This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/AB8BCCA8908011F0B114A05CC4F9AE02.roa File: AB8BCCA8908011F0B114A05CC4F9AE02.roa (raw, json) Hash identifier: dfW1VBV0jH+gqEqr4JU0V+7iOvCrHW9m/4DqbiIJXjw= Subject key identifier: CF:29:AD:E6:5D:DA:90:3F:4B:E6:56:F1:FB:2C:F9:B8:90:C1:6E:E1 Certificate issuer: /CN=A9128553/serialNumber=BB897045A88FC81FCCFE38E5F761584FDCBACE85 Certificate serial: 034D Authority key identifier: BB:89:70:45:A8:8F:C8:1F:CC:FE:38:E5:F7:61:58:4F:DC:BA:CE:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4lwRaiPyB_M_jjl92FYT9y6zoU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/AB8BCCA8908011F0B114A05CC4F9AE02.roa Signing time: Tue 30 Dec 2025 15:28:49 +0000 ROA not before: Tue 30 Dec 2025 15:28:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137493 IP address blocks: 103.189.144.0/24 maxlen: 24 103.189.145.0/24 maxlen: 24 2400:8620::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/u4lwRaiPyB_M_jjl92FYT9y6zoU.crl rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/u4lwRaiPyB_M_jjl92FYT9y6zoU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4lwRaiPyB_M_jjl92FYT9y6zoU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:08:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 845 (0x34d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128553, serialNumber=BB897045A88FC81FCCFE38E5F761584FDCBACE85 Validity Not Before: Dec 30 15:28:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6953efb1-eff9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c1:95:ea:cd:18:ec:e5:1c:22:f1:37:14:b5: e6:18:a1:a1:ec:89:0e:bc:72:63:dc:4e:b6:c5:12: a5:ab:ee:ff:23:35:f0:14:0e:39:d3:c8:6b:48:34: 0f:40:04:01:56:2c:e7:53:b0:85:7d:0a:ad:ce:72: 23:51:04:c5:ef:2d:ac:62:eb:dd:f1:ac:90:3e:b8: c4:a0:4c:e7:02:09:a2:88:10:58:de:bf:06:4f:4b: 33:eb:6c:ec:27:25:4a:f9:83:dd:54:eb:2e:a7:0d: 03:05:33:df:d6:1c:39:44:34:ff:37:d3:00:2a:a3: f6:bd:e5:7b:b1:48:49:5d:6b:ac:c7:10:52:6d:01: fb:fd:b6:7f:59:0e:e0:77:76:aa:3b:22:e0:9e:ca: 67:2e:6d:29:83:42:b1:48:41:36:40:6e:79:21:54: eb:57:78:dc:cd:fc:15:35:95:ed:43:5a:1e:e0:29: bb:ca:23:bf:4b:1c:91:ba:54:64:bd:2b:04:90:33: 0b:23:1f:1b:4d:55:6b:77:03:4a:26:4d:85:cd:96: b6:53:ab:5c:dd:51:9d:d0:5c:de:34:98:8f:bc:ca: 55:67:b7:fb:07:94:f7:e9:84:7d:0b:54:25:29:a4: bc:96:03:4e:d5:03:f5:96:5f:84:d0:a6:5f:a1:b5: 96:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:29:AD:E6:5D:DA:90:3F:4B:E6:56:F1:FB:2C:F9:B8:90:C1:6E:E1 X509v3 Authority Key Identifier: keyid:BB:89:70:45:A8:8F:C8:1F:CC:FE:38:E5:F7:61:58:4F:DC:BA:CE:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/u4lwRaiPyB_M_jjl92FYT9y6zoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4lwRaiPyB_M_jjl92FYT9y6zoU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/AB8BCCA8908011F0B114A05CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.144.0/23 IPv6: 2400:8620::/32 Signature Algorithm: sha256WithRSAEncryption 62:6f:08:aa:71:28:44:00:d6:e5:46:82:e1:57:55:c3:54:76: a6:37:76:3c:81:72:29:78:5c:36:eb:08:35:ac:ab:ec:81:42: fd:ff:38:cc:09:f7:f7:20:8d:ee:ce:e4:7f:ef:d6:68:d4:68: 96:f5:8a:97:1e:0f:44:e9:1d:14:c3:77:91:d2:89:9a:d2:b7: ef:d9:03:c2:10:ab:87:ff:9e:4e:01:87:fc:80:81:95:fb:c1: c6:ed:7b:7e:ee:54:2e:7e:bb:dd:a0:04:63:7c:7c:51:52:97: 01:b1:04:25:58:05:72:b0:ef:10:37:66:53:c2:4a:29:5f:24: 49:ba:71:12:6a:e7:7a:34:85:4a:2a:d0:0f:96:4b:c5:bc:d7: 27:a9:73:d4:d2:75:43:5f:a9:fc:1f:1a:f1:d9:4d:a6:c0:b0: ff:2d:d0:81:ad:72:6d:92:94:14:ff:bc:31:49:fa:b4:0b:e8: 2b:3a:e7:a3:79:44:54:32:cc:44:e3:02:da:0b:56:e4:31:75: de:80:ee:bd:76:0a:b2:fa:4f:ac:11:97:22:47:37:ce:e8:73: 2a:5c:81:40:8d:29:dd:6a:d3:48:ba:21:a4:03:dd:3a:35:8f: cb:4b:fd:d7:a0:76:02:b9:c6:4d:38:ca:82:7e:3d:b4:a7:dd: a0:02:71:7a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1NTMxMTAvBgNVBAUTKEJCODk3MDQ1QTg4RkM4MUZDQ0ZFMzhFNUY3NjE1ODRG RENCQUNFODUwHhcNMjUxMjMwMTUyODQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTUzZWZiMS1lZmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnsGV6s0Y7OUcIvE3FLXmGKGh7IkOvHJj3E62xRKlq+7/IzXwFA4508hrSDQP QAQBViznU7CFfQqtznIjUQTF7y2sYuvd8ayQPrjEoEznAgmiiBBY3r8GT0sz62zs JyVK+YPdVOsupw0DBTPf1hw5RDT/N9MAKqP2veV7sUhJXWusxxBSbQH7/bZ/WQ7g d3aqOyLgnspnLm0pg0KxSEE2QG55IVTrV3jczfwVNZXtQ1oe4Cm7yiO/SxyRulRk vSsEkDMLIx8bTVVrdwNKJk2FzZa2U6tc3VGd0FzeNJiPvMpVZ7f7B5T36YR9C1Ql KaS8lgNO1QP1ll+E0KZfobWWCQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFM8preZd 2pA/S+ZW8fss+biQwW7hMB8GA1UdIwQYMBaAFLuJcEWoj8gfzP445fdhWE/cus6F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU1My8xNjRBQkVDNEVC MEIxMUVDODVFM0RCMkNDNEY5QUUwMi91NGx3UmFpUHlCX01fampsOTJGWVQ5eTZ6 b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U0bHdSYWlQeUJfTV9qamw5MkZZVDl5NnpvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg1NTMvMTY0QUJFQzRFQjBCMTFFQzg1RTNEQjJDQzRGOUFFMDIvQUI4QkNDQTg5 MDgwMTFGMEIxMTRBMDVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnvZAwDQQCAAIwBwMFACQAhiAwDQYJKoZIhvcNAQELBQAD ggEBAGJvCKpxKEQA1uVGguFXVcNUdqY3djyBcil4XDbrCDWsq+yBQv3/OMwJ9/cg je7O5H/v1mjUaJb1ipceD0TpHRTDd5HSiZrSt+/ZA8IQq4f/nk4Bh/yAgZX7wcbt e37uVC5+u92gBGN8fFFSlwGxBCVYBXKw7xA3ZlPCSilfJEm6cRJq53o0hUoq0A+W S8W81yepc9TSdUNfqfwfGvHZTabAsP8t0IGtcm2SlBT/vDFJ+rQL6Cs656N5RFQy zETjAtoLVuQxdd6A7r12CrL6T6wRlyJHN87ocypcgUCNKd1q00i6IaQD3To1j8tL /degdgK5xk04yoJ+PbSn3aACcXo= -----END CERTIFICATE-----Generated at Sun Jan 25 04:25:57 2026 by rpki-client