This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/FBE538ECC55511F0B6ACB62BC4F9AE02.roa File: FBE538ECC55511F0B6ACB62BC4F9AE02.roa (raw, json) Hash identifier: Xm8YDhtFdsbSB/JaCf1eeLvxGvfVGvAsGyj9y3iXBIE= Subject key identifier: C8:BA:21:69:EF:E5:2B:33:8C:62:DC:55:AC:2A:18:CF:5E:AB:78:D4 Certificate issuer: /CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Certificate serial: 0271 Authority key identifier: 89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/FBE538ECC55511F0B6ACB62BC4F9AE02.roa Signing time: Wed 19 Nov 2025 14:42:34 +0000 ROA not before: Wed 19 Nov 2025 14:42:34 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 139813 IP address blocks: 103.14.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 625 (0x271) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C7F, serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Validity Not Before: Nov 19 14:42:34 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=691dd75a-af6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cc:d2:a4:45:6f:2e:3f:13:d9:c4:dd:c5:3b: 0e:f2:7b:f6:63:af:fc:d4:e3:66:e9:c7:d1:eb:7d: 6e:7a:22:35:e0:56:19:6b:65:5c:1b:a0:34:ac:fc: f2:2b:75:15:f0:23:13:b8:98:e4:20:53:66:59:5c: 05:c4:36:b1:2c:a6:d4:e1:a3:79:db:29:cd:21:0d: ca:5e:fc:95:ac:27:49:04:be:e8:b9:45:55:2d:db: 54:a2:1d:ca:d2:fd:a4:cc:f5:8a:b7:74:01:14:45: 70:46:6a:83:6a:07:8f:d1:f9:d4:a7:72:0e:b1:e5: d0:d5:fc:b3:f6:f1:81:6e:bc:6f:0a:16:1b:63:8b: 8f:12:55:1a:ad:ec:fa:63:14:f7:f9:b7:a2:14:6a: 55:10:d1:30:4b:ab:f0:07:c0:60:da:8d:03:7a:15: 11:af:20:46:59:e9:2d:48:a2:cb:35:2f:33:e7:0d: 10:04:7c:22:f8:a3:b8:b6:24:d3:53:f9:08:ae:ea: 50:6f:db:39:35:21:00:79:ec:99:2a:52:40:9d:5e: fe:09:d4:a1:e0:7d:9a:1c:6b:08:dd:2d:72:cb:80: 01:0b:ba:5c:10:d3:03:3c:d1:bc:42:e7:40:d7:44: e9:6f:17:dd:cd:1b:f6:2d:83:09:bd:f5:51:af:38: 8b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:BA:21:69:EF:E5:2B:33:8C:62:DC:55:AC:2A:18:CF:5E:AB:78:D4 X509v3 Authority Key Identifier: keyid:89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/FBE538ECC55511F0B6ACB62BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.168.0/24 Signature Algorithm: sha256WithRSAEncryption 73:df:c1:c0:8f:d0:5b:e8:69:03:ef:0e:19:5f:b7:d2:bd:b6: 6c:ef:3d:38:ea:8f:4e:18:1a:f2:74:4a:1c:03:45:d1:3f:b6: af:e3:85:50:cb:59:d1:a3:94:57:77:93:9d:51:59:68:14:86: 94:37:7d:02:dc:be:5a:a3:53:dc:15:06:4e:1e:7e:8b:ae:0a: 11:62:db:f4:bf:75:80:ca:4e:56:0a:b8:c2:68:7e:ad:73:2e: 49:3a:7d:8a:c0:8d:b2:8a:96:98:d1:60:b2:74:f6:73:ed:b4: bc:fa:18:b2:a1:5a:f4:89:5f:3f:09:b0:c1:de:84:f5:b5:2a: 34:ec:5e:7c:ce:ce:92:a2:8f:89:81:fe:e2:6d:d6:89:91:59: ea:4a:85:9d:9d:da:69:98:1a:65:e9:95:55:c2:8e:92:48:71: 6e:47:44:e8:fd:8c:26:ef:46:cc:62:14:28:81:8d:80:d9:17: e9:c6:89:eb:02:4a:dc:e4:da:0c:0e:7d:0f:c6:74:6a:69:75: e2:10:71:a5:bf:10:2c:4b:91:2e:6b:53:69:05:01:c1:10:8b: a6:a5:1e:ce:92:d2:c2:c3:c0:e9:d5:82:9e:42:c9:32:f2:2c: e8:6c:97:12:01:ff:45:e8:98:4c:fb:18:eb:44:07:ee:08:65: 20:37:6d:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDN0YxMTAvBgNVBAUTKDg5NzZCNUZCNDhGMkU0MTExRDc4RDVBM0NENUEyRkNB MTk2MTM5N0EwHhcNMjUxMTE5MTQ0MjM0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFkZDc1YS1hZjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0czSpEVvLj8T2cTdxTsO8nv2Y6/81ONm6cfR631ueiI14FYZa2VcG6A0rPzy K3UV8CMTuJjkIFNmWVwFxDaxLKbU4aN52ynNIQ3KXvyVrCdJBL7ouUVVLdtUoh3K 0v2kzPWKt3QBFEVwRmqDageP0fnUp3IOseXQ1fyz9vGBbrxvChYbY4uPElUarez6 YxT3+beiFGpVENEwS6vwB8Bg2o0DehURryBGWektSKLLNS8z5w0QBHwi+KO4tiTT U/kIrupQb9s5NSEAeeyZKlJAnV7+CdSh4H2aHGsI3S1yy4ABC7pcENMDPNG8QudA 10TpbxfdzRv2LYMJvfVRrziLZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMi6IWnv 5SszjGLcVawqGM9eq3jUMB8GA1UdIwQYMBaAFIl2tftI8uQRHXjVo81aL8oZYTl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM3Ri8zQjdCREFCRTNG QzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVCRWRlTldqelZvdnlobGhP WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYYTEtMGp5NUJFZGVOV2p6Vm92eWhsaE9Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhDN0YvM0I3QkRBQkUzRkM3MTFFREFDOUIyMjFEQzRGOUFFMDIvRkJFNTM4RUND NTU1MTFGMEI2QUNCNjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnDqgwDQYJKoZIhvcNAQELBQADggEBAHPfwcCP0FvoaQPv Dhlft9K9tmzvPTjqj04YGvJ0ShwDRdE/tq/jhVDLWdGjlFd3k51RWWgUhpQ3fQLc vlqjU9wVBk4efouuChFi2/S/dYDKTlYKuMJofq1zLkk6fYrAjbKKlpjRYLJ09nPt tLz6GLKhWvSJXz8JsMHehPW1KjTsXnzOzpKij4mB/uJt1omRWepKhZ2d2mmYGmXp lVXCjpJIcW5HROj9jCbvRsxiFCiBjYDZF+nGiesCStzk2gwOfQ/GdGppdeIQcaW/ ECxLkS5rU2kFAcEQi6alHs6S0sLDwOnVgp5CyTLyLOhslxIB/0XomEz7GOtEB+4I ZSA3bVo= -----END CERTIFICATE-----Generated at Sat Dec 6 19:44:41 2025 by rpki-client