This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/2BFE357EF06211F08763644E5C6F56BC.roa File: 2BFE357EF06211F08763644E5C6F56BC.roa (raw, json) Hash identifier: Xmf0MRh/MXBc+iFvfoflK2eHN9mE4CmoCd4WG2aslcQ= Subject key identifier: 19:C5:6C:E7:17:E5:AE:12:99:F4:41:BF:8A:46:64:84:95:C7:AE:A6 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 097A Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/2BFE357EF06211F08763644E5C6F56BC.roa Signing time: Tue 13 Jan 2026 09:28:08 +0000 ROA not before: Tue 13 Jan 2026 09:28:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 20773 IP address blocks: 2407:1c00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:34:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2426 (0x97a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: Jan 13 09:28:08 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69661028-2099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a4:b4:9a:83:73:42:a0:e1:68:c8:14:89:32: 59:f7:48:da:e7:03:67:ca:52:a0:81:dd:f0:65:8b: 15:88:06:fb:94:c2:90:2a:08:39:7f:5f:0d:fc:16: cb:e0:53:0b:af:27:89:74:31:1b:da:92:9d:27:67: 0c:33:ec:14:30:40:43:e8:2a:ea:d1:dd:9b:fa:0f: 5f:94:4d:a0:bd:1c:84:91:bc:ff:d5:be:f9:a0:c5: c5:bd:2b:98:05:2b:78:b5:45:4f:f4:c2:09:1d:e6: bf:67:c4:bc:8c:76:9d:f3:80:3f:17:e4:ab:e6:57: 8c:52:96:9f:82:b5:60:df:82:42:05:ee:cc:0c:65: 5e:ee:5e:7a:4c:db:ba:45:26:ba:b6:75:42:d2:21: d9:d5:5f:09:d7:00:12:c1:58:0b:55:71:d6:0e:eb: 03:21:98:2d:b5:b8:04:af:6b:60:a3:92:18:06:05: 17:84:a6:04:b0:32:31:35:54:7e:83:59:e5:4d:95: b9:b5:b6:5e:7c:c1:3d:4f:36:2b:08:0a:f8:b9:f0: cf:9d:07:a3:a2:8f:b3:16:8f:ff:a9:84:4e:65:7b: d5:b7:59:8c:68:7b:be:a3:64:02:e2:8c:66:9c:e2: 4d:b7:eb:83:b3:5f:02:34:75:c1:db:4c:09:42:72: 6c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:C5:6C:E7:17:E5:AE:12:99:F4:41:BF:8A:46:64:84:95:C7:AE:A6 X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/2BFE357EF06211F08763644E5C6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:1c00::/32 Signature Algorithm: sha256WithRSAEncryption 5c:f5:15:5c:da:ed:d6:7f:08:f0:65:40:23:b1:3d:74:5e:b3: fd:cc:72:30:6e:93:8e:f2:17:36:72:ae:17:9f:c6:c5:45:95: 13:87:ca:50:35:b2:9c:27:7f:18:59:24:66:9f:7b:86:70:26: 94:a4:06:97:78:77:ff:df:09:d0:af:f6:90:a8:11:e0:27:a5: 6f:ae:a7:95:db:56:62:47:b6:f8:f5:3a:92:f6:da:cd:6d:93: ec:08:fa:0b:16:88:1d:f0:cb:9e:7e:6e:75:ac:33:f8:78:36: 9c:b6:b3:a5:74:65:75:0f:a8:7b:21:95:e8:33:dc:4e:02:53: 4a:df:18:83:1d:7b:96:a3:12:92:73:71:0a:7f:f6:6e:e7:b8: 22:ff:14:4c:88:e7:ed:7e:c8:30:35:d5:b3:fc:a8:89:3d:ee: 11:f8:51:b2:61:dd:a8:40:a8:2c:5a:f3:74:cc:5b:14:a1:5b: 11:d9:73:f9:71:b5:6c:f4:61:e9:39:c8:46:9c:7b:18:10:f7: 2e:b7:4f:06:30:9b:ff:4c:7f:b1:04:4a:bd:c8:82:ea:82:df: d6:ea:8e:a1:26:ad:4a:dd:d0:8d:c9:bd:24:28:f3:77:6d:05: 27:b3:8c:35:f4:da:72:5e:05:7d:67:97:9a:f9:fb:82:f2:1f: 78:e3:ab:44 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjYwMTEzMDkyODA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDDA02OTY2MTAyOC0yMDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraS0moNzQqDhaMgUiTJZ90ja5wNnylKggd3wZYsViAb7lMKQKgg5f18N/BbL 4FMLryeJdDEb2pKdJ2cMM+wUMEBD6Crq0d2b+g9flE2gvRyEkbz/1b75oMXFvSuY BSt4tUVP9MIJHea/Z8S8jHad84A/F+Sr5leMUpafgrVg34JCBe7MDGVe7l56TNu6 RSa6tnVC0iHZ1V8J1wASwVgLVXHWDusDIZgttbgEr2tgo5IYBgUXhKYEsDIxNVR+ g1nlTZW5tbZefME9TzYrCAr4ufDPnQejoo+zFo//qYROZXvVt1mMaHu+o2QC4oxm nOJNt+uDs18CNHXB20wJQnJsQQIDAQABo4ICljCCApIwHQYDVR0OBBYEFBnFbOcX 5a4SmfRBv4pGZISVx66mMB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMEExNjIwOEFBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvMkJGRTM1N0VG MDYyMTFGMDg3NjM2NDRFNUM2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBxwAMA0GCSqGSIb3DQEBCwUAA4IBAQBc9RVc2u3Wfwjw ZUAjsT10XrP9zHIwbpOO8hc2cq4Xn8bFRZUTh8pQNbKcJ38YWSRmn3uGcCaUpAaX eHf/3wnQr/aQqBHgJ6VvrqeV21ZiR7b49TqS9trNbZPsCPoLFogd8Muefm51rDP4 eDactrOldGV1D6h7IZXoM9xOAlNK3xiDHXuWoxKSc3EKf/Zu57gi/xRMiOftfsgw NdWz/KiJPe4R+FGyYd2oQKgsWvN0zFsUoVsR2XP5cbVs9GHpOchGnHsYEPcut08G MJv/TH+xBEq9yILqgt/W6o6hJq1K3dCNyb0kKPN3bQUns4w19NpyXgV9Z5ea+fuC 8h9446tE -----END CERTIFICATE-----Generated at Sun Jan 25 12:06:31 2026 by rpki-client