This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/DC10E79AABF211F0AF7B0010C4F9AE02.roa File: DC10E79AABF211F0AF7B0010C4F9AE02.roa (raw, json) Hash identifier: kOI61p4/B4LXkDisnwb4hFVAMcT2xvAngvAHEK0PHx4= Subject key identifier: F3:87:03:EA:E0:62:80:FF:F7:98:73:A8:B2:90:DC:07:22:A8:08:7A Certificate issuer: /CN=A9144DEA/serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Certificate serial: F8 Authority key identifier: 2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/DC10E79AABF211F0AF7B0010C4F9AE02.roa Signing time: Thu 27 Nov 2025 03:22:10 +0000 ROA not before: Thu 27 Nov 2025 03:22:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 26658 IP address blocks: 103.4.20.0/22 maxlen: 24 202.9.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144DEA, serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Validity Not Before: Nov 27 03:22:10 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6927c3e2-8c71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6d:b9:20:6d:45:87:39:7e:6d:81:c8:16:34: 7d:09:80:77:a4:ce:97:54:d6:20:91:9c:5c:f2:f1: f3:26:95:8b:ac:9b:15:ad:3b:80:d9:b8:df:6b:8a: ef:b5:34:0a:a6:ab:49:07:1c:dd:a3:3b:82:d0:93: 56:45:97:66:36:2d:4e:e9:61:56:50:9a:28:2c:9d: 4c:47:fe:f0:47:10:ea:8c:37:b3:00:60:9b:30:cd: cf:e0:a5:c0:93:eb:b8:64:e0:6c:64:22:6a:5d:92: 43:65:0c:58:a1:47:b0:19:02:34:a1:6f:86:58:b5: 13:c0:ce:ac:8a:0f:bd:b1:d8:e3:4e:1e:a6:26:9a: 60:c5:f5:5e:8c:2a:8a:85:85:08:43:3a:04:08:43: 41:ff:ee:9a:40:12:d7:81:cd:52:24:7a:ae:29:ca: 20:23:8f:d5:a5:c9:dd:7b:b7:22:e7:69:82:96:00: e1:ae:2b:73:6c:e2:0a:80:23:fb:b8:53:75:5b:04: 18:f5:d9:25:5c:b1:22:bd:90:b5:76:90:76:f1:63: 3d:39:70:71:86:69:82:a1:2d:98:51:37:00:e7:db: 4d:b6:4c:80:23:26:af:8f:c7:1e:48:52:c5:4a:91: 54:ed:b9:a8:59:5c:cb:76:c0:85:c7:59:e2:03:33: 90:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:87:03:EA:E0:62:80:FF:F7:98:73:A8:B2:90:DC:07:22:A8:08:7A X509v3 Authority Key Identifier: keyid:2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/DC10E79AABF211F0AF7B0010C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.4.20.0/22 202.9.60.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:64:f3:91:5a:65:46:07:b5:ad:52:ef:e9:6c:be:a9:cb:03: 13:2e:18:ef:79:9a:e4:a5:f9:89:3e:68:8e:e1:d5:d6:d1:5e: 11:35:56:9e:ec:0b:08:15:33:13:12:ae:7d:21:96:2c:55:14: f0:85:b1:4d:32:d2:42:d7:6d:7c:62:37:67:bf:c9:10:36:c5: 9c:6b:9f:22:f5:e4:97:e8:44:ae:e9:01:b8:05:23:a1:fd:6a: 6f:d3:90:bb:89:82:68:69:a6:a0:19:23:5a:e6:c5:be:91:a5: 3b:d4:48:47:ca:97:f7:f8:d9:74:f8:fd:ab:8e:8f:8e:e2:84: aa:4c:a9:a5:20:52:a1:60:5d:35:86:7d:9f:e4:ff:cd:31:6b: 94:1a:04:2a:b0:78:63:d9:d6:b9:53:b7:94:f9:db:6c:43:d8: 0a:02:68:83:eb:05:0d:a4:30:ee:0e:24:2f:68:f5:9e:48:dd: d2:fa:8f:6a:37:95:8e:ef:04:15:72:06:2a:80:67:72:db:c1: 7d:b4:08:71:9f:86:85:35:b0:a0:1c:49:09:86:1a:99:03:0a: de:74:d6:a2:f5:e9:70:c9:f7:46:7f:1b:e0:12:5b:8a:c7:f4: d6:51:82:2e:6b:0d:dd:d3:10:5d:c8:88:1e:d9:0f:c1:54:2d: b6:b2:ac:91 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRERUExMTAvBgNVBAUTKDJCQ0FDRjYxNjVCNTg3NDA1OTBFNTk3MTg0MzNEODE4 M0ZGOTQ2NkQwHhcNMjUxMTI3MDMyMjEwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI3YzNlMi04YzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt225IG1Fhzl+bYHIFjR9CYB3pM6XVNYgkZxc8vHzJpWLrJsVrTuA2bjfa4rv tTQKpqtJBxzdozuC0JNWRZdmNi1O6WFWUJooLJ1MR/7wRxDqjDezAGCbMM3P4KXA k+u4ZOBsZCJqXZJDZQxYoUewGQI0oW+GWLUTwM6sig+9sdjjTh6mJppgxfVejCqK hYUIQzoECENB/+6aQBLXgc1SJHquKcogI4/Vpcnde7ci52mClgDhritzbOIKgCP7 uFN1WwQY9dklXLEivZC1dpB28WM9OXBxhmmCoS2YUTcA59tNtkyAIyavj8ceSFLF SpFU7bmoWVzLdsCFx1niAzOQGwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPOHA+rg YoD/95hzqLKQ3AciqAh6MB8GA1UdIwQYMBaAFCvKz2FltYdAWQ5ZcYQz2Bg/+UZt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NERFQS8zQkY1RjJFMDVB RTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgwQlpEbGx4aERQWUdEXzVS bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4clBZV1cxaDBCWkRsbHhoRFBZR0RfNVJtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRERUEvM0JGNUYyRTA1QUUxMTFFRkE3NTYzQzJDQzRGOUFFMDIvREMxMEU3OUFB QkYyMTFGMEFGN0IwMDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnBBQDBALKCTwwDQYJKoZIhvcNAQELBQADggEBACtk85Fa ZUYHta1S7+lsvqnLAxMuGO95muSl+Yk+aI7h1dbRXhE1Vp7sCwgVMxMSrn0hlixV FPCFsU0y0kLXbXxiN2e/yRA2xZxrnyL15JfoRK7pAbgFI6H9am/TkLuJgmhppqAZ I1rmxb6RpTvUSEfKl/f42XT4/auOj47ihKpMqaUgUqFgXTWGfZ/k/80xa5QaBCqw eGPZ1rlTt5T522xD2AoCaIPrBQ2kMO4OJC9o9Z5I3dL6j2o3lY7vBBVyBiqAZ3Lb wX20CHGfhoU1sKAcSQmGGpkDCt501qL16XDJ90Z/G+ASW4rH9NZRgi5rDd3TEF3I iB7ZD8FULbayrJE= -----END CERTIFICATE-----Generated at Sun Dec 7 02:32:58 2025 by rpki-client