This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/D9A5C1BA4DFE11EDBF00BA6BC4F9AE02.roa File: D9A5C1BA4DFE11EDBF00BA6BC4F9AE02.roa (raw, json) Hash identifier: G6Wgfmuf7isN39qtMPKHSSoxC3J+volHlymr2bVvLnQ= Subject key identifier: AE:4F:F6:62:EB:AB:92:E3:B9:D7:E0:EB:F7:63:8C:B1:0E:04:01:48 Certificate issuer: /CN=A912D937/serialNumber=7B1C6E2F442D2D0DDEFA49940280C2D70EF2B14C Certificate serial: 0255 Authority key identifier: 7B:1C:6E:2F:44:2D:2D:0D:DE:FA:49:94:02:80:C2:D7:0E:F2:B1:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exxuL0QtLQ3e-kmUAoDC1w7ysUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/D9A5C1BA4DFE11EDBF00BA6BC4F9AE02.roa Signing time: Sat 29 Nov 2025 00:27:21 +0000 ROA not before: Sat 29 Nov 2025 00:27:21 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150375 IP address blocks: 103.18.204.0/23 maxlen: 23 2001:df1:6740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/exxuL0QtLQ3e-kmUAoDC1w7ysUw.crl rsync://rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/exxuL0QtLQ3e-kmUAoDC1w7ysUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exxuL0QtLQ3e-kmUAoDC1w7ysUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:05:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 597 (0x255) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D937, serialNumber=7B1C6E2F442D2D0DDEFA49940280C2D70EF2B14C Validity Not Before: Nov 29 00:27:21 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692a3de9-ec7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:18:83:9c:75:03:4d:38:cb:f9:1f:f7:49:55: 7e:fe:6b:af:c6:1e:48:7c:5d:84:cd:34:1e:6b:f9: 85:c2:14:90:c5:5d:9c:91:49:b6:e3:c6:ff:d3:45: 23:56:d1:98:bf:99:3d:d9:94:2f:7f:dd:ed:33:68: 94:8e:ad:13:6d:06:d5:32:f5:80:4f:98:2b:05:f5: 66:e2:26:a8:1f:4a:81:b7:60:2e:91:0a:3e:eb:7a: 01:3b:ae:63:66:ed:64:3d:30:25:a1:95:03:87:18: 25:2c:4c:3f:af:22:31:59:3c:a9:8b:8b:6a:e8:f1: 41:07:09:7b:c6:f0:6a:a0:8a:86:f9:2b:c6:87:a4: d6:8d:d6:7b:ce:38:f3:d2:2f:2c:24:22:a4:52:76: 4e:f8:e4:c1:1a:34:02:90:3c:02:48:cf:be:9e:71: 87:d7:8e:34:87:a4:a5:e1:a6:31:4a:05:f5:43:d0: 29:21:d6:4d:5a:02:52:e9:4b:f1:24:0f:19:1b:4a: 38:e2:98:0a:a8:96:5f:17:60:72:5e:69:c2:62:8f: 0e:ed:6b:61:5a:3d:8e:16:a9:97:5f:9b:50:06:96: ce:16:e8:08:a4:13:e3:c6:6d:2d:11:66:47:40:0c: 5c:9b:dd:c7:b5:0c:d9:55:6f:20:65:54:c8:f2:59: f2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:4F:F6:62:EB:AB:92:E3:B9:D7:E0:EB:F7:63:8C:B1:0E:04:01:48 X509v3 Authority Key Identifier: keyid:7B:1C:6E:2F:44:2D:2D:0D:DE:FA:49:94:02:80:C2:D7:0E:F2:B1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/exxuL0QtLQ3e-kmUAoDC1w7ysUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exxuL0QtLQ3e-kmUAoDC1w7ysUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/D9A5C1BA4DFE11EDBF00BA6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.18.204.0/23 IPv6: 2001:df1:6740::/48 Signature Algorithm: sha256WithRSAEncryption 15:8a:cd:be:31:c6:c2:51:d7:bf:c4:98:04:6c:18:30:7c:ab: 56:49:dc:7b:4c:60:f1:f3:1f:b0:00:8c:4a:53:1a:a0:36:3b: 64:ca:5d:f1:33:05:10:fd:5f:54:be:df:45:c0:44:95:f4:b9: 8e:4c:93:c2:38:73:30:03:cf:62:ea:21:6b:9d:7f:31:60:85: 1c:bf:f3:65:46:b3:65:d0:27:76:31:24:71:e1:f3:5a:22:af: 5b:c7:da:ce:4c:fc:55:d0:57:0d:6f:7c:c3:16:93:3e:80:00: c0:08:d3:a3:b9:6d:a9:e7:d1:4e:d8:96:a8:cb:cc:5b:71:7e: 03:3c:72:af:b2:d1:d7:0b:7a:30:f0:4c:2d:0e:6f:bd:a8:9e: e1:8e:59:f3:e0:e7:d7:1c:5e:b9:9a:cc:69:44:a8:3d:dd:d1: fd:0e:8f:8b:70:b6:fc:79:77:be:47:e1:03:bf:fa:fc:2b:1e: 92:a2:31:5a:f9:96:d6:db:19:cf:6b:b2:17:ea:c5:14:25:f4: 7b:cb:aa:6f:69:1d:6a:8a:57:1c:9f:70:27:d1:27:95:b8:64: 14:13:e2:02:ff:82:df:35:56:ed:08:3e:e4:46:bc:3d:4c:2e: 0f:3b:bb:74:df:c1:06:d1:cc:50:4e:ec:cb:c1:63:d9:45:47: ac:f5:62:11 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5MzcxMTAvBgNVBAUTKDdCMUM2RTJGNDQyRDJEMERERUZBNDk5NDAyODBDMkQ3 MEVGMkIxNEMwHhcNMjUxMTI5MDAyNzIxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJhM2RlOS1lYzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxiDnHUDTTjL+R/3SVV+/muvxh5IfF2EzTQea/mFwhSQxV2ckUm248b/00Uj VtGYv5k92ZQvf93tM2iUjq0TbQbVMvWAT5grBfVm4iaoH0qBt2AukQo+63oBO65j Zu1kPTAloZUDhxglLEw/ryIxWTypi4tq6PFBBwl7xvBqoIqG+SvGh6TWjdZ7zjjz 0i8sJCKkUnZO+OTBGjQCkDwCSM++nnGH1440h6Sl4aYxSgX1Q9ApIdZNWgJS6Uvx JA8ZG0o44pgKqJZfF2ByXmnCYo8O7WthWj2OFqmXX5tQBpbOFugIpBPjxm0tEWZH QAxcm93HtQzZVW8gZVTI8lnymwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFK5P9mLr q5Ljudfg6/djjLEOBAFIMB8GA1UdIwQYMBaAFHscbi9ELS0N3vpJlAKAwtcO8rFM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDkzNy9CRjJEQUI2QTRE RkMxMUVEOTRCRDY2NkJDNEY5QUUwMi9leHh1TDBRdExRM2Uta21VQW9EQzF3N3lz VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V4eHVMMFF0TFEzZS1rbVVBb0RDMXc3eXNVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ5MzcvQkYyREFCNkE0REZDMTFFRDk0QkQ2NjZCQzRGOUFFMDIvRDlBNUMxQkE0 REZFMTFFREJGMDBCQTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnEswwDwQCAAIwCQMHACABDfFnQDANBgkqhkiG9w0BAQsF AAOCAQEAFYrNvjHGwlHXv8SYBGwYMHyrVknce0xg8fMfsACMSlMaoDY7ZMpd8TMF EP1fVL7fRcBElfS5jkyTwjhzMAPPYuoha51/MWCFHL/zZUazZdAndjEkceHzWiKv W8fazkz8VdBXDW98wxaTPoAAwAjTo7ltqefRTtiWqMvMW3F+Azxyr7LR1wt6MPBM LQ5vvaie4Y5Z8+Dn1xxeuZrMaUSoPd3R/Q6Pi3C2/Hl3vkfhA7/6/CsekqIxWvmW 1tsZz2uyF+rFFCX0e8uqb2kdaopXHJ9wJ9EnlbhkFBPiAv+C3zVW7Qg+5Ea8PUwu Dzu7dN/BBtHMUE7sy8Fj2UVHrPViEQ== -----END CERTIFICATE-----Generated at Sat Dec 6 19:15:25 2025 by rpki-client