26AE14F8B067C80 Certificate serial: 358F Authority key identifier: AC:F2:C8:D0:DC:FB:A7:45:16:B3:3C:EB:E2:6A:E1:4F:8B:06:7C:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/F8A618E05E3511F0ACCE4C26C4F9AE02.roa Signing time: Tue 30 Dec 2025 15:11:34 +0000 ROA not before: Tue 30 Dec 2025 15:11:34 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 24492 IP address blocks: 27.111.8.0/22 maxlen: 24 43.245.216.0/22 maxlen: 24 49.156.32.0/20 maxlen: 24 103.17.212.0/22 maxlen: 24 116.206.16.0/22 maxlen: 24 119.15.80.0/20 maxlen: 24 202.79.24.0/21 maxlen: 24 218.100.71.0/24 maxlen: 24 2405:1a00::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.crl rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13711 (0x358f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191A09, serialNumber=ACF2C8D0DCFBA74516B33CEBE26AE14F8B067C80 Validity Not Before: Dec 30 15:11:34 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6953eba6-fdc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:20:48:d4:ba:77:33:89:bb:86:11:4c:d2:54: e5:f1:ea:02:10:13:b4:ad:bc:5e:49:cd:30:f4:26: c1:b5:99:a8:0e:c0:9d:fc:29:70:73:69:ee:99:ce: 54:a7:e8:3f:05:93:8f:b6:c0:64:89:be:5e:70:1b: 12:7b:e9:16:a8:8b:1c:1b:8d:48:2a:e7:5b:b8:9f: 4b:8f:fd:1f:c7:47:a0:59:93:6c:52:20:03:1d:6b: 27:0e:ae:1c:2d:1a:b4:27:6f:df:b2:7f:df:97:80: 99:15:d5:f3:d1:2d:07:e8:8c:61:17:62:60:85:20: 9f:cd:31:bb:9b:22:58:a1:94:ff:de:4d:3d:23:4f: 0d:a3:a2:47:8e:9d:0c:96:bc:aa:e2:fa:20:f3:0d: 47:87:45:f4:97:c4:f5:0f:27:86:90:92:23:6c:d5: eb:5d:7d:b8:e9:d6:9b:ac:27:25:7c:25:7b:83:99: 6a:9c:1d:7c:f4:84:18:ad:c2:fa:53:42:ce:63:94: ce:9d:00:1c:63:bd:28:20:66:68:d4:79:da:0c:c7: d8:69:38:72:90:ff:12:32:04:fe:87:3f:02:26:6f: 57:44:1e:62:60:55:2f:2c:dc:cb:ed:b8:76:2a:9b: ab:36:92:dc:ed:f2:db:4d:cd:c1:b3:04:4f:f6:73: e9:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:4F:02:94:99:A2:D4:F4:F8:47:00:EE:61:41:4A:F5:F9:00:8C:88 X509v3 Authority Key Identifier: keyid:AC:F2:C8:D0:DC:FB:A7:45:16:B3:3C:EB:E2:6A:E1:4F:8B:06:7C:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/F8A618E05E3511F0ACCE4C26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.8.0/22 43.245.216.0/22 49.156.32.0/20 103.17.212.0/22 116.206.16.0/22 119.15.80.0/20 202.79.24.0/21 218.100.71.0/24 IPv6: 2405:1a00::/32 Signature Algorithm: sha256WithRSAEncryption 9f:a0:16:38:33:06:fd:e1:a0:e5:9e:75:75:e4:12:4e:bf:a7: 46:84:86:a0:43:65:db:36:86:4c:67:45:8a:46:88:5d:32:bd: 86:67:a4:7a:53:95:0a:48:19:9d:d1:a6:4a:24:9f:aa:39:ec: f9:d6:26:f3:8f:88:31:0e:2e:55:8e:55:4f:80:02:48:93:81: a2:a5:6d:00:c4:6b:59:47:73:72:2f:13:61:4d:78:d1:cf:9d: 9b:35:a2:a3:28:5c:64:0d:9b:7b:8e:4f:b7:dc:38:76:ce:62: 0e:74:84:34:df:91:4c:cb:f7:a4:43:ec:e8:b8:6b:35:6c:d3: a3:cb:79:6b:d4:94:38:99:ec:0e:9b:c5:3c:cc:15:da:3c:ac: 60:0a:f0:61:3e:f5:15:48:4d:58:1b:7e:e7:b1:ee:49:ec:3d: 5f:8d:a7:dd:68:e3:fc:fd:6b:33:ce:76:31:7e:df:7d:3a:ef: ae:1f:32:5e:37:d5:a5:49:4c:c9:f5:0d:96:f4:9b:b0:e0:95: a9:b1:05:ee:3c:e8:1c:5b:d9:e8:6a:04:9c:2d:7b:20:b2:63: a7:ae:e5:80:e4:b7:88:34:e0:84:b7:19:1c:e1:0b:84:e9:ae: e3:30:a4:0d:53:24:0e:1b:10:7f:f0:1e:b4:b3:da:e8:cf:a0: 77:8b:eb:f4 -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgICNY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTFBMDkxMTAvBgNVBAUTKEFDRjJDOEQwRENGQkE3NDUxNkIzM0NFQkUyNkFFMTRG OEIwNjdDODAwHhcNMjUxMjMwMTUxMTM0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTUzZWJhNi1mZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCBI1Lp3M4m7hhFM0lTl8eoCEBO0rbxeSc0w9CbBtZmoDsCd/Clwc2numc5U p+g/BZOPtsBkib5ecBsSe+kWqIscG41IKudbuJ9Lj/0fx0egWZNsUiADHWsnDq4c LRq0J2/fsn/fl4CZFdXz0S0H6IxhF2JghSCfzTG7myJYoZT/3k09I08No6JHjp0M lryq4vog8w1Hh0X0l8T1DyeGkJIjbNXrXX246dabrCclfCV7g5lqnB189IQYrcL6 U0LOY5TOnQAcY70oIGZo1HnaDMfYaThykP8SMgT+hz8CJm9XRB5iYFUvLNzL7bh2 KpurNpLc7fLbTc3BswRP9nPplQIDAQABo4ICzjCCAsowHQYDVR0OBBYEFDtPApSZ otT0+EcA7mFBSvX5AIyIMB8GA1UdIwQYMBaAFKzyyNDc+6dFFrM86+Jq4U+LBnyA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUEwOS80QUNGRjM2MDFE OTAxMUUyQjg3Q0YyRUYwOEIwMkNEMi9yUExJME56N3AwVVdzenpyNG1yaFQ0c0dm SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JQTEkwTno3cDBVV3N6enI0bXJoVDRzR2ZJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFBMDkvNEFDRkYzNjAxRDkwMTFFMkI4N0NGMkVGMDhCMDJDRDIvRjhBNjE4RTA1 RTM1MTFGMEFDQ0U0QzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWAYIKwYBBQUHAQcBAf8E STBHMDYEAgABMDADBAIbbwgDBAIr9dgDBAQxnCADBAJnEdQDBAJ0zhADBAR3D1AD BAPKTxgDBADaZEcwDQQCAAIwBwMFACQFGgAwDQYJKoZIhvcNAQELBQADggEBAJ+g FjgzBv3hoOWedXXkEk6/p0aEhqBDZds2hkxnRYpGiF0yvYZnpHpTlQpIGZ3Rpkok n6o57PnWJvOPiDEOLlWOVU+AAkiTgaKlbQDEa1lHc3IvE2FNeNHPnZs1oqMoXGQN m3uOT7fcOHbOYg50hDTfkUzL96RD7Oi4azVs06PLeWvUlDiZ7A6bxTzMFdo8rGAK 8GE+9RVITVgbfuex7knsPV+Np91o4/z9azPOdjF+3306764fMl431aVJTMn1DZb0 m7DglamxBe486Bxb2ehqBJwteyCyY6eu5YDkt4g04IS3GRzhC4TpruMwpA1TJA4b EH/wHrSz2ujPoHeL6/Q= -----END CERTIFICATE-----Generated at Mon Jan 26 00:43:28 2026 by rpki-client