This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/4F7540B64BE311F096B8CE67C4F9AE02.roa File: 4F7540B64BE311F096B8CE67C4F9AE02.roa (raw, json) Hash identifier: iOPrsP2srkb+vVnfb02IQTWoMc2rYolev95ZwBVT8+Q= Subject key identifier: D3:AB:5B:15:5B:1F:EF:28:9E:7E:69:E5:9F:80:84:64:B4:94:50:97 Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0B89 Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/4F7540B64BE311F096B8CE67C4F9AE02.roa Signing time: Tue 23 Dec 2025 02:48:46 +0000 ROA not before: Tue 23 Dec 2025 02:48:46 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 149175 IP address blocks: 61.15.72.0/22 maxlen: 22 61.15.80.0/22 maxlen: 22 61.15.88.0/22 maxlen: 24 61.15.97.0/24 maxlen: 24 203.168.221.0/24 maxlen: 24 203.168.238.0/24 maxlen: 24 203.168.244.0/24 maxlen: 24 203.168.245.0/24 maxlen: 24 203.168.246.0/24 maxlen: 24 203.168.247.0/24 maxlen: 24 203.168.248.0/24 maxlen: 24 203.168.249.0/24 maxlen: 24 203.168.250.0/24 maxlen: 24 203.168.251.0/24 maxlen: 24 203.168.253.0/24 maxlen: 24 203.168.255.0/24 maxlen: 24 222.167.36.0/22 maxlen: 22 222.167.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2953 (0xb89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172, serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Dec 23 02:48:46 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=694a030d-be1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7b:1e:c2:ab:b6:ff:95:5a:26:18:58:1c:a6: 7e:b1:8f:1c:d1:10:61:7b:d0:80:b4:00:6f:83:4f: b2:27:25:e0:6b:34:61:ce:21:60:26:28:64:6c:30: 5f:ec:2a:ed:a2:ca:da:67:82:fc:14:24:89:b4:6d: bf:33:92:af:65:65:74:40:41:e0:2d:c7:31:29:a4: d1:56:e1:9f:a4:11:6a:02:44:76:15:20:82:89:f3: 70:05:ea:9c:33:c0:f9:27:af:ce:73:bd:9b:dc:ba: 75:21:df:a5:6e:35:89:9e:04:24:35:ad:a3:38:63: 15:7f:d3:59:82:c9:cb:21:8e:74:e1:c3:9f:55:75: d5:60:5c:c3:7f:9c:6f:8a:85:3c:75:4a:7c:5c:37: 54:e5:0d:da:fd:22:d0:f3:79:b1:ce:38:c1:4c:12: ad:f4:7f:de:e0:4c:04:8d:36:6d:2c:9c:09:5d:9f: ba:d7:6d:a2:05:e8:17:dc:42:b6:67:b5:b1:36:f2: fb:18:22:f0:c0:67:42:b1:6f:bf:e6:34:42:9e:cb: e3:aa:41:69:81:1b:90:57:88:3c:fd:69:50:a3:a4: 2c:1b:6f:9f:c8:65:0f:ce:38:7f:e0:7d:87:83:0b: 11:ed:e0:bf:4e:ea:f6:a6:82:26:b0:f9:c5:b0:88: a4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AB:5B:15:5B:1F:EF:28:9E:7E:69:E5:9F:80:84:64:B4:94:50:97 X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/4F7540B64BE311F096B8CE67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.15.72.0/22 61.15.80.0/22 61.15.88.0/22 61.15.97.0/24 203.168.221.0/24 203.168.238.0/24 203.168.244.0-203.168.251.255 203.168.253.0/24 203.168.255.0/24 222.167.36.0-222.167.40.255 Signature Algorithm: sha256WithRSAEncryption a3:28:7e:38:d8:9c:f7:43:d4:44:bf:6e:a7:55:7a:2c:5a:47: 31:e2:86:0b:48:ce:58:3f:d8:09:82:78:0e:2a:c0:2c:4d:37: 1a:17:5d:54:aa:86:9b:a8:fe:d8:04:34:6f:4a:bd:a7:0c:d4: 26:e1:19:ca:0c:88:80:98:c0:e5:5f:38:5d:8f:cf:01:e2:1e: 87:69:f0:60:b1:28:76:53:bf:3b:73:7d:d8:32:f7:b9:69:b6: e6:b2:da:ee:19:8d:1f:f7:b1:44:fe:58:a0:d3:b1:80:df:b5: 01:b7:8c:45:2e:6c:3e:84:86:5f:db:3e:81:76:85:af:b2:aa: 9c:8e:52:a1:b4:e9:40:95:79:0e:24:1d:bb:82:ab:bb:8e:1d: 55:be:de:1f:4c:00:ab:e3:0d:4d:c5:25:f4:b7:65:1f:f7:e0: 38:47:dd:dd:05:49:0e:d9:f6:49:d0:57:50:2a:2c:2f:93:7d: 40:61:5b:d5:e6:e2:fc:ac:95:c8:0b:7e:59:9e:c0:b6:93:45: 15:cd:7c:01:75:2e:e5:b5:b7:05:d6:95:8b:7d:8a:aa:75:f6: f2:77:e9:b8:5e:80:87:99:5e:78:44:6a:2f:97:68:78:7b:7f: 18:9a:1b:84:25:3e:13:bd:3c:53:74:0d:3d:67:8d:8a:f6:4a: e4:1f:b0:9d -----BEGIN CERTIFICATE----- MIIFtzCCBJ+gAwIBAgICC4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjUxMjIzMDI0ODQ2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDDA02OTRhMDMwZC1iZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Hsewqu2/5VaJhhYHKZ+sY8c0RBhe9CAtABvg0+yJyXgazRhziFgJihkbDBf 7CrtosraZ4L8FCSJtG2/M5KvZWV0QEHgLccxKaTRVuGfpBFqAkR2FSCCifNwBeqc M8D5J6/Oc72b3Lp1Id+lbjWJngQkNa2jOGMVf9NZgsnLIY504cOfVXXVYFzDf5xv ioU8dUp8XDdU5Q3a/SLQ83mxzjjBTBKt9H/e4EwEjTZtLJwJXZ+6122iBegX3EK2 Z7WxNvL7GCLwwGdCsW+/5jRCnsvjqkFpgRuQV4g8/WlQo6QsG2+fyGUPzjh/4H2H gwsR7eC/Tur2poImsPnFsIik7QIDAQABo4IC2zCCAtcwHQYDVR0OBBYEFNOrWxVb H+8onn5p5Z+AhGS0lFCXMB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvNEY3NTQwQjY0 QkUzMTFGMDk2QjhDRTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZQYIKwYBBQUHAQcBAf8E VjBUMFIEAgABMEwDBAI9D0gDBAI9D1ADBAI9D1gDBAA9D2EDBADLqN0DBADLqO4w DAMEAsuo9AMEAsuo+AMEAMuo/QMEAMuo/zAMAwQC3qckAwQA3qcoMA0GCSqGSIb3 DQEBCwUAA4IBAQCjKH442Jz3Q9REv26nVXosWkcx4oYLSM5YP9gJgngOKsAsTTca F11UqoabqP7YBDRvSr2nDNQm4RnKDIiAmMDlXzhdj88B4h6HafBgsSh2U787c33Y Mve5abbmstruGY0f97FE/lig07GA37UBt4xFLmw+hIZf2z6BdoWvsqqcjlKhtOlA lXkOJB27gqu7jh1Vvt4fTACr4w1NxSX0t2Uf9+A4R93dBUkO2fZJ0FdQKiwvk31A YVvV5uL8rJXIC35ZnsC2k0UVzXwBdS7ltbcF1pWLfYqqdfbyd+m4XoCHmV54RGov l2h4e38YmhuEJT4TvTxTdA09Z42K9krkH7Cd -----END CERTIFICATE-----Generated at Sun Jan 25 16:45:31 2026 by rpki-client