This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/5D563164AF3411EFB5B51A57C4F9AE02.roa File: 5D563164AF3411EFB5B51A57C4F9AE02.roa (raw, json) Hash identifier: M/OFgQ6xRIHxm29OUey7KQ5wO/TqLXD5eexAyZK2n9E= Subject key identifier: 3E:0D:BE:2C:82:A3:D8:61:73:FF:7E:66:0C:53:AB:E5:6A:C8:41:71 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 1091 Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/5D563164AF3411EFB5B51A57C4F9AE02.roa Signing time: Tue 30 Dec 2025 15:10:51 +0000 ROA not before: Tue 30 Dec 2025 15:10:51 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 9498 IP address blocks: 128.185.0.0/16 maxlen: 24 152.52.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4241 (0x1091) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Dec 30 15:10:51 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6953eb7a-ee80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2a:31:bb:06:87:2b:7d:9d:f9:e1:5f:ba:a1: 3b:eb:56:f3:d9:0a:a7:3f:81:1d:5f:e6:b0:f9:6c: 5f:61:bd:10:71:5d:94:0e:63:40:b8:5a:66:30:4c: ba:d4:68:31:4d:60:90:dd:64:ba:22:6c:a2:4c:31: 74:3e:ba:d5:2d:4f:b2:5b:a5:6f:dd:ed:b9:84:bc: 18:44:16:11:dc:08:cd:fd:5d:7f:2b:be:89:12:40: a4:12:99:5a:c0:b1:72:a7:17:46:a7:fa:c4:c9:95: 8b:84:22:7a:98:9b:bb:ce:27:e4:e8:b6:36:d7:4b: b9:1c:f2:42:40:0b:2e:86:97:13:79:86:68:53:55: b0:94:e2:20:43:34:be:29:3e:a2:16:29:20:46:d2: 78:ff:3a:42:f7:9c:6e:f6:ad:2b:3a:b5:3d:da:9b: 73:a1:2c:82:61:71:cd:02:23:0d:ca:5d:a6:7d:93: 67:48:9e:92:33:0a:73:3b:44:25:9f:6c:5a:58:2f: b9:ef:3e:2b:8e:3c:02:fe:91:60:f8:a1:fd:bc:cd: 45:7c:f5:09:9a:78:a5:2a:a8:ac:88:35:9e:59:68: 2e:40:7a:74:0a:f4:b0:9b:c9:d6:01:88:d8:ef:0b: 1a:1c:0c:1e:84:2b:fb:ca:6b:c9:04:24:9f:a2:1a: 1c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:0D:BE:2C:82:A3:D8:61:73:FF:7E:66:0C:53:AB:E5:6A:C8:41:71 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/5D563164AF3411EFB5B51A57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 128.185.0.0/16 152.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:2e:11:0a:e9:a7:e4:40:cd:51:64:1d:2a:27:6b:04:0c:e3: 9b:f5:37:31:c5:7c:df:d5:67:b5:4a:59:14:fc:57:b9:ff:4c: 1c:76:4d:c2:57:bd:44:59:62:ad:eb:42:b2:31:53:57:f4:05: d3:98:02:c5:b9:37:6d:44:66:0b:de:9c:ee:a0:0d:b4:ec:0f: dc:3d:cd:c5:8d:fb:02:4c:e2:4b:e5:2e:99:75:f8:66:c5:85: 7c:0d:bd:90:2d:5e:0a:71:36:91:30:7a:3c:0c:bb:a2:b7:08: 29:a2:49:35:a0:d0:54:19:07:f3:6f:b4:b7:ca:d2:d0:35:d0: 26:f4:d7:d4:98:4f:44:87:a6:ef:76:11:83:7e:1f:d7:bd:67: 34:53:a5:64:0e:76:58:b4:6b:8a:11:c4:53:37:d9:3b:4c:50: ed:86:d2:f2:cf:80:a8:b8:e5:af:d3:92:9f:70:f4:b9:91:e9: 90:2f:04:69:3f:46:11:73:28:d6:97:e1:d4:af:ea:b7:c8:f2: 7d:23:84:8c:54:c0:9a:b0:35:b0:df:c7:82:f9:95:cd:f5:6e: 24:c3:f7:e6:24:c3:f5:fd:b2:c5:e5:26:a5:f5:af:a2:8f:19: 5d:33:e6:f1:14:74:99:50:2a:a2:cb:75:41:a4:67:20:28:e9: 4c:cc:e1:ef -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgICEJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjUxMjMwMTUxMDUxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTUzZWI3YS1lZTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvioxuwaHK32d+eFfuqE761bz2QqnP4EdX+aw+WxfYb0QcV2UDmNAuFpmMEy6 1GgxTWCQ3WS6ImyiTDF0PrrVLU+yW6Vv3e25hLwYRBYR3AjN/V1/K76JEkCkEpla wLFypxdGp/rEyZWLhCJ6mJu7zifk6LY210u5HPJCQAsuhpcTeYZoU1WwlOIgQzS+ KT6iFikgRtJ4/zpC95xu9q0rOrU92ptzoSyCYXHNAiMNyl2mfZNnSJ6SMwpzO0Ql n2xaWC+57z4rjjwC/pFg+KH9vM1FfPUJmnilKqisiDWeWWguQHp0CvSwm8nWAYjY 7wsaHAwehCv7ymvJBCSfohocqwIDAQABo4ICmTCCApUwHQYDVR0OBBYEFD4NviyC o9hhc/9+ZgxTq+VqyEFxMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvMkE1OTQwRjI0QkIzMTFFOUFCMTUxQzE3QzRGOUFFMDIvNUQ1NjMxNjRB RjM0MTFFRkI1QjUxQTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIwYIKwYBBQUHAQcBAf8E FDASMBAEAgABMAoDAwCAuQMDAJg0MA0GCSqGSIb3DQEBCwUAA4IBAQCILhEK6afk QM1RZB0qJ2sEDOOb9TcxxXzf1We1SlkU/Fe5/0wcdk3CV71EWWKt60KyMVNX9AXT mALFuTdtRGYL3pzuoA207A/cPc3FjfsCTOJL5S6ZdfhmxYV8Db2QLV4KcTaRMHo8 DLuitwgpokk1oNBUGQfzb7S3ytLQNdAm9NfUmE9Eh6bvdhGDfh/XvWc0U6VkDnZY tGuKEcRTN9k7TFDthtLyz4CouOWv05KfcPS5kemQLwRpP0YRcyjWl+HUr+q3yPJ9 I4SMVMCasDWw38eC+ZXN9W4kw/fmJMP1/bLF5Sal9a+ijxldM+bxFHSZUCqiy3VB pGcgKOlMzOHv -----END CERTIFICATE-----Generated at Sun Jan 25 18:54:55 2026 by rpki-client