This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/AF2F0B70CA7011F08E39E018C4F9AE02.roa File: AF2F0B70CA7011F08E39E018C4F9AE02.roa (raw, json) Hash identifier: 6Vgk/FxkYHBSFOkyH08KuRKKx5WE4ccXDRwyAZBcYRk= Subject key identifier: 5B:9E:E3:E2:54:97:5C:9D:EE:59:2C:B8:EE:80:F3:3A:65:08:8C:84 Certificate issuer: /CN=A9132B1E/serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Certificate serial: 0B03 Authority key identifier: AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/AF2F0B70CA7011F08E39E018C4F9AE02.roa Signing time: Wed 26 Nov 2025 02:36:17 +0000 ROA not before: Wed 26 Nov 2025 02:36:17 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9269 IP address blocks: 43.248.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2819 (0xb03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1E, serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Validity Not Before: Nov 26 02:36:17 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=692667a1-c23f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:00:65:dc:7a:a8:0f:a9:30:d8:82:d9:f4:18: 98:3f:66:96:cf:b7:be:6c:5d:a9:1f:01:7a:7a:47: da:d3:f7:ad:3f:5b:a6:3c:7a:96:b5:93:d8:93:00: 47:78:cc:ec:df:a9:53:87:7d:18:b0:29:ae:7e:2c: bc:91:de:8c:ae:71:8d:2e:ae:e1:8a:a1:9d:5f:38: 01:c7:ec:89:87:9c:d5:a6:55:3b:16:6a:94:ec:5d: 90:82:82:ea:2d:b9:84:e8:01:1a:80:19:77:e1:b1: 87:4a:15:63:f1:56:e4:8f:5f:d3:49:a9:58:17:d8: 52:3c:8a:f5:b1:ef:2c:14:f8:37:7b:52:35:c4:39: 7d:62:9c:6e:b8:83:54:f6:77:85:cb:c3:81:c8:cc: 37:6c:d2:45:a7:b6:fc:47:0c:05:9b:20:7a:ae:19: 97:f5:a6:d0:6a:bb:e1:1f:21:7b:52:01:1f:81:9a: 0c:d1:c2:ff:a2:0c:68:df:78:f4:f0:95:2e:bd:69: d4:2f:be:c5:5c:03:94:40:26:37:f5:da:0e:9b:51: 88:79:cb:f6:f1:a4:fc:6d:b4:95:f8:a3:55:ca:f0: 76:82:1c:bc:43:ff:79:4d:89:50:6f:bb:cf:4c:75: 30:59:25:5c:96:e1:2f:48:8a:e1:7f:76:6e:50:9b: 47:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:9E:E3:E2:54:97:5C:9D:EE:59:2C:B8:EE:80:F3:3A:65:08:8C:84 X509v3 Authority Key Identifier: keyid:AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/AF2F0B70CA7011F08E39E018C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.164.0/22 Signature Algorithm: sha256WithRSAEncryption 81:8d:b1:a4:5a:ff:99:6e:57:63:51:8d:89:fd:87:20:99:08: 9a:b0:80:c1:b9:c8:9f:bb:22:f6:80:56:3b:e4:60:11:2b:f3: 08:8a:ae:bf:36:0d:86:99:40:3d:23:7c:b4:b8:98:af:ca:fd: 68:5e:c3:2d:b5:85:a9:75:9b:22:b8:f6:50:7e:52:18:7c:41: e3:8e:02:d5:13:0a:85:99:da:d6:86:1d:64:c3:f3:01:74:b4: 7c:2a:ab:a6:2b:d8:30:7d:52:cf:08:eb:72:b1:93:58:ac:ee: c0:3d:88:a9:ee:bc:6d:44:02:da:f7:93:36:3d:e3:c2:6f:4b: e4:79:6c:96:f9:d3:3d:3b:5c:30:ce:e8:e4:c8:0c:7e:13:40: 85:3c:f5:3b:ba:a9:d3:1e:01:f2:aa:1c:3d:59:26:40:bc:28: fe:ca:f3:88:3d:21:01:dc:58:31:25:f1:c3:a7:33:c3:8f:ed: bf:ed:a7:6a:b4:a7:d1:59:bc:a0:94:a6:ea:0f:98:64:7d:11: ed:33:9c:d7:ba:90:cd:23:2c:91:dd:06:02:18:6f:8f:d2:bb: 1a:83:24:ae:3d:eb:28:bd:44:da:60:ad:33:e0:48:9a:55:b3: 1d:4f:a7:d8:dd:dd:86:bc:f1:b9:f0:ef:48:e1:62:58:b1:33: 99:91:e7:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUUxMTAvBgNVBAUTKEFCRDQzNTQ4NjU5Q0JCMjc2RUY4RDM1QjgyMTJGODM4 RThDRUI3NUYwHhcNMjUxMTI2MDIzNjE3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI2NjdhMS1jMjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QBl3HqoD6kw2ILZ9BiYP2aWz7e+bF2pHwF6ekfa0/etP1umPHqWtZPYkwBH eMzs36lTh30YsCmufiy8kd6MrnGNLq7hiqGdXzgBx+yJh5zVplU7FmqU7F2QgoLq LbmE6AEagBl34bGHShVj8Vbkj1/TSalYF9hSPIr1se8sFPg3e1I1xDl9YpxuuINU 9neFy8OByMw3bNJFp7b8RwwFmyB6rhmX9abQarvhHyF7UgEfgZoM0cL/ogxo33j0 8JUuvWnUL77FXAOUQCY39doOm1GIecv28aT8bbSV+KNVyvB2ghy8Q/95TYlQb7vP THUwWSVcluEvSIrhf3ZuUJtHRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFue4+JU l1yd7lksuO6A8zplCIyEMB8GA1UdIwQYMBaAFKvUNUhlnLsnbvjTW4IS+Djozrdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRS84OTM2Q0MwNDg4 MzIxMUVBODQ4NjFCNzBDNEY5QUUwMi9xOVExU0dXY3V5ZHUtTk5iZ2hMNE9Pak90 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E5UTFTR1djdXlkdS1OTmJnaEw0T09qT3QxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCMUUvODkzNkNDMDQ4ODMyMTFFQTg0ODYxQjcwQzRGOUFFMDIvQUYyRjBCNzBD QTcwMTFGMDhFMzlFMDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr+KQwDQYJKoZIhvcNAQELBQADggEBAIGNsaRa/5luV2NR jYn9hyCZCJqwgMG5yJ+7IvaAVjvkYBEr8wiKrr82DYaZQD0jfLS4mK/K/Whewy21 hal1myK49lB+Uhh8QeOOAtUTCoWZ2taGHWTD8wF0tHwqq6Yr2DB9Us8I63Kxk1is 7sA9iKnuvG1EAtr3kzY948JvS+R5bJb50z07XDDO6OTIDH4TQIU89Tu6qdMeAfKq HD1ZJkC8KP7K84g9IQHcWDEl8cOnM8OP7b/tp2q0p9FZvKCUpuoPmGR9Ee0znNe6 kM0jLJHdBgIYb4/SuxqDJK496yi9RNpgrTPgSJpVsx1Pp9jd3Ya88bnw70jhYlix M5mR57g= -----END CERTIFICATE-----Generated at Sat Dec 6 18:42:21 2025 by rpki-client