This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/84D917FC9F4911EEA0C5C856C4F9AE02.roa File: 84D917FC9F4911EEA0C5C856C4F9AE02.roa (raw, json) Hash identifier: JtIhXGAWkzgayXs+NwavZWcl/FfRGvmLWt7QneAbREc= Subject key identifier: 25:3F:14:A4:89:5D:58:2A:CD:B9:68:F2:3A:B4:60:99:E4:E5:6B:4D Certificate issuer: /CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Certificate serial: 01A2 Authority key identifier: A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/84D917FC9F4911EEA0C5C856C4F9AE02.roa Signing time: Sun 11 Jan 2026 03:23:24 +0000 ROA not before: Sun 11 Jan 2026 03:23:24 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 152185 IP address blocks: 36.50.182.0/23 maxlen: 23 36.50.182.0/24 maxlen: 24 36.50.183.0/24 maxlen: 24 2001:df3:4d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:53:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9B0, serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Validity Not Before: Jan 11 03:23:24 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=696317ac-72c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c7:1d:4c:cb:6b:2d:5e:d4:00:f9:f2:64:b7: 62:96:93:cd:3f:ab:b8:b1:1b:9e:13:b6:9b:ab:97: 92:d2:3f:cb:61:0d:dd:53:2e:6e:5a:12:ad:08:98: e6:8e:16:0e:aa:9a:14:2d:ba:9c:d0:34:24:db:3c: 05:7b:24:01:d6:97:26:ca:40:3e:36:05:7d:a9:85: 63:44:8b:b2:0b:6e:4c:2f:83:0d:03:b6:e5:28:37: c5:ec:6c:61:9b:02:04:c4:27:76:4d:6f:70:79:8c: 9f:ec:58:34:71:5d:67:86:8c:72:55:b8:25:46:4e: 1c:89:d4:ef:f1:ca:4e:52:4b:e3:39:33:3d:80:49: cd:3f:56:c9:70:db:54:c0:c2:78:19:ee:fd:bd:6b: 85:b7:38:f2:01:9c:f4:4c:42:b7:1c:63:e6:3a:5a: 4b:2d:b2:14:b6:81:ad:60:74:30:28:ae:1d:f6:c0: 1a:c1:5e:4c:5d:f6:71:8e:44:02:1e:51:42:e1:36: 7f:d6:60:ce:9f:8f:3e:ad:a4:80:0a:e9:3d:2a:0c: f2:92:b2:1b:19:52:e5:44:2f:61:8a:ef:0f:64:f4: b8:ba:91:52:49:4e:38:00:30:bb:67:ed:89:84:44: 37:78:1c:b5:22:28:d3:f5:5a:14:03:ea:67:ec:b6: 04:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:3F:14:A4:89:5D:58:2A:CD:B9:68:F2:3A:B4:60:99:E4:E5:6B:4D X509v3 Authority Key Identifier: keyid:A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/84D917FC9F4911EEA0C5C856C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.182.0/23 IPv6: 2001:df3:4d40::/48 Signature Algorithm: sha256WithRSAEncryption d0:92:fc:e1:9a:fb:0c:52:61:f7:d9:c1:19:94:e9:0d:ba:05: 17:22:30:92:fb:81:ed:5c:1c:df:6b:80:31:90:2e:a5:c8:45: 53:bc:9f:ea:2d:74:6f:bf:12:d9:90:72:91:c8:16:81:9f:c8: 70:8e:dd:38:d4:63:a6:1a:cc:a8:dd:e2:bd:ed:d1:9a:69:e0: f9:9d:9f:7b:d4:76:91:63:40:e1:82:55:1f:f6:d4:8e:30:98: dc:6b:59:49:99:23:71:99:f1:e8:75:53:9f:17:59:6d:d1:a9: 05:f1:ad:76:ac:09:9a:56:07:20:99:3e:69:76:d0:ee:40:e4: 2a:7a:a6:e6:72:13:15:0f:e4:83:b1:c7:b4:99:da:8c:de:73: 27:ff:c3:ad:ef:76:31:4d:0f:ea:5d:21:07:f7:41:11:47:0d: 3b:e5:48:94:dc:ad:be:21:05:7a:4e:58:7b:bd:4f:e1:01:d0: af:6e:9d:8c:10:af:b7:d2:49:16:9f:fc:76:07:cd:5a:21:ce: bc:01:c5:98:dc:4a:72:b0:d1:03:5b:65:61:ef:8b:68:06:17: 51:a8:39:92:2b:56:44:ef:14:dc:79:c2:e3:f7:be:bd:d7:29: 2a:51:a5:5c:f7:df:3b:c4:67:fc:26:bc:80:83:5d:4b:73:d3: 1e:da:4b:4e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0Y5QjAxMTAvBgNVBAUTKEEyQTIxN0Q0QTQxMkZCNTM4RjVDOTFBMzRCMzZDRTcx ODc5RERCNjUwHhcNMjYwMTExMDMyMzI0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTYzMTdhYy03MmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMcdTMtrLV7UAPnyZLdilpPNP6u4sRueE7abq5eS0j/LYQ3dUy5uWhKtCJjm jhYOqpoULbqc0DQk2zwFeyQB1pcmykA+NgV9qYVjRIuyC25ML4MNA7blKDfF7Gxh mwIExCd2TW9weYyf7Fg0cV1nhoxyVbglRk4cidTv8cpOUkvjOTM9gEnNP1bJcNtU wMJ4Ge79vWuFtzjyAZz0TEK3HGPmOlpLLbIUtoGtYHQwKK4d9sAawV5MXfZxjkQC HlFC4TZ/1mDOn48+raSACuk9KgzykrIbGVLlRC9hiu8PZPS4upFSSU44ADC7Z+2J hEQ3eBy1IijT9VoUA+pn7LYEXwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCU/FKSJ XVgqzblo8jq0YJnk5WtNMB8GA1UdIwQYMBaAFKKiF9SkEvtTj1yRo0s2znGHndtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlCMC8xNEM5NDk2RTlG M0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0xT1BYSkdqU3piT2NZZWQy MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29xSVgxS1FTLTFPUFhKR2pTemJPY1llZDIyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y5QjAvMTRDOTQ5NkU5RjNGMTFFRTgwMUIxRDYyQzRGOUFFMDIvODREOTE3RkM5 RjQ5MTFFRUEwQzVDODU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAEkMrYwDwQCAAIwCQMHACABDfNNQDANBgkqhkiG9w0BAQsF AAOCAQEA0JL84Zr7DFJh99nBGZTpDboFFyIwkvuB7Vwc32uAMZAupchFU7yf6i10 b78S2ZBykcgWgZ/IcI7dONRjphrMqN3ive3Rmmng+Z2fe9R2kWNA4YJVH/bUjjCY 3GtZSZkjcZnx6HVTnxdZbdGpBfGtdqwJmlYHIJk+aXbQ7kDkKnqm5nITFQ/kg7HH tJnajN5zJ//Dre92MU0P6l0hB/dBEUcNO+VIlNytviEFek5Ye71P4QHQr26djBCv t9JJFp/8dgfNWiHOvAHFmNxKcrDRA1tlYe+LaAYXUag5kitWRO8U3HnC4/e+vdcp KlGlXPffO8Rn/Ca8gINdS3PTHtpLTg== -----END CERTIFICATE-----Generated at Sun Jan 25 21:43:36 2026 by rpki-client