This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/C8FB48F808AF11EBAB78DF6BC4F9AE02.roa File: C8FB48F808AF11EBAB78DF6BC4F9AE02.roa (raw, json) Hash identifier: QwMnRtpt+1eT07NMpTybXiiH3v3R91ylnqw2cVEHLL0= Subject key identifier: 2F:A6:52:21:64:E9:C3:AC:26:D2:57:77:DE:E6:42:0C:DD:18:A2:81 Certificate issuer: /CN=A9149E0D/serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Certificate serial: 0B21 Authority key identifier: 16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/C8FB48F808AF11EBAB78DF6BC4F9AE02.roa Signing time: Fri 14 Mar 2025 19:19:49 +0000 ROA not before: Fri 14 Mar 2025 19:19:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 137505 IP address blocks: 103.111.8.0/22 maxlen: 24 2402:9140::/32 maxlen: 32 2402:9140::/48 maxlen: 48 2402:9140:1::/48 maxlen: 48 2402:9140:2::/48 maxlen: 48 2402:9140:3::/48 maxlen: 48 2402:9140:4::/48 maxlen: 48 2402:9140:5::/48 maxlen: 48 2402:9140:6::/48 maxlen: 48 2402:9140:7::/48 maxlen: 48 2402:9140:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2849 (0xb21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149E0D, serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Validity Not Before: Mar 14 19:19:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d48155-9d00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:b9:a6:e8:b0:68:1d:ee:8b:3c:b7:71:28:88: b0:b7:fd:19:de:c4:04:b8:35:d3:20:c8:d9:67:44: dc:18:80:ff:47:34:40:b1:65:ab:0c:b3:29:4a:59: 93:0c:55:d2:ee:cf:09:a6:f3:56:82:f9:e6:3d:de: 66:1c:97:50:cf:34:46:a9:24:fa:07:cc:c6:2c:63: 7c:e5:c7:43:ba:b2:af:7f:4b:83:b9:27:bf:3e:b4: 26:39:79:b3:21:c0:72:f1:2d:66:ee:b4:bb:df:26: 1e:5d:52:1a:66:64:4a:f2:23:74:e2:46:ec:02:9c: b3:ba:39:f3:00:69:e4:9b:60:c7:c0:6a:da:e8:15: e1:cb:72:1d:e9:16:b8:4e:4b:da:46:bd:e0:03:3d: 65:3a:7c:d1:8b:e1:b9:27:67:dd:3b:51:93:f7:a7: c0:d4:f2:0a:34:ca:99:36:93:fb:f0:28:be:f9:e7: d0:ea:1f:89:54:11:86:57:36:e1:c4:30:a0:88:37: c3:f6:90:a5:88:3b:26:1c:cb:53:ad:c4:99:aa:55: 93:b9:d1:12:09:86:7f:73:9e:ce:61:81:ad:e2:9c: 0e:98:7d:d1:b9:c0:0d:dd:d0:15:4c:3e:a5:e8:f4: aa:43:af:49:ab:f6:f9:37:a0:d6:14:aa:91:f1:0d: 4c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:A6:52:21:64:E9:C3:AC:26:D2:57:77:DE:E6:42:0C:DD:18:A2:81 X509v3 Authority Key Identifier: keyid:16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/C8FB48F808AF11EBAB78DF6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.8.0/22 IPv6: 2402:9140::/32 Signature Algorithm: sha256WithRSAEncryption b3:c7:20:7e:a6:9b:b6:b0:e2:df:42:e5:f5:c9:c1:5c:1c:6f: af:24:c9:f0:2e:b0:ac:a8:6b:f0:c1:1f:17:ca:d9:25:84:72: 4f:54:09:d2:5c:7c:80:77:dd:36:52:99:db:6e:af:ab:56:55: 08:62:98:e2:16:19:1e:d0:27:c7:b5:56:32:19:13:10:66:b1: 8e:34:63:19:9b:7c:6d:5a:bd:7c:39:e5:ec:ee:a6:af:40:8c: ea:54:33:06:b3:7a:99:90:ed:b0:bb:00:34:75:1e:6a:90:4c: 1e:c6:c2:aa:cf:a8:f7:58:3a:af:83:20:66:38:8c:d8:a5:b1: 48:47:e0:04:c1:cd:63:92:8a:ce:3c:b5:96:98:a6:da:fd:31: 81:2b:3d:41:ca:01:5a:10:da:37:66:b8:f4:e6:e7:10:9f:ee: 49:1d:80:0b:9e:71:aa:5d:be:6a:7d:f3:ba:5d:1e:34:55:61: 9e:3a:bb:5b:19:e3:8e:e5:c6:4e:2c:13:f6:ef:ef:0b:9c:95: 48:d3:53:95:6f:03:dd:81:09:b8:d0:88:da:89:b9:78:f9:22: 30:74:e6:b5:e0:c7:f2:dc:d7:1b:9a:5e:9b:1d:6a:5f:7e:c0: 73:21:5d:e3:39:33:c9:37:fa:ab:35:bf:0c:c2:75:f5:65:4a: e3:46:df:02 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlFMEQxMTAvBgNVBAUTKDE2QjgwM0RCMzkzOERDQjE1REM1OUEyOEM5NzcxOURB MUZGMjBBNTMwHhcNMjUwMzE0MTkxOTQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q0ODE1NS05ZDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkrmm6LBoHe6LPLdxKIiwt/0Z3sQEuDXTIMjZZ0TcGID/RzRAsWWrDLMpSlmT DFXS7s8JpvNWgvnmPd5mHJdQzzRGqST6B8zGLGN85cdDurKvf0uDuSe/PrQmOXmz IcBy8S1m7rS73yYeXVIaZmRK8iN04kbsApyzujnzAGnkm2DHwGra6BXhy3Id6Ra4 TkvaRr3gAz1lOnzRi+G5J2fdO1GT96fA1PIKNMqZNpP78Ci++efQ6h+JVBGGVzbh xDCgiDfD9pCliDsmHMtTrcSZqlWTudESCYZ/c57OYYGt4pwOmH3RucAN3dAVTD6l 6PSqQ69Jq/b5N6DWFKqR8Q1MMwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFC+mUiFk 6cOsJtJXd97mQgzdGKKBMB8GA1UdIwQYMBaAFBa4A9s5ONyxXcWaKMl3Gdof8gpT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUUwRC85MDRFNzQ3RTM5 MDkxMUVBQjBERTNGNDlDNEY5QUUwMi9GcmdEMnprNDNMRmR4Wm9veVhjWjJoX3lD bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyZ0Qyems0M0xGZHhab295WGNaMmhfeUNsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlFMEQvOTA0RTc0N0UzOTA5MTFFQUIwREUzRjQ5QzRGOUFFMDIvQzhGQjQ4Rjgw OEFGMTFFQkFCNzhERjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbwgwDQQCAAIwBwMFACQCkUAwDQYJKoZIhvcNAQELBQAD ggEBALPHIH6mm7aw4t9C5fXJwVwcb68kyfAusKyoa/DBHxfK2SWEck9UCdJcfIB3 3TZSmdtur6tWVQhimOIWGR7QJ8e1VjIZExBmsY40YxmbfG1avXw55ezupq9AjOpU MwazepmQ7bC7ADR1HmqQTB7GwqrPqPdYOq+DIGY4jNilsUhH4ATBzWOSis48tZaY ptr9MYErPUHKAVoQ2jdmuPTm5xCf7kkdgAuecapdvmp987pdHjRVYZ46u1sZ447l xk4sE/bv7wuclUjTU5VvA92BCbjQiNqJuXj5IjB05rXgx/Lc1xuaXpsdal9+wHMh XeM5M8k3+qs1vwzCdfVlSuNG3wI= -----END CERTIFICATE-----Generated at Sun Dec 7 07:28:32 2025 by rpki-client