This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/215F871ECF5E11F0872AA04EC4F9AE02.roa File: 215F871ECF5E11F0872AA04EC4F9AE02.roa (raw, json) Hash identifier: wXQTHLnxlobISfO/uP19l950cYfOxZoHNCPztVyG7Ow= Subject key identifier: 23:8A:A6:5C:23:E4:1E:B3:2D:74:39:CE:45:C3:92:91:F3:E4:8E:70 Certificate issuer: /CN=A91EFBA1/serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Certificate serial: 1945 Authority key identifier: 41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/215F871ECF5E11F0872AA04EC4F9AE02.roa Signing time: Tue 02 Dec 2025 09:06:05 +0000 ROA not before: Tue 02 Dec 2025 09:06:05 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 139793 IP address blocks: 2400:dac0:8::/48 maxlen: 48 2400:dac0:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6469 (0x1945) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFBA1, serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Validity Not Before: Dec 2 09:06:05 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=692eabfc-4534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:11:f7:f9:4e:ba:13:e2:0a:0a:05:f0:36:b7: 4a:ce:f2:8a:2e:03:d4:f5:a1:c7:e9:e5:d5:18:0b: 7f:7d:2e:b9:38:8c:38:93:a1:80:22:ca:0b:df:43: 6a:2c:6a:9c:92:3b:2d:9a:f1:93:44:5f:01:d9:b0: e8:25:29:1f:f6:05:a8:68:f0:86:6d:34:45:e7:4b: dc:cf:67:40:94:22:75:c5:3c:de:cb:78:2b:a1:3c: 33:d2:6e:bb:50:09:ee:41:13:d0:1d:76:68:06:72: 62:45:7b:f9:4c:93:95:28:20:39:f8:90:5d:85:be: e4:1b:6f:ad:77:3d:6f:3c:e5:19:c9:28:0c:02:9c: 6f:aa:01:62:fd:8f:d7:56:9e:82:42:47:66:10:2a: 42:74:92:e8:5d:59:16:23:15:9e:30:b3:ea:c5:33: 28:d7:cd:f5:7f:cc:92:60:2b:23:92:f9:85:be:ff: 1c:da:3a:a4:99:5b:11:92:32:bb:11:da:62:24:8e: 85:7b:98:40:de:8a:3b:f2:92:92:99:3f:84:93:77: 4c:14:63:6c:b5:4f:27:11:46:0e:74:99:a0:98:8c: 60:70:42:71:3b:43:0f:66:fc:74:a9:09:a6:fc:02: 2d:b8:0b:71:ad:58:26:d2:ff:bc:c4:4f:cf:ba:d2: 1b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:8A:A6:5C:23:E4:1E:B3:2D:74:39:CE:45:C3:92:91:F3:E4:8E:70 X509v3 Authority Key Identifier: keyid:41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/215F871ECF5E11F0872AA04EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:dac0:8::/47 Signature Algorithm: sha256WithRSAEncryption 12:70:96:cd:4d:0a:ff:1d:ac:d8:94:a3:c6:77:b5:51:c7:fd: 3b:38:3b:a7:d3:49:0e:d1:af:ed:0c:2d:5a:66:53:53:83:23: 9b:bc:18:ee:5a:91:ab:c0:67:26:b1:fb:f3:9d:47:58:18:e6: 8d:ee:51:67:24:1f:70:29:0e:1c:73:6c:c2:7d:50:82:5f:e1: e5:5d:3f:de:a5:e5:ec:12:24:a2:0d:02:ce:85:a0:cb:48:62: d5:4a:28:2c:e4:40:2b:e2:9f:5a:32:b1:37:14:3f:b9:ea:58: d5:fa:97:d7:7b:fd:02:5f:af:90:bf:5f:52:3c:9f:23:b8:36: 6e:cd:fb:45:5c:80:9e:90:a3:c2:f6:2f:c5:71:8a:08:06:58: 3f:e2:75:7a:48:8a:5c:6e:f1:26:bd:5c:64:80:bf:f6:15:4d: 0b:f0:b7:63:f9:1f:bf:2a:e6:d3:d8:d7:be:2a:24:0a:d2:25: 1e:ca:f4:7a:4a:8f:fd:6c:cb:cf:05:d1:34:24:a1:f5:b7:ba: c1:e2:21:3c:92:98:6a:f5:42:4f:08:78:ef:8c:77:a1:18:2c: 8f:de:d9:44:a9:3e:0e:d1:c6:35:7c:02:b5:22:fa:41:de:d0: 51:1f:46:cb:e3:71:6e:7d:df:e7:e9:47:f7:cb:47:bc:10:34: 21:49:7c:36 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICGUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZCQTExMTAvBgNVBAUTKDQxNTQwNkVEODBCNEQ5MjdBNDc5QThCQTA0MjExNkFF MkQxMUExQTYwHhcNMjUxMjAyMDkwNjA1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OTJlYWJmYy00NTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBH3+U66E+IKCgXwNrdKzvKKLgPU9aHH6eXVGAt/fS65OIw4k6GAIsoL30Nq LGqckjstmvGTRF8B2bDoJSkf9gWoaPCGbTRF50vcz2dAlCJ1xTzey3groTwz0m67 UAnuQRPQHXZoBnJiRXv5TJOVKCA5+JBdhb7kG2+tdz1vPOUZySgMApxvqgFi/Y/X Vp6CQkdmECpCdJLoXVkWIxWeMLPqxTMo1831f8ySYCsjkvmFvv8c2jqkmVsRkjK7 EdpiJI6Fe5hA3oo78pKSmT+Ek3dMFGNstU8nEUYOdJmgmIxgcEJxO0MPZvx0qQmm /AItuAtxrVgm0v+8xE/PutIb6wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCOKplwj 5B6zLXQ5zkXDkpHz5I5wMB8GA1UdIwQYMBaAFEFUBu2AtNknpHmougQhFq4tEaGm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkJBMS8yQUQ1MUY0Qzk5 MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJTZWtlYWk2QkNFV3JpMFJv YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWUUc3WUMwMlNla2VhaTZCQ0VXcmkwUm9hWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUZCQTEvMkFENTFGNEM5OTAzMTFFN0E1RTk1QzZGQzRGOUFFMDIvMjE1Rjg3MUVD RjVFMTFGMDg3MkFBMDRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkANrAAAgwDQYJKoZIhvcNAQELBQADggEBABJwls1NCv8d rNiUo8Z3tVHH/Ts4O6fTSQ7Rr+0MLVpmU1ODI5u8GO5akavAZyax+/OdR1gY5o3u UWckH3ApDhxzbMJ9UIJf4eVdP96l5ewSJKINAs6FoMtIYtVKKCzkQCvin1oysTcU P7nqWNX6l9d7/QJfr5C/X1I8nyO4Nm7N+0VcgJ6Qo8L2L8VxiggGWD/idXpIilxu 8Sa9XGSAv/YVTQvwt2P5H78q5tPY174qJArSJR7K9HpKj/1sy88F0TQkofW3usHi ITySmGr1Qk8IeO+Md6EYLI/e2USpPg7RxjV8ArUi+kHe0FEfRsvjcW593+fpR/fL R7wQNCFJfDY= -----END CERTIFICATE-----Generated at Sun Dec 7 03:37:14 2025 by rpki-client