This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/CF96FC32E0E111ECBFF27B44C4F9AE02.roa File: CF96FC32E0E111ECBFF27B44C4F9AE02.roa (raw, json) Hash identifier: fhmajm7HssmZQQ+TdhTV2S2xDowh4PJ55/63l3DKRIQ= Subject key identifier: AF:86:7F:50:14:A6:33:9E:AA:5A:61:D8:E1:68:E4:89:6A:B5:99:87 Certificate issuer: /CN=A919A713/serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Certificate serial: 039D Authority key identifier: 24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/CF96FC32E0E111ECBFF27B44C4F9AE02.roa Signing time: Tue 13 Jan 2026 00:20:22 +0000 ROA not before: Tue 13 Jan 2026 00:20:22 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 133036 IP address blocks: 168.153.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 925 (0x39d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A713, serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Validity Not Before: Jan 13 00:20:22 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69658fc6-76fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d7:2f:84:ed:fb:ed:5a:72:34:c5:84:9f:40: 53:b4:4b:21:f9:5d:f7:c1:c5:86:3a:fe:cf:41:e2: 9b:86:27:56:a0:31:81:19:0f:af:d9:39:77:99:f0: 41:21:ae:be:cb:32:e2:7e:d5:7d:fb:12:ea:84:14: 90:fa:40:21:d3:2d:a5:28:19:db:c6:4f:8f:74:a1: 3d:24:b3:a7:2a:a0:a3:6a:1f:76:4b:6e:45:19:e1: 8a:63:7a:d2:82:73:ae:6d:f7:8a:22:10:6a:a2:ac: 1d:98:44:3c:12:55:e9:3c:47:77:58:0e:bc:af:32: 0a:1a:6f:f9:2b:46:e6:02:40:1a:87:1c:03:f5:38: f1:45:a4:fc:1c:ae:ca:0d:78:2d:4e:81:6c:d8:73: 3a:4f:a8:9e:db:c1:43:58:5b:90:32:37:33:08:ff: 2e:3f:3f:08:a7:18:38:ca:56:3a:0c:3a:ab:76:6f: f6:a2:2c:6c:87:8a:17:68:8e:49:16:87:74:79:b8: a1:46:77:f9:f0:02:a1:bd:c1:e4:92:13:d4:b1:ff: bf:36:ac:fe:67:db:d3:6a:bb:af:bf:9f:f2:96:bb: fc:87:92:01:ff:98:63:cb:44:58:27:e1:53:f7:02: 16:d9:e5:00:4b:db:ea:c0:c9:53:89:d1:8f:ce:dd: a6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:86:7F:50:14:A6:33:9E:AA:5A:61:D8:E1:68:E4:89:6A:B5:99:87 X509v3 Authority Key Identifier: keyid:24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/CF96FC32E0E111ECBFF27B44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.153.1.0/24 Signature Algorithm: sha256WithRSAEncryption 48:91:50:e1:dc:6f:81:e4:71:7d:ef:b5:bf:f7:5e:f6:4f:22: 5f:6d:f4:a0:db:65:74:f9:12:5c:2c:dd:9a:d0:ad:0c:6f:67: bc:55:9a:da:b5:fe:cf:a5:89:c2:64:69:76:af:1f:72:55:e3: 10:24:13:4c:3a:35:1e:d1:36:2e:95:02:fd:e8:3f:9c:93:79: d2:58:e7:91:cf:a8:08:2a:25:a0:9a:b0:98:47:a5:c7:c6:40: 22:28:6c:3e:02:e7:b9:fe:4b:71:7f:67:7c:dc:e8:97:ad:a9: 84:02:70:96:43:61:7e:e7:55:54:28:56:48:75:b5:11:b6:5e: 8b:e0:6f:ec:3b:bf:65:c9:51:db:df:e3:4f:77:ba:16:90:da: cc:35:3a:87:48:6f:e1:06:5b:8d:99:53:c3:ec:30:44:46:e1: 76:a8:a9:07:62:d3:13:33:3a:b9:5a:2e:50:5c:87:95:20:c5: ad:50:d5:b3:2f:ff:f5:f6:f9:18:92:6b:0d:41:dd:b6:01:c2: 65:dd:2f:f2:d5:35:03:cb:76:30:de:84:c3:55:56:5a:76:6c: 4a:1e:36:00:a0:27:fa:04:6d:42:99:52:c4:dd:f2:56:dc:ea: b0:d5:a5:29:43:10:df:5c:1a:1f:a3:82:cf:a7:e7:98:4e:c9: 8b:44:25:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OUE3MTMxMTAvBgNVBAUTKDI0QzhCQkY5MzBDRDJEMTIzOTlBQkRGOUM5Q0FCMTRC MUNENzlGNkIwHhcNMjYwMTEzMDAyMDIyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY1OGZjNi03NmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9cvhO377VpyNMWEn0BTtEsh+V33wcWGOv7PQeKbhidWoDGBGQ+v2Tl3mfBB Ia6+yzLiftV9+xLqhBSQ+kAh0y2lKBnbxk+PdKE9JLOnKqCjah92S25FGeGKY3rS gnOubfeKIhBqoqwdmEQ8ElXpPEd3WA68rzIKGm/5K0bmAkAahxwD9TjxRaT8HK7K DXgtToFs2HM6T6ie28FDWFuQMjczCP8uPz8Ipxg4ylY6DDqrdm/2oixsh4oXaI5J Fod0ebihRnf58AKhvcHkkhPUsf+/Nqz+Z9vTaruvv5/ylrv8h5IB/5hjy0RYJ+FT 9wIW2eUAS9vqwMlTidGPzt2mAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK+Gf1AU pjOeqlph2OFo5IlqtZmHMB8GA1UdIwQYMBaAFCTIu/kwzS0SOZq9+cnKsUsc159r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTcxMy8zNDk5NENCNEUw REExMUVDOTRDN0UwNjJDNEY5QUUwMi9KTWk3LVRETkxSSTVtcjM1eWNxeFN4elhu MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pNaTctVEROTFJJNW1yMzV5Y3F4U3h6WG4ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3MTMvMzQ5OTRDQjRFMERBMTFFQzk0QzdFMDYyQzRGOUFFMDIvQ0Y5NkZDMzJF MEUxMTFFQ0JGRjI3QjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAComQEwDQYJKoZIhvcNAQELBQADggEBAEiRUOHcb4HkcX3v tb/3XvZPIl9t9KDbZXT5Elws3ZrQrQxvZ7xVmtq1/s+licJkaXavH3JV4xAkE0w6 NR7RNi6VAv3oP5yTedJY55HPqAgqJaCasJhHpcfGQCIobD4C57n+S3F/Z3zc6Jet qYQCcJZDYX7nVVQoVkh1tRG2Xovgb+w7v2XJUdvf4093uhaQ2sw1OodIb+EGW42Z U8PsMERG4XaoqQdi0xMzOrlaLlBch5Ugxa1Q1bMv//X2+RiSaw1B3bYBwmXdL/LV NQPLdjDehMNVVlp2bEoeNgCgJ/oEbUKZUsTd8lbc6rDVpSlDEN9cGh+jgs+n55hO yYtEJR8= -----END CERTIFICATE-----Generated at Sun Jan 25 11:04:05 2026 by rpki-client