This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/E072F73492DF11EE9803F859C4F9AE02.roa File: E072F73492DF11EE9803F859C4F9AE02.roa (raw, json) Hash identifier: rvBho3b+NrGH1nit2LzY+cS43JYXHGfNXtq+Ct5CaD0= Subject key identifier: 69:86:E1:5C:BB:8F:31:79:CD:57:AC:D6:B3:E9:C8:F6:95:87:14:11 Certificate issuer: /CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Certificate serial: 072D Authority key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/E072F73492DF11EE9803F859C4F9AE02.roa Signing time: Tue 04 Nov 2025 22:12:04 +0000 ROA not before: Tue 04 Nov 2025 22:12:04 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 40138 IP address blocks: 45.127.112.0/23 maxlen: 24 45.127.114.0/24 maxlen: 24 45.127.115.0/24 maxlen: 24 103.196.36.0/22 maxlen: 24 2402:e580::/32 maxlen: 48 2402:e580:40::/42 maxlen: 42 2402:e580:100::/40 maxlen: 40 2402:e580:200::/39 maxlen: 39 2402:e580:400::/38 maxlen: 38 2402:e580:800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1837 (0x72d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913025C, serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Validity Not Before: Nov 4 22:12:04 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690a7a33-6f83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fb:e6:64:b8:db:b4:55:22:fe:5d:e7:24:27: c8:ac:21:f1:c9:68:88:7b:79:7f:be:d3:c4:b2:9b: c2:e7:38:39:32:63:48:76:ee:4a:70:09:5e:3a:43: d5:b9:8a:54:ca:6e:5b:51:61:07:b1:57:af:88:da: 02:7d:73:47:9c:78:d9:75:32:24:a9:99:ec:04:ff: 55:49:9e:b5:00:36:3e:95:ed:4b:ba:20:cd:17:bf: d8:44:22:c4:a5:a6:89:1e:77:57:86:58:3f:ed:c6: e3:a3:49:27:55:a2:c8:e5:cf:e1:fc:7d:ad:e4:77: 08:34:43:56:47:cf:59:88:cd:05:fa:ba:5f:a4:d4: a0:89:d7:14:e1:28:46:06:cb:6a:c6:a8:ee:c4:23: 4e:ad:1a:fb:14:de:f6:a3:4c:0e:e2:0f:8d:7a:a3: 1f:10:51:98:d0:12:7f:e1:dc:2f:32:e8:5d:ba:5d: 5b:18:a1:74:ad:5c:6b:48:53:e3:e1:67:6f:ce:cd: 6a:ea:f9:cd:b4:f8:4f:b9:05:fb:ff:e1:c2:db:73: 40:83:ea:54:c9:a3:12:ed:d3:f0:db:d0:e6:0b:85: 08:ed:77:c2:6d:16:ad:58:03:91:d5:c1:01:c4:10: c4:80:dc:f8:77:1e:60:40:b5:48:85:8d:29:94:cf: 55:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:86:E1:5C:BB:8F:31:79:CD:57:AC:D6:B3:E9:C8:F6:95:87:14:11 X509v3 Authority Key Identifier: keyid:0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/E072F73492DF11EE9803F859C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.127.112.0/22 103.196.36.0/22 IPv6: 2402:e580::/32 Signature Algorithm: sha256WithRSAEncryption 2b:fc:68:f5:9a:f3:8c:df:60:83:03:cc:4a:56:23:ab:98:b5: b8:ae:ee:10:fb:8e:d5:f5:3c:d2:03:66:5b:9c:ed:da:cd:87: 4b:c2:b8:06:69:d6:12:2e:9d:39:72:d4:53:76:a2:75:b8:52: 7e:58:7d:02:33:c6:c6:39:4f:ad:5e:33:24:b5:bc:5a:04:1f: a0:4b:3c:6e:ab:87:df:78:e2:bc:3e:2d:f8:7a:c7:32:07:85: 49:ba:23:ba:b7:47:b8:37:dd:96:e1:22:bb:6b:90:5f:a4:cf: ed:9a:26:94:19:88:8e:b3:26:9f:c1:22:a2:6e:31:99:cc:d5: 5b:51:55:87:d8:5c:18:65:e7:d0:bb:c5:81:39:a4:14:f2:97: 15:9c:16:90:cd:06:8e:9f:1b:37:e9:02:da:cc:16:1a:50:aa: 3e:e6:c3:1f:52:e7:09:7f:aa:b9:93:15:b7:c8:34:87:8f:3c: 5c:a7:df:05:4f:1c:4a:2a:2a:38:d7:de:ff:5a:3f:bd:80:36: f2:ed:71:bc:a5:6f:9d:2b:76:66:1b:96:40:4d:ee:d5:b8:39: c6:b7:fe:54:da:af:97:72:dd:aa:f4:e3:1c:89:97:7d:7e:34: c9:a8:89:79:e7:3a:30:46:9c:7e:48:e0:04:e0:7f:8f:46:3d: 18:c3:21:1f -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyNUMxMTAvBgNVBAUTKDBDRUE2OEEwMkM1MjlGODg3NTJDNjQyREUwRDJGRUY5 RjVEN0ExNEEwHhcNMjUxMTA0MjIxMjA0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhN2EzMy02ZjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/vmZLjbtFUi/l3nJCfIrCHxyWiIe3l/vtPEspvC5zg5MmNIdu5KcAleOkPV uYpUym5bUWEHsVeviNoCfXNHnHjZdTIkqZnsBP9VSZ61ADY+le1LuiDNF7/YRCLE paaJHndXhlg/7cbjo0knVaLI5c/h/H2t5HcINENWR89ZiM0F+rpfpNSgidcU4ShG BstqxqjuxCNOrRr7FN72o0wO4g+NeqMfEFGY0BJ/4dwvMuhdul1bGKF0rVxrSFPj 4Wdvzs1q6vnNtPhPuQX7/+HC23NAg+pUyaMS7dPw29DmC4UI7XfCbRatWAOR1cEB xBDEgNz4dx5gQLVIhY0plM9VHwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGmG4Vy7 jzF5zVes1rPpyPaVhxQRMB8GA1UdIwQYMBaAFAzqaKAsUp+IdSxkLeDS/vn116FK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDI1Qy9BQzA1NTgyNjVF MjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240aDFMR1F0NE5MLS1mWFhv VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcG9vQ3hTbjRoMUxHUXQ0TkwtLWZYWG9Vby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzAyNUMvQUMwNTU4MjY1RTI1MTFFQkFCMjk4OTJBQzRGOUFFMDIvRTA3MkY3MzQ5 MkRGMTFFRTk4MDNGODU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItf3ADBAJnxCQwDQQCAAIwBwMFACQC5YAwDQYJKoZIhvcN AQELBQADggEBACv8aPWa84zfYIMDzEpWI6uYtbiu7hD7jtX1PNIDZluc7drNh0vC uAZp1hIunTly1FN2onW4Un5YfQIzxsY5T61eMyS1vFoEH6BLPG6rh9944rw+Lfh6 xzIHhUm6I7q3R7g33ZbhIrtrkF+kz+2aJpQZiI6zJp/BIqJuMZnM1VtRVYfYXBhl 59C7xYE5pBTylxWcFpDNBo6fGzfpAtrMFhpQqj7mwx9S5wl/qrmTFbfINIePPFyn 3wVPHEoqKjjX3v9aP72ANvLtcbylb50rdmYblkBN7tW4Oca3/lTar5dy3ar04xyJ l31+NMmoiXnnOjBGnH5I4ATgf49GPRjDIR8= -----END CERTIFICATE-----Generated at Sun Dec 7 04:14:52 2025 by rpki-client