This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa File: 2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa (raw, json) Hash identifier: QQEzyWc/jfPdHfbDE9Qh4I+dn5FJRNKlNWGQ3UVA6Rw= Subject key identifier: C3:5F:8B:C0:36:E3:35:EB:A2:22:E4:4E:86:64:B7:9C:91:B2:B4:B6 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 02E4 Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa Signing time: Wed 31 Dec 2025 01:20:52 +0000 ROA not before: Wed 31 Dec 2025 01:20:52 +0000 ROA not after: Thu 30 Apr 2026 00:00:00 +0000 asID: 65510 IP address blocks: 140.168.64.0/19 maxlen: 19 140.168.78.0/24 maxlen: 24 140.168.79.0/24 maxlen: 24 140.168.87.0/24 maxlen: 24 140.168.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 740 (0x2e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Dec 31 01:20:52 2025 GMT Not After : Apr 30 00:00:00 2026 GMT Subject: CN=69547a74-b2d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:12:f9:97:2a:27:f0:65:24:31:ed:58:00:ee: 0d:7a:0c:eb:92:4a:2b:5a:5b:13:57:5d:19:e5:37: a3:09:64:91:c5:df:11:77:10:4b:b4:85:e8:bf:74: b4:9b:65:85:5f:a3:b9:5f:c3:f9:16:b1:f4:06:1d: 5f:75:6a:c9:3d:e1:0e:82:ce:4a:2e:36:9c:49:c6: 4f:60:ba:54:30:3c:06:0d:8f:92:fe:9e:d5:cf:38: 79:fb:12:9e:2b:67:c5:89:dd:7d:24:6b:80:51:c1: 40:36:5c:99:85:c7:da:df:1f:eb:84:0c:72:91:15: 03:8e:22:83:a6:31:f1:6c:5c:3e:78:c6:a9:2b:9d: 84:5e:2a:45:16:bb:08:e6:d5:d7:be:a8:3a:ca:07: 9b:12:fb:4f:12:b0:81:a3:58:2f:bb:0c:47:f6:8e: a2:27:10:8f:bf:89:3a:cc:1b:c4:fa:19:65:49:62: 23:9e:96:db:7d:ab:c3:2d:b5:49:76:51:4d:66:03: 8f:8f:ac:fe:18:33:3c:eb:0f:c2:55:11:42:f2:43: 9c:df:8c:7e:02:49:e0:c6:df:52:c1:99:54:3c:db: d6:49:4c:dd:b7:1d:de:5e:41:10:6a:ce:d6:f1:af: 2b:80:b0:c3:a9:cd:19:f3:72:87:9e:71:4b:c3:40: 1f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:5F:8B:C0:36:E3:35:EB:A2:22:E4:4E:86:64:B7:9C:91:B2:B4:B6 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.64.0/18 Signature Algorithm: sha256WithRSAEncryption 4a:d5:dc:ce:f0:59:dd:60:bf:3e:c4:3d:24:1f:43:0d:86:05: b2:94:b1:da:9f:ac:f1:34:aa:95:8f:a7:91:13:a8:6f:28:f9: 4a:e8:91:3a:c2:35:55:b4:7d:79:59:7f:aa:e9:b7:3b:df:24: f1:34:01:b5:41:3f:c3:9c:cc:e7:d3:96:16:7f:40:3f:4a:4b: 36:9d:a4:a0:ae:b7:18:c6:b9:0c:8f:58:57:52:57:2d:20:52: af:76:41:6f:1b:30:01:47:bf:15:d8:6d:e3:7d:ab:55:98:e6: e9:86:fb:27:97:91:5c:c9:0a:c4:70:8c:0f:3d:8a:47:4a:46: cf:d5:ee:c9:56:ec:8d:6f:35:8f:62:ae:47:bb:a5:7d:b2:b2: 6b:f9:71:4e:4b:38:5a:23:96:e7:b0:1b:ea:e9:9d:45:90:25: bc:49:f2:47:88:a8:70:fe:f1:ad:51:51:60:2b:a5:12:83:d6: 61:f8:90:ba:27:a3:ec:af:0d:e3:d5:ab:f5:a4:45:84:4c:79: 90:3c:ea:96:9f:0c:98:a2:4d:f1:52:f8:ae:90:91:3e:8a:f3: bd:91:81:14:42:9a:cd:d2:fa:a2:39:b4:b6:6f:e6:80:32:48: 68:fa:0a:59:f5:03:a3:5e:2a:30:f2:42:b5:3c:b6:32:2a:23: ab:ad:9b:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUxMjMxMDEyMDUyWhcNMjYwNDMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU0N2E3NC1iMmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRL5lyon8GUkMe1YAO4NegzrkkorWlsTV10Z5TejCWSRxd8RdxBLtIXov3S0 m2WFX6O5X8P5FrH0Bh1fdWrJPeEOgs5KLjacScZPYLpUMDwGDY+S/p7Vzzh5+xKe K2fFid19JGuAUcFANlyZhcfa3x/rhAxykRUDjiKDpjHxbFw+eMapK52EXipFFrsI 5tXXvqg6ygebEvtPErCBo1gvuwxH9o6iJxCPv4k6zBvE+hllSWIjnpbbfavDLbVJ dlFNZgOPj6z+GDM86w/CVRFC8kOc34x+Akngxt9SwZlUPNvWSUzdtx3eXkEQas7W 8a8rgLDDqc0Z83KHnnFLw0Af8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFMNfi8A2 4zXroiLkToZkt5yRsrS2MB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvMkZEOEE0NkU1 QjdDMTFFREFBRkFCODMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAaMqEAwDQYJKoZIhvcNAQELBQADggEBAErV3M7wWd1gvz7E PSQfQw2GBbKUsdqfrPE0qpWPp5ETqG8o+UrokTrCNVW0fXlZf6rptzvfJPE0AbVB P8OczOfTlhZ/QD9KSzadpKCutxjGuQyPWFdSVy0gUq92QW8bMAFHvxXYbeN9q1WY 5umG+yeXkVzJCsRwjA89ikdKRs/V7slW7I1vNY9irke7pX2ysmv5cU5LOFojluew G+rpnUWQJbxJ8keIqHD+8a1RUWArpRKD1mH4kLono+yvDePVq/WkRYRMeZA86paf DJiiTfFS+K6QkT6K872RgRRCms3S+qI5tLZv5oAySGj6Cln1A6NeKjDyQrU8tjIq I6utm0I= -----END CERTIFICATE-----Generated at Sun Jan 25 18:27:46 2026 by rpki-client