This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/EFAA6C1CD16911F08A99D95BC4F9AE02.roa File: EFAA6C1CD16911F08A99D95BC4F9AE02.roa (raw, json) Hash identifier: cgcaSIqIOhLCa5iTVKO9pJcq6xRCHOFoE69sC8NIq7c= Subject key identifier: AA:35:6F:F0:6A:14:08:4B:5D:DD:04:E8:0E:C8:8C:A6:34:A3:68:F0 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 046D Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/EFAA6C1CD16911F08A99D95BC4F9AE02.roa Signing time: Thu 04 Dec 2025 23:35:37 +0000 ROA not before: Thu 04 Dec 2025 23:35:37 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 212921 IP address blocks: 103.99.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1133 (0x46d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Dec 4 23:35:37 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69321ac9-5603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fa:fc:dc:78:36:3c:22:c2:78:33:d0:f7:7b: 00:75:6a:ec:18:5f:c7:fb:2c:b8:b5:86:35:ce:3a: 61:35:70:ac:e0:8e:50:19:1a:d6:90:8f:4a:80:f9: 01:b2:76:31:4c:ec:2d:1d:fc:49:5e:e3:55:c2:0a: d1:a1:30:2b:eb:ba:d2:65:38:24:07:61:30:4c:13: 25:e4:00:10:03:b3:2a:79:e9:33:3a:0d:e9:71:ab: 99:3b:36:e3:8e:88:ac:5a:a2:3d:e2:93:a7:f3:07: 0e:bf:43:86:34:9d:9b:a9:f4:92:df:5a:3f:85:6c: 66:47:d7:58:f9:df:ee:31:8e:23:1e:0d:09:bf:6d: c5:28:32:65:1e:e6:f8:4e:01:87:8f:c8:c3:bd:9a: d3:a1:be:04:b8:61:7c:d7:94:5f:46:79:54:f4:62: 26:6d:33:8e:ec:4f:7d:55:b8:89:10:e6:dc:5f:c1: d6:5f:35:54:62:50:3f:d8:a5:1c:af:27:39:27:49: 2a:1a:8f:3e:97:e7:10:ee:db:ab:1d:71:fa:80:be: 45:2a:9d:48:d6:ee:fb:a4:13:39:0a:5d:c5:f2:a6: 2b:77:4e:cf:60:7c:ff:8f:e6:ad:07:2c:f5:61:bc: 6f:54:17:8b:ce:40:61:cc:ad:28:a3:0f:89:cd:9c: 53:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:35:6F:F0:6A:14:08:4B:5D:DD:04:E8:0E:C8:8C:A6:34:A3:68:F0 X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/EFAA6C1CD16911F08A99D95BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.208.0/23 Signature Algorithm: sha256WithRSAEncryption a3:3c:86:1c:83:d1:0a:cf:59:ef:1c:e4:c7:91:d1:7c:df:12: 02:35:fb:22:e2:99:19:d4:6a:0a:e7:a9:9e:d9:84:74:75:78: de:a8:7b:16:dc:ad:04:65:14:b4:41:38:ad:7d:3c:d3:df:85: 55:a3:20:55:cd:5e:f1:c3:25:21:71:45:8c:e9:bc:f9:06:99: ef:72:f3:59:e1:12:24:65:c2:be:43:f9:74:53:97:f5:ac:7c: a5:36:2b:99:e6:b8:d1:72:e5:1d:d9:58:57:c5:7e:aa:06:1d: 5b:ec:5d:c9:52:89:5b:12:ea:56:d3:55:e7:a5:64:a4:a8:82: ae:4f:2d:8b:3c:ab:7d:d5:bc:e0:b4:77:55:3b:21:74:e7:b7: 33:f7:5c:33:f1:44:7a:04:21:83:ea:e1:0d:2f:5a:50:94:2a: 1b:85:0d:ee:9b:3d:38:df:1d:55:93:d8:11:e8:19:00:e0:e1: 93:a2:fe:dc:2c:ff:3c:7c:e0:8b:db:cc:ce:e2:8b:c7:f1:6c: 2c:f5:cb:a6:69:14:cb:a4:11:71:6a:b5:f1:c8:3d:e5:79:4e: bd:4f:22:20:cd:10:8a:89:ec:d9:0b:b8:2d:ac:b7:ce:c4:a7: 84:4b:d8:e4:77:d1:bd:57:c6:27:26:1a:4c:f1:3a:3a:15:74: bf:a3:c9:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjUxMjA0MjMzNTM3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMyMWFjOS01NjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfr83Hg2PCLCeDPQ93sAdWrsGF/H+yy4tYY1zjphNXCs4I5QGRrWkI9KgPkB snYxTOwtHfxJXuNVwgrRoTAr67rSZTgkB2EwTBMl5AAQA7MqeekzOg3pcauZOzbj joisWqI94pOn8wcOv0OGNJ2bqfSS31o/hWxmR9dY+d/uMY4jHg0Jv23FKDJlHub4 TgGHj8jDvZrTob4EuGF815RfRnlU9GImbTOO7E99VbiJEObcX8HWXzVUYlA/2KUc ryc5J0kqGo8+l+cQ7turHXH6gL5FKp1I1u77pBM5Cl3F8qYrd07PYHz/j+atByz1 YbxvVBeLzkBhzK0oow+JzZxTEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKo1b/Bq FAhLXd0E6A7IjKY0o2jwMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5QzEvRUU3MDJGNDQ3QUM5MTFFQzlEQTU1QjQ2QzRGOUFFMDIvRUZBQTZDMUNE MTY5MTFGMDhBOTlEOTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnY9AwDQYJKoZIhvcNAQELBQADggEBAKM8hhyD0QrPWe8c 5MeR0XzfEgI1+yLimRnUagrnqZ7ZhHR1eN6oexbcrQRlFLRBOK19PNPfhVWjIFXN XvHDJSFxRYzpvPkGme9y81nhEiRlwr5D+XRTl/WsfKU2K5nmuNFy5R3ZWFfFfqoG HVvsXclSiVsS6lbTVeelZKSogq5PLYs8q33VvOC0d1U7IXTntzP3XDPxRHoEIYPq 4Q0vWlCUKhuFDe6bPTjfHVWT2BHoGQDg4ZOi/tws/zx84IvbzM7ii8fxbCz1y6Zp FMukEXFqtfHIPeV5Tr1PIiDNEIqJ7NkLuC2st87Ep4RL2OR30b1XxicmGkzxOjoV dL+jydA= -----END CERTIFICATE-----Generated at Sat Dec 6 16:52:08 2025 by rpki-client