This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/BD4E85B09E6311ECA6EC8071C4F9AE02.roa File: BD4E85B09E6311ECA6EC8071C4F9AE02.roa (raw, json) Hash identifier: CAFve4rvYatsNzehY2RCV8H1unVCAfJuDUiqcO44mlc= Subject key identifier: E9:4A:70:B3:F1:95:CE:18:05:B1:14:FE:82:0D:AF:27:60:96:B5:F9 Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 05AE Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/BD4E85B09E6311ECA6EC8071C4F9AE02.roa Signing time: Fri 02 Jan 2026 23:19:19 +0000 ROA not before: Fri 02 Jan 2026 23:19:19 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 25369 IP address blocks: 202.43.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:41:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1454 (0x5ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72, serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Jan 2 23:19:19 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69585277-cae3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1c:c0:00:70:3d:9d:45:c3:03:e6:4d:9f:ed: da:c4:fb:35:b9:19:27:66:50:8b:58:59:8e:1a:46: c0:05:ef:80:34:4e:a8:6c:2c:fc:1f:a7:3c:50:f7: f3:69:05:2d:17:c1:7c:7f:ce:1f:91:a3:8d:8a:d4: 67:39:57:61:79:7f:30:bd:f3:47:ca:c6:66:71:ef: fd:ac:91:84:b7:de:4f:dd:6e:bc:1b:3a:0c:fd:40: 05:91:a5:c2:bf:e4:99:88:f6:ec:d5:13:6d:c5:11: 36:e4:80:91:ad:56:b3:fd:96:38:50:86:ea:68:af: 78:65:40:4b:81:88:84:e1:20:fc:7f:b2:83:2d:3b: 25:43:1d:65:1c:6f:ba:bc:14:96:14:59:0b:f4:58: ef:dc:db:6b:ae:b6:b0:ee:a7:01:5b:fc:3a:2b:9f: 57:96:a6:ed:0a:51:f4:1b:ec:b2:5a:d2:f2:58:6c: 91:67:ef:0f:96:49:e9:da:5d:64:52:ef:ad:69:a2: 0b:0e:4d:ed:d1:54:f0:ba:d1:cb:c9:c3:ce:2e:ca: fa:c8:57:32:75:ab:9a:1d:e5:a7:65:45:fb:54:ff: 59:f9:75:18:54:dc:1b:d7:e8:b1:fb:31:30:eb:3a: e4:d1:f6:fb:38:7b:0c:c6:02:f1:e4:bc:59:17:e3: f9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:4A:70:B3:F1:95:CE:18:05:B1:14:FE:82:0D:AF:27:60:96:B5:F9 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/BD4E85B09E6311ECA6EC8071C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.6.0/24 Signature Algorithm: sha256WithRSAEncryption 07:7b:de:18:4d:68:fe:ce:50:97:da:6b:05:54:32:ce:8c:f0: 34:b0:75:89:2f:a5:53:2f:88:6f:57:00:0d:3e:33:22:39:b9: f1:27:5d:0d:20:3e:b0:a4:ca:6f:5d:c6:c7:e4:cd:7d:8d:d9: 0c:40:43:d9:94:16:b2:49:fe:50:48:fe:9d:a9:c9:ee:7d:3f: 64:d4:01:fa:c0:d1:90:58:64:d5:fc:71:64:e6:5e:16:f1:82: 94:2c:fd:7c:ae:81:89:68:1d:02:a2:c3:d9:ab:ff:d7:e3:38: 60:3f:e1:a6:19:71:cc:70:a9:cd:54:2b:28:6a:e5:0a:72:a3: 50:dd:4a:f5:5c:d7:a9:fe:1b:d0:69:13:1e:7d:e7:c5:c1:9b: 67:0f:a0:85:f7:34:0b:6c:1b:0a:f4:24:69:e1:51:c8:6b:d3: 76:57:41:51:ad:15:89:c1:19:9b:ca:68:b8:a8:15:ef:5c:32: 41:fd:02:5e:db:a1:e5:0b:03:2b:79:fe:4c:17:59:67:fa:e2: ac:4a:08:f3:cd:81:d6:2c:45:7c:14:ed:e0:55:ed:81:95:e6: ae:05:92:7a:e9:c7:ce:10:33:0d:57:de:3a:a8:95:53:41:f6: ee:b9:43:67:1b:56:69:06:3c:8a:a3:76:0f:a5:74:59:95:78: eb:f6:de:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjYwMTAyMjMxOTE5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU4NTI3Ny1jYWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRzAAHA9nUXDA+ZNn+3axPs1uRknZlCLWFmOGkbABe+ANE6obCz8H6c8UPfz aQUtF8F8f84fkaONitRnOVdheX8wvfNHysZmce/9rJGEt95P3W68GzoM/UAFkaXC v+SZiPbs1RNtxRE25ICRrVaz/ZY4UIbqaK94ZUBLgYiE4SD8f7KDLTslQx1lHG+6 vBSWFFkL9Fjv3Ntrrraw7qcBW/w6K59XlqbtClH0G+yyWtLyWGyRZ+8Plknp2l1k Uu+taaILDk3t0VTwutHLycPOLsr6yFcydauaHeWnZUX7VP9Z+XUYVNwb1+ix+zEw 6zrk0fb7OHsMxgLx5LxZF+P5kwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOlKcLPx lc4YBbEU/oINrydglrX5MB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENzIvNDU3NkE2NzIyNjEyMTFFQ0I5MzE5OTQyQzRGOUFFMDIvQkQ0RTg1QjA5 RTYzMTFFQ0E2RUM4MDcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKKwYwDQYJKoZIhvcNAQELBQADggEBAAd73hhNaP7OUJfa awVUMs6M8DSwdYkvpVMviG9XAA0+MyI5ufEnXQ0gPrCkym9dxsfkzX2N2QxAQ9mU FrJJ/lBI/p2pye59P2TUAfrA0ZBYZNX8cWTmXhbxgpQs/XyugYloHQKiw9mr/9fj OGA/4aYZccxwqc1UKyhq5Qpyo1DdSvVc16n+G9BpEx5958XBm2cPoIX3NAtsGwr0 JGnhUchr03ZXQVGtFYnBGZvKaLioFe9cMkH9Al7boeULAyt5/kwXWWf64qxKCPPN gdYsRXwU7eBV7YGV5q4Fknrpx84QMw1X3jqolVNB9u65Q2cbVmkGPIqjdg+ldFmV eOv23iU= -----END CERTIFICATE-----Generated at Sun Jan 25 06:16:40 2026 by rpki-client