This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/1EDD32B274BE11EA97202132C4F9AE02.roa File: 1EDD32B274BE11EA97202132C4F9AE02.roa (raw, json) Hash identifier: v31hx7pnoT1x1labmZhnEXrmOdmMDEQ40w+RQf8muiA= Subject key identifier: 2A:1B:D0:14:B7:9B:2F:21:76:63:85:DB:48:2A:CA:A6:32:E2:A5:86 Certificate issuer: /CN=A9149063/serialNumber=9797F7852706EE1C42C68A5E450B572F8EE50818 Certificate serial: 0A00 Authority key identifier: 97:97:F7:85:27:06:EE:1C:42:C6:8A:5E:45:0B:57:2F:8E:E5:08:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/1EDD32B274BE11EA97202132C4F9AE02.roa Signing time: Fri 02 May 2025 20:30:01 +0000 ROA not before: Fri 02 May 2025 20:30:01 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140524 IP address blocks: 103.150.20.0/24 maxlen: 24 103.150.21.0/24 maxlen: 24 2001:df3:4e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.crl rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2560 (0xa00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149063, serialNumber=9797F7852706EE1C42C68A5E450B572F8EE50818 Validity Not Before: May 2 20:30:01 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68152b48-2e2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:43:ea:bc:45:35:31:47:c2:4b:98:ad:29:ef: 2e:08:ef:7b:2a:39:fa:1b:3a:07:64:7d:64:8c:3d: 31:ec:77:af:14:2d:66:29:84:f4:2f:9b:0d:7d:04: f2:20:1a:1c:0b:9f:65:1a:40:f7:41:5d:60:de:4a: fb:40:c4:4a:1a:c6:51:87:89:07:11:b1:20:ac:b2: e6:fe:81:08:20:be:0d:51:f1:6a:55:0b:e6:7d:a7: 97:a9:70:ae:71:53:62:8f:b2:e1:40:c0:3f:3e:15: 7a:2e:72:29:57:af:7a:e8:6c:c8:b5:00:3e:75:3d: 6b:2c:b6:96:92:76:e1:10:a0:08:7f:b9:24:c7:66: 62:bb:27:b4:75:3b:67:95:8a:b2:36:59:d6:07:11: c7:9a:8b:97:5e:03:cf:a5:3e:7d:46:04:fd:6a:cd: aa:b5:b2:37:12:30:f2:6f:79:1e:c3:d3:30:ba:8a: 8d:2d:1a:dc:55:7a:5a:83:9c:81:a0:e6:e5:04:fa: bd:0e:c6:76:2a:71:3c:60:0d:97:8d:78:8e:ed:9d: 98:d4:28:15:41:55:4e:b7:bb:fd:38:28:49:11:7a: a1:d4:24:e6:45:79:84:93:19:fe:d9:95:f6:8a:62: a2:09:1d:26:7b:41:ed:d5:ac:7b:84:75:2b:20:69: ce:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:1B:D0:14:B7:9B:2F:21:76:63:85:DB:48:2A:CA:A6:32:E2:A5:86 X509v3 Authority Key Identifier: keyid:97:97:F7:85:27:06:EE:1C:42:C6:8A:5E:45:0B:57:2F:8E:E5:08:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/1EDD32B274BE11EA97202132C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.20.0/23 IPv6: 2001:df3:4e80::/48 Signature Algorithm: sha256WithRSAEncryption c1:4b:50:40:56:19:e5:43:0d:92:09:a3:91:c3:c1:ca:9d:57: a8:e0:e1:6b:c6:97:b3:23:9d:ec:fe:c1:38:09:e0:42:d8:3d: 58:14:c9:ea:dd:50:ab:4a:51:14:3a:03:c4:77:47:c5:00:9d: 96:3a:2d:99:51:f5:68:1d:07:5f:be:c7:d9:0d:e7:3c:30:95: e9:41:4f:71:43:b1:8b:a9:bb:e6:6c:2f:b3:9c:bc:69:4e:0b: a9:cc:3a:49:23:98:c9:91:bc:71:72:26:15:0a:8e:d2:5e:5a: 97:73:50:44:8e:c0:5c:03:52:b5:20:1b:4e:70:69:10:26:5f: 22:b2:59:22:22:ae:4d:a3:2f:a9:49:69:35:b6:34:d3:28:75: d2:13:a2:ed:8f:3d:92:cd:e0:79:5d:f9:a5:86:d9:74:6f:08: e5:09:8e:d1:99:ca:8a:9f:65:3d:14:77:c3:ab:2c:5c:70:ac: 66:4f:2d:67:d4:4e:d2:b4:ed:e7:62:e6:22:a3:d9:a9:a6:5c: e6:dd:8e:a2:c8:4b:3e:f6:08:9e:6a:f5:da:2f:eb:c5:78:50: 76:4a:88:38:5d:72:77:46:59:4d:20:7d:0a:df:2b:f4:d6:eb: 3a:7e:ee:8b:e1:b7:df:61:34:a0:0d:3c:db:b5:3a:65:07:dd: 1e:16:60:2f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDkwNjMxMTAvBgNVBAUTKDk3OTdGNzg1MjcwNkVFMUM0MkM2OEE1RTQ1MEI1NzJG OEVFNTA4MTgwHhcNMjUwNTAyMjAzMDAxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MmI0OC0yZTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kPqvEU1MUfCS5itKe8uCO97Kjn6GzoHZH1kjD0x7HevFC1mKYT0L5sNfQTy IBocC59lGkD3QV1g3kr7QMRKGsZRh4kHEbEgrLLm/oEIIL4NUfFqVQvmfaeXqXCu cVNij7LhQMA/PhV6LnIpV6966GzItQA+dT1rLLaWknbhEKAIf7kkx2Ziuye0dTtn lYqyNlnWBxHHmouXXgPPpT59RgT9as2qtbI3EjDyb3kew9MwuoqNLRrcVXpag5yB oOblBPq9DsZ2KnE8YA2XjXiO7Z2Y1CgVQVVOt7v9OChJEXqh1CTmRXmEkxn+2ZX2 imKiCR0me0Ht1ax7hHUrIGnORwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCob0BS3 my8hdmOF20gqyqYy4qWGMB8GA1UdIwQYMBaAFJeX94UnBu4cQsaKXkULVy+O5QgY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTA2My82ODg5QURGMjc0 QkMxMUVBOTUwOTlEMkJDNEY5QUUwMi9sNWYzaFNjRzdoeEN4b3BlUlF0WEw0N2xD QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w1ZjNoU2NHN2h4Q3hvcGVSUXRYTDQ3bENCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDkwNjMvNjg4OUFERjI3NEJDMTFFQTk1MDk5RDJCQzRGOUFFMDIvMUVERDMyQjI3 NEJFMTFFQTk3MjAyMTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlhQwDwQCAAIwCQMHACABDfNOgDANBgkqhkiG9w0BAQsF AAOCAQEAwUtQQFYZ5UMNkgmjkcPByp1XqODha8aXsyOd7P7BOAngQtg9WBTJ6t1Q q0pRFDoDxHdHxQCdljotmVH1aB0HX77H2Q3nPDCV6UFPcUOxi6m75mwvs5y8aU4L qcw6SSOYyZG8cXImFQqO0l5al3NQRI7AXANStSAbTnBpECZfIrJZIiKuTaMvqUlp NbY00yh10hOi7Y89ks3geV35pYbZdG8I5QmO0ZnKip9lPRR3w6ssXHCsZk8tZ9RO 0rTt52LmIqPZqaZc5t2OoshLPvYInmr12i/rxXhQdkqIOF1yd0ZZTSB9Ct8r9Nbr On7ui+G332E0oA0827U6ZQfdHhZgLw== -----END CERTIFICATE-----Generated at Sat Dec 6 18:32:57 2025 by rpki-client