This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/BFB35A9831E011EA91E99C3CC4F9AE02.roa File: BFB35A9831E011EA91E99C3CC4F9AE02.roa (raw, json) Hash identifier: BaHDfNkjZ1fMZBSLRiFXON3hK0vL1pU4sF4hs/DbBBw= Subject key identifier: AE:3F:1F:5F:77:FA:09:F7:32:67:C2:22:40:82:E9:F4:62:69:47:88 Certificate issuer: /CN=A911FCC1/serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Certificate serial: 0BBB Authority key identifier: 82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/BFB35A9831E011EA91E99C3CC4F9AE02.roa Signing time: Thu 20 Nov 2025 18:39:12 +0000 ROA not before: Thu 20 Nov 2025 18:39:12 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 138566 IP address blocks: 103.133.32.0/22 maxlen: 24 2404:46c0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3003 (0xbbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FCC1, serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Validity Not Before: Nov 20 18:39:12 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=691f6050-f4b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:35:cd:b6:c1:d5:32:b6:ed:2a:7b:d2:2e:c0: 39:18:e6:0b:e0:07:c4:f1:c3:63:1e:57:82:fe:a2: 57:f4:b1:23:8a:39:bf:ea:6c:67:5f:a4:36:f9:d9: 8b:49:b0:53:43:8b:c9:92:21:d6:db:47:d6:b4:2c: ba:bc:04:4b:e0:94:48:26:09:aa:ed:56:99:fc:c6: 96:63:ca:dc:37:40:b5:3e:ef:e1:6a:d8:84:af:4a: cd:5b:ce:1f:17:01:27:3e:8f:80:cb:a9:7e:62:17: b5:19:96:9e:72:49:b3:c4:54:2a:ca:e4:9e:17:2a: bf:b0:75:46:e3:91:25:29:cd:05:a1:ab:51:89:fd: 66:72:61:3d:ad:5b:7b:fd:06:c4:fb:e9:21:dc:0d: 7a:fa:74:6a:4f:aa:cd:61:af:12:5f:86:f1:ad:15: e3:aa:ef:43:68:1a:b6:02:f2:29:3d:86:80:f5:44: d1:d6:76:bf:6f:22:97:a7:78:68:76:f8:b5:25:b0: 85:9f:b8:7f:54:8c:ae:6f:ff:6a:24:48:a8:1f:5e: a0:0c:89:cb:51:a5:e9:13:ab:e2:a6:02:d0:58:94: 42:10:bc:bc:e5:4e:d7:f2:d2:17:8f:93:0e:ad:90: 91:a5:07:d8:22:7f:2a:e3:03:e2:78:0e:fc:55:5a: 90:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:3F:1F:5F:77:FA:09:F7:32:67:C2:22:40:82:E9:F4:62:69:47:88 X509v3 Authority Key Identifier: keyid:82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/BFB35A9831E011EA91E99C3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.32.0/22 IPv6: 2404:46c0::/32 Signature Algorithm: sha256WithRSAEncryption 37:db:74:d6:ef:71:74:bf:eb:f3:8c:6a:fb:fa:a3:63:e2:ad: f4:a2:62:8b:b2:48:c7:ee:a5:12:74:05:5d:1c:29:a4:17:91: 55:8b:fe:22:b7:51:4b:98:5d:09:1f:24:64:82:3a:9f:d4:fa: 9e:93:cb:4a:70:81:53:91:c4:85:c4:92:90:f2:ce:12:1d:40: 24:79:e9:1f:fd:af:e7:93:3b:7c:05:fb:1c:0a:a8:8d:2e:a2: c1:ed:6d:fd:0b:14:43:ad:10:71:78:5b:2b:5d:a4:61:0c:e1: 59:df:57:be:d1:d7:42:17:52:7c:cd:f2:f7:18:7c:83:c0:51: 31:a3:6a:13:37:1f:cf:9b:9d:ee:22:28:96:9c:d4:45:99:73: 82:a5:c8:22:4a:4c:79:f7:a6:16:bd:6a:88:91:cd:e8:3c:e1: dc:65:d2:df:65:78:e3:b1:d7:dd:3a:4a:83:b8:c5:8f:60:63: b2:09:4b:6e:dd:c9:03:53:13:41:95:8f:91:1a:2b:a9:38:41: af:48:05:e6:b9:4b:df:84:82:71:f4:9a:71:b7:a5:eb:35:00: 9f:f9:27:32:c5:1b:44:33:40:e0:11:69:00:d7:2b:b8:f9:e2: d6:4b:ce:56:bb:ff:a4:0a:d7:6f:34:2d:5b:52:c5:33:53:c6: b0:61:38:d3 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZDQzExMTAvBgNVBAUTKDgyMkFCQ0UwNDQxN0JFMTU3QjI4MzNCQTNCMDIzMERF MjM4NEMyNDAwHhcNMjUxMTIwMTgzOTEyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFmNjA1MC1mNGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8DXNtsHVMrbtKnvSLsA5GOYL4AfE8cNjHleC/qJX9LEjijm/6mxnX6Q2+dmL SbBTQ4vJkiHW20fWtCy6vARL4JRIJgmq7VaZ/MaWY8rcN0C1Pu/hatiEr0rNW84f FwEnPo+Ay6l+Yhe1GZaeckmzxFQqyuSeFyq/sHVG45ElKc0FoatRif1mcmE9rVt7 /QbE++kh3A16+nRqT6rNYa8SX4bxrRXjqu9DaBq2AvIpPYaA9UTR1na/byKXp3ho dvi1JbCFn7h/VIyub/9qJEioH16gDInLUaXpE6vipgLQWJRCELy85U7X8tIXj5MO rZCRpQfYIn8q4wPieA78VVqQZwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFK4/H193 +gn3MmfCIkCC6fRiaUeIMB8GA1UdIwQYMBaAFIIqvOBEF74VeygzujsCMN4jhMJA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkNDMS8xNDk4RkM5RTMx RTAxMUVBODM3QkRFM0JDNEY5QUUwMi9naXE4NEVRWHZoVjdLRE82T3dJdzNpT0V3 a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dpcTg0RVFYdmhWN0tETzZPd0l3M2lPRXdrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUZDQzEvMTQ5OEZDOUUzMUUwMTFFQTgzN0JERTNCQzRGOUFFMDIvQkZCMzVBOTgz MUUwMTFFQTkxRTk5QzNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhSAwDQQCAAIwBwMFACQERsAwDQYJKoZIhvcNAQELBQAD ggEBADfbdNbvcXS/6/OMavv6o2PirfSiYouySMfupRJ0BV0cKaQXkVWL/iK3UUuY XQkfJGSCOp/U+p6Ty0pwgVORxIXEkpDyzhIdQCR56R/9r+eTO3wF+xwKqI0uosHt bf0LFEOtEHF4WytdpGEM4VnfV77R10IXUnzN8vcYfIPAUTGjahM3H8+bne4iKJac 1EWZc4KlyCJKTHn3pha9aoiRzeg84dxl0t9leOOx1906SoO4xY9gY7IJS27dyQNT E0GVj5EaK6k4Qa9IBea5S9+EgnH0mnG3pes1AJ/5JzLFG0QzQOARaQDXK7j54tZL zla7/6QK1280LVtSxTNTxrBhONM= -----END CERTIFICATE-----Generated at Sun Dec 7 04:54:21 2025 by rpki-client