This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/5B4D02987E5B11F09260CE56C4F9AE02.roa File: 5B4D02987E5B11F09260CE56C4F9AE02.roa (raw, json) Hash identifier: IstPUkbFjM6rU7VueDJ0IDYmqIEAooyhlbMWvQsaLpk= Subject key identifier: DD:A6:45:83:C7:C9:BB:6A:AC:38:D6:4E:46:A0:1C:4F:0D:51:AD:B7 Certificate issuer: /CN=A919A777/serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Certificate serial: 017C Authority key identifier: 64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/5B4D02987E5B11F09260CE56C4F9AE02.roa Signing time: Fri 21 Nov 2025 19:24:55 +0000 ROA not before: Fri 21 Nov 2025 19:24:55 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 205927 IP address blocks: 2403:ad80:5012::/48 maxlen: 48 2403:ad80:5015::/48 maxlen: 48 2403:ad80:5016::/48 maxlen: 48 2403:ad80:5017::/48 maxlen: 48 2403:ad80:5019::/48 maxlen: 48 2403:ad80:5020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:33:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A777, serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Validity Not Before: Nov 21 19:24:55 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6920bc87-0bb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:52:bc:1a:c3:b4:be:3b:a3:8f:54:1c:b9:7d: a4:d5:78:e7:be:a8:b2:bc:9f:af:07:d6:8d:d1:3f: e6:93:10:08:d4:49:44:0b:ca:1a:c8:b9:03:6b:d3: 45:1e:48:a3:c5:31:da:1b:c8:8a:62:ef:33:70:98: e7:19:cb:44:67:98:e4:62:7c:13:e4:93:6d:82:39: b4:b1:6d:38:d3:18:2a:93:29:33:01:6d:51:cb:d7: 95:dd:88:a5:c5:9b:3d:4a:55:b0:59:40:38:69:d8: d8:01:5f:21:e0:df:e4:51:9f:ff:bd:94:ba:10:c5: cc:e4:37:85:94:8c:c8:9d:f4:ee:27:04:02:db:b1: f5:f6:bd:4d:c2:28:e1:27:b6:1e:c7:60:fc:ed:52: 0a:bc:54:18:c0:9e:5e:80:a0:a4:cc:b6:62:a5:7c: ad:be:28:00:b9:79:a9:96:09:fd:46:d2:41:2a:a2: c9:9f:99:f4:d4:07:f0:99:bd:e5:66:b0:bb:53:bf: 97:d4:1b:e4:37:9f:d6:a6:16:74:dc:5f:90:17:43: 19:8a:26:05:8f:ea:ae:e2:bf:2e:98:37:43:e5:31: b2:44:52:20:de:df:31:46:9f:75:e8:5b:a4:9a:93: fc:7b:ea:b7:37:b2:89:7d:1e:e7:ad:82:ca:fa:d5: ad:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A6:45:83:C7:C9:BB:6A:AC:38:D6:4E:46:A0:1C:4F:0D:51:AD:B7 X509v3 Authority Key Identifier: keyid:64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/5B4D02987E5B11F09260CE56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:ad80:5012::/48 2403:ad80:5015::-2403:ad80:5017:ffff:ffff:ffff:ffff:ffff 2403:ad80:5019::/48 2403:ad80:5020::/48 Signature Algorithm: sha256WithRSAEncryption 72:b5:88:47:da:23:5d:ed:2a:f1:12:40:df:4b:86:0a:b2:21: 56:8e:79:73:15:64:0a:d4:08:1e:e8:17:c5:c1:b9:d4:36:a5: fd:84:d2:b3:5e:99:61:bb:3d:93:45:37:53:5c:be:c2:cf:61: 41:62:10:da:5f:20:ad:fc:1e:74:4b:54:34:6a:41:8e:67:77: ea:59:eb:c1:35:26:96:d4:54:2a:3e:19:ff:ca:bc:9e:9b:c5: 9a:ff:c1:21:d0:89:6a:3a:41:ab:f0:53:3f:25:b0:6e:f7:33: 30:e4:85:d2:56:f3:0a:03:50:02:0d:6f:4a:f0:2a:11:3d:05: 77:7b:f9:a7:06:7a:f8:5b:a4:5f:9d:d5:f0:1e:a2:34:c6:00: 19:ce:91:42:fa:9c:06:80:a8:0a:67:19:08:74:52:77:4d:45: 4d:4e:a7:70:20:03:9f:d8:0d:b9:13:45:5c:23:d1:98:06:6f: 9b:8a:54:f7:4e:c8:65:ab:a6:93:96:ec:92:8c:a7:30:7d:b0: e7:e6:4b:74:0d:7c:58:03:c1:fa:1f:d8:f7:60:8b:1e:bf:c4: 59:94:0b:5f:58:ea:cc:ce:34:39:b4:8c:1b:10:20:a6:1e:c3: 1a:b1:4a:c7:de:ad:e5:39:60:79:52:60:83:61:16:1a:bb:48: 62:ef:33:c2 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3NzcxMTAvBgNVBAUTKDY0N0QwOTI3REIzQjE3OEUyRjY1NEEzMjY4NTU3RkU1 QjVENjcyOUMwHhcNMjUxMTIxMTkyNDU1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTIwYmM4Ny0wYmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoVK8GsO0vjujj1QcuX2k1XjnvqiyvJ+vB9aN0T/mkxAI1ElEC8oayLkDa9NF HkijxTHaG8iKYu8zcJjnGctEZ5jkYnwT5JNtgjm0sW040xgqkykzAW1Ry9eV3Yil xZs9SlWwWUA4adjYAV8h4N/kUZ//vZS6EMXM5DeFlIzInfTuJwQC27H19r1Nwijh J7Yex2D87VIKvFQYwJ5egKCkzLZipXytvigAuXmplgn9RtJBKqLJn5n01Afwmb3l ZrC7U7+X1BvkN5/WphZ03F+QF0MZiiYFj+qu4r8umDdD5TGyRFIg3t8xRp916Fuk mpP8e+q3N7KJfR7nrYLK+tWtywIDAQABo4ICvjCCArowHQYDVR0OBBYEFN2mRYPH ybtqrDjWTkagHE8NUa23MB8GA1UdIwQYMBaAFGR9CSfbOxeOL2VKMmhVf+W11nKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTc3Ny8wQkE1NzJCMEVD NEYxMUVFQTFCMzg4NjZDNEY5QUUwMi9aSDBKSjlzN0Y0NHZaVW95YUZWXzViWFdj cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pIMEpKOXM3RjQ0dlpVb3lhRlZfNWJYV2Nwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3NzcvMEJBNTcyQjBFQzRGMTFFRUExQjM4ODY2QzRGOUFFMDIvNUI0RDAyOTg3 RTVCMTFGMDkyNjBDRTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MDUEAgACMC8DBwAkA62AUBIwEgMHACQDrYBQFQMHAyQDrYBQEAMHACQDrYBQ GQMHACQDrYBQIDANBgkqhkiG9w0BAQsFAAOCAQEAcrWIR9ojXe0q8RJA30uGCrIh Vo55cxVkCtQIHugXxcG51Dal/YTSs16ZYbs9k0U3U1y+ws9hQWIQ2l8grfwedEtU NGpBjmd36lnrwTUmltRUKj4Z/8q8npvFmv/BIdCJajpBq/BTPyWwbvczMOSF0lbz CgNQAg1vSvAqET0Fd3v5pwZ6+FukX53V8B6iNMYAGc6RQvqcBoCoCmcZCHRSd01F TU6ncCADn9gNuRNFXCPRmAZvm4pU907IZaumk5bskoynMH2w5+ZLdA18WAPB+h/Y 92CLHr/EWZQLX1jqzM40ObSMGxAgph7DGrFKx96t5TlgeVJgg2EWGrtIYu8zwg== -----END CERTIFICATE-----Generated at Sat Dec 6 22:11:42 2025 by rpki-client