This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/48BB49E8763A11EFA077F11CC4F9AE02.roa File: 48BB49E8763A11EFA077F11CC4F9AE02.roa (raw, json) Hash identifier: Pst+EyYihHYvgrhmvznh/Qw7ABaO8rde6PoQvXSj1X0= Subject key identifier: 88:F9:33:84:94:0B:E7:8D:AA:33:DE:EE:8E:1D:13:1B:41:16:8B:05 Certificate issuer: /CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Certificate serial: 1F3D Authority key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/48BB49E8763A11EFA077F11CC4F9AE02.roa Signing time: Thu 06 Nov 2025 15:53:56 +0000 ROA not before: Thu 06 Nov 2025 15:53:56 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 209242 IP address blocks: 114.129.43.0/24 maxlen: 24 2400:c760:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7997 (0x1f3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0E3, serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Validity Not Before: Nov 6 15:53:56 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690cc494-66a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2a:46:69:1a:7a:21:34:56:5d:76:fa:ab:9e: bb:00:48:41:22:23:dc:86:f8:9d:13:1a:5f:ee:1f: 0c:35:4f:03:62:9b:2a:71:73:de:16:57:31:43:68: f4:6a:e0:13:65:fc:45:4e:f0:18:45:e4:40:d4:64: 00:cb:2e:11:35:d1:e6:66:ee:5d:68:65:fa:93:24: d5:e4:8e:ae:e6:eb:f5:05:7b:ca:24:44:92:b6:52: c3:30:ca:0d:50:6b:cc:5a:17:66:dc:48:e4:03:10: dc:6c:a6:ed:b6:59:13:23:96:4b:4e:17:b7:67:ca: 9b:9c:9d:35:34:ec:29:a0:1e:ce:47:19:ae:3f:40: 5b:6c:66:31:15:5f:f0:3e:f5:cf:2f:60:44:75:8c: 1c:c5:d2:f5:1c:05:bc:dc:4c:57:9b:59:5e:1e:b6: fa:cc:5c:ea:b3:a5:8b:60:59:ce:49:f3:a3:14:0a: d7:77:f2:d8:cb:0b:c4:2c:15:fa:ce:35:78:82:b8: 13:9a:d5:f9:ee:40:73:89:d5:35:ca:a3:eb:6d:66: 94:fe:43:bf:a5:70:d6:a0:10:01:65:2b:61:12:c8: d9:b9:41:28:dd:20:87:00:ac:90:ff:8a:6f:c7:76: 2b:8f:f4:59:a7:9d:92:b7:2d:2c:9b:df:ea:ba:43: c4:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F9:33:84:94:0B:E7:8D:AA:33:DE:EE:8E:1D:13:1B:41:16:8B:05 X509v3 Authority Key Identifier: keyid:8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/48BB49E8763A11EFA077F11CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.129.43.0/24 IPv6: 2400:c760:a::/48 Signature Algorithm: sha256WithRSAEncryption 0c:84:b4:2e:69:d9:66:10:22:51:53:1d:71:69:43:ee:3c:39: db:d2:71:89:43:ed:36:48:12:44:14:fe:fd:ba:e3:6f:cd:f0: 41:70:76:95:b5:12:3b:ca:5b:a6:d8:20:5c:16:0a:7f:43:e7: 92:d7:8f:7b:69:4b:10:f0:ae:07:51:94:8b:53:55:c2:dd:81: bc:ec:27:be:08:89:42:a8:77:93:bc:6b:b7:78:15:0d:4b:09: 18:43:d6:77:da:1b:16:3c:06:4b:6a:25:08:12:62:3b:a0:25: 08:91:66:76:1f:8d:a4:12:bb:74:d9:48:95:48:d6:50:16:72: 11:05:b7:55:13:e9:3c:fd:72:df:66:6c:77:a8:c5:66:f9:0f: 96:f3:5b:92:30:28:63:a6:60:ac:cd:d4:83:cd:48:13:ff:4e: 1a:e4:cd:0e:b9:ba:5a:ba:14:ca:84:e3:3f:d0:c6:02:80:82: 84:be:a8:56:0f:54:5c:b7:b0:95:43:b7:0d:a8:6a:01:bc:36: 76:de:ac:52:ba:a9:cb:20:63:3f:d8:e6:6e:64:26:99:09:0f: 2d:37:9f:05:11:71:5d:f2:81:d2:b9:25:ac:22:9c:55:95:61: 9a:c4:3f:b0:e6:d3:bf:21:db:76:ce:0c:88:8a:de:d5:d8:35: e9:6b:aa:57 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICHz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwRTMxMTAvBgNVBAUTKDhFODM3NzgxMENGOUMyMDRCQjEyNTg0RjNFNUI1RjA1 MDM2ODI0NkYwHhcNMjUxMTA2MTU1MzU2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBjYzQ5NC02NmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoypGaRp6ITRWXXb6q567AEhBIiPchvidExpf7h8MNU8DYpsqcXPeFlcxQ2j0 auATZfxFTvAYReRA1GQAyy4RNdHmZu5daGX6kyTV5I6u5uv1BXvKJESStlLDMMoN UGvMWhdm3EjkAxDcbKbttlkTI5ZLThe3Z8qbnJ01NOwpoB7ORxmuP0BbbGYxFV/w PvXPL2BEdYwcxdL1HAW83ExXm1leHrb6zFzqs6WLYFnOSfOjFArXd/LYywvELBX6 zjV4grgTmtX57kBzidU1yqPrbWaU/kO/pXDWoBABZSthEsjZuUEo3SCHAKyQ/4pv x3Yrj/RZp52Sty0sm9/qukPE6QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIj5M4SU C+eNqjPe7o4dExtBFosFMB8GA1UdIwQYMBaAFI6Dd4EM+cIEuxJYTz5bXwUDaCRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBFMy8yOTE1NzZCRTZC MzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdnUzdFbGhQUGx0ZkJRTm9K RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvTjNnUXo1d2dTN0VsaFBQbHRmQlFOb0pHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YwRTMvMjkxNTc2QkU2QjM0MTFFNjkxODRCNjZDQzRGOUFFMDIvNDhCQjQ5RTg3 NjNBMTFFRkEwNzdGMTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABygSswDwQCAAIwCQMHACQAx2AACjANBgkqhkiG9w0BAQsF AAOCAQEADIS0LmnZZhAiUVMdcWlD7jw529JxiUPtNkgSRBT+/brjb83wQXB2lbUS O8pbptggXBYKf0PnktePe2lLEPCuB1GUi1NVwt2BvOwnvgiJQqh3k7xrt3gVDUsJ GEPWd9obFjwGS2olCBJiO6AlCJFmdh+NpBK7dNlIlUjWUBZyEQW3VRPpPP1y32Zs d6jFZvkPlvNbkjAoY6ZgrM3Ug81IE/9OGuTNDrm6WroUyoTjP9DGAoCChL6oVg9U XLewlUO3DahqAbw2dt6sUrqpyyBjP9jmbmQmmQkPLTefBRFxXfKB0rklrCKcVZVh msQ/sObTvyHbds4MiIre1dg16WuqVw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:46:53 2025 by rpki-client