This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/28A46886845B11EFA46A8F64C4F9AE02.roa File: 28A46886845B11EFA46A8F64C4F9AE02.roa (raw, json) Hash identifier: mTsfTB0hQKnqCt7WStrUgcMeLzivZL7jZCZ4ciO+4tQ= Subject key identifier: 57:43:A1:85:5C:C7:E9:FE:10:B7:EE:73:70:A5:0F:78:B2:0A:73:47 Certificate issuer: /CN=A919A713/serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Certificate serial: 039E Authority key identifier: 24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/28A46886845B11EFA46A8F64C4F9AE02.roa Signing time: Tue 13 Jan 2026 00:20:23 +0000 ROA not before: Tue 13 Jan 2026 00:20:23 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 133602 IP address blocks: 168.153.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 926 (0x39e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A713, serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Validity Not Before: Jan 13 00:20:23 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69658fc7-94b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fc:68:4b:84:bf:87:f3:36:0b:cb:f8:0d:cc: 6b:56:7d:20:57:74:26:06:15:fd:76:b0:e3:d5:b9: 47:97:ef:ef:31:4f:1f:7e:f8:4e:3e:13:c4:a4:6c: c6:fa:eb:33:8a:11:36:04:08:af:c6:57:78:88:29: dc:fb:91:f7:38:d9:e3:99:f9:b2:7c:c3:e0:4d:5c: 6e:76:87:4d:7d:3b:d2:4d:18:df:0c:3f:39:06:7f: e3:fe:5c:ee:9d:69:63:7d:af:8b:b1:c7:34:e5:cf: 23:64:97:eb:27:6b:b7:3c:94:38:9d:2e:00:3c:4c: 97:f4:48:63:5f:e2:80:5e:5a:24:d6:0f:d1:10:57: d3:95:37:50:6a:f8:ad:4a:c9:3d:69:b3:4d:15:aa: 47:ec:5a:80:fc:a5:b3:65:ca:20:68:46:1f:5f:72: 8b:8f:0c:50:5c:77:75:98:bd:31:86:ff:bf:c2:a6: f3:76:ea:5f:a4:92:2c:c2:ef:b3:bf:a5:5f:a4:1d: 8c:7b:d3:36:a6:1f:52:cc:0a:50:a6:21:c8:41:0c: bd:29:af:29:af:48:90:99:16:c3:91:14:a0:0d:2c: d8:fe:c1:4b:ed:30:08:d0:7e:13:91:5e:bf:fd:85: ae:98:c0:ce:65:5d:3d:87:08:33:28:c3:7e:94:09: 96:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:43:A1:85:5C:C7:E9:FE:10:B7:EE:73:70:A5:0F:78:B2:0A:73:47 X509v3 Authority Key Identifier: keyid:24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/28A46886845B11EFA46A8F64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.153.2.0/24 Signature Algorithm: sha256WithRSAEncryption 78:0a:46:03:5f:f2:f1:36:5b:ff:26:7c:76:fb:06:a0:32:78: 3d:77:d6:17:74:98:d4:07:26:6f:4c:78:98:06:14:8a:fe:bb: 53:32:06:65:41:07:ad:a1:c3:cb:43:3f:6f:45:bd:f4:bd:28: 68:c3:fb:9b:9d:bc:4e:86:2a:16:f4:88:08:6a:50:40:73:dc: b3:07:25:15:65:a7:1e:06:c4:b6:7c:89:f1:9d:68:88:58:45: e9:4b:63:c0:b1:b4:88:5b:c1:76:16:d4:32:ae:d1:f9:e9:f8: 10:05:49:44:11:f5:59:eb:e6:fa:a7:97:b7:4a:ed:b7:f3:1d: 32:75:a3:09:e3:f7:f9:78:91:fe:ad:51:05:12:26:9e:41:32: 92:9a:60:7a:8e:c8:c1:62:9f:7d:fe:42:2c:6b:ef:cb:ef:1b: 0c:75:ca:87:88:55:f2:72:08:2d:b5:90:36:d8:9b:3a:9b:93: a3:b5:53:e1:b2:d4:37:b7:8c:4d:5c:1c:b7:a7:14:bd:1f:82: f1:30:e8:f5:9a:87:96:94:e9:b8:09:f6:af:59:12:ad:06:15: 64:5d:c1:4b:87:3a:7b:5b:76:f0:81:54:61:8e:bc:88:4b:cb: c7:e2:15:8f:b2:99:8d:c9:fa:fd:82:4b:6c:43:78:03:62:1d: 1c:e5:f3:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OUE3MTMxMTAvBgNVBAUTKDI0QzhCQkY5MzBDRDJEMTIzOTlBQkRGOUM5Q0FCMTRC MUNENzlGNkIwHhcNMjYwMTEzMDAyMDIzWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY1OGZjNy05NGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/xoS4S/h/M2C8v4DcxrVn0gV3QmBhX9drDj1blHl+/vMU8ffvhOPhPEpGzG +uszihE2BAivxld4iCnc+5H3ONnjmfmyfMPgTVxudodNfTvSTRjfDD85Bn/j/lzu nWljfa+Lscc05c8jZJfrJ2u3PJQ4nS4APEyX9EhjX+KAXlok1g/REFfTlTdQavit Ssk9abNNFapH7FqA/KWzZcogaEYfX3KLjwxQXHd1mL0xhv+/wqbzdupfpJIswu+z v6VfpB2Me9M2ph9SzApQpiHIQQy9Ka8pr0iQmRbDkRSgDSzY/sFL7TAI0H4TkV6/ /YWumMDOZV09hwgzKMN+lAmWRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFdDoYVc x+n+ELfuc3ClD3iyCnNHMB8GA1UdIwQYMBaAFCTIu/kwzS0SOZq9+cnKsUsc159r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTcxMy8zNDk5NENCNEUw REExMUVDOTRDN0UwNjJDNEY5QUUwMi9KTWk3LVRETkxSSTVtcjM1eWNxeFN4elhu MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pNaTctVEROTFJJNW1yMzV5Y3F4U3h6WG4ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3MTMvMzQ5OTRDQjRFMERBMTFFQzk0QzdFMDYyQzRGOUFFMDIvMjhBNDY4ODY4 NDVCMTFFRkE0NkE4RjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAComQIwDQYJKoZIhvcNAQELBQADggEBAHgKRgNf8vE2W/8m fHb7BqAyeD131hd0mNQHJm9MeJgGFIr+u1MyBmVBB62hw8tDP29FvfS9KGjD+5ud vE6GKhb0iAhqUEBz3LMHJRVlpx4GxLZ8ifGdaIhYRelLY8CxtIhbwXYW1DKu0fnp +BAFSUQR9Vnr5vqnl7dK7bfzHTJ1ownj9/l4kf6tUQUSJp5BMpKaYHqOyMFin33+ Qixr78vvGwx1yoeIVfJyCC21kDbYmzqbk6O1U+Gy1De3jE1cHLenFL0fgvEw6PWa h5aU6bgJ9q9ZEq0GFWRdwUuHOntbdvCBVGGOvIhLy8fiFY+ymY3J+v2CS2xDeANi HRzl81s= -----END CERTIFICATE-----Generated at Sun Jan 25 20:40:27 2026 by rpki-client