This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/3C09B1A2640F11ECBC536111C4F9AE02.roa File: 3C09B1A2640F11ECBC536111C4F9AE02.roa (raw, json) Hash identifier: ri0TS1kyJCp5RGAizutNu/7/M8+Gqg86bvQl1YYvFEg= Subject key identifier: C4:5A:70:49:0A:B6:B4:1D:42:4E:A1:44:2C:5A:90:49:92:82:18:F7 Certificate issuer: /CN=A9112AD5/serialNumber=F385F379177020F088BF74DA2C0346D879C22A1D Certificate serial: 0488 Authority key identifier: F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/3C09B1A2640F11ECBC536111C4F9AE02.roa Signing time: Wed 26 Nov 2025 22:46:55 +0000 ROA not before: Wed 26 Nov 2025 22:46:55 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 149005 IP address blocks: 103.176.14.0/24 maxlen: 24 2001:df0:8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1160 (0x488) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112AD5, serialNumber=F385F379177020F088BF74DA2C0346D879C22A1D Validity Not Before: Nov 26 22:46:55 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6927835e-0c38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ee:63:4d:35:b2:04:58:e8:74:11:02:83:3c: 46:d8:8b:bb:2a:4c:ca:7d:62:bc:b4:6c:fa:10:04: 3c:60:a6:47:fc:a4:a9:95:e1:a1:78:d1:ff:f2:66: 3b:ee:8f:8e:4c:5e:fb:d5:e1:b7:45:af:f6:a6:c4: 82:13:65:1b:91:0b:72:7c:0e:73:00:2d:df:a3:ce: 01:e9:3f:fd:40:2a:73:33:d9:c7:a6:9c:60:03:54: 58:92:d6:39:ab:d1:38:f6:8e:ca:19:2b:3d:48:50: 04:83:05:78:bf:be:e6:4a:6d:fb:81:91:7f:27:77: d1:95:c7:df:f2:93:d2:4b:e4:50:90:29:11:d4:ae: e2:92:1e:d6:79:fe:3c:c1:65:b3:4c:b2:91:2a:6d: fc:6b:64:5c:31:80:ec:46:e9:16:cd:a8:25:e3:05: a6:ce:37:10:1f:76:c3:69:89:fb:1c:20:f5:ea:7a: 21:9b:48:4f:96:ac:8a:2d:e1:f7:24:80:61:02:8c: 39:d2:82:a8:bf:02:37:e4:64:e1:b4:54:19:68:c5: 2f:bc:c5:75:47:37:16:f5:0c:a2:21:26:d7:76:7c: d1:c4:84:0e:d0:7d:48:9d:2b:66:fb:36:94:6e:f7: b9:7b:8d:11:f7:31:e1:8e:2f:e8:62:8c:13:83:50: a6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:5A:70:49:0A:B6:B4:1D:42:4E:A1:44:2C:5A:90:49:92:82:18:F7 X509v3 Authority Key Identifier: keyid:F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/3C09B1A2640F11ECBC536111C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.14.0/24 IPv6: 2001:df0:8c0::/48 Signature Algorithm: sha256WithRSAEncryption 29:09:48:d5:73:bc:b3:de:51:62:c3:5b:91:92:ab:db:7f:b0: d8:40:4e:5d:57:c4:5a:d8:9b:c5:d9:da:83:83:92:7c:50:98: 52:91:2a:f7:70:64:67:78:0e:7f:53:48:a4:e4:c3:c5:d3:81: ed:69:3d:1f:ab:f7:fe:ef:19:68:68:b3:b0:80:ec:7a:bb:61: a8:6b:bb:f7:d1:01:51:5e:91:01:40:da:38:92:8e:dc:8c:04: 94:ea:de:fc:2b:67:da:60:ce:06:43:e1:04:ec:67:85:ec:ea: 45:9a:b7:8b:dc:a1:46:35:b8:bc:85:fb:78:67:9d:93:f4:a9: 6f:13:a5:af:53:5b:20:f5:aa:a7:ea:37:89:8b:a8:0b:1c:a4: db:7b:47:0a:a7:7d:8b:ec:dd:10:46:7b:9c:13:29:f4:41:23: 4d:9f:c4:c2:2e:af:6c:d9:63:45:55:f7:59:63:e8:9d:94:ef: 31:79:9e:d6:e0:53:6f:3a:44:9b:d6:3f:aa:de:50:06:42:f7: 56:e1:c6:b6:66:68:d6:39:e0:d5:51:fd:dc:e7:9f:0c:6a:02: 86:25:36:65:b7:2b:aa:a4:64:c0:c5:73:8f:03:3f:67:e8:f1: 4f:c1:9a:38:09:13:1b:df:40:be:2e:40:99:a2:2e:71:f5:9e: b3:1e:5c:07 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBRDUxMTAvBgNVBAUTKEYzODVGMzc5MTc3MDIwRjA4OEJGNzREQTJDMDM0NkQ4 NzlDMjJBMUQwHhcNMjUxMTI2MjI0NjU1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI3ODM1ZS0wYzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+5jTTWyBFjodBECgzxG2Iu7KkzKfWK8tGz6EAQ8YKZH/KSpleGheNH/8mY7 7o+OTF771eG3Ra/2psSCE2UbkQtyfA5zAC3fo84B6T/9QCpzM9nHppxgA1RYktY5 q9E49o7KGSs9SFAEgwV4v77mSm37gZF/J3fRlcff8pPSS+RQkCkR1K7ikh7Wef48 wWWzTLKRKm38a2RcMYDsRukWzagl4wWmzjcQH3bDaYn7HCD16nohm0hPlqyKLeH3 JIBhAow50oKovwI35GThtFQZaMUvvMV1RzcW9QyiISbXdnzRxIQO0H1InStm+zaU bve5e40R9zHhji/oYowTg1CmGQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMRacEkK trQdQk6hRCxakEmSghj3MB8GA1UdIwQYMBaAFPOF83kXcCDwiL902iwDRth5wiod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkFENS9GNDc5NTgwRTY0 MEIxMUVDQUEyMjEwMEJDNEY5QUUwMi84NFh6ZVJkd0lQQ0l2M1RhTEFORzJIbkNL aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0WHplUmR3SVBDSXYzVGFMQU5HMkhuQ0toMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTJBRDUvRjQ3OTU4MEU2NDBCMTFFQ0FBMjIxMDBCQzRGOUFFMDIvM0MwOUIxQTI2 NDBGMTFFQ0JDNTM2MTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnsA4wDwQCAAIwCQMHACABDfAIwDANBgkqhkiG9w0BAQsF AAOCAQEAKQlI1XO8s95RYsNbkZKr23+w2EBOXVfEWtibxdnag4OSfFCYUpEq93Bk Z3gOf1NIpOTDxdOB7Wk9H6v3/u8ZaGizsIDserthqGu799EBUV6RAUDaOJKO3IwE lOre/Ctn2mDOBkPhBOxnhezqRZq3i9yhRjW4vIX7eGedk/SpbxOlr1NbIPWqp+o3 iYuoCxyk23tHCqd9i+zdEEZ7nBMp9EEjTZ/Ewi6vbNljRVX3WWPonZTvMXme1uBT bzpEm9Y/qt5QBkL3VuHGtmZo1jng1VH93OefDGoChiU2ZbcrqqRkwMVzjwM/Z+jx T8GaOAkTG99Avi5AmaIucfWesx5cBw== -----END CERTIFICATE-----Generated at Sat Dec 6 19:16:50 2025 by rpki-client