This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/386FD4FCB37D11EF8D6EAF63C4F9AE02.roa File: 386FD4FCB37D11EF8D6EAF63C4F9AE02.roa (raw, json) Hash identifier: ANGDcZEBqBINAurbxI/q8ohWGX1GiHShzLbCmirTBH4= Subject key identifier: 8E:CB:A9:D4:9C:C6:B5:45:1F:1A:28:ED:9A:FB:DE:4F:33:9E:F3:BB Certificate issuer: /CN=A91DF233/serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Certificate serial: BD Authority key identifier: B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/386FD4FCB37D11EF8D6EAF63C4F9AE02.roa Signing time: Fri 05 Dec 2025 04:14:22 +0000 ROA not before: Fri 05 Dec 2025 04:14:22 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 151660 IP address blocks: 2401:dc20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:14:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Validity Not Before: Dec 5 04:14:22 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69325c1e-53fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:76:5e:56:c8:06:2c:93:05:b5:39:9a:7f:d8: 3b:d0:5a:2f:5e:36:f3:c3:ff:51:1d:28:1c:25:cf: b5:94:19:12:87:d7:da:43:76:65:a4:49:4c:80:40: 23:f1:80:06:21:8f:2c:89:28:0f:38:9e:94:5e:7f: 12:e6:47:92:a9:d9:76:4c:6b:e9:ae:55:fc:ee:32: cf:2d:df:7d:d3:c5:45:1e:58:11:fb:4c:6a:eb:a7: c2:74:11:c4:ef:de:fa:ab:f0:5c:a9:94:44:31:00: c3:24:97:fd:d6:83:ca:fb:f6:85:42:fb:7d:8a:2e: 86:d0:11:cc:f3:ed:5d:3f:d9:ff:92:32:b8:93:e3: fb:87:a8:bf:5a:1e:60:27:4f:32:28:05:d7:06:2e: 3e:26:f7:48:6d:1e:d9:70:ce:51:12:4f:75:f2:60: 75:3e:e1:bb:b0:12:fa:c3:68:94:1f:b7:77:28:b4: 4c:a1:36:3d:d9:72:a7:e9:5b:c9:e5:bf:7b:6d:04: 7f:0b:8b:f6:d7:7a:ea:30:87:99:00:b5:a7:9f:7e: d4:93:30:3d:5b:cd:db:26:c4:cb:3c:68:97:a6:c6: 4c:df:14:0d:c1:ae:41:23:3c:fc:64:53:bc:a3:a2: 8d:61:08:72:fe:f4:fd:7e:9b:cf:88:41:d0:f9:75: 39:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:CB:A9:D4:9C:C6:B5:45:1F:1A:28:ED:9A:FB:DE:4F:33:9E:F3:BB X509v3 Authority Key Identifier: keyid:B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/386FD4FCB37D11EF8D6EAF63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:dc20::/32 Signature Algorithm: sha256WithRSAEncryption 4e:8a:98:d5:bb:eb:17:39:aa:56:10:0f:63:cb:ef:66:96:45: 88:99:9c:9f:41:63:f0:fa:1e:0b:70:d2:af:7e:df:41:23:ef: 00:77:ad:75:4b:c1:80:8d:19:af:b1:2a:8f:ae:43:c6:16:e8: 4d:8a:f1:36:7b:d3:dc:c5:c4:ec:92:85:4a:45:38:3e:58:a4: 76:2c:2b:34:9b:a3:cc:2f:5e:51:0e:bf:f2:f6:f8:35:45:09: 5f:d6:20:8c:3b:30:f9:d4:8a:8b:0b:c9:88:0e:38:bb:d5:57: 36:cc:95:a4:08:8b:1d:a1:3b:62:e9:83:50:28:89:2c:1f:71: 3a:95:be:07:ed:94:c4:8a:6b:58:a1:a6:28:68:bd:7f:9e:9b: ce:e2:c3:f9:e0:32:ba:d5:ef:f8:f8:32:92:3a:59:03:83:59: f8:06:26:90:57:1b:c5:e1:28:e1:3e:23:8f:75:31:2e:47:e7: 93:87:a3:ca:5b:84:0a:8a:f2:f2:16:ec:c6:4a:c7:e0:c0:64: 9c:ce:7f:8d:c6:e5:a1:ac:6a:88:e4:84:1c:0b:65:1d:f7:ba: fb:2f:bd:9e:44:ed:39:c2:2d:d4:67:de:8f:11:95:fe:d6:ee: 3e:8a:e5:a5:68:e8:66:0b:75:46:fe:fc:c0:f1:34:e2:26:c4: 16:6a:88:ee -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYyMzMxMTAvBgNVBAUTKEIxQkExODY4QkE3Q0VCOTRDREQ2NEYwNTc0MTM5QTAx QTUwQjkwRDUwHhcNMjUxMjA1MDQxNDIyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMyNWMxZS01M2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7nZeVsgGLJMFtTmaf9g70FovXjbzw/9RHSgcJc+1lBkSh9faQ3ZlpElMgEAj 8YAGIY8siSgPOJ6UXn8S5keSqdl2TGvprlX87jLPLd9908VFHlgR+0xq66fCdBHE 7976q/BcqZREMQDDJJf91oPK+/aFQvt9ii6G0BHM8+1dP9n/kjK4k+P7h6i/Wh5g J08yKAXXBi4+JvdIbR7ZcM5REk918mB1PuG7sBL6w2iUH7d3KLRMoTY92XKn6VvJ 5b97bQR/C4v213rqMIeZALWnn37UkzA9W83bJsTLPGiXpsZM3xQNwa5BIzz8ZFO8 o6KNYQhy/vT9fpvPiEHQ+XU5swIDAQABo4ICljCCApIwHQYDVR0OBBYEFI7LqdSc xrVFHxoo7Zr73k8znvO7MB8GA1UdIwQYMBaAFLG6GGi6fOuUzdZPBXQTmgGlC5DV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjIzMy8xMTRFN0RCQUIz NzgxMUVGODgzMjJCMEZDNEY5QUUwMi9zYm9ZYUxwODY1VE4xazhGZEJPYUFhVUxr TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib1lhTHA4NjVUTjFrOEZkQk9hQWFVTGtOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYyMzMvMTE0RTdEQkFCMzc4MTFFRjg4MzIyQjBGQzRGOUFFMDIvMzg2RkQ0RkNC MzdEMTFFRjhENkVBRjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAdwgMA0GCSqGSIb3DQEBCwUAA4IBAQBOipjVu+sXOapW EA9jy+9mlkWImZyfQWPw+h4LcNKvft9BI+8Ad611S8GAjRmvsSqPrkPGFuhNivE2 e9PcxcTskoVKRTg+WKR2LCs0m6PML15RDr/y9vg1RQlf1iCMOzD51IqLC8mIDji7 1Vc2zJWkCIsdoTti6YNQKIksH3E6lb4H7ZTEimtYoaYoaL1/npvO4sP54DK61e/4 +DKSOlkDg1n4BiaQVxvF4SjhPiOPdTEuR+eTh6PKW4QKivLyFuzGSsfgwGSczn+N xuWhrGqI5IQcC2Ud97r7L72eRO05wi3UZ96PEZX+1u4+iuWlaOhmC3VG/vzA8TTi JsQWaoju -----END CERTIFICATE-----Generated at Sun Dec 7 00:20:10 2025 by rpki-client