This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/08AF618871AB11EFB81ED37EC4F9AE02.roa File: 08AF618871AB11EFB81ED37EC4F9AE02.roa (raw, json) Hash identifier: jHKq+3SP2VYZskLd9+Ykl7Nb8N7KjJEyOm6ZbeZBTs0= Subject key identifier: BD:7F:28:8C:25:06:6C:AF:5B:6A:10:E9:00:B0:1E:4A:FE:AA:5D:52 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 01AD Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/08AF618871AB11EFB81ED37EC4F9AE02.roa Signing time: Wed 31 Dec 2025 04:24:12 +0000 ROA not before: Wed 31 Dec 2025 04:24:12 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 133919 IP address blocks: 202.29.104.0/24 maxlen: 24 2001:3c8:100f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:19:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:12 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6954a56c-e969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:14:72:9f:8a:b9:de:0e:0d:6b:3c:0a:21:de: 54:c2:7a:c5:dd:6f:a6:52:99:d7:45:9a:30:8a:3b: 39:1f:29:37:0e:54:d9:14:57:9d:fe:7d:c7:66:cd: d0:4e:69:14:e4:83:ac:b3:fb:21:d0:67:4d:39:4a: fa:56:64:43:e0:92:3d:9f:a3:ce:35:e0:52:4c:31: ab:81:1d:69:a8:ad:86:cf:6e:f8:00:5e:8f:b8:ed: 6b:70:85:44:28:82:d2:f5:68:f3:ed:4f:64:a3:b0: 7d:9e:0c:09:63:aa:c2:2f:6a:52:3f:1f:34:c6:96: 71:07:4f:7a:31:d4:78:be:2f:16:12:70:8b:c6:b1: 68:79:a2:b3:33:b8:78:67:85:2d:57:bd:73:09:46: 97:c0:cb:06:16:05:b1:d0:f6:a1:b7:06:95:e3:98: f4:60:9d:6d:66:1e:5d:16:d6:96:7c:b8:56:69:a3: e9:89:69:f5:7b:86:e5:15:12:2c:cc:0d:ed:06:8a: 97:4a:98:09:60:09:85:bc:5e:70:49:60:4e:aa:a9: 95:9d:d1:8b:9e:47:c2:aa:77:6b:77:03:30:4b:0c: 3a:50:03:c7:93:5a:31:26:b4:e9:82:38:52:49:cf: ac:41:f1:f1:9e:4c:0d:39:fd:f9:32:cd:f3:c7:d6: d0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:7F:28:8C:25:06:6C:AF:5B:6A:10:E9:00:B0:1E:4A:FE:AA:5D:52 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/08AF618871AB11EFB81ED37EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.104.0/24 IPv6: 2001:3c8:100f::/48 Signature Algorithm: sha256WithRSAEncryption 90:ee:72:0a:15:b2:41:84:60:4e:72:fc:71:c3:ed:e7:17:39: e6:6c:0a:4e:4d:84:3a:c2:a4:c9:30:cf:d5:a5:b6:b9:77:c9: d2:4b:ba:5c:c1:f4:af:f4:22:01:13:3c:3b:c9:04:f6:5c:7f: e3:cd:a8:95:9b:29:a6:8e:ff:7d:35:5c:04:99:7d:da:3c:4f: 46:23:80:99:a0:97:cd:1f:c8:86:c0:5c:de:86:34:98:d7:97: 55:73:7c:75:aa:cd:3f:08:79:17:d9:20:fd:38:d8:8c:30:3f: e2:be:ac:dd:33:b9:1c:22:34:11:cb:dc:46:2d:ca:5d:dd:c2: c4:6a:cd:09:3c:6a:07:f7:72:65:72:3f:15:ce:90:ce:6b:73: 38:a8:b4:d9:6b:b7:3e:45:33:a8:7c:31:59:b3:09:7f:43:c2: c2:c1:b1:bb:04:07:c0:2d:eb:4a:40:37:1b:fe:2c:1d:df:c4: f1:6e:1e:82:2c:c4:b1:24:d6:2a:32:e4:c5:66:5e:d5:d7:c3: 02:64:c1:56:15:e1:ce:bb:58:f5:a5:68:62:20:16:ee:62:c5: b4:85:73:51:b8:4a:2d:b1:3b:81:f1:a0:6c:1d:49:1b:ef:d2: 4f:2f:0b:d3:21:7b:9c:bc:f3:e4:d0:8a:bc:33:d3:b8:5b:2d: b4:0c:d5:b3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDEyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU0YTU2Yy1lOTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7RRyn4q53g4NazwKId5UwnrF3W+mUpnXRZowijs5Hyk3DlTZFFed/n3HZs3Q TmkU5IOss/sh0GdNOUr6VmRD4JI9n6PONeBSTDGrgR1pqK2Gz274AF6PuO1rcIVE KILS9Wjz7U9ko7B9ngwJY6rCL2pSPx80xpZxB096MdR4vi8WEnCLxrFoeaKzM7h4 Z4UtV71zCUaXwMsGFgWx0PahtwaV45j0YJ1tZh5dFtaWfLhWaaPpiWn1e4blFRIs zA3tBoqXSpgJYAmFvF5wSWBOqqmVndGLnkfCqndrdwMwSww6UAPHk1oxJrTpgjhS Sc+sQfHxnkwNOf35Ms3zx9bQXQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFL1/KIwl BmyvW2oQ6QCwHkr+ql1SMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvMDhBRjYxODg3 MUFCMTFFRkI4MUVEMzdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKHWgwDwQCAAIwCQMHACABA8gQDzANBgkqhkiG9w0BAQsF AAOCAQEAkO5yChWyQYRgTnL8ccPt5xc55mwKTk2EOsKkyTDP1aW2uXfJ0ku6XMH0 r/QiARM8O8kE9lx/482olZsppo7/fTVcBJl92jxPRiOAmaCXzR/IhsBc3oY0mNeX VXN8darNPwh5F9kg/TjYjDA/4r6s3TO5HCI0EcvcRi3KXd3CxGrNCTxqB/dyZXI/ Fc6QzmtzOKi02Wu3PkUzqHwxWbMJf0PCwsGxuwQHwC3rSkA3G/4sHd/E8W4egizE sSTWKjLkxWZe1dfDAmTBVhXhzrtY9aVoYiAW7mLFtIVzUbhKLbE7gfGgbB1JG+/S Ty8L0yF7nLzz5NCKvDPTuFsttAzVsw== -----END CERTIFICATE-----Generated at Sun Jan 25 17:05:13 2026 by rpki-client