This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/28A46886845B11EFA46A8F64C4F9AE02.roa File: 28A46886845B11EFA46A8F64C4F9AE02.roa (raw, json) Hash identifier: fvVxyFpJKv2/Kv82D1rdU5ie/2GisD974gz0+Vt1t6k= Subject key identifier: 44:50:B7:B3:A6:97:F9:A9:AF:6C:66:B5:0F:5B:D2:E2:9F:E1:83:84 Certificate issuer: /CN=A919A713/serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Certificate serial: 02D8 Authority key identifier: 24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/28A46886845B11EFA46A8F64C4F9AE02.roa Signing time: Fri 31 Jan 2025 01:44:56 +0000 ROA not before: Fri 31 Jan 2025 01:44:56 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 133602 IP address blocks: 168.153.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 728 (0x2d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A713, serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Validity Not Before: Jan 31 01:44:56 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679c2b17-deb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:54:3a:ff:f0:f8:7a:53:fc:a4:b1:df:c3:f1: 77:e4:de:97:7a:86:d1:f6:39:f6:15:f1:f0:a5:50: 0e:db:27:91:b5:bb:10:d5:58:23:43:b0:93:54:c6: a8:5d:4e:fa:0a:e1:10:3c:97:cf:e2:4c:00:b8:89: 5a:dc:e1:5f:7f:51:53:5c:db:66:05:38:7a:87:34: 84:64:a9:b0:8d:d4:34:32:37:a5:74:23:b8:40:74: b5:38:f4:40:82:6c:ff:16:6d:e5:bf:f7:c0:fc:1e: d0:b3:07:1c:fd:5d:d6:21:fe:e0:cd:7a:fb:42:5c: 4c:7b:f0:04:c8:23:14:f5:e7:6f:28:a2:01:b1:86: c6:38:0b:e9:dd:fb:6e:2f:b8:44:a4:35:cc:57:21: d0:31:03:ad:a1:5a:f2:f9:fc:3e:04:6e:de:6a:38: 18:35:d2:54:23:95:c6:f9:11:5d:47:48:32:1e:b0: 0d:2e:c3:3b:e6:e7:53:77:4e:85:f9:ec:88:f5:29: fa:d0:3f:90:c2:7d:e4:4e:ce:65:fa:fb:31:73:13: 42:68:54:2a:1f:37:3b:dd:8f:2a:1e:99:45:66:d9: fb:40:0b:a9:b4:13:be:5b:90:ae:41:32:f6:49:18: 85:67:f7:15:49:99:61:01:ab:ee:f8:36:51:35:4d: 63:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:50:B7:B3:A6:97:F9:A9:AF:6C:66:B5:0F:5B:D2:E2:9F:E1:83:84 X509v3 Authority Key Identifier: keyid:24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/28A46886845B11EFA46A8F64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.153.2.0/24 Signature Algorithm: sha256WithRSAEncryption 43:65:08:7d:c5:c0:e4:9d:4a:92:94:0b:5a:b4:97:da:b5:34: 55:0d:07:42:c4:a8:50:e8:b5:0a:82:54:ac:86:93:f6:d3:e4: a8:8c:7d:dd:d3:6a:a6:58:79:66:9f:b2:5c:12:5f:1a:d9:14: 35:38:54:3b:31:81:ec:3e:e8:c6:c8:ba:1a:f2:a9:c7:0d:2c: 50:38:14:c1:dd:b9:d8:8b:8e:0e:0c:8d:b8:2e:54:5d:e1:07: 78:bf:62:19:6b:e1:8f:b8:f4:6f:27:15:c9:e3:c7:1d:0c:13: 08:cd:dd:05:2c:ae:b8:5c:e4:d1:27:a9:be:9f:d7:0d:98:b5: bf:09:20:68:8c:40:8f:b3:da:6e:04:be:f2:d3:2a:6a:00:83: 82:cb:6e:a5:d6:88:04:34:98:59:5c:d5:3b:1a:bc:ed:cb:90: 72:17:52:d6:b0:86:d2:a4:1e:87:24:46:6c:0f:a7:a6:85:6e: e0:ae:6b:ec:b0:18:c1:5e:49:74:33:b5:1a:a2:07:66:aa:64: d1:69:49:ad:b2:61:c1:02:e0:f6:6e:99:c2:a6:d5:7e:88:f6: ab:51:85:b6:e6:97:47:50:44:19:5a:46:b3:f5:db:aa:27:eb: e3:f6:1c:a7:45:d1:40:7b:db:89:9d:dc:d6:d8:42:22:46:05: 0a:7f:7f:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3MTMxMTAvBgNVBAUTKDI0QzhCQkY5MzBDRDJEMTIzOTlBQkRGOUM5Q0FCMTRC MUNENzlGNkIwHhcNMjUwMTMxMDE0NDU2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzljMmIxNy1kZWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01Q6//D4elP8pLHfw/F35N6XeobR9jn2FfHwpVAO2yeRtbsQ1VgjQ7CTVMao XU76CuEQPJfP4kwAuIla3OFff1FTXNtmBTh6hzSEZKmwjdQ0MjeldCO4QHS1OPRA gmz/Fm3lv/fA/B7Qswcc/V3WIf7gzXr7QlxMe/AEyCMU9edvKKIBsYbGOAvp3ftu L7hEpDXMVyHQMQOtoVry+fw+BG7eajgYNdJUI5XG+RFdR0gyHrANLsM75udTd06F +eyI9Sn60D+Qwn3kTs5l+vsxcxNCaFQqHzc73Y8qHplFZtn7QAuptBO+W5CuQTL2 SRiFZ/cVSZlhAavu+DZRNU1j4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFERQt7Om l/mpr2xmtQ9b0uKf4YOEMB8GA1UdIwQYMBaAFCTIu/kwzS0SOZq9+cnKsUsc159r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTcxMy8zNDk5NENCNEUw REExMUVDOTRDN0UwNjJDNEY5QUUwMi9KTWk3LVRETkxSSTVtcjM1eWNxeFN4elhu MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pNaTctVEROTFJJNW1yMzV5Y3F4U3h6WG4ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3MTMvMzQ5OTRDQjRFMERBMTFFQzk0QzdFMDYyQzRGOUFFMDIvMjhBNDY4ODY4 NDVCMTFFRkE0NkE4RjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAComQIwDQYJKoZIhvcNAQELBQADggEBAENlCH3FwOSdSpKU C1q0l9q1NFUNB0LEqFDotQqCVKyGk/bT5KiMfd3TaqZYeWafslwSXxrZFDU4VDsx gew+6MbIuhryqccNLFA4FMHdudiLjg4MjbguVF3hB3i/Yhlr4Y+49G8nFcnjxx0M EwjN3QUsrrhc5NEnqb6f1w2Ytb8JIGiMQI+z2m4EvvLTKmoAg4LLbqXWiAQ0mFlc 1TsavO3LkHIXUtawhtKkHockRmwPp6aFbuCua+ywGMFeSXQztRqiB2aqZNFpSa2y YcEC4PZumcKm1X6I9qtRhbbml0dQRBlaRrP126on6+P2HKdF0UB724md3NbYQiJG BQp/f8I= -----END CERTIFICATE-----Generated at Sun Dec 7 01:11:52 2025 by rpki-client