This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D1FE/5DB608AECF8C11F0AEF6C559C4F9AE02/84797D8ACF8D11F09FB4175EC4F9AE02.roa File: 84797D8ACF8D11F09FB4175EC4F9AE02.roa (raw, json) Hash identifier: peAS/ngmPwYZnb97WFQxinsPTC6bCf5NaFTKHcSyPQg= Subject key identifier: 60:DF:E6:93:60:06:FF:C4:29:E3:0C:91:7E:49:90:70:33:40:0F:19 Certificate issuer: /CN=A919D1FE/serialNumber=587C4EF885BD416A99D10F55B6E8168C02D0201C Certificate serial: 04 Authority key identifier: 58:7C:4E:F8:85:BD:41:6A:99:D1:0F:55:B6:E8:16:8C:02:D0:20:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHxO-IW9QWqZ0Q9VtugWjALQIBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D1FE/5DB608AECF8C11F0AEF6C559C4F9AE02/84797D8ACF8D11F09FB4175EC4F9AE02.roa Signing time: Tue 02 Dec 2025 14:47:10 +0000 ROA not before: Tue 02 Dec 2025 14:47:10 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 154274 IP address blocks: 202.58.120.0/23 maxlen: 24 2001:df6:29c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D1FE/5DB608AECF8C11F0AEF6C559C4F9AE02/WHxO-IW9QWqZ0Q9VtugWjALQIBw.crl rsync://rpki.apnic.net/member_repository/A919D1FE/5DB608AECF8C11F0AEF6C559C4F9AE02/WHxO-IW9QWqZ0Q9VtugWjALQIBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHxO-IW9QWqZ0Q9VtugWjALQIBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D1FE, serialNumber=587C4EF885BD416A99D10F55B6E8168C02D0201C Validity Not Before: Dec 2 14:47:10 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=692efbed-83e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5b:e2:92:1d:a9:69:a2:e0:35:21:4c:5f:2a: be:5b:dc:d6:db:2d:c8:95:84:19:e4:70:a8:89:5e: d7:4b:76:15:34:62:9f:3f:bf:6b:77:e2:3b:d4:89: 78:9f:82:51:f8:51:44:f6:65:24:b4:30:19:1d:e6: cb:52:56:c5:45:d5:67:ea:37:08:3d:dd:93:9e:64: 8f:2f:ab:27:fc:20:db:be:97:6a:cb:32:5a:6d:1c: 27:09:f9:fa:b3:a7:05:9f:8f:38:76:08:46:80:c4: dc:16:e0:ae:3c:f2:70:f2:61:3c:48:3e:fb:4a:f9: e8:7a:57:ef:26:22:0c:0a:f8:f3:e8:d5:8a:f7:8d: 28:d9:28:32:73:31:21:01:bc:05:5d:f6:d6:07:dc: af:4d:0f:14:8f:84:85:e3:a1:7e:fa:15:88:65:ce: 90:57:74:78:4b:67:ce:48:99:cd:f2:34:13:3a:50: 0b:9b:ee:4b:ad:5a:58:8d:b3:f3:3a:f6:53:7f:0e: 9b:48:73:81:96:c2:06:b2:4d:bc:2b:10:e4:cd:44: 98:b6:0d:58:44:30:6a:20:31:73:7b:ab:c2:9c:8f: 9b:83:ee:5c:b3:b0:46:a8:29:e4:c0:09:ec:91:ee: 85:42:20:98:ed:27:30:da:f1:28:b7:80:eb:40:ab: 1f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:DF:E6:93:60:06:FF:C4:29:E3:0C:91:7E:49:90:70:33:40:0F:19 X509v3 Authority Key Identifier: keyid:58:7C:4E:F8:85:BD:41:6A:99:D1:0F:55:B6:E8:16:8C:02:D0:20:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D1FE/5DB608AECF8C11F0AEF6C559C4F9AE02/WHxO-IW9QWqZ0Q9VtugWjALQIBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHxO-IW9QWqZ0Q9VtugWjALQIBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D1FE/5DB608AECF8C11F0AEF6C559C4F9AE02/84797D8ACF8D11F09FB4175EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.58.120.0/23 IPv6: 2001:df6:29c0::/48 Signature Algorithm: sha256WithRSAEncryption 5f:0d:2d:ee:43:f1:cf:99:b1:9b:a8:76:38:55:05:31:8b:80: 6f:a9:6e:4a:1a:df:b5:fe:03:31:b6:9c:28:a7:ee:b0:3b:a9: 70:4a:3e:37:f3:2b:36:5f:d9:78:e3:57:8e:6f:30:dd:24:d3: 30:35:de:84:0c:02:07:41:ce:31:75:22:e5:8b:40:ef:25:04: 38:f0:72:d3:96:1b:cc:0b:0b:bc:f9:ed:bc:d3:21:96:1f:14: 8e:04:98:e8:de:fd:1d:6a:2f:8f:28:5f:df:f2:08:e2:55:ab: d5:d2:2d:45:de:40:35:a7:3d:d8:e2:48:d6:86:a1:cc:6b:0d: b1:0a:5d:4b:0a:f6:35:b8:3c:09:80:9b:49:10:8c:1f:93:9f: 71:79:a5:20:01:3e:90:2f:36:01:0b:a7:21:84:ab:ee:e9:23: d1:f0:59:5f:18:f5:4f:e2:f7:81:71:26:75:bc:26:11:a6:12: c5:4f:74:47:20:0a:d6:d8:3c:f0:5c:97:4d:db:f3:3f:1b:e4: 05:40:ee:ba:b8:9d:67:71:26:7b:7c:7d:5c:b0:d8:0c:d9:02: e6:70:f9:8d:1b:f3:af:10:b8:d4:e2:b7:dd:00:d9:cb:77:e9: 65:7a:ac:1f:2c:50:06:08:e0:07:85:ca:5a:4d:20:48:78:b6: c7:0f:7f:23 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDFGRTExMC8GA1UEBRMoNTg3QzRFRjg4NUJENDE2QTk5RDEwRjU1QjZFODE2OEMw MkQwMjAxQzAeFw0yNTEyMDIxNDQ3MTBaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MmVmYmVkLTgzZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmW+KSHalpouA1IUxfKr5b3NbbLciVhBnkcKiJXtdLdhU0Yp8/v2t34jvUiXif glH4UUT2ZSS0MBkd5stSVsVF1WfqNwg93ZOeZI8vqyf8INu+l2rLMlptHCcJ+fqz pwWfjzh2CEaAxNwW4K488nDyYTxIPvtK+eh6V+8mIgwK+PPo1Yr3jSjZKDJzMSEB vAVd9tYH3K9NDxSPhIXjoX76FYhlzpBXdHhLZ85Imc3yNBM6UAub7kutWliNs/M6 9lN/DptIc4GWwgayTbwrEOTNRJi2DVhEMGogMXN7q8Kcj5uD7lyzsEaoKeTACeyR 7oVCIJjtJzDa8Si3gOtAqx9/AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUYN/mk2AG /8Qp4wyRfkmQcDNADxkwHwYDVR0jBBgwFoAUWHxO+IW9QWqZ0Q9VtugWjALQIBww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEMUZFLzVEQjYwOEFFQ0Y4 QzExRjBBRUY2QzU1OUM0RjlBRTAyL1dIeE8tSVc5UVdxWjBROVZ0dWdXakFMUUlC dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV0h4Ty1JVzlRV3FaMFE5VnR1Z1dqQUxRSUJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDFGRS81REI2MDhBRUNGOEMxMUYwQUVGNkM1NTlDNEY5QUUwMi84NDc5N0Q4QUNG OEQxMUYwOUZCNDE3NUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAco6eDAPBAIAAjAJAwcAIAEN9inAMA0GCSqGSIb3DQEBCwUA A4IBAQBfDS3uQ/HPmbGbqHY4VQUxi4BvqW5KGt+1/gMxtpwop+6wO6lwSj438ys2 X9l441eObzDdJNMwNd6EDAIHQc4xdSLli0DvJQQ48HLTlhvMCwu8+e280yGWHxSO BJjo3v0dai+PKF/f8gjiVavV0i1F3kA1pz3Y4kjWhqHMaw2xCl1LCvY1uDwJgJtJ EIwfk59xeaUgAT6QLzYBC6chhKvu6SPR8FlfGPVP4veBcSZ1vCYRphLFT3RHIArW 2DzwXJdN2/M/G+QFQO66uJ1ncSZ7fH1csNgM2QLmcPmNG/OvELjU4rfdANnLd+ll eqwfLFAGCOAHhcpaTSBIeLbHD38j -----END CERTIFICATE-----Generated at Sat Dec 6 19:24:18 2025 by rpki-client