This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/2DB78476C69411F09B705765C4F9AE02.roa File: 2DB78476C69411F09B705765C4F9AE02.roa (raw, json) Hash identifier: w34KSwkw6CEkBPQcFxY9qpFzqznOsG3ipoXTw6sgBMc= Subject key identifier: 2C:3B:F0:2F:B7:31:64:46:B2:8E:29:E3:8C:2E:49:B2:C6:E4:BF:AC Certificate issuer: /CN=A9110C2F/serialNumber=B60C470D31205872E7B6FBFD684F37074D7E9D73 Certificate serial: 3502 Authority key identifier: B6:0C:47:0D:31:20:58:72:E7:B6:FB:FD:68:4F:37:07:4D:7E:9D:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgxHDTEgWHLntvv9aE83B01-nXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/2DB78476C69411F09B705765C4F9AE02.roa Signing time: Fri 21 Nov 2025 04:40:17 +0000 ROA not before: Fri 21 Nov 2025 04:40:17 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 22 IP address blocks: 116.206.180.0/22 maxlen: 22 116.206.180.0/24 maxlen: 24 116.206.181.0/24 maxlen: 24 116.206.182.0/24 maxlen: 24 116.206.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/tgxHDTEgWHLntvv9aE83B01-nXM.crl rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/tgxHDTEgWHLntvv9aE83B01-nXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgxHDTEgWHLntvv9aE83B01-nXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13570 (0x3502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C2F, serialNumber=B60C470D31205872E7B6FBFD684F37074D7E9D73 Validity Not Before: Nov 21 04:40:17 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=691fed31-0ec1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9a:88:51:3f:92:74:e7:b1:3b:40:87:cf:31: 74:c9:c1:85:d4:91:d4:9d:08:9c:f2:cc:b0:71:67: 50:7f:f5:5f:c0:52:e3:fb:ca:d5:67:d9:ea:50:23: 4f:bf:86:3a:4c:d8:60:08:45:66:2c:68:36:0f:2b: 35:9e:6d:a4:13:e0:9a:38:96:c5:b5:b0:a8:13:18: 1f:93:47:90:e3:db:e9:44:43:7e:2a:12:fb:32:4e: 36:af:8a:77:09:ef:02:7a:15:76:e6:e3:55:1c:e0: 0e:da:4a:59:88:9f:ac:0c:4d:ba:90:06:7a:27:bf: fe:5b:9d:ee:f3:e8:57:98:59:01:2a:c4:cc:15:ea: f1:77:98:23:1f:9d:1e:75:9e:3c:29:d9:a9:87:f2: 02:50:45:97:e2:45:aa:bb:69:93:5f:83:e5:88:30: f7:12:b4:e1:d6:57:a5:27:47:7b:38:e6:50:d0:6a: 7f:58:83:f5:23:a4:83:c7:37:b4:a6:bc:a7:72:de: 42:6e:53:fb:d7:a8:ef:e6:9c:31:d5:b4:98:ca:8d: bb:27:08:c7:1c:7d:3a:c2:41:c9:77:5a:49:ae:95: d8:4b:70:cc:65:c4:70:95:79:78:61:1f:bb:1e:4c: 86:25:3b:d5:ba:81:50:0c:d6:5e:77:bf:2a:58:91: 9c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:3B:F0:2F:B7:31:64:46:B2:8E:29:E3:8C:2E:49:B2:C6:E4:BF:AC X509v3 Authority Key Identifier: keyid:B6:0C:47:0D:31:20:58:72:E7:B6:FB:FD:68:4F:37:07:4D:7E:9D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/tgxHDTEgWHLntvv9aE83B01-nXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgxHDTEgWHLntvv9aE83B01-nXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/2DB78476C69411F09B705765C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.206.180.0/22 Signature Algorithm: sha256WithRSAEncryption 76:a0:92:ca:f1:c4:a0:73:8a:2a:2a:2a:28:a2:67:4f:d3:98: 69:34:5b:cc:33:e4:fa:da:49:c0:7f:c1:bc:8f:d5:bf:49:d1: 95:3d:96:e0:34:d6:ee:75:8b:72:86:12:bc:dc:0b:0f:2a:21: e7:8c:fd:7d:63:7a:ef:6d:b2:42:32:4c:e2:35:74:44:94:79: 8d:24:a2:2f:c3:4e:23:7d:54:af:ad:2c:64:57:9d:75:a5:1a: 37:2e:19:b5:af:1e:99:9a:49:5a:85:12:02:80:08:f3:85:0f: 19:e1:cf:d7:78:41:3f:7a:1f:8e:6c:1f:96:61:6e:7f:96:7c: a7:3f:3b:57:32:2f:9d:86:25:61:67:bd:f3:5f:ca:9c:d6:49: 13:e0:43:3b:9c:9b:cb:99:27:86:84:e9:2a:3c:28:f3:a6:9a: 50:64:45:3e:8f:c8:76:32:b5:74:3f:f6:b0:1b:36:d9:77:f5: 53:03:4f:22:87:1a:56:ab:45:f1:03:f2:f1:da:f3:9d:24:fc: 2b:bd:22:8e:5b:f8:8b:6f:4b:b8:10:6e:ed:8e:2b:88:d7:f0: 64:40:45:24:f0:97:d6:2b:1c:04:d6:c4:c8:91:05:d9:1d:b9: 37:15:de:4f:76:fd:7e:33:67:47:77:b2:7d:68:08:46:23:1c: 7d:b3:c1:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDMkYxMTAvBgNVBAUTKEI2MEM0NzBEMzEyMDU4NzJFN0I2RkJGRDY4NEYzNzA3 NEQ3RTlENzMwHhcNMjUxMTIxMDQ0MDE3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFmZWQzMS0wZWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5qIUT+SdOexO0CHzzF0ycGF1JHUnQic8sywcWdQf/VfwFLj+8rVZ9nqUCNP v4Y6TNhgCEVmLGg2Dys1nm2kE+CaOJbFtbCoExgfk0eQ49vpREN+KhL7Mk42r4p3 Ce8CehV25uNVHOAO2kpZiJ+sDE26kAZ6J7/+W53u8+hXmFkBKsTMFerxd5gjH50e dZ48Kdmph/ICUEWX4kWqu2mTX4PliDD3ErTh1lelJ0d7OOZQ0Gp/WIP1I6SDxze0 prynct5CblP716jv5pwx1bSYyo27JwjHHH06wkHJd1pJrpXYS3DMZcRwlXl4YR+7 HkyGJTvVuoFQDNZed78qWJGcWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCw78C+3 MWRGso4p44wuSbLG5L+sMB8GA1UdIwQYMBaAFLYMRw0xIFhy57b7/WhPNwdNfp1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEMyRi83MDVGNTJGQzFE OTkxMUUyODVDOUVEODUwOEIwMkNEMi90Z3hIRFRFZ1dITG50dnY5YUU4M0IwMS1u WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RneEhEVEVnV0hMbnR2djlhRTgzQjAxLW5YTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBDMkYvNzA1RjUyRkMxRDk5MTFFMjg1QzlFRDg1MDhCMDJDRDIvMkRCNzg0NzZD Njk0MTFGMDlCNzA1NzY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ0zrQwDQYJKoZIhvcNAQELBQADggEBAHagksrxxKBziioq KiiiZ0/TmGk0W8wz5PraScB/wbyP1b9J0ZU9luA01u51i3KGErzcCw8qIeeM/X1j eu9tskIyTOI1dESUeY0koi/DTiN9VK+tLGRXnXWlGjcuGbWvHpmaSVqFEgKACPOF Dxnhz9d4QT96H45sH5Zhbn+WfKc/O1cyL52GJWFnvfNfypzWSRPgQzucm8uZJ4aE 6So8KPOmmlBkRT6PyHYytXQ/9rAbNtl39VMDTyKHGlarRfED8vHa850k/Cu9Io5b +ItvS7gQbu2OK4jX8GRARSTwl9YrHATWxMiRBdkduTcV3k92/X4zZ0d3sn1oCEYj HH2zwcQ= -----END CERTIFICATE-----Generated at Sun Dec 7 05:56:40 2025 by rpki-client