This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/86CCDF8EC91411F085F4A61BC4F9AE02.roa File: 86CCDF8EC91411F085F4A61BC4F9AE02.roa (raw, json) Hash identifier: iu8Dyk5Qv95gSvhMYx99k6dn0qCT8hNUapTROLABhvo= Subject key identifier: B4:F5:E0:B8:F6:6D:5C:5B:5A:96:5E:26:17:D4:C6:63:3E:37:33:7C Certificate issuer: /CN=A913D2D8/serialNumber=A2D0E7DF88AB69DB6E059A3064E4DDC1E6FC9D19 Certificate serial: 02 Authority key identifier: A2:D0:E7:DF:88:AB:69:DB:6E:05:9A:30:64:E4:DD:C1:E6:FC:9D:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/otDn34iradtuBZowZOTdweb8nRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/86CCDF8EC91411F085F4A61BC4F9AE02.roa Signing time: Mon 24 Nov 2025 09:04:05 +0000 ROA not before: Mon 24 Nov 2025 09:04:05 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 4594 IP address blocks: 103.224.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/otDn34iradtuBZowZOTdweb8nRk.crl rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/otDn34iradtuBZowZOTdweb8nRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/otDn34iradtuBZowZOTdweb8nRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 06:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D2D8, serialNumber=A2D0E7DF88AB69DB6E059A3064E4DDC1E6FC9D19 Validity Not Before: Nov 24 09:04:05 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69241f84-554c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:40:8b:d6:f3:25:9e:df:03:c8:6b:f6:5d:91: 05:28:d9:97:46:18:65:aa:be:15:6d:8a:79:57:51: 02:51:cd:aa:16:0e:80:fd:ee:0e:94:44:2d:27:c1: 10:0e:c5:28:3f:11:7b:f0:34:de:d4:21:67:c5:a7: 83:04:d3:0c:b3:a1:ec:81:b9:06:d9:cf:24:81:df: 80:15:b6:23:a8:a2:e4:25:13:2d:c2:3a:40:01:8d: b2:ae:fd:06:39:eb:85:4e:5a:8f:07:5a:c7:b2:7e: d5:19:eb:c2:25:70:82:a8:21:5d:15:b1:a3:de:34: ee:2f:ec:95:86:d1:84:76:1f:9e:6a:67:67:bb:0d: 45:74:a8:ed:10:45:ba:95:59:4d:ac:14:f3:82:91: 39:5b:19:61:81:ff:6d:7d:f6:ad:d4:48:d8:72:d5: 46:00:17:1d:03:d3:d3:b7:94:35:f9:7b:5b:bd:f6: e4:ac:34:ad:51:83:d8:7d:29:c3:b4:57:f6:7e:62: 0b:76:be:0f:75:28:40:46:64:45:0c:80:c4:f4:ba: 8f:63:f2:12:43:a9:0b:4d:c0:90:93:7d:d9:10:a1: d7:1b:b0:53:92:1f:b5:0c:f5:86:de:ce:41:11:c1: bc:44:ff:e0:b5:09:a8:99:9a:21:40:ac:5b:39:6d: b1:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F5:E0:B8:F6:6D:5C:5B:5A:96:5E:26:17:D4:C6:63:3E:37:33:7C X509v3 Authority Key Identifier: keyid:A2:D0:E7:DF:88:AB:69:DB:6E:05:9A:30:64:E4:DD:C1:E6:FC:9D:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/otDn34iradtuBZowZOTdweb8nRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/otDn34iradtuBZowZOTdweb8nRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/86CCDF8EC91411F085F4A61BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.20.0/24 Signature Algorithm: sha256WithRSAEncryption a7:6d:1c:4a:06:e4:04:c8:44:54:55:d9:18:77:2b:eb:e3:28: 70:73:af:33:f6:c3:e1:e1:23:32:af:6c:f4:e6:9a:73:70:41: ad:c3:07:7f:f4:90:87:4d:53:31:aa:a9:ae:f2:df:07:db:24: 5f:3f:e6:fe:d5:c1:9b:c0:b0:27:fe:12:53:08:0c:63:49:5a: 71:a2:ea:a6:b4:79:63:22:be:1e:c0:df:d8:22:d8:81:9c:a3: 84:47:1b:2c:08:8e:b5:4f:7a:29:e5:ed:1e:b8:5f:3d:2d:7b: a8:d6:ca:85:8b:b3:48:40:1d:05:40:d9:41:3b:09:62:59:e6: 7b:b8:8b:13:0e:31:f4:19:26:2d:7e:af:c4:f4:6a:70:35:ef: d9:a7:6a:e8:89:cf:de:ff:39:34:eb:67:fe:a0:af:59:4f:cb: e9:68:5c:a7:93:86:e8:2d:db:99:56:77:f6:fe:36:1a:99:ac: 00:07:a0:56:35:0b:25:aa:81:62:89:65:20:df:7f:46:de:d1: 00:61:33:da:80:77:f8:6d:2a:e9:38:db:de:0d:91:67:71:3d: 29:58:65:e9:97:51:ab:19:17:0f:cc:3d:a2:2a:ba:2d:3a:ef: 76:26:b3:5f:20:db:76:22:97:e5:9b:70:69:9f:cb:80:3c:1f: 7e:26:7b:19 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RDJEODExMC8GA1UEBRMoQTJEMEU3REY4OEFCNjlEQjZFMDU5QTMwNjRFNEREQzFF NkZDOUQxOTAeFw0yNTExMjQwOTA0MDVaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MjQxZjg0LTU1NGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzQIvW8yWe3wPIa/ZdkQUo2ZdGGGWqvhVtinlXUQJRzaoWDoD97g6URC0nwRAO xSg/EXvwNN7UIWfFp4ME0wyzoeyBuQbZzySB34AVtiOoouQlEy3COkABjbKu/QY5 64VOWo8HWseyftUZ68IlcIKoIV0VsaPeNO4v7JWG0YR2H55qZ2e7DUV0qO0QRbqV WU2sFPOCkTlbGWGB/2199q3USNhy1UYAFx0D09O3lDX5e1u99uSsNK1Rg9h9KcO0 V/Z+Ygt2vg91KEBGZEUMgMT0uo9j8hJDqQtNwJCTfdkQodcbsFOSH7UM9YbezkER wbxE/+C1CaiZmiFArFs5bbE/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUtPXguPZt XFtall4mF9TGYz43M3wwHwYDVR0jBBgwFoAUotDn34iradtuBZowZOTdweb8nRkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEMkQ4Lzk0OTZENzRFQzkx MTExRjBCMDAxQ0U4M0M0RjlBRTAyL290RG4zNGlyYWR0dUJab3daT1Rkd2ViOG5S ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb3REbjM0aXJhZHR1Qlpvd1pPVGR3ZWI4blJrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDJEOC85NDk2RDc0RUM5MTExMUYwQjAwMUNFODNDNEY5QUUwMi84NkNDREY4RUM5 MTQxMUYwODVGNEE2MUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfgFDANBgkqhkiG9w0BAQsFAAOCAQEAp20cSgbkBMhEVFXZ GHcr6+MocHOvM/bD4eEjMq9s9Oaac3BBrcMHf/SQh01TMaqprvLfB9skXz/m/tXB m8CwJ/4SUwgMY0lacaLqprR5YyK+HsDf2CLYgZyjhEcbLAiOtU96KeXtHrhfPS17 qNbKhYuzSEAdBUDZQTsJYlnme7iLEw4x9BkmLX6vxPRqcDXv2adq6InP3v85NOtn /qCvWU/L6Whcp5OG6C3bmVZ39v42GpmsAAegVjULJaqBYollIN9/Rt7RAGEz2oB3 +G0q6Tjb3g2RZ3E9KVhl6ZdRqxkXD8w9oiq6LTrvdiazXyDbdiKX5ZtwaZ/LgDwf fiZ7GQ== -----END CERTIFICATE-----Generated at Mon Dec 8 06:42:10 2025 by rpki-client