This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/26D0F9B82A6611ECB12FB439C4F9AE02.roa File: 26D0F9B82A6611ECB12FB439C4F9AE02.roa (raw, json) Hash identifier: ckt2zqlTLf5B00aUua89plA4SxNQUiL8deJ2suzkXsI= Subject key identifier: E2:29:AE:B6:EF:D9:D2:F1:1E:CB:E6:12:34:95:3C:02:B4:58:FD:71 Certificate issuer: /CN=A91C79E1/serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Certificate serial: 0894 Authority key identifier: 93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/26D0F9B82A6611ECB12FB439C4F9AE02.roa Signing time: Fri 16 Jan 2026 20:17:00 +0000 ROA not before: Fri 16 Jan 2026 20:17:00 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 133929 IP address blocks: 43.229.116.0/22 maxlen: 24 103.48.140.0/22 maxlen: 24 2001:df2:2c00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:55:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2196 (0x894) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C79E1, serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Validity Not Before: Jan 16 20:17:00 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=696a9cbc-af57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b4:17:9c:ea:a7:bd:fc:0d:2c:29:1b:b3:b9: 92:ea:0f:63:70:9d:b5:2a:94:0e:7a:82:85:6d:77: bc:75:ed:76:a8:ee:13:1e:23:22:e8:d5:8c:73:02: ee:a3:a3:ac:ea:16:cf:07:69:87:af:f1:f3:2d:e6: cc:00:28:37:e9:b7:4b:5d:03:21:b9:eb:b6:86:d8: df:51:89:af:6c:49:96:cf:1c:15:09:1f:4e:f5:66: d7:9e:df:d5:cc:72:c9:46:37:d1:69:e7:13:85:36: 80:8d:55:18:ad:84:47:21:df:8a:a9:fc:f8:4a:1d: 31:e3:27:37:d3:57:27:99:ab:b7:fd:8d:83:0b:e9: 13:9e:3d:cd:1b:09:c1:f2:c8:91:11:01:92:e3:07: 1c:5c:db:ae:b1:f2:bf:1c:d9:cd:80:9e:91:2f:66: 2d:2b:a7:fa:d9:21:87:51:2e:35:c5:29:20:39:8b: f0:41:41:09:08:86:8d:03:98:cd:f5:d8:11:50:56: f4:58:6b:05:3d:37:f8:2e:33:57:d1:8c:b6:31:6c: e9:08:c0:69:1b:70:09:3f:22:b9:a0:33:01:4e:2e: 06:59:8c:36:23:27:06:4d:24:1d:9d:18:0e:ad:b0: bb:83:be:c3:26:6e:a4:79:bf:61:aa:f0:e6:8a:d5: 50:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:29:AE:B6:EF:D9:D2:F1:1E:CB:E6:12:34:95:3C:02:B4:58:FD:71 X509v3 Authority Key Identifier: keyid:93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/26D0F9B82A6611ECB12FB439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.116.0/22 103.48.140.0/22 IPv6: 2001:df2:2c00::/48 Signature Algorithm: sha256WithRSAEncryption 11:31:ac:a6:dd:ba:ee:00:14:ef:95:d9:b3:1f:fb:41:f9:00: f2:3e:2f:6a:98:52:ff:96:25:90:db:64:e1:c5:19:e1:10:2f: a5:df:51:cb:83:e3:12:29:d0:79:d7:c1:c6:5b:b5:0c:1c:e9: e8:41:fb:b2:d4:b0:d9:d3:5c:b1:01:94:bc:65:2c:a7:99:80: c8:7c:9c:4a:c1:f5:58:bf:e0:c3:14:d8:85:29:a7:2c:03:76: 99:91:e5:bc:43:19:bf:5b:48:74:f1:0a:8e:87:14:b8:16:45: e5:95:b7:78:9c:a3:73:71:44:44:7b:08:f2:9c:77:02:1c:40: 9c:3f:df:a3:98:82:3c:5f:26:86:fb:f4:c9:14:05:16:a3:4e: 92:c3:cf:27:5f:67:99:ab:46:70:78:07:b3:b1:cc:6f:d8:df: 32:5d:3b:76:fc:92:a7:d5:3b:47:e1:37:87:f1:62:6c:56:1b: cf:ab:df:12:a0:30:ce:52:49:52:50:9b:e0:be:ac:05:53:f5: fc:07:38:70:2e:2d:4d:ec:4a:7c:cc:a0:d7:22:4b:2e:4e:83: 35:09:4b:82:31:48:28:b7:f8:e7:f4:bd:2f:f2:86:91:70:92: f8:12:86:ea:0a:80:ad:51:2d:3b:73:55:a6:e9:30:8c:b7:f8: 58:35:8f:e6 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Qzc5RTExMTAvBgNVBAUTKDkzM0FDOEU3QUM0QkQzQjU4Mjk4OUZDQ0I3MkZDOTI3 RDcxNjQyNEIwHhcNMjYwMTE2MjAxNzAwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTZhOWNiYy1hZjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbQXnOqnvfwNLCkbs7mS6g9jcJ21KpQOeoKFbXe8de12qO4THiMi6NWMcwLu o6Os6hbPB2mHr/HzLebMACg36bdLXQMhueu2htjfUYmvbEmWzxwVCR9O9WbXnt/V zHLJRjfRaecThTaAjVUYrYRHId+Kqfz4Sh0x4yc301cnmau3/Y2DC+kTnj3NGwnB 8siREQGS4wccXNuusfK/HNnNgJ6RL2YtK6f62SGHUS41xSkgOYvwQUEJCIaNA5jN 9dgRUFb0WGsFPTf4LjNX0Yy2MWzpCMBpG3AJPyK5oDMBTi4GWYw2IycGTSQdnRgO rbC7g77DJm6keb9hqvDmitVQ9wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFOIprrbv 2dLxHsvmEjSVPAK0WP1xMB8GA1UdIwQYMBaAFJM6yOesS9O1gpifzLcvySfXFkJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzlFMS82NTU2RjhEQUQ3 ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3V0NtSl9NdHlfSko5Y1dR a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6ckk1NnhMMDdXQ21KX010eV9KSjljV1Frcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc5RTEvNjU1NkY4REFENzg0MTFFQTlDNUQ5NjQwQzRGOUFFMDIvMjZEMEY5Qjgy QTY2MTFFQ0IxMkZCNDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAIr5XQDBAJnMIwwDwQCAAIwCQMHACABDfIsADANBgkqhkiG 9w0BAQsFAAOCAQEAETGspt267gAU75XZsx/7QfkA8j4vaphS/5YlkNtk4cUZ4RAv pd9Ry4PjEinQedfBxlu1DBzp6EH7stSw2dNcsQGUvGUsp5mAyHycSsH1WL/gwxTY hSmnLAN2mZHlvEMZv1tIdPEKjocUuBZF5ZW3eJyjc3FERHsI8px3AhxAnD/fo5iC PF8mhvv0yRQFFqNOksPPJ19nmatGcHgHs7HMb9jfMl07dvySp9U7R+E3h/FibFYb z6vfEqAwzlJJUlCb4L6sBVP1/Ac4cC4tTexKfMyg1yJLLk6DNQlLgjFIKLf45/S9 L/KGkXCS+BKG6gqArVEtO3NVpukwjLf4WDWP5g== -----END CERTIFICATE-----Generated at Sun Jan 25 12:48:08 2026 by rpki-client