This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/18DDC828563A11F092DD586EC4F9AE02.roa File: 18DDC828563A11F092DD586EC4F9AE02.roa (raw, json) Hash identifier: bU0MJSXGsqVMy5OCElDKtpTzBkDVUhUuNS+lSfzDOig= Subject key identifier: 7E:7F:12:BD:62:98:7B:1E:E3:21:F5:D1:CE:F7:32:31:69:F2:01:A4 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 07AC Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/18DDC828563A11F092DD586EC4F9AE02.roa Signing time: Sun 18 Jan 2026 14:40:20 +0000 ROA not before: Sun 18 Jan 2026 14:40:20 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 932 IP address blocks: 43.247.132.0/22 maxlen: 24 43.254.164.0/22 maxlen: 24 43.255.120.0/22 maxlen: 24 43.255.156.0/22 maxlen: 24 103.24.216.0/22 maxlen: 24 103.30.76.0/22 maxlen: 24 103.171.34.0/23 maxlen: 24 103.231.56.0/22 maxlen: 24 103.240.196.0/22 maxlen: 24 2401:2660:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1964 (0x7ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322, serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Jan 18 14:40:20 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=696cf0d4-4409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9d:5a:db:3c:87:9c:40:a3:ba:5e:ec:f9:a7: bc:5f:04:01:08:73:68:c7:24:81:fb:b0:ad:6a:6e: bd:8b:26:5a:81:d4:fb:52:a9:39:17:43:33:c2:ec: 0a:95:05:2c:bb:90:d3:e0:bf:c9:bc:77:45:e0:fa: fa:c3:1e:d6:c9:cb:ef:cb:db:ef:11:cd:56:e6:f0: 92:1a:17:f8:d0:6d:f9:61:b6:63:4b:03:e3:a0:cf: 7d:df:45:7f:b6:d0:2a:42:42:0a:fa:1c:f0:67:cb: 3e:e7:3b:4c:5e:3e:7c:50:4e:c6:b1:e8:fa:ff:27: 45:f3:a4:cb:82:9a:bb:f5:f3:85:62:15:40:85:da: e0:a2:d4:ae:33:ed:be:7a:36:4d:8d:99:5e:95:1a: 9b:ba:88:6d:fc:0b:34:33:67:61:75:1a:79:87:c2: bb:c0:42:63:78:78:b7:ed:3a:1e:3d:4c:e6:b1:8c: 4e:01:2b:32:c6:ec:55:3d:20:fd:11:58:5f:c3:ce: e4:14:8e:97:80:6f:0f:78:3d:08:31:e0:57:7d:ef: de:cd:b5:50:47:29:4a:78:4a:65:87:9b:ce:82:83: c2:d7:43:c6:2c:e0:9b:61:b4:17:3b:ec:72:ec:61: e6:2d:72:2e:fc:a2:cb:ba:bf:f8:9f:82:94:05:40: 3e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:7F:12:BD:62:98:7B:1E:E3:21:F5:D1:CE:F7:32:31:69:F2:01:A4 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/18DDC828563A11F092DD586EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.247.132.0/22 43.254.164.0/22 43.255.120.0/22 43.255.156.0/22 103.24.216.0/22 103.30.76.0/22 103.171.34.0/23 103.231.56.0/22 103.240.196.0/22 IPv6: 2401:2660:1000::/36 Signature Algorithm: sha256WithRSAEncryption 85:78:9e:1e:1f:62:56:ed:85:48:bf:0c:f2:dc:a2:4b:db:7b: 61:2b:5c:f0:13:22:b4:b2:94:9c:4f:7c:bb:3a:70:8f:d4:ac: b7:b5:4d:e2:74:0a:eb:51:b9:a7:5e:39:21:79:7c:f4:b1:3f: 17:70:34:a0:8d:f9:d5:c6:16:82:c6:5b:ea:35:74:74:da:92: 9d:c7:fd:ef:03:ec:8d:71:e3:2e:63:38:2a:e5:c6:87:0a:69: 73:61:c1:4e:f1:06:2b:5e:e0:c8:48:33:3c:ff:24:1c:3c:28: f3:a1:1b:31:98:47:81:fc:7d:c0:3e:89:6d:26:63:a6:0c:09: 13:ea:c4:08:43:79:3a:95:ad:b0:eb:ed:a4:27:ed:f0:71:56: 41:e1:36:4e:b1:91:4b:ee:16:92:b4:a2:7e:79:0e:6c:ec:9d: b1:60:6c:83:43:44:63:2e:38:b7:b5:95:7a:14:87:2f:ad:65: c4:a3:53:82:dc:d2:1e:28:fe:13:23:5a:08:6a:1b:ae:3b:34: 1b:c6:a7:71:2f:4a:90:61:13:66:a0:89:f9:04:05:6b:af:23: ce:19:bf:2a:10:87:8c:e8:bf:f0:75:e1:e2:8f:39:0a:a6:b5: 1c:9b:ef:6c:bf:19:c4:4b:ab:27:09:c5:c9:63:0e:ac:01:ef: 23:2f:95:a4 -----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgICB6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjYwMTE4MTQ0MDIwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTZjZjBkNC00NDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJ1a2zyHnECjul7s+ae8XwQBCHNoxySB+7Ctam69iyZagdT7Uqk5F0MzwuwK lQUsu5DT4L/JvHdF4Pr6wx7Wycvvy9vvEc1W5vCSGhf40G35YbZjSwPjoM9930V/ ttAqQkIK+hzwZ8s+5ztMXj58UE7Gsej6/ydF86TLgpq79fOFYhVAhdrgotSuM+2+ ejZNjZlelRqbuoht/As0M2dhdRp5h8K7wEJjeHi37ToePUzmsYxOASsyxuxVPSD9 EVhfw87kFI6XgG8PeD0IMeBXfe/ezbVQRylKeEplh5vOgoPC10PGLOCbYbQXO+xy 7GHmLXIu/KLLur/4n4KUBUA+6QIDAQABo4IC1TCCAtEwHQYDVR0OBBYEFH5/Er1i mHse4yH10c73MjFp8gGkMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvMThEREM4Mjg1 NjNBMTFGMDkyREQ1ODZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXwYIKwYBBQUHAQcBAf8E UDBOMDwEAgABMDYDBAIr94QDBAIr/qQDBAIr/3gDBAIr/5wDBAJnGNgDBAJnHkwD BAFnqyIDBAJn5zgDBAJn8MQwDgQCAAIwCAMGBCQBJmAQMA0GCSqGSIb3DQEBCwUA A4IBAQCFeJ4eH2JW7YVIvwzy3KJL23thK1zwEyK0spScT3y7OnCP1Ky3tU3idArr UbmnXjkheXz0sT8XcDSgjfnVxhaCxlvqNXR02pKdx/3vA+yNceMuYzgq5caHCmlz YcFO8QYrXuDISDM8/yQcPCjzoRsxmEeB/H3APoltJmOmDAkT6sQIQ3k6la2w6+2k J+3wcVZB4TZOsZFL7haStKJ+eQ5s7J2xYGyDQ0RjLji3tZV6FIcvrWXEo1OC3NIe KP4TI1oIahuuOzQbxqdxL0qQYRNmoIn5BAVrryPOGb8qEIeM6L/wdeHijzkKprUc m+9svxnES6snCcXJYw6sAe8jL5Wk -----END CERTIFICATE-----Generated at Sun Jan 25 18:27:46 2026 by rpki-client