This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/DD84920268FA11EFB2CB6E60C4F9AE02.roa File: DD84920268FA11EFB2CB6E60C4F9AE02.roa (raw, json) Hash identifier: KVYDjb3LOCylq5/WVla/qjjDgT6zCAlDqXpLKrRgpFk= Subject key identifier: 2B:B0:6D:DE:12:EA:C1:6B:44:2A:98:0F:29:EE:1D:93:5F:2F:5F:28 Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 03CB Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/DD84920268FA11EFB2CB6E60C4F9AE02.roa Signing time: Tue 02 Dec 2025 23:58:54 +0000 ROA not before: Tue 02 Dec 2025 23:58:54 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134100 IP address blocks: 43.251.205.0/24 maxlen: 24 223.27.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:26:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 971 (0x3cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A, serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Validity Not Before: Dec 2 23:58:54 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692f7d3d-590c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ec:61:6c:7b:68:65:b8:c9:fb:d8:5a:02:61: f8:4c:a7:58:eb:f8:e0:24:b4:43:c1:9e:e1:8c:fe: 56:88:c8:96:7b:d9:9e:d8:a5:73:36:bc:05:11:06: ee:ff:a6:fa:83:d9:9b:35:b7:4b:fd:e6:13:44:96: e8:56:4f:6b:c9:63:16:f9:ba:36:cf:54:f1:b3:fb: 55:32:58:3b:79:39:b1:06:31:61:b5:28:36:b3:03: 9a:8b:0b:58:20:fb:3d:6f:38:bf:49:c8:b3:03:8b: 93:2f:1a:f7:76:a0:69:fd:7c:d7:d9:7f:d2:a7:b9: b2:79:a6:f4:b6:69:0d:14:b0:00:fa:d1:f9:51:8b: ef:9a:bc:c8:cd:c7:71:07:ae:c6:56:6c:0b:3d:86: 34:f4:54:47:41:d9:08:bd:bd:49:26:ff:b5:02:e9: 72:1c:14:43:e3:e8:20:7c:c9:32:37:aa:a7:77:c7: 3a:29:61:26:b9:fc:44:ee:49:6f:39:76:9f:77:71: a0:b4:8c:0a:7a:12:64:5e:0e:32:8c:b0:07:73:b5: e5:ad:d4:8c:19:a8:80:fd:ce:2a:d4:87:bf:11:e7: 60:7f:c3:55:1d:72:3d:7b:fc:aa:d9:3b:34:74:fb: 0d:61:11:2b:6b:a7:0d:44:d2:f4:98:e4:97:3b:d2: 88:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:B0:6D:DE:12:EA:C1:6B:44:2A:98:0F:29:EE:1D:93:5F:2F:5F:28 X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/DD84920268FA11EFB2CB6E60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.205.0/24 223.27.224.0/24 Signature Algorithm: sha256WithRSAEncryption 80:fe:31:64:84:a3:36:f1:40:6d:c6:13:85:e2:98:55:ce:6f: 72:df:83:4b:5f:48:76:b7:b2:18:80:18:c3:36:ea:be:e2:3f: 3e:0f:44:c4:ed:9b:81:ca:cf:d5:0d:fa:a5:c1:1a:d2:21:16: 6b:31:f3:22:c9:68:88:e0:82:a5:bb:57:b9:1e:27:51:6a:f2: 47:a4:fa:8f:c8:1a:66:8a:6c:cd:48:bc:4c:ff:dd:6c:76:a6: bb:88:91:03:4e:64:c8:c1:43:9b:d8:23:22:cb:98:6b:bf:52: 28:37:07:1b:2f:19:dd:40:94:f8:07:d0:15:28:2e:96:da:db: ee:18:ab:8d:64:ed:d1:64:b0:55:1a:a1:d7:07:83:ea:35:85: d0:df:d1:ca:6a:07:0d:fe:31:1b:eb:72:dd:98:e5:2d:aa:1a: 5a:f0:1e:f9:6d:9e:ee:f4:bc:3b:c3:87:1e:6f:42:10:63:d5: e6:1e:8d:f8:ea:80:94:fa:39:d6:ff:84:60:b7:97:8e:48:9c: ff:e4:3a:a6:8c:d4:63:8a:ec:9c:1b:ff:ac:e5:4d:91:18:12: bc:03:d0:2e:bc:90:43:ae:0d:9b:4a:f2:9f:54:38:c9:98:fc: 4e:87:81:70:ef:80:75:5b:29:ea:01:b0:b8:59:89:d3:78:d9: 55:4c:98:15 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjUxMjAyMjM1ODU0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmN2QzZC01OTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOxhbHtoZbjJ+9haAmH4TKdY6/jgJLRDwZ7hjP5WiMiWe9me2KVzNrwFEQbu /6b6g9mbNbdL/eYTRJboVk9ryWMW+bo2z1Txs/tVMlg7eTmxBjFhtSg2swOaiwtY IPs9bzi/ScizA4uTLxr3dqBp/XzX2X/Sp7myeab0tmkNFLAA+tH5UYvvmrzIzcdx B67GVmwLPYY09FRHQdkIvb1JJv+1AulyHBRD4+ggfMkyN6qnd8c6KWEmufxE7klv OXafd3GgtIwKehJkXg4yjLAHc7XlrdSMGaiA/c4q1Ie/Eedgf8NVHXI9e/yq2Ts0 dPsNYREra6cNRNL0mOSXO9KIxQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCuwbd4S 6sFrRCqYDynuHZNfL18oMB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvREQ4NDkyMDI2 OEZBMTFFRkIyQ0I2RTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr+80DBADfG+AwDQYJKoZIhvcNAQELBQADggEBAID+MWSE ozbxQG3GE4XimFXOb3Lfg0tfSHa3shiAGMM26r7iPz4PRMTtm4HKz9UN+qXBGtIh Fmsx8yLJaIjggqW7V7keJ1Fq8kek+o/IGmaKbM1IvEz/3Wx2pruIkQNOZMjBQ5vY IyLLmGu/Uig3BxsvGd1AlPgH0BUoLpba2+4Yq41k7dFksFUaodcHg+o1hdDf0cpq Bw3+MRvrct2Y5S2qGlrwHvltnu70vDvDhx5vQhBj1eYejfjqgJT6Odb/hGC3l45I nP/kOqaM1GOK7Jwb/6zlTZEYErwD0C68kEOuDZtK8p9UOMmY/E6HgXDvgHVbKeoB sLhZidN42VVMmBU= -----END CERTIFICATE-----Generated at Sat Dec 6 23:15:52 2025 by rpki-client