This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/CF85B73C74F011F0847A5D0DC4F9AE02.roa File: CF85B73C74F011F0847A5D0DC4F9AE02.roa (raw, json) Hash identifier: eYL8An463GZHj41jtNnng2PNJUKq9dPFqaJYaz0pa+o= Subject key identifier: E4:47:F5:54:A2:D8:EB:6C:C7:54:8E:02:ED:B3:68:2A:DE:48:46:35 Certificate issuer: /CN=A91AF2CD/serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Certificate serial: 0233 Authority key identifier: 58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/CF85B73C74F011F0847A5D0DC4F9AE02.roa Signing time: Fri 09 Jan 2026 02:21:44 +0000 ROA not before: Fri 09 Jan 2026 02:21:44 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 18450 IP address blocks: 116.204.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:37:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF2CD, serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Validity Not Before: Jan 9 02:21:44 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69606638-c0eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:77:52:f3:fc:05:c7:2a:ae:d2:12:be:89:80: de:09:96:38:8f:fc:1b:1d:5b:20:91:e4:6e:41:3e: 51:9c:da:94:fe:8f:b5:e9:6b:a7:08:35:52:cd:78: 88:24:ec:b3:9b:c6:3f:5e:b0:f6:da:fc:60:7e:c1: 7d:49:6c:a7:57:f9:ec:d2:a6:07:56:40:aa:45:43: 45:d9:a5:d4:8d:18:ce:00:bc:ff:3d:b5:ef:c5:11: 14:d4:29:7f:3e:0c:34:7e:d1:39:ca:30:89:19:e1: a7:46:b5:50:7e:d1:72:a6:aa:c3:31:7d:ee:c6:ff: 7b:50:76:d7:0f:9e:5a:4b:9d:8e:a5:b8:6f:0d:06: 56:e7:ce:37:cb:05:cf:26:4a:45:98:68:af:d2:0d: 1c:f6:d9:c9:78:2e:44:25:57:9a:fb:28:e1:e9:3d: 3a:8f:49:a5:78:28:8a:6f:53:37:37:6a:ab:dd:f6: 98:c1:8b:fe:ab:53:04:2b:d6:19:d2:d1:71:8d:66: cb:39:a5:19:b2:86:4c:2d:31:73:dc:bb:e7:99:19: a9:09:43:d5:92:73:4f:b4:3f:a3:67:bd:f8:d2:33: 92:81:7d:23:89:73:cb:e6:8b:88:f1:6c:8d:28:ec: 06:f5:8f:f2:19:89:61:f9:fd:67:77:a9:95:3c:fd: b2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:47:F5:54:A2:D8:EB:6C:C7:54:8E:02:ED:B3:68:2A:DE:48:46:35 X509v3 Authority Key Identifier: keyid:58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/CF85B73C74F011F0847A5D0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.239.0/24 Signature Algorithm: sha256WithRSAEncryption b3:a6:da:26:e5:a4:09:58:9d:35:13:cd:3e:79:ef:44:30:f1: 68:77:93:02:0e:76:81:1c:b1:97:8e:be:c6:64:b9:b4:3a:1f: b7:70:fe:22:1c:a5:cb:a8:81:d1:8e:25:a4:cb:e7:60:3a:03: 4e:92:14:d9:95:d8:0f:83:5a:a8:ef:b0:2e:14:9b:09:e2:96: d8:62:57:7e:9e:08:ed:70:42:60:e4:5b:85:ae:94:f6:73:1b: 3f:e5:0c:20:89:44:dc:b0:98:60:16:ba:26:aa:ea:88:97:e1: 51:92:fc:0a:3a:74:b1:fd:64:41:2d:9b:7d:45:4a:f8:96:94: 53:4f:42:9e:a1:11:01:54:94:f3:38:7f:5a:ff:d5:6d:96:11: f6:8d:b7:2b:4c:48:8c:3c:9e:9d:b9:13:0e:64:ef:ce:02:32: ad:e6:58:4a:ed:be:31:63:27:96:12:01:e2:f5:94:1e:01:50: c9:3a:91:ba:d3:82:ab:f7:d0:f7:f9:10:a1:24:8d:06:8a:d5: 3e:b6:ba:99:bd:3b:83:c4:5d:d9:57:a7:c3:a6:3e:f7:27:94: 1b:b5:4c:3a:dd:ce:b9:9a:cd:be:51:38:2f:7d:8d:0d:61:1e: 3c:1a:d4:4b:22:a7:19:89:7d:87:4c:e6:b2:a0:62:2d:c1:df: 4f:c0:c0:7f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QUYyQ0QxMTAvBgNVBAUTKDU4NzQ1MjBEQTc4MUY3ODBEQkQ3MTBENDJDODQxQzEz QTdBRDE3NTcwHhcNMjYwMTA5MDIyMTQ0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTYwNjYzOC1jMGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsndS8/wFxyqu0hK+iYDeCZY4j/wbHVsgkeRuQT5RnNqU/o+16WunCDVSzXiI JOyzm8Y/XrD22vxgfsF9SWynV/ns0qYHVkCqRUNF2aXUjRjOALz/PbXvxREU1Cl/ Pgw0ftE5yjCJGeGnRrVQftFypqrDMX3uxv97UHbXD55aS52OpbhvDQZW5843ywXP JkpFmGiv0g0c9tnJeC5EJVea+yjh6T06j0mleCiKb1M3N2qr3faYwYv+q1MEK9YZ 0tFxjWbLOaUZsoZMLTFz3LvnmRmpCUPVknNPtD+jZ7340jOSgX0jiXPL5ouI8WyN KOwG9Y/yGYlh+f1nd6mVPP2yrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFORH9VSi 2Otsx1SOAu2zaCreSEY1MB8GA1UdIwQYMBaAFFh0Ug2ngfeA29cQ1CyEHBOnrRdX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjJDRC80RkNCQUMwMEQ0 NEMxMUVEODYyNzE1ODJDNEY5QUUwMi9XSFJTRGFlQjk0RGIxeERVTElRY0U2ZXRG MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dIUlNEYWVCOTREYjF4RFVMSVFjRTZldEYxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYyQ0QvNEZDQkFDMDBENDRDMTFFRDg2MjcxNTgyQzRGOUFFMDIvQ0Y4NUI3M0M3 NEYwMTFGMDg0N0E1RDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0zO8wDQYJKoZIhvcNAQELBQADggEBALOm2iblpAlYnTUT zT5570Qw8Wh3kwIOdoEcsZeOvsZkubQ6H7dw/iIcpcuogdGOJaTL52A6A06SFNmV 2A+DWqjvsC4UmwnilthiV36eCO1wQmDkW4WulPZzGz/lDCCJRNywmGAWuiaq6oiX 4VGS/Ao6dLH9ZEEtm31FSviWlFNPQp6hEQFUlPM4f1r/1W2WEfaNtytMSIw8np25 Ew5k784CMq3mWErtvjFjJ5YSAeL1lB4BUMk6kbrTgqv30Pf5EKEkjQaK1T62upm9 O4PEXdlXp8OmPvcnlBu1TDrdzrmazb5ROC99jQ1hHjwa1EsipxmJfYdM5rKgYi3B 30/AwH8= -----END CERTIFICATE-----Generated at Sun Jan 25 15:55:24 2026 by rpki-client