This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa File: 197CE9C2C0C111EE84A55128C4F9AE02.roa (raw, json) Hash identifier: yeooqHJnDt6tmtO4WveVbPPLltlUGiqPv+ArId7+Nvw= Subject key identifier: DD:43:3B:1F:E0:E5:83:2D:49:92:4F:9E:85:48:78:BB:05:68:C3:16 Certificate issuer: /CN=A911D971/serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5 Certificate serial: 026E Authority key identifier: 76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa Signing time: Sun 23 Nov 2025 00:17:58 +0000 ROA not before: Sun 23 Nov 2025 00:17:58 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 140077 IP address blocks: 103.24.16.0/23 maxlen: 23 103.24.16.0/24 maxlen: 24 103.24.17.0/24 maxlen: 24 2001:df1:6e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.crl rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:08:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 622 (0x26e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D971, serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5 Validity Not Before: Nov 23 00:17:58 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=692252b6-acc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:57:28:cf:b8:7e:ed:ae:0b:91:27:7a:9d:2b: f0:a9:23:e9:14:2e:89:e0:19:ab:2c:ea:c1:17:40: 79:64:14:e8:7b:5d:9b:c4:51:3a:db:ae:89:8f:eb: 8b:07:29:35:15:9c:8a:97:33:39:26:25:96:00:b3: 78:c4:f9:c9:32:2a:74:a6:98:cc:b7:f2:8e:9e:ca: 19:8d:2a:df:46:b7:a0:c8:30:f1:f9:3f:ba:23:18: 85:dc:e0:77:66:c1:6c:00:45:63:b5:37:ff:7c:a7: f7:79:4d:da:9d:f7:b2:6d:3e:21:35:f2:f9:82:0f: 02:72:33:86:f6:56:9e:cb:9b:23:55:6f:78:4c:49: d9:f8:e4:39:b6:2c:52:a7:89:53:7f:ec:85:47:b1: c4:f7:4a:9d:6b:42:ca:11:89:eb:c9:45:5b:5b:d0: b7:2f:b7:94:df:c6:5c:df:f4:53:c1:a4:3c:e2:0b: 8e:51:cf:03:3d:bf:f7:78:0a:bc:da:6b:46:f8:4f: 8c:84:e3:1f:39:a1:d9:9a:71:a7:69:9c:d6:3d:9a: 87:fc:52:82:67:6d:b3:d8:5d:c6:e1:73:16:4e:01: 10:fb:5c:a4:18:b2:ac:a9:38:fc:57:44:12:4b:ca: 1b:6b:8e:13:c2:de:bf:24:92:e8:e8:d3:79:3d:9d: 07:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:43:3B:1F:E0:E5:83:2D:49:92:4F:9E:85:48:78:BB:05:68:C3:16 X509v3 Authority Key Identifier: keyid:76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.16.0/23 IPv6: 2001:df1:6e40::/48 Signature Algorithm: sha256WithRSAEncryption 51:c8:b4:5c:a2:31:da:39:54:76:27:82:50:83:1d:10:ea:7f: 1a:b4:68:de:17:3e:c0:2c:7d:55:a0:5d:1d:56:e6:06:ea:06: 95:ef:27:26:01:0e:17:51:e5:f1:cf:78:40:e1:8a:6e:10:e4: 9e:96:f2:fc:22:a3:37:6e:fd:3b:4b:f1:fe:59:8d:cd:3f:7a: f6:37:ea:75:80:fc:b0:2a:6a:1a:f3:79:25:81:e3:89:01:a6: 4f:d4:46:ed:bb:ae:fc:49:1e:46:ea:c1:73:3d:f3:0c:e7:48: d4:18:b1:68:88:93:2a:50:ae:f5:a2:a5:98:21:67:ef:1b:58: df:bf:0e:99:fb:b7:f6:e0:b7:79:a4:5a:25:1a:ca:87:1d:b2: b0:fc:50:1d:d1:8b:b7:32:f4:c2:8f:e9:01:2f:26:c9:6f:78: 3c:d0:70:7f:bd:18:6a:ba:96:be:c6:5f:a6:56:2f:a5:d1:84: c8:60:97:a9:9c:df:ac:7f:6e:3c:f6:94:3e:ba:42:1a:11:6b: 70:d8:fa:17:69:7e:7d:7b:c4:44:8a:ad:72:4c:6a:9a:9c:f6: ca:ce:db:d5:11:1c:ec:9d:0b:08:c3:fe:d9:86:4c:8d:10:11: 57:b6:06:f6:1e:e2:be:22:e4:f9:ad:dc:e4:f5:d8:b7:a3:4b: 40:1a:28:d3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5NzExMTAvBgNVBAUTKDc2NEQxQ0U2NzI3RDMxQkQ4RjM5NjYyRTIwMDRDNDY4 OURBNkI3RTUwHhcNMjUxMTIzMDAxNzU4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTIyNTJiNi1hY2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Vcoz7h+7a4LkSd6nSvwqSPpFC6J4BmrLOrBF0B5ZBToe12bxFE6266Jj+uL Byk1FZyKlzM5JiWWALN4xPnJMip0ppjMt/KOnsoZjSrfRregyDDx+T+6IxiF3OB3 ZsFsAEVjtTf/fKf3eU3anfeybT4hNfL5gg8CcjOG9laey5sjVW94TEnZ+OQ5tixS p4lTf+yFR7HE90qda0LKEYnryUVbW9C3L7eU38Zc3/RTwaQ84guOUc8DPb/3eAq8 2mtG+E+MhOMfOaHZmnGnaZzWPZqH/FKCZ22z2F3G4XMWTgEQ+1ykGLKsqTj8V0QS S8oba44Twt6/JJLo6NN5PZ0H3QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFN1DOx/g 5YMtSZJPnoVIeLsFaMMWMB8GA1UdIwQYMBaAFHZNHOZyfTG9jzlmLiAExGidprfl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDk3MS9ERTI1Qjg2ODU2 QTQxMUVEQThDMDBDM0VDNEY5QUUwMi9kazBjNW5KOU1iMlBPV1l1SUFURWFKMm10 LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrMGM1bko5TWIyUE9XWXVJQVRFYUoybXQtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ5NzEvREUyNUI4Njg1NkE0MTFFREE4QzAwQzNFQzRGOUFFMDIvMTk3Q0U5QzJD MEMxMTFFRTg0QTU1MTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnGBAwDwQCAAIwCQMHACABDfFuQDANBgkqhkiG9w0BAQsF AAOCAQEAUci0XKIx2jlUdieCUIMdEOp/GrRo3hc+wCx9VaBdHVbmBuoGle8nJgEO F1Hl8c94QOGKbhDknpby/CKjN279O0vx/lmNzT969jfqdYD8sCpqGvN5JYHjiQGm T9RG7buu/EkeRurBcz3zDOdI1BixaIiTKlCu9aKlmCFn7xtY378Omfu39uC3eaRa JRrKhx2ysPxQHdGLtzL0wo/pAS8myW94PNBwf70YarqWvsZfplYvpdGEyGCXqZzf rH9uPPaUPrpCGhFrcNj6F2l+fXvERIqtckxqmpz2ys7b1REc7J0LCMP+2YZMjRAR V7YG9h7iviLk+a3c5PXYt6NLQBoo0w== -----END CERTIFICATE-----Generated at Sat Dec 6 21:17:25 2025 by rpki-client