This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/DB27568209DA11EEBA18A082C4F9AE02.roa File: DB27568209DA11EEBA18A082C4F9AE02.roa (raw, json) Hash identifier: Vb+7f3M9pS78Ueu7sOSJnfqQwVI3CakBS3Vn6Okli7Y= Subject key identifier: 81:B5:36:2B:FD:29:27:8D:0B:69:C5:7B:79:87:3F:FA:BF:2F:D8:19 Certificate issuer: /CN=A912720E/serialNumber=A28DA0BE901D983A433D833589D167BF486F64FC Certificate serial: 01CF Authority key identifier: A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/DB27568209DA11EEBA18A082C4F9AE02.roa Signing time: Thu 27 Nov 2025 01:18:38 +0000 ROA not before: Thu 27 Nov 2025 01:18:38 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150389 IP address blocks: 103.29.8.0/23 maxlen: 23 103.29.8.0/24 maxlen: 24 103.29.9.0/24 maxlen: 24 2001:df1:74c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.crl rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912720E, serialNumber=A28DA0BE901D983A433D833589D167BF486F64FC Validity Not Before: Nov 27 01:18:38 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6927a6ee-5c7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1d:dd:0e:c4:c2:84:78:1a:04:78:5f:24:98: 97:05:0b:85:8b:a9:d9:4c:64:12:30:25:bf:fe:8c: 77:ca:65:3f:24:75:b3:14:8b:b2:38:25:1a:24:99: 5c:1c:05:32:a0:20:88:0c:bf:a5:ee:e9:18:2a:cb: 39:98:97:3d:54:89:ee:02:59:ad:4f:26:3a:50:f6: 6b:a8:65:db:7c:21:11:43:80:1c:9e:46:b3:9c:c2: 87:21:0c:8a:7e:44:9c:f2:4c:d1:4b:57:8a:8c:ee: e7:71:b0:6f:e7:90:23:a8:0b:59:86:a6:68:b8:bd: 89:8b:c5:ca:0c:8a:58:22:08:05:f5:35:c5:d0:f9: 5c:35:80:2f:13:da:6c:64:67:60:c8:b0:5e:9b:1c: d0:56:8e:48:78:c3:60:2a:75:8e:dd:50:37:ca:4d: 44:25:e3:88:94:7e:0d:6c:ce:d7:65:6b:21:4a:26: 84:8c:b3:11:b5:ae:7c:4c:e2:4b:12:4d:1d:95:d4: c4:2d:74:80:c3:67:c5:ad:ad:3a:64:0f:a9:a5:78: 34:e3:1a:41:15:e5:c6:c2:a8:0e:e1:a2:6d:6f:9f: 6a:1f:f6:4f:65:8e:07:fb:bb:c6:18:67:66:bb:7c: c2:65:28:cb:79:1e:0d:66:05:e5:d3:4e:47:d2:f8: 8d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B5:36:2B:FD:29:27:8D:0B:69:C5:7B:79:87:3F:FA:BF:2F:D8:19 X509v3 Authority Key Identifier: keyid:A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/DB27568209DA11EEBA18A082C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.8.0/23 IPv6: 2001:df1:74c0::/48 Signature Algorithm: sha256WithRSAEncryption 99:a9:48:37:70:23:3a:48:c2:0a:3c:33:be:ba:72:27:22:d6: c5:83:1c:43:53:90:23:62:58:77:81:85:f1:5a:17:64:09:c9: 83:08:0c:f7:53:fe:0c:51:18:71:43:0d:2c:f4:bf:db:b2:dd: 33:af:5a:87:90:61:12:28:82:03:8c:4c:62:83:8d:16:e1:7b: 8a:9d:6b:e8:72:c7:af:f9:1c:ba:17:17:4b:81:29:a5:9d:c1: 0a:23:00:11:44:ea:1d:0b:72:07:9a:09:8d:90:9b:82:b4:ae: 5c:aa:36:70:68:47:a8:0f:da:2c:fa:f2:59:c4:dc:c6:00:91: 22:ca:b1:57:9a:70:29:d7:7d:f3:e7:a7:f0:81:9c:2e:16:3d: 9f:65:19:e0:4c:56:bf:31:82:ce:6e:7a:1c:c3:dd:53:56:26: dd:a5:e0:17:39:8b:d9:08:99:78:21:03:ab:41:bc:32:94:e4: b3:e5:44:07:ff:c3:21:1f:9e:30:9c:7d:85:05:8b:72:b8:54: a6:eb:ba:0d:8f:09:fe:6c:a1:78:29:bb:c3:5c:8c:08:4e:cb: 00:81:5d:9a:92:b4:18:05:ec:a5:ba:96:85:ff:c3:9d:52:b8: 01:84:ba:26:f2:bb:77:56:e3:1a:99:60:4b:f0:bd:91:69:d4: 3f:9e:64:ff -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyMEUxMTAvBgNVBAUTKEEyOERBMEJFOTAxRDk4M0E0MzNEODMzNTg5RDE2N0JG NDg2RjY0RkMwHhcNMjUxMTI3MDExODM4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI3YTZlZS01YzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2R3dDsTChHgaBHhfJJiXBQuFi6nZTGQSMCW//ox3ymU/JHWzFIuyOCUaJJlc HAUyoCCIDL+l7ukYKss5mJc9VInuAlmtTyY6UPZrqGXbfCERQ4AcnkaznMKHIQyK fkSc8kzRS1eKjO7ncbBv55AjqAtZhqZouL2Ji8XKDIpYIggF9TXF0PlcNYAvE9ps ZGdgyLBemxzQVo5IeMNgKnWO3VA3yk1EJeOIlH4NbM7XZWshSiaEjLMRta58TOJL Ek0dldTELXSAw2fFra06ZA+ppXg04xpBFeXGwqgO4aJtb59qH/ZPZY4H+7vGGGdm u3zCZSjLeR4NZgXl005H0viN0QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIG1Niv9 KSeNC2nFe3mHP/q/L9gZMB8GA1UdIwQYMBaAFKKNoL6QHZg6Qz2DNYnRZ79Ib2T8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzIwRS81RTUxRDQ1QzA5 RDUxMUVFQTM4QTc0ODBDNEY5QUUwMi9vbzJndnBBZG1EcERQWU0xaWRGbnYwaHZa UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29vMmd2cEFkbURwRFBZTTFpZEZudjBodlpQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjcyMEUvNUU1MUQ0NUMwOUQ1MTFFRUEzOEE3NDgwQzRGOUFFMDIvREIyNzU2ODIw OURBMTFFRUJBMThBMDgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnHQgwDwQCAAIwCQMHACABDfF0wDANBgkqhkiG9w0BAQsF AAOCAQEAmalIN3AjOkjCCjwzvrpyJyLWxYMcQ1OQI2JYd4GF8VoXZAnJgwgM91P+ DFEYcUMNLPS/27LdM69ah5BhEiiCA4xMYoONFuF7ip1r6HLHr/kcuhcXS4EppZ3B CiMAEUTqHQtyB5oJjZCbgrSuXKo2cGhHqA/aLPryWcTcxgCRIsqxV5pwKdd98+en 8IGcLhY9n2UZ4ExWvzGCzm56HMPdU1Ym3aXgFzmL2QiZeCEDq0G8MpTks+VEB//D IR+eMJx9hQWLcrhUpuu6DY8J/myheCm7w1yMCE7LAIFdmpK0GAXspbqWhf/DnVK4 AYS6JvK7d1bjGplgS/C9kWnUP55k/w== -----END CERTIFICATE-----Generated at Sat Dec 6 19:13:23 2025 by rpki-client