This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/D522C16CBAEB11F09547BA51C4F9AE02.roa File: D522C16CBAEB11F09547BA51C4F9AE02.roa (raw, json) Hash identifier: VPNk3Z2PRH6O6dcJtXC2yyJNWSfjiCAA+D4i9ZD7bxQ= Subject key identifier: 28:9F:B6:DF:6A:9F:03:65:7B:49:CC:38:C3:F5:1B:61:E9:AC:AE:D8 Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: 6A Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/D522C16CBAEB11F09547BA51C4F9AE02.roa Signing time: Thu 06 Nov 2025 20:27:05 +0000 ROA not before: Thu 06 Nov 2025 20:27:05 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 400618 IP address blocks: 2400:cca0:100::/40 maxlen: 48 2400:cca0:200::/40 maxlen: 48 2400:cca0:300::/40 maxlen: 48 2400:cca0:400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:43:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Nov 6 20:27:05 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=690d0499-f88f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d5:f0:e1:41:71:47:16:75:08:86:07:15:e7: 45:b4:e1:04:1d:a7:19:0e:22:f3:db:25:89:1f:a5: 85:b6:51:bc:a5:21:28:65:41:2f:ec:52:35:3d:5b: 1c:f5:29:b9:2f:ef:64:85:35:a1:2b:df:37:7d:cc: 3f:f7:20:ea:66:72:8d:00:c2:14:98:cc:ef:96:f6: e2:0b:49:55:b8:57:3e:5b:de:8b:30:7d:a0:5e:cf: 7b:55:6a:5f:e8:cd:45:55:3c:bd:b7:b1:7c:22:a6: 5e:2c:29:e1:23:ed:7b:77:d8:73:8f:91:81:73:27: da:e6:0b:d9:af:66:d1:7c:a3:34:20:32:47:df:da: f2:c7:f7:35:7c:1d:6a:b1:cb:40:c9:1e:30:a1:61: fb:db:9f:90:a0:20:a1:b2:ff:e9:b2:24:06:2b:d3: 18:7d:33:52:12:c4:25:67:c1:42:92:f8:4d:dd:67: 9a:4c:2f:38:69:ed:06:bc:20:0a:ac:43:0a:a0:95: 5a:1b:7c:da:80:f6:5c:e6:c1:7d:47:32:a4:8f:2f: 11:db:8d:e8:05:a1:f9:33:03:f9:6b:2f:54:91:97: fa:88:a0:e9:3f:7c:22:c3:18:de:e3:eb:89:03:79: 5a:f2:77:3c:77:54:6f:10:f4:04:ab:b7:ed:1f:56: 4e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:9F:B6:DF:6A:9F:03:65:7B:49:CC:38:C3:F5:1B:61:E9:AC:AE:D8 X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/D522C16CBAEB11F09547BA51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cca0:100::-2400:cca0:4ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 74:67:83:ff:dc:d0:56:b7:a1:25:8c:0b:0a:3e:eb:5f:af:4d: f2:e6:b2:6b:6f:87:8a:f9:76:9e:71:22:83:3b:6c:a9:3a:b6: 84:90:60:79:e4:e4:69:39:7e:dd:2b:8c:95:5a:dc:cd:e7:da: 95:dd:b6:56:42:75:d9:a9:8e:4b:5c:30:f4:37:ea:e4:21:36: 56:4e:fb:8f:e6:4e:ff:7a:73:4b:23:1b:79:f3:0b:a3:43:76: 1d:c6:98:81:81:16:aa:a0:c3:c9:0d:41:9a:de:48:e8:5c:b1: ca:d6:19:35:a8:9e:bc:83:3d:23:3e:04:bc:d7:f8:3b:a9:b0: dd:f1:4c:6a:bc:55:02:65:5a:3c:2f:64:ac:cb:2d:6c:1f:fd: 62:9f:42:c9:23:cf:7b:8a:c8:07:ea:d5:f1:5d:57:28:b8:57: 89:24:3b:13:74:f4:3d:dd:52:36:57:c2:0f:d3:03:af:f7:4e: 87:c8:8f:28:b6:bb:39:5c:a4:40:9d:65:7e:80:1f:96:46:93: 0b:d6:29:f1:47:9e:70:3b:6e:15:1f:69:d0:01:be:b7:96:3d: 9b:ae:35:79:81:02:ed:de:4c:09:c4:1d:3b:55:fd:84:cf:5c: 97:b6:69:03:a3:83:85:4c:a4:37:9f:1f:d7:2a:08:99:06:f9: 7e:4a:60:12 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Rjg1NjExMC8GA1UEBRMoNUY2OTkxODZBMkVCQ0Q0NUIxRkY2QTBBNEFGNjA2MDZG M0IzRDA4RDAeFw0yNTExMDYyMDI3MDVaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MGQwNDk5LWY4OGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDM1fDhQXFHFnUIhgcV50W04QQdpxkOIvPbJYkfpYW2UbylIShlQS/sUjU9Wxz1 Kbkv72SFNaEr3zd9zD/3IOpmco0AwhSYzO+W9uILSVW4Vz5b3oswfaBez3tVal/o zUVVPL23sXwipl4sKeEj7Xt32HOPkYFzJ9rmC9mvZtF8ozQgMkff2vLH9zV8HWqx y0DJHjChYfvbn5CgIKGy/+myJAYr0xh9M1ISxCVnwUKS+E3dZ5pMLzhp7Qa8IAqs QwqglVobfNqA9lzmwX1HMqSPLxHbjegFofkzA/lrL1SRl/qIoOk/fCLDGN7j64kD eVrydzx3VG8Q9ASrt+0fVk4PAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUKJ+232qf A2V7Scw4w/UbYemsrtgwHwYDVR0jBBgwFoAUX2mRhqLrzUWx/2oKSvYGBvOz0I0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGODU2L0VGRjJBMEEwMUM0 MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDJtUmhxTHJ6VVd4XzJvS1N2WUdCdk96MEkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Ni9FRkYyQTBBMDFDNDExMUYwQTk4MjFGM0VDNEY5QUUwMi9ENTIyQzE2Q0JB RUIxMUYwOTU0N0JBNTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAIwEjAQAwYAJADMoAEDBgAkAMygBDANBgkqhkiG9w0BAQsFAAOCAQEA dGeD/9zQVrehJYwLCj7rX69N8uaya2+Hivl2nnEigztsqTq2hJBgeeTkaTl+3SuM lVrczefald22VkJ12amOS1ww9Dfq5CE2Vk77j+ZO/3pzSyMbefMLo0N2HcaYgYEW qqDDyQ1Bmt5I6FyxytYZNaievIM9Iz4EvNf4O6mw3fFMarxVAmVaPC9krMstbB/9 Yp9CySPPe4rIB+rV8V1XKLhXiSQ7E3T0Pd1SNlfCD9MDr/dOh8iPKLa7OVykQJ1l foAflkaTC9Yp8UeecDtuFR9p0AG+t5Y9m641eYEC7d5MCcQdO1X9hM9cl7ZpA6OD hUykN58f1yoImQb5fkpgEg== -----END CERTIFICATE-----Generated at Sat Dec 6 21:32:07 2025 by rpki-client