This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/8B97D7A22CD911ECA528B744C4F9AE02.roa File: 8B97D7A22CD911ECA528B744C4F9AE02.roa (raw, json) Hash identifier: cuNdoGcoZ0RzbR6F1KvxwGujdjL7T5YbMkXiVFmdxUY= Subject key identifier: 61:AD:52:04:F9:ED:91:80:E5:C4:73:F5:3E:EF:A1:AF:23:7F:96:A5 Certificate issuer: /CN=A9153C50/serialNumber=D37C9CD650C020A3500EDC9B40A546A84C3F260B Certificate serial: 052E Authority key identifier: D3:7C:9C:D6:50:C0:20:A3:50:0E:DC:9B:40:A5:46:A8:4C:3F:26:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/8B97D7A22CD911ECA528B744C4F9AE02.roa Signing time: Wed 31 Dec 2025 23:19:19 +0000 ROA not before: Wed 31 Dec 2025 23:19:19 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 147303 IP address blocks: 103.174.152.0/23 maxlen: 24 2001:df7:ca80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.crl rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1326 (0x52e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153C50, serialNumber=D37C9CD650C020A3500EDC9B40A546A84C3F260B Validity Not Before: Dec 31 23:19:19 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6955af77-558c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:61:6f:19:76:13:9f:5c:0a:ac:5e:c2:24:04: 91:b1:67:5b:a0:84:02:c3:da:be:0c:f9:a2:8a:fe: 24:07:ba:b7:e3:9e:8e:f4:0a:e3:d7:89:21:9d:98: 62:58:28:b2:77:b7:7e:fa:ad:52:6e:dd:4c:d3:d4: 47:35:06:3a:cc:84:d3:f8:a7:d7:d2:bb:0a:f0:df: ca:64:c1:65:d7:8b:6a:5a:ca:46:7d:44:49:71:5b: 96:4e:3f:2e:96:da:4a:4e:44:98:c3:4f:0b:1e:7a: d2:ea:de:1d:ae:b7:18:de:bc:a3:02:ec:e2:79:b0: 33:ee:2f:db:cc:5f:2c:87:9f:6e:df:42:8e:1f:b4: 44:d8:4f:88:07:69:fa:f8:99:e9:f4:7b:46:71:2d: 31:bb:22:8e:72:02:27:aa:fc:84:2f:ee:c5:1a:9d: 29:2c:dd:f2:63:11:4a:e8:57:34:ad:14:d5:5a:af: bb:bf:1a:c9:44:88:52:c7:54:58:c8:40:3d:e5:94: 13:7d:82:08:e9:16:52:a1:eb:f7:4d:f3:6d:38:b2: 31:4f:57:cd:5d:ed:8b:aa:8b:95:98:3b:d3:e3:d8: f3:82:d7:c9:db:3a:22:05:3d:a9:0b:28:7c:f1:13: f4:b9:2a:73:40:a2:15:e8:ac:ad:ed:bb:ad:9d:b9: 91:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:AD:52:04:F9:ED:91:80:E5:C4:73:F5:3E:EF:A1:AF:23:7F:96:A5 X509v3 Authority Key Identifier: keyid:D3:7C:9C:D6:50:C0:20:A3:50:0E:DC:9B:40:A5:46:A8:4C:3F:26:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/8B97D7A22CD911ECA528B744C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.152.0/23 IPv6: 2001:df7:ca80::/48 Signature Algorithm: sha256WithRSAEncryption 4f:31:69:21:6a:63:14:5e:fb:fa:c1:b6:79:66:d7:76:d9:ed: 4c:50:08:ee:68:c3:09:2d:90:02:ff:c5:87:97:b3:1c:24:48: 97:0c:a8:3e:63:3a:b5:5e:06:bf:e0:03:02:97:f9:d7:3a:3d: ce:75:e4:2b:61:a7:21:82:70:0b:71:e4:a9:db:d9:e5:af:5b: 89:61:3d:fb:4d:59:0a:de:4d:e7:3c:a1:15:0e:55:7e:d9:96: 30:98:75:88:05:ee:ea:36:33:94:dd:ff:a4:bc:bd:d8:3a:ce: 65:8a:2f:3a:d4:45:ad:46:4b:28:62:67:69:ad:d2:65:53:53: 3a:cf:53:36:24:59:e9:28:30:30:41:7d:e9:dc:96:09:7c:48: 13:f1:6b:bf:23:94:c9:b5:f4:2a:37:f6:94:31:81:ea:ba:51: 0a:60:eb:99:8e:30:ac:72:15:da:3f:f2:a4:c4:26:b5:29:4b: 08:11:44:5c:a7:c5:62:47:dd:6f:0f:32:7d:fb:de:2d:6d:17: 09:25:70:c2:de:40:08:34:b9:f1:ce:fa:e0:02:a1:12:40:7c: c9:0f:3c:12:bb:60:3e:e0:44:74:4c:f1:f1:6f:c6:bb:61:96: a7:b4:71:5f:f3:33:03:bd:fa:96:fa:7e:b5:4e:0a:dc:ff:d7: e0:00:df:fb -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTNDNTAxMTAvBgNVBAUTKEQzN0M5Q0Q2NTBDMDIwQTM1MDBFREM5QjQwQTU0NkE4 NEMzRjI2MEIwHhcNMjUxMjMxMjMxOTE5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU1YWY3Ny01NThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mFvGXYTn1wKrF7CJASRsWdboIQCw9q+DPmiiv4kB7q3456O9Arj14khnZhi WCiyd7d++q1Sbt1M09RHNQY6zITT+KfX0rsK8N/KZMFl14tqWspGfURJcVuWTj8u ltpKTkSYw08LHnrS6t4drrcY3ryjAuziebAz7i/bzF8sh59u30KOH7RE2E+IB2n6 +Jnp9HtGcS0xuyKOcgInqvyEL+7FGp0pLN3yYxFK6Fc0rRTVWq+7vxrJRIhSx1RY yEA95ZQTfYII6RZSoev3TfNtOLIxT1fNXe2LqouVmDvT49jzgtfJ2zoiBT2pCyh8 8RP0uSpzQKIV6Kyt7butnbmRnQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGGtUgT5 7ZGA5cRz9T7voa8jf5alMB8GA1UdIwQYMBaAFNN8nNZQwCCjUA7cm0ClRqhMPyYL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0M1MC80QjkwNjMwMjJD RDYxMUVDQTVEQTM1MzRDNEY5QUUwMi8wM3ljMWxEQUlLTlFEdHliUUtWR3FFd19K Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzeWMxbERBSUtOUUR0eWJRS1ZHcUV3X0pncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTNDNTAvNEI5MDYzMDIyQ0Q2MTFFQ0E1REEzNTM0QzRGOUFFMDIvOEI5N0Q3QTIy Q0Q5MTFFQ0E1MjhCNzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrpgwDwQCAAIwCQMHACABDffKgDANBgkqhkiG9w0BAQsF AAOCAQEATzFpIWpjFF77+sG2eWbXdtntTFAI7mjDCS2QAv/Fh5ezHCRIlwyoPmM6 tV4Gv+ADApf51zo9znXkK2GnIYJwC3HkqdvZ5a9biWE9+01ZCt5N5zyhFQ5VftmW MJh1iAXu6jYzlN3/pLy92DrOZYovOtRFrUZLKGJnaa3SZVNTOs9TNiRZ6SgwMEF9 6dyWCXxIE/FrvyOUybX0Kjf2lDGB6rpRCmDrmY4wrHIV2j/ypMQmtSlLCBFEXKfF Ykfdbw8yffveLW0XCSVwwt5ACDS58c764AKhEkB8yQ88ErtgPuBEdEzx8W/Gu2GW p7RxX/MzA736lvp+tU4K3P/X4ADf+w== -----END CERTIFICATE-----Generated at Sun Jan 25 04:28:56 2026 by rpki-client