This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa File: A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa (raw, json) Hash identifier: meFnR87+GI3v6nomBtYeU7WZPVYP4nD3qbJitsfc+J0= Subject key identifier: F6:B2:BA:65:65:84:ED:FB:9C:ED:59:CC:2F:22:C2:94:30:F5:7A:63 Certificate issuer: /CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Certificate serial: 0269 Authority key identifier: 89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa Signing time: Thu 13 Nov 2025 16:13:02 +0000 ROA not before: Thu 13 Nov 2025 16:13:02 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 150334 IP address blocks: 103.14.169.0/24 maxlen: 24 2001:df1:55c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 617 (0x269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C7F, serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Validity Not Before: Nov 13 16:13:02 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6916038d-c375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ce:75:30:90:83:36:b6:e5:ae:f3:cb:25:19: 58:49:e9:e5:25:57:6b:17:4f:0e:56:2b:3f:4a:41: fe:7d:75:8f:a9:de:d8:0d:79:d3:3d:6b:0b:c9:b8: cf:ba:8e:6d:80:8c:cd:ab:10:55:f7:f5:ff:39:ae: 86:d7:a2:28:a2:06:b9:5b:0a:1a:e0:83:df:4f:db: f7:ae:cd:f7:26:8c:04:44:b1:1d:55:3f:0e:84:59: 48:5a:c3:3e:a4:f8:0f:ce:e0:39:9f:5b:2c:07:d4: 1b:d6:a0:a6:14:48:de:cd:b4:7c:59:26:ee:cb:d7: 1a:e2:1a:a1:b8:6c:5c:8e:c8:c3:db:f7:7c:a1:b8: c2:fd:8d:ce:85:9f:3c:8e:ae:0f:e1:23:f1:fa:5d: 34:c8:9f:f6:6b:53:48:be:d3:cf:93:48:d5:68:e9: 7a:9e:49:07:67:02:d2:9c:9d:74:22:ab:35:4c:05: 14:c8:d9:51:36:08:c9:36:0b:5f:3c:7e:25:2d:3d: ee:9c:1d:0c:27:44:52:c5:b2:f3:ea:3a:40:c9:73: 82:da:d5:90:8d:15:06:96:43:b6:31:73:a8:d2:b8: e6:2c:4b:fc:e3:42:a8:5d:75:d2:8d:b9:21:e9:9f: 8e:23:38:63:13:be:e3:59:db:92:22:5a:a9:22:cf: dc:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B2:BA:65:65:84:ED:FB:9C:ED:59:CC:2F:22:C2:94:30:F5:7A:63 X509v3 Authority Key Identifier: keyid:89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.169.0/24 IPv6: 2001:df1:55c0::/48 Signature Algorithm: sha256WithRSAEncryption 6a:f7:c0:2e:01:dd:17:9c:b5:06:4c:3f:1c:f2:ed:45:89:44: fe:0a:34:b6:bb:d9:4b:0f:ee:96:73:a2:fa:18:e9:7f:fc:28: a8:fe:38:5a:a2:25:3a:5b:13:71:5a:39:9e:45:54:69:92:00: 53:5f:13:32:37:0d:46:99:6e:17:36:6e:fd:32:19:05:45:f2: e5:b9:39:c5:1f:bd:a0:e5:c4:fa:01:42:23:66:e4:40:c7:e8: b2:2c:49:91:3a:80:31:3f:b5:20:83:e0:38:3a:13:8d:a0:00: 22:39:e3:27:ef:85:1e:16:ce:2f:11:40:95:20:99:ad:7e:51: b4:d0:f4:f2:76:a6:b8:0f:bf:11:f5:bc:7f:71:9b:dd:c9:f6: 4d:6a:5d:8d:f9:72:4e:b5:d2:64:3d:f3:b7:5f:06:9e:16:a0: 6a:04:e8:a9:bc:fb:21:fc:76:70:6c:8e:aa:a9:1b:62:38:f6: c8:53:4b:c7:c7:e8:e7:7f:c9:a2:53:9b:b2:13:a2:4d:4b:33: 7b:32:34:12:ec:a6:bd:42:27:6f:66:7d:cc:bc:bf:c1:81:10: 3c:57:35:e2:a0:8c:14:6a:92:7e:d4:75:b4:43:7c:23:74:e3: b8:9a:ec:ad:05:41:dc:a1:5c:d6:20:9f:f0:3d:01:39:17:58: 81:c3:f2:d8 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDN0YxMTAvBgNVBAUTKDg5NzZCNUZCNDhGMkU0MTExRDc4RDVBM0NENUEyRkNB MTk2MTM5N0EwHhcNMjUxMTEzMTYxMzAyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTE2MDM4ZC1jMzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvc51MJCDNrblrvPLJRlYSenlJVdrF08OVis/SkH+fXWPqd7YDXnTPWsLybjP uo5tgIzNqxBV9/X/Oa6G16Iooga5Wwoa4IPfT9v3rs33JowERLEdVT8OhFlIWsM+ pPgPzuA5n1ssB9Qb1qCmFEjezbR8WSbuy9ca4hqhuGxcjsjD2/d8objC/Y3OhZ88 jq4P4SPx+l00yJ/2a1NIvtPPk0jVaOl6nkkHZwLSnJ10Iqs1TAUUyNlRNgjJNgtf PH4lLT3unB0MJ0RSxbLz6jpAyXOC2tWQjRUGlkO2MXOo0rjmLEv840KoXXXSjbkh 6Z+OIzhjE77jWduSIlqpIs/cQwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPayumVl hO37nO1ZzC8iwpQw9XpjMB8GA1UdIwQYMBaAFIl2tftI8uQRHXjVo81aL8oZYTl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM3Ri8zQjdCREFCRTNG QzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVCRWRlTldqelZvdnlobGhP WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYYTEtMGp5NUJFZGVOV2p6Vm92eWhsaE9Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhDN0YvM0I3QkRBQkUzRkM3MTFFREFDOUIyMjFEQzRGOUFFMDIvQTBBOUQ3OThD MEFCMTFGMEIxQ0JEMTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnDqkwDwQCAAIwCQMHACABDfFVwDANBgkqhkiG9w0BAQsF AAOCAQEAavfALgHdF5y1Bkw/HPLtRYlE/go0trvZSw/ulnOi+hjpf/woqP44WqIl OlsTcVo5nkVUaZIAU18TMjcNRpluFzZu/TIZBUXy5bk5xR+9oOXE+gFCI2bkQMfo sixJkTqAMT+1IIPgODoTjaAAIjnjJ++FHhbOLxFAlSCZrX5RtND08namuA+/EfW8 f3Gb3cn2TWpdjflyTrXSZD3zt18GnhagagToqbz7Ifx2cGyOqqkbYjj2yFNLx8fo 53/JolObshOiTUszezI0EuymvUInb2Z9zLy/wYEQPFc14qCMFGqSftR1tEN8I3Tj uJrsrQVB3KFc1iCf8D0BORdYgcPy2A== -----END CERTIFICATE-----Generated at Sat Dec 6 15:51:06 2025 by rpki-client