This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116BB8/39DCF75442F011EB8A09C75AC4F9AE02/490CDADA42F211EBB34A1A60C4F9AE02.roa File: 490CDADA42F211EBB34A1A60C4F9AE02.roa (raw, json) Hash identifier: I55/P+QqF3ScWXVdtsdcPhGZLCr6f30z4GF4N/wXUM8= Subject key identifier: C4:D9:5C:35:F9:1C:77:EC:68:BE:7D:81:9C:EF:07:36:17:28:2A:C8 Certificate issuer: /CN=A9116BB8/serialNumber=8AE9CDE10BE0B77F091B0D38EBC1967C8BC0919E Certificate serial: 0782 Authority key identifier: 8A:E9:CD:E1:0B:E0:B7:7F:09:1B:0D:38:EB:C1:96:7C:8B:C0:91:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iunN4Qvgt38JGw0468GWfIvAkZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116BB8/39DCF75442F011EB8A09C75AC4F9AE02/490CDADA42F211EBB34A1A60C4F9AE02.roa Signing time: Fri 07 Nov 2025 09:03:53 +0000 ROA not before: Fri 07 Nov 2025 09:03:53 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138995 IP address blocks: 45.125.216.0/24 maxlen: 24 45.125.217.0/24 maxlen: 24 45.125.218.0/24 maxlen: 24 45.125.219.0/24 maxlen: 24 103.86.64.0/24 maxlen: 24 103.86.65.0/24 maxlen: 24 103.86.66.0/24 maxlen: 24 103.86.67.0/24 maxlen: 24 103.93.46.0/24 maxlen: 24 103.98.112.0/24 maxlen: 24 103.98.114.0/24 maxlen: 24 103.98.115.0/24 maxlen: 24 103.108.185.0/24 maxlen: 24 103.116.132.0/24 maxlen: 24 103.116.133.0/24 maxlen: 24 103.142.244.0/24 maxlen: 24 103.142.245.0/24 maxlen: 24 103.194.104.0/24 maxlen: 24 103.194.105.0/24 maxlen: 24 103.194.106.0/24 maxlen: 24 103.194.107.0/24 maxlen: 24 116.204.176.0/24 maxlen: 24 116.204.177.0/24 maxlen: 24 116.204.178.0/24 maxlen: 24 116.204.179.0/24 maxlen: 24 2001:df1:5f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116BB8/39DCF75442F011EB8A09C75AC4F9AE02/iunN4Qvgt38JGw0468GWfIvAkZ4.crl rsync://rpki.apnic.net/member_repository/A9116BB8/39DCF75442F011EB8A09C75AC4F9AE02/iunN4Qvgt38JGw0468GWfIvAkZ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iunN4Qvgt38JGw0468GWfIvAkZ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1922 (0x782) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116BB8, serialNumber=8AE9CDE10BE0B77F091B0D38EBC1967C8BC0919E Validity Not Before: Nov 7 09:03:53 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690db5f8-2350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:83:1c:75:93:2c:f4:53:6c:33:fb:d6:fa:ee: 2e:ea:dc:3f:8d:5a:25:f5:c8:73:ee:3e:5d:a2:83: 28:48:02:7f:36:0e:bb:3e:ce:ad:27:66:36:19:79: 40:94:52:98:b9:e5:ba:44:31:63:a7:da:88:f3:2d: ab:db:d5:0f:64:84:9c:61:1a:d3:35:02:2a:83:01: 2d:ca:a0:1f:75:3b:46:e3:6a:57:dc:f3:76:9c:e2: 0e:f7:00:98:89:66:86:45:b1:f2:eb:83:e4:ec:00: a9:f6:36:96:87:35:d5:91:67:2d:51:3b:48:a4:3f: 98:6a:96:23:5d:4a:8f:67:87:16:30:cd:39:9e:71: ab:80:91:fc:32:dc:34:0c:5a:a0:60:f1:6b:90:66: 66:b6:56:a5:37:a3:66:a4:97:85:9f:b7:4e:b8:dd: 76:32:9b:79:62:67:0c:07:27:af:a3:68:74:a9:a9: 4b:0f:5b:75:6b:d0:1b:88:d9:cf:ce:c3:92:8e:fe: 52:f7:ec:84:fa:b4:7e:94:09:2b:97:ff:66:51:61: 39:b3:14:9e:59:70:50:3b:42:3d:ed:cb:23:6c:fb: 35:09:5d:10:a7:5a:4e:b5:d6:95:2c:37:d5:5d:ff: c1:83:38:db:05:26:01:a2:76:7e:00:9b:1a:8b:01: 48:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:D9:5C:35:F9:1C:77:EC:68:BE:7D:81:9C:EF:07:36:17:28:2A:C8 X509v3 Authority Key Identifier: keyid:8A:E9:CD:E1:0B:E0:B7:7F:09:1B:0D:38:EB:C1:96:7C:8B:C0:91:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116BB8/39DCF75442F011EB8A09C75AC4F9AE02/iunN4Qvgt38JGw0468GWfIvAkZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iunN4Qvgt38JGw0468GWfIvAkZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116BB8/39DCF75442F011EB8A09C75AC4F9AE02/490CDADA42F211EBB34A1A60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.216.0/22 103.86.64.0/22 103.93.46.0/24 103.98.112.0/24 103.98.114.0/23 103.108.185.0/24 103.116.132.0/23 103.142.244.0/23 103.194.104.0/22 116.204.176.0/22 IPv6: 2001:df1:5f80::/48 Signature Algorithm: sha256WithRSAEncryption be:e3:1a:a2:88:7f:13:7a:0e:90:00:d1:3d:7a:df:aa:69:a6: c6:b2:03:49:18:a5:06:dc:87:b7:d7:e9:29:0a:c6:20:54:0a: 4e:b5:c5:df:63:f3:4a:a5:71:38:d5:26:0b:fa:16:33:82:ed: 5c:e6:b1:4c:0f:17:ac:c5:de:11:15:30:e6:bc:3a:9f:0e:85: 1f:4a:7f:21:8a:c5:0f:1d:ab:6e:fa:c9:e4:a8:c4:e9:79:32: 97:b3:62:88:d1:86:3b:3d:4b:88:69:f3:ab:f8:f0:ba:72:e8: cf:d3:d7:3d:ee:c4:95:0f:91:35:3b:81:09:27:c5:f5:9f:bd: e7:d8:9a:52:8e:5e:d9:af:3e:7c:f5:d7:ef:04:fe:9c:f8:46: 5f:e9:da:60:65:07:13:32:d1:36:2b:de:bd:29:b8:c3:54:a4: 61:b1:3a:fb:40:73:aa:81:75:c4:9e:fd:5c:1e:18:0e:7f:aa: da:1a:82:a3:32:84:7e:12:fe:4a:c9:56:3d:69:74:1f:96:1c: ed:3a:da:e1:80:a5:c9:83:b1:0c:82:62:34:02:d6:a7:1c:a3: a8:c2:0b:74:84:2c:83:65:72:5c:39:ce:39:19:2c:dc:ec:68: 1b:56:4e:a8:7e:24:4f:ee:8b:08:29:b8:5e:73:c6:8c:9c:0b: 21:15:4d:57 -----BEGIN CERTIFICATE----- MIIFuDCCBKCgAwIBAgICB4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZCQjgxMTAvBgNVBAUTKDhBRTlDREUxMEJFMEI3N0YwOTFCMEQzOEVCQzE5NjdD OEJDMDkxOUUwHhcNMjUxMTA3MDkwMzUzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBkYjVmOC0yMzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmoMcdZMs9FNsM/vW+u4u6tw/jVol9chz7j5dooMoSAJ/Ng67Ps6tJ2Y2GXlA lFKYueW6RDFjp9qI8y2r29UPZIScYRrTNQIqgwEtyqAfdTtG42pX3PN2nOIO9wCY iWaGRbHy64Pk7ACp9jaWhzXVkWctUTtIpD+YapYjXUqPZ4cWMM05nnGrgJH8Mtw0 DFqgYPFrkGZmtlalN6NmpJeFn7dOuN12Mpt5YmcMByevo2h0qalLD1t1a9AbiNnP zsOSjv5S9+yE+rR+lAkrl/9mUWE5sxSeWXBQO0I97csjbPs1CV0Qp1pOtdaVLDfV Xf/BgzjbBSYBonZ+AJsaiwFIIwIDAQABo4IC3DCCAtgwHQYDVR0OBBYEFMTZXDX5 HHfsaL59gZzvBzYXKCrIMB8GA1UdIwQYMBaAFIrpzeEL4Ld/CRsNOOvBlnyLwJGe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkJCOC8zOURDRjc1NDQy RjAxMUVCOEEwOUM3NUFDNEY5QUUwMi9pdW5ONFF2Z3QzOEpHdzA0NjhHV2ZJdkFr WjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l1bk40UXZndDM4Skd3MDQ2OEdXZkl2QWtaNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTZCQjgvMzlEQ0Y3NTQ0MkYwMTFFQjhBMDlDNzVBQzRGOUFFMDIvNDkwQ0RBREE0 MkYyMTFFQkIzNEExQTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZgYIKwYBBQUHAQcBAf8E VzBVMEIEAgABMDwDBAItfdgDBAJnVkADBABnXS4DBABnYnADBAFnYnIDBABnbLkD BAFndIQDBAFnjvQDBAJnwmgDBAJ0zLAwDwQCAAIwCQMHACABDfFfgDANBgkqhkiG 9w0BAQsFAAOCAQEAvuMaooh/E3oOkADRPXrfqmmmxrIDSRilBtyHt9fpKQrGIFQK TrXF32PzSqVxONUmC/oWM4LtXOaxTA8XrMXeERUw5rw6nw6FH0p/IYrFDx2rbvrJ 5KjE6Xkyl7NiiNGGOz1LiGnzq/jwunLoz9PXPe7ElQ+RNTuBCSfF9Z+959iaUo5e 2a8+fPXX7wT+nPhGX+naYGUHEzLRNivevSm4w1SkYbE6+0BzqoF1xJ79XB4YDn+q 2hqCozKEfhL+SslWPWl0H5Yc7Tra4YClyYOxDIJiNALWpxyjqMILdIQsg2VyXDnO ORks3OxoG1ZOqH4kT+6LCCm4XnPGjJwLIRVNVw== -----END CERTIFICATE-----Generated at Sat Dec 6 16:13:14 2025 by rpki-client