This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AFDE92321F5A11F0BA7E6961C4F9AE02.roa File: AFDE92321F5A11F0BA7E6961C4F9AE02.roa (raw, json) Hash identifier: KgsedG4p1TKagm7CFAiCxXIQwYugyhlaYkwSVR/E4LU= Subject key identifier: DC:64:A8:F3:25:E3:13:10:2D:C0:A6:8A:1D:F3:C5:3F:55:3F:0C:FE Certificate issuer: /CN=A91F58C9/serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Certificate serial: 042F Authority key identifier: 19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AFDE92321F5A11F0BA7E6961C4F9AE02.roa Signing time: Wed 31 Dec 2025 00:19:47 +0000 ROA not before: Wed 31 Dec 2025 00:19:47 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 34927 IP address blocks: 2400:16e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F58C9, serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Validity Not Before: Dec 31 00:19:47 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69546c23-6142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c6:22:82:6c:2b:5d:05:7d:2c:f6:dc:68:ed: 12:bf:20:8e:02:a6:b8:e1:26:ac:ac:df:38:bd:21: a2:9e:9e:6b:1f:0c:76:e3:67:9a:e0:21:57:0f:51: 74:6c:2f:96:b1:72:5b:79:bd:37:31:c4:c0:9d:73: 97:db:ef:41:68:0e:96:ab:da:31:7c:19:f2:1c:de: 08:d3:cc:85:db:c7:e9:95:6c:cc:e9:10:02:9e:7e: a5:95:f8:73:32:c9:df:3f:d0:cd:92:51:fb:b6:d5: a0:b7:e1:4a:37:25:ed:71:21:5f:d4:95:1c:f8:ea: 0b:0a:0f:ab:27:b3:35:b7:e8:9d:85:5d:d2:6a:08: 9a:fc:cd:37:1a:60:16:8d:71:08:25:2b:e9:fb:73: 4f:c0:45:e8:10:5b:4e:8c:09:c2:bb:de:65:65:49: 87:fb:e7:e5:2d:68:15:c8:52:b8:fd:06:97:d5:32: a5:23:19:d8:a5:17:e4:f9:c7:63:e9:c3:8d:fd:72: fc:80:e2:48:19:58:8a:3d:b0:b9:f2:07:10:28:e9: 02:23:af:dd:af:d6:ec:ae:37:d2:c4:b9:33:5e:d3: 71:5c:62:f6:28:f0:9f:f6:3c:56:2c:67:b3:af:68: f8:0d:3a:24:dd:96:a8:5e:bc:77:a4:49:df:41:e5: c2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:64:A8:F3:25:E3:13:10:2D:C0:A6:8A:1D:F3:C5:3F:55:3F:0C:FE X509v3 Authority Key Identifier: keyid:19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AFDE92321F5A11F0BA7E6961C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:16e0::/48 Signature Algorithm: sha256WithRSAEncryption 9f:a4:51:cc:08:48:6c:13:14:9f:dc:58:02:62:6f:53:8f:b3: f2:46:4c:4f:a8:47:aa:a5:2d:b1:64:97:e7:c4:80:af:d9:41: f8:87:bb:53:c3:1d:87:bd:fd:a6:9e:f6:a3:3e:e5:24:4a:a4: 49:39:f0:c1:32:71:7e:50:9f:ff:00:75:d2:27:97:18:2a:27: 91:ad:7f:8a:f5:8a:a6:14:e8:29:bd:0c:4d:a2:0b:42:f9:b1: 88:a4:d3:84:3d:5c:83:a1:c1:51:fb:35:13:ae:31:b4:c6:6f: 49:5f:7a:dd:d3:cf:1a:2c:7e:d5:39:ca:8c:b6:ff:cb:1d:40: f1:f7:0b:ec:48:81:26:fa:93:f1:a2:b3:30:96:d5:ad:c7:14: 4b:e0:63:dc:11:71:26:f5:ad:47:10:9b:47:26:97:7f:6c:ba: cf:c7:3b:0a:f4:dc:8c:b1:5f:38:58:23:5d:84:a7:2d:e5:eb: 82:25:bd:2d:7c:1b:1b:f6:c8:4d:77:ec:8e:fd:67:af:0d:25: 17:1c:ec:d3:53:e4:00:65:6c:b2:c0:ee:ae:fe:71:2b:51:01: aa:d8:a2:39:2d:d4:10:c3:d9:96:74:93:81:ff:53:4b:81:bd: 9c:88:7c:af:cc:90:dc:c2:f3:a4:3a:b6:d4:63:e8:4b:a7:a2: 24:f9:cf:96 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RjU4QzkxMTAvBgNVBAUTKDE5Mjk3N0REQUEwOTVCNDA3N0VFMEQ3NjIzODQ2M0Yx QjZGNDBBRUUwHhcNMjUxMjMxMDAxOTQ3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU0NmMyMy02MTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcYigmwrXQV9LPbcaO0SvyCOAqa44SasrN84vSGinp5rHwx242ea4CFXD1F0 bC+WsXJbeb03McTAnXOX2+9BaA6Wq9oxfBnyHN4I08yF28fplWzM6RACnn6llfhz MsnfP9DNklH7ttWgt+FKNyXtcSFf1JUc+OoLCg+rJ7M1t+idhV3Sagia/M03GmAW jXEIJSvp+3NPwEXoEFtOjAnCu95lZUmH++flLWgVyFK4/QaX1TKlIxnYpRfk+cdj 6cON/XL8gOJIGViKPbC58gcQKOkCI6/dr9bsrjfSxLkzXtNxXGL2KPCf9jxWLGez r2j4DTok3ZaoXrx3pEnfQeXC2QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNxkqPMl 4xMQLcCmih3zxT9VPwz+MB8GA1UdIwQYMBaAFBkpd92qCVtAd+4NdiOEY/G29Aru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNThDOS80MEUwQzBFRTkz NkMxMUVDQkRDMTFBMjBDNEY5QUUwMi9HU2wzM2FvSlcwQjM3ZzEySTRSajhiYjBD dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dTbDMzYW9KVzBCMzdnMTJJNFJqOGJiMEN1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU4QzkvNDBFMEMwRUU5MzZDMTFFQ0JEQzExQTIwQzRGOUFFMDIvQUZERTkyMzIx RjVBMTFGMEJBN0U2OTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkABbgAAAwDQYJKoZIhvcNAQELBQADggEBAJ+kUcwISGwT FJ/cWAJib1OPs/JGTE+oR6qlLbFkl+fEgK/ZQfiHu1PDHYe9/aae9qM+5SRKpEk5 8MEycX5Qn/8AddInlxgqJ5Gtf4r1iqYU6Cm9DE2iC0L5sYik04Q9XIOhwVH7NROu MbTGb0lfet3TzxosftU5yoy2/8sdQPH3C+xIgSb6k/GiszCW1a3HFEvgY9wRcSb1 rUcQm0cml39sus/HOwr03IyxXzhYI12Epy3l64IlvS18Gxv2yE137I79Z68NJRcc 7NNT5ABlbLLA7q7+cStRAarYojkt1BDD2ZZ0k4H/U0uBvZyIfK/MkNzC86Q6ttRj 6EunoiT5z5Y= -----END CERTIFICATE-----Generated at Sun Jan 25 06:09:10 2026 by rpki-client