This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/2C3F5F0C1CB711EAAA03506DC4F9AE02.roa File: 2C3F5F0C1CB711EAAA03506DC4F9AE02.roa (raw, json) Hash identifier: 2BIS7a6CnI7DPzP+DBSyU3VDfhBjgvCHYG2uMZJkeUE= Subject key identifier: 4A:92:27:4E:29:0B:25:13:B8:36:D0:8F:C9:46:9C:51:AB:3C:C4:D6 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0FA9 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/2C3F5F0C1CB711EAAA03506DC4F9AE02.roa Signing time: Wed 14 Jan 2026 18:15:04 +0000 ROA not before: Wed 14 Jan 2026 18:15:04 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 23930 IP address blocks: 125.252.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4009 (0xfa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:15:04 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6967dd28-2b1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:af:f7:bc:2d:42:7e:16:ff:8a:ce:72:17:59: 12:93:56:67:8e:ef:9c:e8:09:32:7a:26:fc:4d:ba: 5a:22:08:93:5f:17:61:e6:17:c1:6a:78:f3:04:81: d0:ef:c9:4c:98:8e:f2:55:b7:df:22:4d:0f:a7:f6: 28:e3:3a:af:96:13:c0:34:cf:3b:0d:07:10:46:99: 56:86:98:0a:73:80:08:71:e2:10:ee:2d:73:74:c4: 2d:98:40:38:db:97:b7:0a:66:a0:95:e6:25:c2:64: ef:3b:98:0b:05:72:0a:4e:be:05:f4:19:14:c0:41: 25:5a:4e:3d:10:6b:84:9c:a9:fc:a8:38:f6:3d:0c: 51:67:1f:29:55:a5:ae:ef:92:b1:29:0f:cb:9a:b9: f9:95:f6:8d:70:6c:24:70:d9:39:9c:a7:57:5e:fe: bd:40:a3:7b:53:71:39:eb:c1:94:98:3f:76:b5:34: e9:3c:89:87:4d:a1:ec:d7:6b:c1:dd:fe:81:f2:56: 92:d3:43:a0:20:40:22:8c:70:32:45:8f:58:8d:fc: 72:f7:42:e7:f2:2b:1b:2e:81:2e:59:e6:35:b1:08: 6e:9c:58:9e:1c:9e:da:c1:14:7b:50:07:02:fd:8e: d3:37:98:34:91:f7:93:c4:21:66:76:dc:0e:f8:8b: be:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:92:27:4E:29:0B:25:13:B8:36:D0:8F:C9:46:9C:51:AB:3C:C4:D6 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/2C3F5F0C1CB711EAAA03506DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.252.99.0/24 Signature Algorithm: sha256WithRSAEncryption 22:2f:70:a2:34:a3:ab:ba:39:9f:c0:02:66:23:8a:0c:be:e4: 54:2e:75:23:d3:30:7b:83:78:2b:91:a6:ed:cd:b6:72:6a:3e: 82:8d:64:59:c4:50:99:85:dd:ef:41:58:86:8c:a8:72:06:93: 5a:02:de:57:69:d6:1c:7a:ac:b7:7a:d1:94:79:29:a1:7f:c7: 6c:48:9d:61:89:22:00:b6:6e:c7:05:18:5d:27:d2:ef:0a:55: 7c:61:70:ed:99:3e:7a:2a:ef:d9:ff:89:1b:88:41:84:61:66: 4b:4d:f9:4c:0e:84:41:a2:4d:44:9c:cd:db:c1:bd:27:ba:4a: 87:1d:5d:d6:29:60:ad:6f:23:92:30:6c:db:0b:a3:27:32:f7: 4a:87:93:4f:47:07:91:f0:e8:f2:4e:c4:89:91:0e:a1:7e:de: d6:13:59:89:e9:80:74:38:86:2d:51:32:42:ef:0a:b5:2f:5b: 57:b1:99:e9:13:ac:b8:d8:0a:e4:00:8a:c0:0e:10:c9:9c:c6: 87:5e:80:70:a5:8a:72:00:e4:0e:f0:4a:3c:cd:3e:16:63:79: 75:33:70:4a:e7:af:90:f3:d8:85:95:11:c0:71:b8:25:4d:bb: b4:cc:c1:72:f0:8e:4f:70:0b:d8:6f:48:cd:c3:59:ae:bc:87: 87:e7:4a:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjYwMTE0MTgxNTA0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY3ZGQyOC0yYjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3q/3vC1Cfhb/is5yF1kSk1Znju+c6Akyeib8TbpaIgiTXxdh5hfBanjzBIHQ 78lMmI7yVbffIk0Pp/Yo4zqvlhPANM87DQcQRplWhpgKc4AIceIQ7i1zdMQtmEA4 25e3CmagleYlwmTvO5gLBXIKTr4F9BkUwEElWk49EGuEnKn8qDj2PQxRZx8pVaWu 75KxKQ/Lmrn5lfaNcGwkcNk5nKdXXv69QKN7U3E568GUmD92tTTpPImHTaHs12vB 3f6B8laS00OgIEAijHAyRY9Yjfxy90Ln8isbLoEuWeY1sQhunFieHJ7awRR7UAcC /Y7TN5g0kfeTxCFmdtwO+Iu+awIDAQABo4IClTCCApEwHQYDVR0OBBYEFEqSJ04p CyUTuDbQj8lGnFGrPMTWMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvMkMzRjVGMEMx Q0I3MTFFQUFBMDM1MDZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9/GMwDQYJKoZIhvcNAQELBQADggEBACIvcKI0o6u6OZ/A AmYjigy+5FQudSPTMHuDeCuRpu3NtnJqPoKNZFnEUJmF3e9BWIaMqHIGk1oC3ldp 1hx6rLd60ZR5KaF/x2xInWGJIgC2bscFGF0n0u8KVXxhcO2ZPnoq79n/iRuIQYRh ZktN+UwOhEGiTUSczdvBvSe6SocdXdYpYK1vI5IwbNsLoycy90qHk09HB5Hw6PJO xImRDqF+3tYTWYnpgHQ4hi1RMkLvCrUvW1exmekTrLjYCuQAisAOEMmcxodegHCl inIA5A7wSjzNPhZjeXUzcErnr5Dz2IWVEcBxuCVNu7TMwXLwjk9wC9hvSM3DWa68 h4fnSlk= -----END CERTIFICATE-----Generated at Sun Jan 25 13:56:39 2026 by rpki-client