This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/3240ED82D62D11EFB0442B5DC4F9AE02.roa File: 3240ED82D62D11EFB0442B5DC4F9AE02.roa (raw, json) Hash identifier: NRAzgquLZBYP4MSmU1+VtfkLBIZYRtdQCrDLfqeaCxM= Subject key identifier: 59:46:8E:0A:85:35:F2:01:52:03:80:05:78:C5:2D:3C:84:E8:7D:95 Certificate issuer: /CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Certificate serial: 0D03 Authority key identifier: B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/3240ED82D62D11EFB0442B5DC4F9AE02.roa Signing time: Wed 14 Jan 2026 18:15:54 +0000 ROA not before: Wed 14 Jan 2026 18:15:54 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134968 IP address blocks: 103.23.204.0/22 maxlen: 22 103.23.204.0/23 maxlen: 23 103.23.204.0/24 maxlen: 24 103.23.205.0/24 maxlen: 24 103.23.206.0/23 maxlen: 23 103.23.206.0/24 maxlen: 24 103.23.207.0/24 maxlen: 24 223.25.252.0/22 maxlen: 22 223.25.252.0/23 maxlen: 23 223.25.252.0/24 maxlen: 24 223.25.253.0/24 maxlen: 24 223.25.254.0/23 maxlen: 23 223.25.254.0/24 maxlen: 24 223.25.255.0/24 maxlen: 24 2401:52c0::/32 maxlen: 32 2401:52c0::/40 maxlen: 40 2401:52c0:7::/48 maxlen: 48 2401:52c0:9::/48 maxlen: 48 2401:52c0:100::/40 maxlen: 40 2401:52c0:100::/44 maxlen: 44 2401:52c0:110::/44 maxlen: 44 2401:52c0:120::/44 maxlen: 44 2401:52c0:130::/44 maxlen: 44 2401:52c0:140::/44 maxlen: 44 2401:52c0:150::/44 maxlen: 44 2401:52c0:160::/44 maxlen: 44 2401:52c0:170::/44 maxlen: 44 2401:52c0:180::/44 maxlen: 44 2401:52c0:190::/44 maxlen: 44 2401:52c0:1a0::/44 maxlen: 44 2401:52c0:1b0::/44 maxlen: 44 2401:52c0:1c0::/44 maxlen: 44 2401:52c0:1d0::/44 maxlen: 44 2401:52c0:1e0::/44 maxlen: 44 2401:52c0:1f0::/44 maxlen: 44 2401:52c0:200::/40 maxlen: 40 2401:52c0:300::/40 maxlen: 40 2401:52c0:400::/40 maxlen: 40 2401:52c0:500::/40 maxlen: 40 2401:52c0:600::/40 maxlen: 40 2401:52c0:700::/40 maxlen: 40 2401:52c0:800::/40 maxlen: 40 2401:52c0:900::/40 maxlen: 40 2401:52c0:a00::/40 maxlen: 40 2401:52c0:b00::/40 maxlen: 40 2401:52c0:c00::/40 maxlen: 40 2401:52c0:d00::/40 maxlen: 40 2401:52c0:e00::/40 maxlen: 40 2401:52c0:f00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3331 (0xd03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150384, serialNumber=B1BA33053C39BA5865537743112389E300C48807 Validity Not Before: Jan 14 18:15:54 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6967dd59-51dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d9:37:4c:f9:57:29:36:ed:d5:83:f9:cf:75: 96:6b:f1:f7:c2:67:fd:3d:76:ac:d4:2b:30:b5:69: 42:cf:5c:12:68:b4:17:f5:a4:b9:19:34:e3:f1:c9: 17:2c:49:5b:63:03:28:f2:c5:14:7b:26:4c:e7:94: 36:02:16:d3:0e:57:ff:c1:3e:a8:e8:f3:53:75:5a: 70:a3:54:df:94:16:c9:3e:60:87:66:1f:2e:ce:83: 81:bb:c4:12:f6:d5:83:5b:fb:6d:e9:02:b7:ef:5a: a1:e2:90:24:dd:af:ad:ad:46:6d:30:f9:0d:7b:00: 84:67:f1:e0:0a:08:81:1a:58:d2:00:11:e5:7e:78: 50:80:cd:3c:54:ba:3d:21:1d:34:69:8b:e6:74:6a: 9e:57:c9:82:a6:b7:db:6e:6e:4d:cb:30:01:1a:ef: a1:a4:ef:8b:ab:f6:bb:7b:a2:b0:19:b3:fb:9c:36: 98:43:60:f3:5f:43:dc:62:f7:7a:75:42:9d:ca:e7: a7:f4:9a:08:5c:ac:63:4c:e8:cb:c8:81:c7:aa:54: 07:7e:30:b6:b3:c8:e3:50:cd:65:ac:75:3a:f6:ec: 37:0b:e6:39:67:89:fc:67:18:ec:8d:a1:f5:e8:86: ac:55:f7:3b:4b:24:f2:f5:4c:6a:b9:42:23:ee:04: 61:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:46:8E:0A:85:35:F2:01:52:03:80:05:78:C5:2D:3C:84:E8:7D:95 X509v3 Authority Key Identifier: keyid:B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/3240ED82D62D11EFB0442B5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.204.0/22 223.25.252.0/22 IPv6: 2401:52c0::/32 Signature Algorithm: sha256WithRSAEncryption a4:83:61:a8:9b:6c:c0:09:a2:59:bf:a2:5a:c4:bc:b9:bc:e4: 81:f3:c8:3d:97:75:eb:56:f5:8c:32:d0:d2:d4:1a:ed:99:b5: de:31:45:82:3e:72:69:2b:5e:9f:6a:6e:c2:d5:5f:a8:05:de: 99:fe:47:f1:02:53:cc:ea:b2:78:dd:2c:b0:37:03:94:d2:88: cc:10:d8:3a:7e:f2:d1:d5:61:06:9c:43:48:6f:b5:78:0c:d7: 2c:32:1a:0c:c8:cf:45:a9:1d:57:d0:e6:4b:10:31:ec:c9:c5: 9d:25:4a:8a:19:24:26:7f:ff:fa:42:94:93:3d:4e:37:5b:9f: 7f:1a:55:ec:e7:56:a4:40:ba:b3:26:31:1d:db:cd:11:fc:ba: a3:e2:7d:91:f1:ed:e7:ef:ee:9e:c6:16:6b:4c:b6:a7:61:71: 01:20:33:37:14:15:0d:89:b7:5f:34:e2:0e:03:98:f0:9b:21: 05:55:52:fd:bb:a3:2e:ee:ab:ed:4e:1d:28:86:07:26:a4:7e: a1:e3:4e:2b:95:5b:d9:31:34:49:37:9f:a8:5f:0d:63:b4:b4: fd:45:f4:ec:fd:6b:33:52:63:61:aa:c1:cf:5d:ef:f8:1a:6c: e8:9f:90:df:a8:67:dc:1a:5d:af:c2:21:a3:67:56:4c:d9:29: 3b:76:f8:c8 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTAzODQxMTAvBgNVBAUTKEIxQkEzMzA1M0MzOUJBNTg2NTUzNzc0MzExMjM4OUUz MDBDNDg4MDcwHhcNMjYwMTE0MTgxNTU0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY3ZGQ1OS01MWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdk3TPlXKTbt1YP5z3WWa/H3wmf9PXas1CswtWlCz1wSaLQX9aS5GTTj8ckX LElbYwMo8sUUeyZM55Q2AhbTDlf/wT6o6PNTdVpwo1TflBbJPmCHZh8uzoOBu8QS 9tWDW/tt6QK371qh4pAk3a+trUZtMPkNewCEZ/HgCgiBGljSABHlfnhQgM08VLo9 IR00aYvmdGqeV8mCprfbbm5NyzABGu+hpO+Lq/a7e6KwGbP7nDaYQ2DzX0PcYvd6 dUKdyuen9JoIXKxjTOjLyIHHqlQHfjC2s8jjUM1lrHU69uw3C+Y5Z4n8ZxjsjaH1 6IasVfc7SyTy9UxquUIj7gRhKwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFFlGjgqF NfIBUgOABXjFLTyE6H2VMB8GA1UdIwQYMBaAFLG6MwU8ObpYZVN3QxEjieMAxIgH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDM4NC85MzdGMzcyRTAw NUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVsaGxVM2RERVNPSjR3REVp QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib3pCVHc1dWxobFUzZERFU09KNHdERWlBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTAzODQvOTM3RjM3MkUwMDVBMTFFQUEwOTRCRDMxQzRGOUFFMDIvMzI0MEVEODJE NjJEMTFFRkIwNDQyQjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnF8wDBALfGfwwDQQCAAIwBwMFACQBUsAwDQYJKoZIhvcN AQELBQADggEBAKSDYaibbMAJolm/olrEvLm85IHzyD2XdetW9Ywy0NLUGu2Ztd4x RYI+cmkrXp9qbsLVX6gF3pn+R/ECU8zqsnjdLLA3A5TSiMwQ2Dp+8tHVYQacQ0hv tXgM1ywyGgzIz0WpHVfQ5ksQMezJxZ0lSooZJCZ///pClJM9Tjdbn38aVeznVqRA urMmMR3bzRH8uqPifZHx7efv7p7GFmtMtqdhcQEgMzcUFQ2Jt1804g4DmPCbIQVV Uv27oy7uq+1OHSiGByakfqHjTiuVW9kxNEk3n6hfDWO0tP1F9Oz9azNSY2Gqwc9d 7/gabOifkN+oZ9waXa/CIaNnVkzZKTt2+Mg= -----END CERTIFICATE-----Generated at Sun Jan 25 12:47:35 2026 by rpki-client