This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/BFF632BAC8DA11EE9D90830EC4F9AE02.roa File: BFF632BAC8DA11EE9D90830EC4F9AE02.roa (raw, json) Hash identifier: hDHi1gPuoYO8h6h8cGnKDVo4yTuh05LbS9LRcNViWNs= Subject key identifier: 02:95:24:31:AC:4B:37:0B:44:BD:B5:A4:2B:75:BF:E5:CF:34:60:9A Certificate issuer: /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Certificate serial: 0161 Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/BFF632BAC8DA11EE9D90830EC4F9AE02.roa Signing time: Mon 01 Dec 2025 03:00:18 +0000 ROA not before: Mon 01 Dec 2025 03:00:18 +0000 ROA not after: Mon 30 Mar 2026 00:00:00 +0000 asID: 135341 IP address blocks: 103.174.192.0/24 maxlen: 24 103.174.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:19:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156334, serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Validity Not Before: Dec 1 03:00:18 2025 GMT Not After : Mar 30 00:00:00 2026 GMT Subject: CN=692d04c2-c8d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:98:b9:bc:2c:df:b0:b8:98:f2:6c:dc:66:5c: 78:d8:ea:d5:f9:8a:4c:bb:d9:72:89:cc:b4:c4:da: 76:6f:01:de:3d:4d:d0:c6:75:b9:e0:31:f5:1b:9b: d5:11:44:f4:a5:32:f7:9c:48:6a:3a:c9:6d:7d:a7: 03:60:2f:f5:9e:f6:49:92:9e:b0:93:79:aa:eb:7f: 07:0b:b4:f5:70:3c:8c:b1:5c:8d:13:bf:ea:14:75: e5:94:29:93:56:2c:78:41:8d:0b:81:2c:cd:44:ba: 93:8b:61:4c:4e:6e:35:bb:83:ce:55:e3:8c:93:d5: 03:cf:4e:9e:6e:2e:55:30:7d:9e:f2:fb:d1:15:91: 09:1b:74:5e:9e:2e:01:de:da:72:4e:13:b3:b2:00: 04:e1:22:e4:f1:c6:a8:43:6e:b4:93:ef:90:18:31: 21:02:ac:83:cd:c3:8d:3d:c7:72:c2:b2:78:87:ca: ca:82:36:22:b0:37:1b:59:1c:2d:eb:b4:22:f3:11: d4:0b:1b:1c:70:14:f6:b3:b4:cf:3d:9a:37:46:47: 79:e1:3a:2d:c8:a3:ab:54:71:8e:50:41:71:d0:85: 6a:63:b4:51:69:55:f3:1e:71:1b:6e:2d:e7:3a:13: a8:de:55:06:47:2f:85:87:a4:17:ff:db:e5:8c:46: 79:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:95:24:31:AC:4B:37:0B:44:BD:B5:A4:2B:75:BF:E5:CF:34:60:9A X509v3 Authority Key Identifier: keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/BFF632BAC8DA11EE9D90830EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.192.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:eb:ca:be:98:8b:31:f0:7b:93:ca:d8:2a:02:a4:c5:7e:4d: b4:5a:bb:5b:3f:7a:d2:e2:1f:98:a8:71:5f:78:04:c2:d0:42: fb:b8:e4:58:ac:35:76:da:c0:ef:ae:6e:a3:13:ad:20:44:c1: d1:72:c9:bf:0d:58:2b:d1:0c:4f:c1:a5:d0:6b:07:15:52:42: 15:18:95:40:5b:7d:de:b4:9f:e7:51:41:0c:f0:60:45:34:b0: d6:d4:96:c4:66:1d:22:79:4b:e8:1e:bb:8b:24:c6:b3:44:1b: be:5c:41:6a:df:27:cd:e7:c6:b2:15:03:ef:a3:19:b5:ad:15: 38:c0:f2:95:f1:3d:e4:2a:88:c4:7e:84:9a:e6:aa:e2:f1:fa: a5:fd:23:f6:ca:57:3b:ec:78:6f:ca:cc:34:94:f3:44:50:2a: fd:9e:8b:e2:25:a0:79:cf:4f:a6:29:f8:09:e2:58:11:fe:ce: f4:a9:d4:fa:1d:44:34:38:81:09:a9:7b:8e:f8:bd:f5:a6:20: 1d:82:24:09:63:7d:67:86:d3:b3:d9:29:e2:c0:3e:61:f3:ee: 5b:7a:6f:8d:14:61:ed:05:da:7a:c1:ec:97:8d:05:e5:a9:fb: 98:4c:74:e4:8a:c0:b8:55:23:49:8e:a1:22:25:c6:5f:48:73: 7f:f4:e8:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzMzQxMTAvBgNVBAUTKDhFOERENUIyQzEwMUI5ODNBNzk5QzkzOEFBMEU0MEE2 NTFGQ0JFMDcwHhcNMjUxMjAxMDMwMDE4WhcNMjYwMzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJkMDRjMi1jOGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpi5vCzfsLiY8mzcZlx42OrV+YpMu9lyicy0xNp2bwHePU3QxnW54DH1G5vV EUT0pTL3nEhqOsltfacDYC/1nvZJkp6wk3mq638HC7T1cDyMsVyNE7/qFHXllCmT Vix4QY0LgSzNRLqTi2FMTm41u4POVeOMk9UDz06ebi5VMH2e8vvRFZEJG3Reni4B 3tpyThOzsgAE4SLk8caoQ260k++QGDEhAqyDzcONPcdywrJ4h8rKgjYisDcbWRwt 67Qi8xHUCxsccBT2s7TPPZo3Rkd54TotyKOrVHGOUEFx0IVqY7RRaVXzHnEbbi3n OhOo3lUGRy+Fh6QX/9vljEZ5GwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAKVJDGs SzcLRL21pCt1v+XPNGCaMB8GA1UdIwQYMBaAFI6N1bLBAbmDp5nJOKoOQKZR/L4H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjMzNC9FN0NEREZDRUM4 RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZT25tY2s0cWc1QXBsSDh2 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvM1Zzc0VCdVlPbm1jazRxZzVBcGxIOHZnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTYzMzQvRTdDRERGQ0VDOEQ4MTFFRTlGNEFCOTZEQzRGOUFFMDIvQkZGNjMyQkFD OERBMTFFRTlEOTA4MzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrsAwDQYJKoZIhvcNAQELBQADggEBAH7ryr6YizHwe5PK 2CoCpMV+TbRau1s/etLiH5iocV94BMLQQvu45FisNXbawO+ubqMTrSBEwdFyyb8N WCvRDE/BpdBrBxVSQhUYlUBbfd60n+dRQQzwYEU0sNbUlsRmHSJ5S+geu4skxrNE G75cQWrfJ83nxrIVA++jGbWtFTjA8pXxPeQqiMR+hJrmquLx+qX9I/bKVzvseG/K zDSU80RQKv2ei+IloHnPT6Yp+AniWBH+zvSp1PodRDQ4gQmpe474vfWmIB2CJAlj fWeG07PZKeLAPmHz7lt6b40UYe0F2nrB7JeNBeWp+5hMdOSKwLhVI0mOoSIlxl9I c3/06FQ= -----END CERTIFICATE-----Generated at Sat Dec 6 23:14:02 2025 by rpki-client