This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/BDDAA3CE1A7A11F0BB3E0451C4F9AE02.roa File: BDDAA3CE1A7A11F0BB3E0451C4F9AE02.roa (raw, json) Hash identifier: 8zGOewPUgvisFskqbj9G0iuDmWx+ojOU9sl6pGIrwjM= Subject key identifier: 4D:E4:8A:82:10:8E:D1:A2:A4:13:60:DB:EA:BE:5C:03:7D:D3:CE:EF Certificate issuer: /CN=A91450A4/serialNumber=3D1D6A332AEA4EC502037A0909F4CC19D42DB198 Certificate serial: 07DF Authority key identifier: 3D:1D:6A:33:2A:EA:4E:C5:02:03:7A:09:09:F4:CC:19:D4:2D:B1:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR1qMyrqTsUCA3oJCfTMGdQtsZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/BDDAA3CE1A7A11F0BB3E0451C4F9AE02.roa Signing time: Wed 16 Apr 2025 04:29:53 +0000 ROA not before: Wed 16 Apr 2025 04:29:53 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 55766 IP address blocks: 43.243.238.0/23 maxlen: 24 43.252.96.0/22 maxlen: 24 103.22.184.0/22 maxlen: 24 103.24.242.0/23 maxlen: 24 103.27.152.0/22 maxlen: 24 103.224.210.0/24 maxlen: 24 115.165.172.0/24 maxlen: 24 118.107.144.0/24 maxlen: 24 118.107.151.0/24 maxlen: 24 175.184.192.0/24 maxlen: 24 175.184.194.0/24 maxlen: 24 175.184.198.0/24 maxlen: 24 175.184.216.0/21 maxlen: 24 223.29.240.0/22 maxlen: 24 2400:f280::/32 maxlen: 40 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 2015 (0x7df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91450A4, serialNumber=3D1D6A332AEA4EC502037A0909F4CC19D42DB198 Validity Not Before: Apr 16 04:29:53 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67ff3241-24d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:30:fe:54:1e:bd:34:e6:5a:ee:59:f2:ec:f0: f8:31:18:03:51:89:98:c2:21:e1:94:6b:99:7b:97: fd:25:fa:46:e8:70:a5:9e:de:e1:ce:4e:94:d5:20: c5:7b:19:49:08:53:0b:d4:2c:95:ff:db:a2:25:49: 0f:db:70:07:5f:18:36:b7:79:52:4a:60:16:4f:a6: ac:21:a8:e2:8d:91:43:8b:7c:99:de:7d:f9:87:8d: 55:9a:32:df:6f:44:b0:57:03:d3:1f:ae:ca:e1:c9: 4d:e7:62:2a:ab:5b:6d:4d:f6:f4:63:63:2d:7a:fe: ea:b4:49:86:b3:38:a8:fb:28:52:24:d1:8f:52:79: 37:36:0a:bb:ea:91:42:44:09:75:25:97:e1:bb:15: 4b:45:6d:24:7b:84:9b:71:7a:fd:14:22:63:74:88: f4:fc:78:5b:b8:c6:41:67:e0:7d:22:84:c4:c6:74: 77:8f:4c:ac:5b:33:b3:32:8d:cd:9b:2d:bc:b6:06: e4:14:2a:da:72:82:10:71:40:f6:b5:d0:2f:46:42: f5:db:14:d7:99:19:59:dd:ea:f0:24:40:77:b8:c5: 1a:62:ba:10:1c:23:e9:2b:76:e6:89:73:be:c7:c1: fb:39:db:6e:41:73:4d:84:7e:36:6d:d8:b9:54:03: af:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:E4:8A:82:10:8E:D1:A2:A4:13:60:DB:EA:BE:5C:03:7D:D3:CE:EF X509v3 Authority Key Identifier: keyid:3D:1D:6A:33:2A:EA:4E:C5:02:03:7A:09:09:F4:CC:19:D4:2D:B1:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/PR1qMyrqTsUCA3oJCfTMGdQtsZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR1qMyrqTsUCA3oJCfTMGdQtsZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/BDDAA3CE1A7A11F0BB3E0451C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.238.0/23 43.252.96.0/22 103.22.184.0/22 103.24.242.0/23 103.27.152.0/22 103.224.210.0/24 115.165.172.0/24 118.107.144.0/24 118.107.151.0/24 175.184.192.0/24 175.184.194.0/24 175.184.198.0/24 175.184.216.0/21 223.29.240.0/22 IPv6: 2400:f280::/32 Signature Algorithm: sha256WithRSAEncryption 10:b8:0c:91:2f:59:88:24:67:b8:9a:e1:49:25:13:e7:04:f7: 7b:fc:65:84:b2:27:fb:61:87:6b:9f:db:cb:69:9f:1c:ec:85: d9:97:96:ab:c5:64:49:3e:f5:df:20:ac:ac:96:06:20:4c:1a: b6:54:b0:b2:ac:96:7f:80:4e:f3:79:3d:14:3c:b8:86:4e:93: d4:08:a7:e5:41:4b:8f:f6:99:95:47:13:a9:c0:93:d5:4a:bd: d3:e2:44:c1:9a:fb:f3:49:18:ca:c3:8d:70:ff:e1:0d:ff:b7: 4c:2f:d7:d8:c8:73:43:c1:68:12:a2:9c:c2:19:54:f8:5b:d2: 5e:00:21:92:c1:e6:e0:7b:cd:df:8f:0c:d3:a1:d9:65:ad:67: 50:5e:0e:3b:5e:71:84:e0:a4:cf:c4:6c:c4:bb:c3:1c:39:70: 3f:73:36:12:ab:ca:74:34:59:d7:47:7b:37:c5:c7:2f:0d:18: f9:23:85:78:79:1e:b3:a1:e6:0b:0e:3f:de:e2:12:36:8d:b5: 1f:56:14:28:b4:92:4f:1e:93:2c:c8:5b:c8:aa:87:79:91:79: 1a:f3:c7:98:d2:68:12:d8:fc:72:5e:e9:12:10:15:b5:f8:c4: 14:c3:50:d5:b7:3b:8a:54:5c:f6:a6:92:46:3a:b7:e5:37:e9: c6:c6:96:4f -----BEGIN CERTIFICATE----- MIIFzjCCBLagAwIBAgICB98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUwQTQxMTAvBgNVBAUTKDNEMUQ2QTMzMkFFQTRFQzUwMjAzN0EwOTA5RjRDQzE5 RDQyREIxOTgwHhcNMjUwNDE2MDQyOTUzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZmMzI0MS0yNGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDD+VB69NOZa7lny7PD4MRgDUYmYwiHhlGuZe5f9JfpG6HClnt7hzk6U1SDF exlJCFML1CyV/9uiJUkP23AHXxg2t3lSSmAWT6asIajijZFDi3yZ3n35h41VmjLf b0SwVwPTH67K4clN52Iqq1ttTfb0Y2Mtev7qtEmGszio+yhSJNGPUnk3Ngq76pFC RAl1JZfhuxVLRW0ke4SbcXr9FCJjdIj0/HhbuMZBZ+B9IoTExnR3j0ysWzOzMo3N my28tgbkFCracoIQcUD2tdAvRkL12xTXmRlZ3erwJEB3uMUaYroQHCPpK3bmiXO+ x8H7OdtuQXNNhH42bdi5VAOvnwIDAQABo4IC8jCCAu4wHQYDVR0OBBYEFE3kioIQ jtGipBNg2+q+XAN9087vMB8GA1UdIwQYMBaAFD0dajMq6k7FAgN6CQn0zBnULbGY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTBBNC9ERDQ3MzY5ODBD MzYxMUVCQTRFNDlFMjFDNEY5QUUwMi9QUjFxTXlycVRzVUNBM29KQ2ZUTUdkUXRz WmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BSMXFNeXJxVHNVQ0Ezb0pDZlRNR2RRdHNaZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDUwQTQvREQ0NzM2OTgwQzM2MTFFQkE0RTQ5RTIxQzRGOUFFMDIvQkREQUEzQ0Ux QTdBMTFGMEJCM0UwNDUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwfAYIKwYBBQUHAQcBAf8E bTBrMFoEAgABMFQDBAEr8+4DBAIr/GADBAJnFrgDBAFnGPIDBAJnG5gDBABn4NID BABzpawDBAB2a5ADBAB2a5cDBACvuMADBACvuMIDBACvuMYDBAOvuNgDBALfHfAw DQQCAAIwBwMFACQA8oAwDQYJKoZIhvcNAQELBQADggEBABC4DJEvWYgkZ7ia4Ukl E+cE93v8ZYSyJ/thh2uf28tpnxzshdmXlqvFZEk+9d8grKyWBiBMGrZUsLKsln+A TvN5PRQ8uIZOk9QIp+VBS4/2mZVHE6nAk9VKvdPiRMGa+/NJGMrDjXD/4Q3/t0wv 19jIc0PBaBKinMIZVPhb0l4AIZLB5uB7zd+PDNOh2WWtZ1BeDjtecYTgpM/EbMS7 wxw5cD9zNhKrynQ0WddHezfFxy8NGPkjhXh5HrOh5gsOP97iEjaNtR9WFCi0kk8e kyzIW8iqh3mReRrzx5jSaBLY/HJe6RIQFbX4xBTDUNW3O4pUXPamkkY6t+U36cbG lk8= -----END CERTIFICATE-----Generated at Mon Dec 22 05:20:31 2025 by rpki-client