This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/3B4551B4CAA811F09DDC8D69C4F9AE02.roa File: 3B4551B4CAA811F09DDC8D69C4F9AE02.roa (raw, json) Hash identifier: q8+3jxkLjtGgAWTpN6kPoNOdBfmaZjeJ2k/PYDuVa+o= Subject key identifier: 57:F7:6D:27:9B:13:35:53:45:5C:4B:2E:5D:DF:50:D5:DB:0E:B5:AF Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 03DF Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/3B4551B4CAA811F09DDC8D69C4F9AE02.roa Signing time: Tue 02 Dec 2025 23:59:13 +0000 ROA not before: Tue 02 Dec 2025 23:59:13 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 38794 IP address blocks: 43.240.112.0/22 maxlen: 24 43.249.56.0/22 maxlen: 24 43.249.60.0/22 maxlen: 24 43.249.64.0/22 maxlen: 24 43.249.68.0/22 maxlen: 24 43.249.104.0/22 maxlen: 24 43.249.108.0/22 maxlen: 24 43.249.112.0/22 maxlen: 24 43.251.204.0/22 maxlen: 24 43.252.180.0/22 maxlen: 24 45.64.88.0/22 maxlen: 24 45.117.208.0/22 maxlen: 24 45.122.48.0/22 maxlen: 24 45.127.60.0/22 maxlen: 24 103.4.228.0/22 maxlen: 24 103.28.240.0/23 maxlen: 24 103.40.132.0/22 maxlen: 24 103.40.136.0/22 maxlen: 24 103.40.140.0/22 maxlen: 24 103.40.144.0/22 maxlen: 24 103.40.148.0/22 maxlen: 24 103.40.180.0/22 maxlen: 24 103.40.184.0/22 maxlen: 24 103.40.188.0/22 maxlen: 24 103.225.24.0/22 maxlen: 24 103.240.60.0/22 maxlen: 24 103.245.112.0/22 maxlen: 24 115.31.128.0/18 maxlen: 24 116.193.144.0/22 maxlen: 24 116.193.148.0/22 maxlen: 24 117.121.208.0/20 maxlen: 24 119.13.24.0/21 maxlen: 24 119.63.64.0/19 maxlen: 24 124.197.48.0/21 maxlen: 24 125.254.52.0/22 maxlen: 24 150.107.220.0/22 maxlen: 24 202.27.110.0/24 maxlen: 24 202.94.240.0/20 maxlen: 24 202.148.176.0/20 maxlen: 24 203.114.68.0/22 maxlen: 24 203.188.224.0/21 maxlen: 24 223.27.192.0/18 maxlen: 24 2001:df0:1e::/48 maxlen: 48 2400:cd00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:26:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 991 (0x3df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A, serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Validity Not Before: Dec 2 23:59:13 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692f7d51-41a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0c:31:f2:b9:61:47:a4:57:f3:10:b6:89:12: f6:39:e7:77:79:a5:c8:94:cb:38:62:1c:9f:f4:a3: 08:b9:cd:90:1a:38:8c:c2:d7:dc:65:a2:dc:f1:ce: 8b:1a:e6:79:93:99:d3:d2:b7:35:bf:17:20:05:2d: 60:92:ae:bd:ec:70:f5:47:e1:8b:29:8a:ba:39:f5: 81:8b:04:a4:de:54:78:b9:03:b0:d2:06:f6:78:e0: 8e:30:59:c0:d9:be:ec:29:c5:df:1b:12:a0:e9:f4: 28:9d:a9:5a:7a:6f:5f:84:f8:36:22:d0:b2:99:e6: df:f7:54:d0:4c:b9:ef:4b:9d:fd:39:f9:1b:20:07: 65:a2:ae:cf:0b:0e:50:12:3f:ca:13:22:28:68:60: a0:84:50:85:97:fc:d7:3a:b7:0d:9a:ee:29:6c:eb: 66:68:af:75:19:36:59:24:e4:5f:df:8b:6e:42:82: 39:25:af:ad:73:5a:fc:b0:71:5f:92:02:82:f2:80: ea:5d:20:74:cb:5e:3f:2b:a7:8d:e3:a3:0c:30:be: cc:4a:be:c2:fa:7c:91:e5:8a:a2:0e:09:3f:52:0a: 13:2b:2f:65:d3:37:9c:fc:6f:78:6c:c9:98:5d:6a: e3:f4:67:c9:7e:21:97:3f:d7:a4:05:d1:33:83:42: be:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:F7:6D:27:9B:13:35:53:45:5C:4B:2E:5D:DF:50:D5:DB:0E:B5:AF X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/3B4551B4CAA811F09DDC8D69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.240.112.0/22 43.249.56.0-43.249.71.255 43.249.104.0-43.249.115.255 43.251.204.0/22 43.252.180.0/22 45.64.88.0/22 45.117.208.0/22 45.122.48.0/22 45.127.60.0/22 103.4.228.0/22 103.28.240.0/23 103.40.132.0-103.40.151.255 103.40.180.0-103.40.191.255 103.225.24.0/22 103.240.60.0/22 103.245.112.0/22 115.31.128.0/18 116.193.144.0/21 117.121.208.0/20 119.13.24.0/21 119.63.64.0/19 124.197.48.0/21 125.254.52.0/22 150.107.220.0/22 202.27.110.0/24 202.94.240.0/20 202.148.176.0/20 203.114.68.0/22 203.188.224.0/21 223.27.192.0/18 IPv6: 2001:df0:1e::/48 2400:cd00::/32 Signature Algorithm: sha256WithRSAEncryption 54:9e:3c:26:21:e2:c8:f6:46:1f:cb:8d:e4:68:38:85:94:05: 5c:4b:72:52:61:b6:5e:a8:20:73:78:3e:7d:19:dc:54:8e:dc: 04:fa:53:4c:83:95:f1:3b:82:59:34:13:19:1d:6d:44:d7:0e: a1:0d:58:a0:b0:91:a3:e1:73:01:99:3b:91:59:87:72:70:a8: b5:1a:53:b8:b2:0c:ba:c9:57:80:d5:55:c2:58:8f:ad:bc:37: f3:c6:a5:da:9c:1d:41:52:86:76:4f:b9:35:06:18:8b:10:88: 15:90:9e:fa:b8:b9:f0:00:05:c0:b3:f7:95:21:8c:84:fa:dc: 1a:8c:80:15:17:2f:9e:41:dd:57:ee:a5:22:53:0b:0b:9a:78: cb:69:c9:2c:62:72:df:e1:f1:5f:5b:7f:3a:66:63:cd:49:c3: ec:6a:85:50:65:a7:94:80:5e:2f:17:75:18:78:99:c4:29:73: 50:cb:83:eb:bf:2f:63:a5:15:79:6c:23:d4:d6:63:86:94:3e: 1f:8b:d4:a6:f4:7a:92:6d:19:6e:dd:f5:5f:36:10:4b:41:78: 4c:4d:42:7b:9b:1f:d8:fa:1b:0f:85:5d:eb:fc:92:5a:8f:96: 34:a3:42:c9:55:9f:e1:f7:2a:20:17:19:cb:6d:57:13:be:b8: 9f:10:1d:e1 -----BEGIN CERTIFICATE----- MIIGXTCCBUWgAwIBAgICA98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjUxMjAyMjM1OTEzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmN2Q1MS00MWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoAwx8rlhR6RX8xC2iRL2Oed3eaXIlMs4Yhyf9KMIuc2QGjiMwtfcZaLc8c6L GuZ5k5nT0rc1vxcgBS1gkq697HD1R+GLKYq6OfWBiwSk3lR4uQOw0gb2eOCOMFnA 2b7sKcXfGxKg6fQonalaem9fhPg2ItCymebf91TQTLnvS539OfkbIAdloq7PCw5Q Ej/KEyIoaGCghFCFl/zXOrcNmu4pbOtmaK91GTZZJORf34tuQoI5Ja+tc1r8sHFf kgKC8oDqXSB0y14/K6eN46MMML7MSr7C+nyR5YqiDgk/UgoTKy9l0zec/G94bMmY XWrj9GfJfiGXP9ekBdEzg0K+xwIDAQABo4IDgTCCA30wHQYDVR0OBBYEFFf3bSeb EzVTRVxLLl3fUNXbDrWvMB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvM0I0NTUxQjRD QUE4MTFGMDlEREM4RDY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggEJBggrBgEFBQcBBwEB /wSB+TCB9jCB2wQCAAEwgdQDBAIr8HAwDAMEAyv5OAMEAyv5QDAMAwQDK/loAwQC K/lwAwQCK/vMAwQCK/y0AwQCLUBYAwQCLXXQAwQCLXowAwQCLX88AwQCZwTkAwQB ZxzwMAwDBAJnKIQDBANnKJAwDAMEAmcotAMEBmcogAMEAmfhGAMEAmfwPAMEAmf1 cAMEBnMfgAMEA3TBkAMEBHV50AMEA3cNGAMEBXc/QAMEA3zFMAMEAn3+NAMEApZr 3AMEAMobbgMEBMpe8AMEBMqUsAMEAstyRAMEA8u84AMEBt8bwDAWBAIAAjAQAwcA IAEN8AAeAwUAJADNADANBgkqhkiG9w0BAQsFAAOCAQEAVJ48JiHiyPZGH8uN5Gg4 hZQFXEtyUmG2Xqggc3g+fRncVI7cBPpTTIOV8TuCWTQTGR1tRNcOoQ1YoLCRo+Fz AZk7kVmHcnCotRpTuLIMuslXgNVVwliPrbw388al2pwdQVKGdk+5NQYYixCIFZCe +ri58AAFwLP3lSGMhPrcGoyAFRcvnkHdV+6lIlMLC5p4y2nJLGJy3+HxX1t/OmZj zUnD7GqFUGWnlIBeLxd1GHiZxClzUMuD678vY6UVeWwj1NZjhpQ+H4vUpvR6km0Z bt31XzYQS0F4TE1Ce5sf2PobD4Vd6/ySWo+WNKNCyVWf4fcqIBcZy21XE764nxAd 4Q== -----END CERTIFICATE-----Generated at Sat Dec 6 21:32:10 2025 by rpki-client