This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/BFB4B7B2EB5C11F0BDF448C8486F56BC.roa File: BFB4B7B2EB5C11F0BDF448C8486F56BC.roa (raw, json) Hash identifier: 1GKrFOo4PRyIC5kVawdkCoK2XveZwW1+PoQcaZjaQts= Subject key identifier: C1:6C:F8:76:EF:02:4B:E6:D2:89:6F:BF:8D:39:0C:43:E7:E9:14:67 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 36FB Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/BFB4B7B2EB5C11F0BDF448C8486F56BC.roa Signing time: Wed 07 Jan 2026 00:06:43 +0000 ROA not before: Wed 07 Jan 2026 00:06:43 +0000 ROA not after: Thu 30 Apr 2026 00:00:00 +0000 asID: 135533 IP address blocks: 61.45.248.0/24 maxlen: 24 2401:4601:248::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14075 (0x36fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Jan 7 00:06:43 2026 GMT Not After : Apr 30 00:00:00 2026 GMT Subject: CN=695da393-183d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c7:3a:4a:0c:59:99:56:92:57:44:cc:b5:58: e4:8d:31:de:00:ba:c5:31:b7:70:03:33:5b:b8:db: 58:ea:8b:41:ee:5e:a8:04:67:ab:b7:58:0a:99:18: 17:42:fb:e2:8d:9e:49:bd:14:5c:cc:39:27:ed:0b: f1:74:cd:c7:c8:f6:64:e1:6a:94:ac:46:40:66:de: 64:04:99:d1:5a:a5:55:4e:c9:99:c8:c0:1e:30:54: ed:61:02:b6:74:c9:68:16:30:00:29:34:57:bb:16: 11:c5:33:79:8f:0f:d0:24:b6:2b:b8:21:83:5d:39: ab:aa:ce:c8:6d:c2:04:c1:cf:c9:b3:63:fb:9b:f7: 3e:58:7c:96:06:3b:4c:c6:7b:ec:8b:27:0b:51:a3: 61:54:cd:27:85:2a:a0:16:e7:bc:db:f5:54:1d:33: ff:cf:5a:2a:15:89:22:f5:b7:2e:0e:0f:f9:86:06: d3:cc:c4:8f:44:4e:a0:c5:a9:34:5b:24:50:d5:d6: fe:2c:7d:4e:65:ba:cb:f2:6b:ea:6e:a6:e9:a1:17: 92:a2:45:b0:18:06:19:ef:e0:8b:74:e4:f2:cc:74: fb:6a:54:85:f3:5d:f3:94:2a:ac:e2:8f:9b:d9:f9: 40:4f:3a:00:f8:ee:39:e2:73:0f:44:ea:e5:24:1a: e3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:6C:F8:76:EF:02:4B:E6:D2:89:6F:BF:8D:39:0C:43:E7:E9:14:67 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/BFB4B7B2EB5C11F0BDF448C8486F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.248.0/24 IPv6: 2401:4601:248::/48 Signature Algorithm: sha256WithRSAEncryption 42:9e:97:49:1d:32:f6:79:11:a1:88:54:ac:ac:7c:48:f5:ad: c3:9b:b8:ec:64:8a:24:10:4d:bc:b2:38:22:b7:53:2a:50:4f: 7d:df:f9:73:ab:92:39:3b:11:f4:0a:73:e0:96:92:18:d1:bf: d7:b8:c0:ac:6e:55:15:45:cd:f7:c3:03:ee:44:97:89:52:9a: 43:5d:2c:a0:27:56:a1:48:2a:3a:0a:15:56:87:8a:72:36:85: f4:ad:33:24:68:d9:71:99:c2:97:14:29:56:e7:32:6d:ca:92: 10:37:80:30:b6:82:7c:8e:92:ff:63:a4:9b:5c:72:3f:cd:d8: ce:48:1e:ad:7a:84:3b:9c:18:e7:54:05:8d:3b:5c:63:f5:5a: c2:7c:ee:fb:14:74:13:0b:42:a8:eb:1c:3e:8d:23:42:f4:2e: c9:c4:7d:7a:a2:0e:02:5b:89:73:8e:12:46:34:63:6d:ee:f0: 93:2d:95:f2:92:8d:38:12:1c:3c:74:f1:1f:32:87:a9:a8:66: 8c:26:58:7f:4b:ac:62:6f:11:c6:8d:16:bf:c8:2f:8a:6c:6c: 5e:0d:0f:57:08:b6:f4:0a:17:3e:3a:64:f7:c0:f5:d3:95:e5: 51:47:08:e8:aa:bf:aa:11:1f:e0:80:3f:c5:a8:d0:0a:07:46: 34:9e:51:2d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjYwMTA3MDAwNjQzWhcNMjYwNDMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVkYTM5My0xODNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08c6SgxZmVaSV0TMtVjkjTHeALrFMbdwAzNbuNtY6otB7l6oBGert1gKmRgX QvvijZ5JvRRczDkn7QvxdM3HyPZk4WqUrEZAZt5kBJnRWqVVTsmZyMAeMFTtYQK2 dMloFjAAKTRXuxYRxTN5jw/QJLYruCGDXTmrqs7IbcIEwc/Js2P7m/c+WHyWBjtM xnvsiycLUaNhVM0nhSqgFue82/VUHTP/z1oqFYki9bcuDg/5hgbTzMSPRE6gxak0 WyRQ1db+LH1OZbrL8mvqbqbpoReSokWwGAYZ7+CLdOTyzHT7alSF813zlCqs4o+b 2flATzoA+O454nMPROrlJBrjRwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMFs+Hbv Akvm0olvv405DEPn6RRnMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvQkZCNEI3QjJF QjVDMTFGMEJERjQ0OEM4NDg2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9LfgwDwQCAAIwCQMHACQBRgECSDANBgkqhkiG9w0BAQsF AAOCAQEAQp6XSR0y9nkRoYhUrKx8SPWtw5u47GSKJBBNvLI4IrdTKlBPfd/5c6uS OTsR9Apz4JaSGNG/17jArG5VFUXN98MD7kSXiVKaQ10soCdWoUgqOgoVVoeKcjaF 9K0zJGjZcZnClxQpVucybcqSEDeAMLaCfI6S/2Okm1xyP83YzkgerXqEO5wY51QF jTtcY/Vawnzu+xR0EwtCqOscPo0jQvQuycR9eqIOAluJc44SRjRjbe7wky2V8pKN OBIcPHTxHzKHqahmjCZYf0usYm8Rxo0Wv8gvimxsXg0PVwi29AoXPjpk98D105Xl UUcI6Kq/qhEf4IA/xajQCgdGNJ5RLQ== -----END CERTIFICATE-----Generated at Sun Jan 25 18:05:20 2026 by rpki-client