This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/CB1303A4A28F11EBA97D6163C4F9AE02.roa File: CB1303A4A28F11EBA97D6163C4F9AE02.roa (raw, json) Hash identifier: KQfpgqTCm38R9/gLkZZKqv0IIflUZ1N/AO5E6KaW3hc= Subject key identifier: 0C:8F:F6:2E:BD:A1:B7:F8:19:8A:71:17:6A:85:E9:CE:63:90:9A:54 Certificate issuer: /CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Certificate serial: 1126 Authority key identifier: 79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/CB1303A4A28F11EBA97D6163C4F9AE02.roa Signing time: Wed 02 Apr 2025 17:46:34 +0000 ROA not before: Wed 02 Apr 2025 17:46:34 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 24124 IP address blocks: 2404:7ac0:200::/48 maxlen: 48 2404:7ac0:206::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4390 (0x1126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D16A3, serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Validity Not Before: Apr 2 17:46:34 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ed77fa-461c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c0:3c:cc:7d:fd:15:03:09:c7:13:36:7c:23: 12:dc:48:d4:46:0e:ee:6a:9f:72:33:e5:95:7d:90: 0a:3c:a1:59:0c:5b:fb:e0:0f:ec:2a:32:05:b0:79: 16:7b:2b:eb:18:53:d7:e5:f1:25:5e:cd:0c:87:4e: 66:f6:aa:45:da:88:55:be:08:84:07:d4:98:56:86: 34:62:2f:5f:30:be:3a:77:c1:1d:93:d3:9c:dd:45: 08:f0:07:5f:1b:2e:25:bb:41:45:ed:af:6e:17:5d: aa:a2:38:f8:ff:35:bb:9f:9d:13:20:c2:5d:ea:f5: 2a:42:f1:cc:7b:9b:8a:c3:ee:f3:25:f4:ef:04:68: 31:35:c9:5b:af:b1:2d:90:80:a1:f6:bf:37:fc:1b: 34:2a:8e:c2:0a:f0:48:fb:e2:71:0e:ea:15:ba:30: b6:a2:b5:83:c6:b4:c7:84:f3:5d:e5:1b:92:23:08: a3:00:86:03:38:46:c0:97:bc:a2:f3:56:10:72:0f: 63:0b:be:aa:a6:45:a9:1d:bd:aa:0d:cb:38:90:d5: fc:52:bf:d9:40:a2:d1:3f:bd:c7:75:a4:a4:de:15: 00:ce:9e:11:7b:cb:78:bd:d0:af:5a:b1:d7:f2:0a: 0d:98:e8:48:30:c9:ef:24:b7:08:d8:e7:a9:13:43: 6b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:8F:F6:2E:BD:A1:B7:F8:19:8A:71:17:6A:85:E9:CE:63:90:9A:54 X509v3 Authority Key Identifier: keyid:79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/CB1303A4A28F11EBA97D6163C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:7ac0:200::/48 2404:7ac0:206::/47 Signature Algorithm: sha256WithRSAEncryption 20:3d:63:39:c8:c3:8c:56:3e:6c:c3:77:b2:20:a0:7b:c0:f7: 37:2a:ac:2a:13:ae:29:51:cf:2d:42:f7:c7:c7:80:8d:94:20: 3a:cb:06:12:71:df:79:7c:e0:1e:bd:65:5e:0d:83:ee:41:7a: 64:f3:58:ab:36:b5:12:0f:a1:b0:f6:69:4b:43:57:27:95:cb: 7f:c0:b7:28:9e:4a:2c:13:96:22:c3:82:c9:77:b9:75:65:9d: c9:64:7d:a6:f5:39:c2:90:fb:0c:fb:bc:01:81:39:eb:bd:a4: 14:18:6a:f4:94:61:33:f6:25:49:bb:d3:e8:ed:be:37:fe:48: 6e:a8:a2:65:91:21:0a:88:22:b9:36:65:7b:be:60:2e:62:28: dd:24:7b:a6:0a:7d:a2:59:29:91:ed:33:df:57:db:73:48:01: 1c:8e:58:9e:87:ee:8f:9f:e5:aa:f0:16:3f:b8:48:17:58:fb: 6c:f1:27:10:4c:24:4b:2e:bd:5d:5a:6f:06:85:9b:02:56:2f: 7f:3f:af:2e:53:94:e0:4e:8f:0a:5f:71:8e:15:d4:39:66:1e: 31:fc:e3:7b:78:42:4f:00:aa:ef:b7:e8:19:67:49:de:78:b8: d0:65:3b:69:c6:af:e5:a4:80:59:23:63:fd:6a:70:28:2f:5a: 0d:2e:2c:9d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICESYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2QTMxMTAvBgNVBAUTKDc5Mzc2NjA4NEVGQzA2MjUwNjUwRjBGREM5REJDNTUz QzBDRUNBMzIwHhcNMjUwNDAyMTc0NjM0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkNzdmYS00NjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4cA8zH39FQMJxxM2fCMS3EjURg7uap9yM+WVfZAKPKFZDFv74A/sKjIFsHkW eyvrGFPX5fElXs0Mh05m9qpF2ohVvgiEB9SYVoY0Yi9fML46d8Edk9Oc3UUI8Adf Gy4lu0FF7a9uF12qojj4/zW7n50TIMJd6vUqQvHMe5uKw+7zJfTvBGgxNclbr7Et kICh9r83/Bs0Ko7CCvBI++JxDuoVujC2orWDxrTHhPNd5RuSIwijAIYDOEbAl7yi 81YQcg9jC76qpkWpHb2qDcs4kNX8Ur/ZQKLRP73HdaSk3hUAzp4Re8t4vdCvWrHX 8goNmOhIMMnvJLcI2OepE0NrDwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFAyP9i69 obf4GYpxF2qF6c5jkJpUMB8GA1UdIwQYMBaAFHk3ZghO/AYlBlDw/cnbxVPAzsoy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTZBMy83NzI3Q0U1QzM4 QzcxMUU5QTdCNUMyMzNDNEY5QUUwMi9lVGRtQ0U3OEJpVUdVUEQ5eWR2RlU4RE95 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VUZG1DRTc4QmlVR1VQRDl5ZHZGVThET3lqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2QTMvNzcyN0NFNUMzOEM3MTFFOUE3QjVDMjMzQzRGOUFFMDIvQ0IxMzAzQTRB MjhGMTFFQkE5N0Q2MTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBHrAAgADBwEkBHrAAgYwDQYJKoZIhvcNAQELBQADggEB ACA9YznIw4xWPmzDd7IgoHvA9zcqrCoTrilRzy1C98fHgI2UIDrLBhJx33l84B69 ZV4Ng+5BemTzWKs2tRIPobD2aUtDVyeVy3/AtyieSiwTliLDgsl3uXVlnclkfab1 OcKQ+wz7vAGBOeu9pBQYavSUYTP2JUm70+jtvjf+SG6oomWRIQqIIrk2ZXu+YC5i KN0ke6YKfaJZKZHtM99X23NIARyOWJ6H7o+f5arwFj+4SBdY+2zxJxBMJEsuvV1a bwaFmwJWL38/ry5TlOBOjwpfcY4V1DlmHjH843t4Qk8Aqu+36BlnSd54uNBlO2nG r+WkgFkjY/1qcCgvWg0uLJ0= -----END CERTIFICATE-----Generated at Sat Dec 6 23:00:30 2025 by rpki-client