This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/4580DDDEEA0A11F09D7A92E76F6F56BC.roa File: 4580DDDEEA0A11F09D7A92E76F6F56BC.roa (raw, json) Hash identifier: It+BLxLG+V90b4ztuD5vBuPs9evgfbM//9L1Ya85He0= Subject key identifier: 52:92:D8:B4:CD:79:B4:AD:DC:43:BC:4F:B8:8E:44:D9:40:DE:F4:27 Certificate issuer: /CN=A913B7B2/serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Certificate serial: 0BA1 Authority key identifier: 09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/4580DDDEEA0A11F09D7A92E76F6F56BC.roa Signing time: Mon 05 Jan 2026 07:47:48 +0000 ROA not before: Mon 05 Jan 2026 07:47:48 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 23532 IP address blocks: 103.6.20.0/24 maxlen: 24 103.6.21.0/24 maxlen: 24 103.6.22.0/24 maxlen: 24 103.6.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:36:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2977 (0xba1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B7B2, serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Validity Not Before: Jan 5 07:47:48 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695b6ca3-9bc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:a7:82:8c:61:e5:99:ca:05:c7:a6:98:83:f5: 1e:9f:af:64:98:8f:b8:a6:24:b7:d2:7b:f2:c7:6c: f4:09:88:82:61:69:75:53:17:b8:2f:b9:1a:cc:74: 12:af:bf:ad:db:83:0a:fc:af:21:43:ea:a2:de:aa: 0f:85:27:a7:71:c5:98:92:fe:07:d3:54:32:21:38: 3a:f5:ec:41:7e:94:7d:51:35:56:75:5c:bc:07:03: af:2f:b3:26:63:cc:68:d4:c1:f7:d7:b7:19:ec:6a: 74:12:6f:94:e8:68:6a:54:ff:04:f3:f0:db:2b:22: 18:03:13:2c:b7:47:46:1b:5e:40:06:ce:a5:dc:25: 92:0a:e9:fe:08:c8:44:3b:57:ed:41:fb:c3:ca:1f: c5:06:d1:06:44:ec:31:7f:ea:38:8d:54:8f:08:bb: 2f:07:0e:69:6e:0f:4d:71:d0:a9:c5:40:d2:83:a4: 41:22:d0:1a:21:41:24:79:7e:a7:cc:4a:92:48:cd: 72:69:c2:27:f5:00:3c:6e:1c:69:aa:1a:07:3b:97: 6c:a8:67:68:8e:82:5f:8b:1e:a6:00:d5:78:81:67: d3:c8:98:55:a0:fa:94:54:03:ba:92:6c:6b:16:26: 23:dc:64:2c:64:73:68:7d:d2:af:a8:b1:af:0c:03: 1a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:92:D8:B4:CD:79:B4:AD:DC:43:BC:4F:B8:8E:44:D9:40:DE:F4:27 X509v3 Authority Key Identifier: keyid:09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/4580DDDEEA0A11F09D7A92E76F6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.20.0/22 Signature Algorithm: sha256WithRSAEncryption 06:dc:11:b2:fc:07:7d:cc:af:5b:8f:33:ba:9e:72:4f:79:90: 91:06:d9:b2:07:6c:bf:4c:07:f5:16:07:91:86:7b:6c:87:11: 01:a5:4e:4c:f6:e4:ed:48:cc:95:b0:16:b2:0d:b7:a6:a0:d4: 02:d3:e5:b9:64:f7:a7:8b:96:41:2c:58:e9:59:77:63:a1:46: ad:c2:cc:c5:b3:18:4e:9c:ab:e0:03:6a:fe:eb:fd:67:c1:f7: bf:30:4c:ce:40:0b:a7:d8:a2:b5:a8:74:ac:d0:31:ad:08:7e: 96:a8:65:da:03:37:fe:b8:71:5d:59:c4:ae:03:15:09:e2:12: 70:6d:6d:5e:c0:e4:60:62:89:6f:59:ce:35:ed:1a:49:b2:aa: 85:ec:7a:d5:f3:81:18:c1:73:bf:05:80:83:53:fa:29:3f:e5: 18:2f:e0:04:3d:cf:ea:d0:0c:20:44:ca:eb:81:98:0f:9b:e8: 91:bb:32:44:2c:f7:fb:3e:d9:5b:13:6f:79:47:f9:eb:29:4c: ef:ec:ab:1a:9e:19:5e:f2:60:38:db:3b:20:c8:77:89:d5:fb: 54:16:7c:50:3d:27:6e:1a:02:50:8d:0a:0a:1d:9c:fb:69:3d: 70:6a:0c:06:36:bd:63:27:62:80:2b:82:f9:78:b3:21:35:e7: 63:cb:27:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I3QjIxMTAvBgNVBAUTKDA5OTI1REI2N0I0QUI5REY2MDA2RTdCRDJCQzFEOEVE QzhDQzdFMTkwHhcNMjYwMTA1MDc0NzQ4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTViNmNhMy05YmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi6eCjGHlmcoFx6aYg/Uen69kmI+4piS30nvyx2z0CYiCYWl1Uxe4L7kazHQS r7+t24MK/K8hQ+qi3qoPhSenccWYkv4H01QyITg69exBfpR9UTVWdVy8BwOvL7Mm Y8xo1MH317cZ7Gp0Em+U6GhqVP8E8/DbKyIYAxMst0dGG15ABs6l3CWSCun+CMhE O1ftQfvDyh/FBtEGROwxf+o4jVSPCLsvBw5pbg9NcdCpxUDSg6RBItAaIUEkeX6n zEqSSM1yacIn9QA8bhxpqhoHO5dsqGdojoJfix6mANV4gWfTyJhVoPqUVAO6kmxr FiYj3GQsZHNofdKvqLGvDAMaywIDAQABo4IClTCCApEwHQYDVR0OBBYEFFKS2LTN ebSt3EO8T7iORNlA3vQnMB8GA1UdIwQYMBaAFAmSXbZ7SrnfYAbnvSvB2O3IzH4Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjdCMi80MDY2NTAwODQx NkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3VkOWdCdWU5SzhIWTdjak1m aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaSmR0bnRLdWQ5Z0J1ZTlLOEhZN2NqTWZoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I3QjIvNDA2NjUwMDg0MTZGMTFFQUI1QzdDQTY1QzRGOUFFMDIvNDU4MEREREVF QTBBMTFGMDlEN0E5MkU3NkY2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnBhQwDQYJKoZIhvcNAQELBQADggEBAAbcEbL8B33Mr1uP M7qeck95kJEG2bIHbL9MB/UWB5GGe2yHEQGlTkz25O1IzJWwFrINt6ag1ALT5blk 96eLlkEsWOlZd2OhRq3CzMWzGE6cq+ADav7r/WfB978wTM5AC6fYorWodKzQMa0I fpaoZdoDN/64cV1ZxK4DFQniEnBtbV7A5GBiiW9ZzjXtGkmyqoXsetXzgRjBc78F gINT+ik/5Rgv4AQ9z+rQDCBEyuuBmA+b6JG7MkQs9/s+2VsTb3lH+espTO/sqxqe GV7yYDjbOyDId4nV+1QWfFA9J24aAlCNCgodnPtpPXBqDAY2vWMnYoArgvl4syE1 52PLJzw= -----END CERTIFICATE-----Generated at Sun Jan 25 12:01:43 2026 by rpki-client