This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/C8D6C4CAD1EF11EAA9944238C4F9AE02.roa File: C8D6C4CAD1EF11EAA9944238C4F9AE02.roa (raw, json) Hash identifier: CGzLlrBG4Jq/jfIleVYPr6Y+8KjSwIARv3HIPxxaYjA= Subject key identifier: 91:87:B6:7E:1E:75:78:11:6C:A5:A1:F6:02:98:79:6C:F3:1C:2E:58 Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 268F Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/C8D6C4CAD1EF11EAA9944238C4F9AE02.roa Signing time: Wed 31 Dec 2025 18:14:40 +0000 ROA not before: Wed 31 Dec 2025 18:14:40 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 139038 IP address blocks: 103.138.210.0/24 maxlen: 24 103.138.210.254/32 maxlen: 32 2001:df0:5580::/48 maxlen: 48 2001:df0:5580::/54 maxlen: 54 2001:df0:5580:800::/54 maxlen: 54 2001:df0:5580:1000::/52 maxlen: 52 2001:df0:5580:1000::/54 maxlen: 54 2001:df0:5580:2000::/52 maxlen: 52 2001:df0:5580:3000::/52 maxlen: 52 2001:df0:5580:7000::/52 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:14:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9871 (0x268f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805, serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Validity Not Before: Dec 31 18:14:40 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69556810-88dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:81:6f:ca:23:36:3a:44:b3:da:de:d9:1f:5b: 80:6c:17:5c:77:40:0e:1b:65:b8:48:68:44:7f:d7: 76:39:06:9a:c5:b7:3a:8f:86:ed:e8:72:0b:89:4e: aa:b7:13:82:3d:fa:41:67:5f:dd:50:0a:a9:2f:ed: 33:c3:10:85:64:89:39:2d:c1:5b:5d:c2:a4:08:1c: 5c:97:66:e4:f0:e7:2c:24:c7:73:e7:89:86:63:e1: 3f:6e:ef:6b:80:c4:08:34:eb:17:ba:d0:7d:fe:77: 9b:53:ca:95:46:1d:12:25:d1:29:b7:58:2b:cb:52: 04:6c:e5:b9:90:b1:96:fb:6c:99:ec:91:43:50:20: ba:1c:eb:c1:11:72:c0:fc:8f:f3:06:c5:6e:db:61: ea:3c:8f:a5:e8:e2:3e:76:d9:a7:56:53:7c:f0:3f: c4:c1:4f:61:97:2d:f6:32:1c:1e:4a:60:6b:61:7c: d3:d8:1e:12:b7:be:7f:a7:17:ca:3e:d2:81:7c:ee: d8:ab:9a:a8:16:68:8f:1d:bc:e5:55:c9:41:f1:ed: f9:2d:f1:c8:49:bf:df:90:81:19:1c:e6:2d:c6:2b: 14:76:9e:24:01:d6:f6:47:e8:7e:cf:6c:c7:f4:b2: 3c:a7:6e:c7:71:f5:f6:2b:c3:55:8f:24:cb:43:67: fd:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:87:B6:7E:1E:75:78:11:6C:A5:A1:F6:02:98:79:6C:F3:1C:2E:58 X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/C8D6C4CAD1EF11EAA9944238C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.210.0/24 IPv6: 2001:df0:5580::/48 Signature Algorithm: sha256WithRSAEncryption 4e:ea:8f:2f:51:e8:22:84:ca:da:04:c6:c2:32:75:94:61:9c: 70:79:7d:33:d7:1d:34:fd:0f:46:04:c8:78:40:d0:e6:aa:70: 75:58:c2:13:2b:a4:51:e2:eb:fb:75:fd:68:69:4f:c0:b2:90: 5f:8a:ca:ce:31:75:1d:1c:d6:57:62:76:c5:6e:48:a0:89:49: ca:a9:0f:44:ad:34:49:ca:ea:44:ee:ec:87:40:c5:b2:93:25: 4b:68:da:0c:7d:3f:a2:f1:56:c0:ef:97:b3:fa:a1:46:bd:df: 08:58:e4:b1:f7:da:b9:9d:14:34:31:99:ad:8a:80:b4:4b:24: f8:1a:22:4e:cb:eb:c4:d3:16:46:0d:09:93:2b:f7:bb:20:6d: 66:f8:53:ec:20:21:4a:20:3b:54:6f:b3:17:b0:6c:31:30:67: a4:34:ac:ca:1f:94:ed:3f:2b:ce:03:1d:91:5b:48:5e:8b:b6: 0c:a7:77:45:43:90:f1:60:3b:3c:dd:18:49:51:77:54:ef:92: c0:25:f4:01:ca:3b:46:0a:bb:10:bf:48:e8:04:b4:a7:f0:2b: b2:7c:6c:ef:e3:7a:e0:74:66:2c:69:fe:2a:d3:fb:94:cf:31: c6:91:a7:89:fe:36:79:23:92:06:d2:ba:47:be:51:9d:c4:64: c8:90:c3:9f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICJo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjUxMjMxMTgxNDQwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU1NjgxMC04OGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYFvyiM2OkSz2t7ZH1uAbBdcd0AOG2W4SGhEf9d2OQaaxbc6j4bt6HILiU6q txOCPfpBZ1/dUAqpL+0zwxCFZIk5LcFbXcKkCBxcl2bk8OcsJMdz54mGY+E/bu9r gMQINOsXutB9/nebU8qVRh0SJdEpt1gry1IEbOW5kLGW+2yZ7JFDUCC6HOvBEXLA /I/zBsVu22HqPI+l6OI+dtmnVlN88D/EwU9hly32MhweSmBrYXzT2B4St75/pxfK PtKBfO7Yq5qoFmiPHbzlVclB8e35LfHISb/fkIEZHOYtxisUdp4kAdb2R+h+z2zH 9LI8p27HcfX2K8NVjyTLQ2f9GwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJGHtn4e dXgRbKWh9gKYeWzzHC5YMB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvQzhENkM0Q0FE MUVGMTFFQUE5OTQ0MjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnitIwDwQCAAIwCQMHACABDfBVgDANBgkqhkiG9w0BAQsF AAOCAQEATuqPL1HoIoTK2gTGwjJ1lGGccHl9M9cdNP0PRgTIeEDQ5qpwdVjCEyuk UeLr+3X9aGlPwLKQX4rKzjF1HRzWV2J2xW5IoIlJyqkPRK00ScrqRO7sh0DFspMl S2jaDH0/ovFWwO+Xs/qhRr3fCFjksffauZ0UNDGZrYqAtEsk+BoiTsvrxNMWRg0J kyv3uyBtZvhT7CAhSiA7VG+zF7BsMTBnpDSsyh+U7T8rzgMdkVtIXou2DKd3RUOQ 8WA7PN0YSVF3VO+SwCX0Aco7Rgq7EL9I6AS0p/Arsnxs7+N64HRmLGn+KtP7lM8x xpGnif42eSOSBtK6R75RncRkyJDDnw== -----END CERTIFICATE-----Generated at Sun Jan 25 11:09:43 2026 by rpki-client