This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/BFF632BAC8DA11EE9D90830EC4F9AE02.roa File: BFF632BAC8DA11EE9D90830EC4F9AE02.roa (raw, json) Hash identifier: 2hsNAFkabzhr7/E6bRIYyYZpPaQwFIu7JDoM9rF8nDM= Subject key identifier: 65:11:D6:29:EB:9D:0C:DE:50:39:06:CA:03:5D:53:97:8E:1A:AB:7C Certificate issuer: /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Certificate serial: 0174 Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/BFF632BAC8DA11EE9D90830EC4F9AE02.roa Signing time: Mon 29 Dec 2025 03:23:22 +0000 ROA not before: Mon 29 Dec 2025 03:23:22 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 135341 IP address blocks: 103.174.192.0/24 maxlen: 24 103.174.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:10:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156334, serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Validity Not Before: Dec 29 03:23:22 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6951f42a-38a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3e:98:a1:ab:b9:b2:ee:2f:5b:8c:b6:56:b0: 03:7b:34:f7:93:43:33:84:64:4c:d4:2c:b9:2b:64: 0f:3f:2f:b3:3b:e5:7a:ad:d3:e6:4f:c0:65:23:7d: 3d:df:f5:33:5f:2e:49:5d:75:67:50:c7:0d:b3:18: ab:8e:42:36:88:be:34:d7:6b:0d:f1:00:ae:a7:36: 4d:be:c6:60:8e:94:fa:16:31:cf:d9:c6:59:fc:26: aa:e1:c8:35:23:ba:0a:14:11:2e:1d:9a:55:7b:05: 87:18:8c:eb:bf:e9:4a:40:d6:d9:1a:e2:c3:71:7c: 97:ba:e5:fd:3a:06:3b:44:00:8b:a8:06:f8:54:32: 42:d8:76:22:42:09:66:eb:2f:ed:3f:a5:e0:83:02: ba:00:b3:b0:a9:3f:a5:ae:60:24:87:4c:f1:df:81: 14:7e:c1:1e:b5:43:e3:92:27:9f:c3:e4:a9:7b:a7: ad:61:f3:63:6b:cf:83:e5:85:72:39:9c:4c:9f:f7: 72:5d:29:86:81:de:b2:f0:5d:34:af:e0:5f:5f:e5: 4b:d5:e2:7d:86:52:41:ac:08:e2:f4:7f:d7:cb:22: 12:cc:75:96:1f:fe:bc:ae:75:71:71:d6:00:4c:a9: 31:16:4d:27:4c:20:5a:fb:c4:9c:3d:26:22:6f:1a: 89:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:11:D6:29:EB:9D:0C:DE:50:39:06:CA:03:5D:53:97:8E:1A:AB:7C X509v3 Authority Key Identifier: keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/BFF632BAC8DA11EE9D90830EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.192.0/23 Signature Algorithm: sha256WithRSAEncryption 67:d7:0a:dd:b1:a3:a4:df:f5:4c:35:6e:d0:56:6d:9a:d8:b4: f6:32:bb:3e:f1:91:7f:8c:93:3c:ba:e0:ff:18:0b:e4:b2:b4: a8:b7:68:e2:e5:58:a6:f1:06:3b:2b:59:90:f6:d0:92:f6:3f: 4f:e6:b9:cc:3e:0b:2d:1e:79:ef:5d:07:64:30:b8:9f:0a:43: f1:e2:d3:cd:9b:e1:96:e8:30:82:8b:55:70:da:57:0e:10:25: 80:21:19:7b:e8:f0:4e:87:e5:da:e4:e7:12:70:14:07:cf:ac: 13:0a:c0:5e:8e:2c:57:30:8e:39:d9:41:dc:58:e8:ed:e8:30: ac:bb:e1:d7:28:a5:11:75:ff:79:1a:1a:09:64:a5:87:9f:47: 6a:86:86:84:c7:37:8e:3b:26:ea:62:ba:66:d5:cd:cd:fc:d0: 10:53:e4:65:6d:87:d2:4c:70:c4:4e:5d:a5:de:c1:7b:3e:b9: 6c:2c:10:a8:2a:10:4f:04:7b:29:85:9c:ef:67:79:f6:d7:3c: e4:76:6c:f0:cf:30:f9:63:eb:7d:67:fa:1e:da:ac:b2:7f:5c: 32:c8:c9:69:e1:d6:c0:c0:39:26:4b:48:5c:d7:b9:ee:66:c2: ee:9a:61:9c:af:6d:64:4c:57:5a:72:8f:c1:86:40:20:09:57: cd:8a:89:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTYzMzQxMTAvBgNVBAUTKDhFOERENUIyQzEwMUI5ODNBNzk5QzkzOEFBMEU0MEE2 NTFGQ0JFMDcwHhcNMjUxMjI5MDMyMzIyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTUxZjQyYS0zOGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsD6Yoau5su4vW4y2VrADezT3k0MzhGRM1Cy5K2QPPy+zO+V6rdPmT8BlI309 3/UzXy5JXXVnUMcNsxirjkI2iL4012sN8QCupzZNvsZgjpT6FjHP2cZZ/Caq4cg1 I7oKFBEuHZpVewWHGIzrv+lKQNbZGuLDcXyXuuX9OgY7RACLqAb4VDJC2HYiQglm 6y/tP6XggwK6ALOwqT+lrmAkh0zx34EUfsEetUPjkiefw+Spe6etYfNja8+D5YVy OZxMn/dyXSmGgd6y8F00r+BfX+VL1eJ9hlJBrAji9H/XyyISzHWWH/68rnVxcdYA TKkxFk0nTCBa+8ScPSYibxqJKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGUR1inr nQzeUDkGygNdU5eOGqt8MB8GA1UdIwQYMBaAFI6N1bLBAbmDp5nJOKoOQKZR/L4H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjMzNC9FN0NEREZDRUM4 RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZT25tY2s0cWc1QXBsSDh2 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvM1Zzc0VCdVlPbm1jazRxZzVBcGxIOHZnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTYzMzQvRTdDRERGQ0VDOEQ4MTFFRTlGNEFCOTZEQzRGOUFFMDIvQkZGNjMyQkFD OERBMTFFRTlEOTA4MzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrsAwDQYJKoZIhvcNAQELBQADggEBAGfXCt2xo6Tf9Uw1 btBWbZrYtPYyuz7xkX+Mkzy64P8YC+SytKi3aOLlWKbxBjsrWZD20JL2P0/mucw+ Cy0eee9dB2QwuJ8KQ/Hi082b4ZboMIKLVXDaVw4QJYAhGXvo8E6H5drk5xJwFAfP rBMKwF6OLFcwjjnZQdxY6O3oMKy74dcopRF1/3kaGglkpYefR2qGhoTHN447Jupi umbVzc380BBT5GVth9JMcMROXaXewXs+uWwsEKgqEE8EeymFnO9nefbXPOR2bPDP MPlj631n+h7arLJ/XDLIyWnh1sDAOSZLSFzXue5mwu6aYZyvbWRMV1pyj8GGQCAJ V82KiXo= -----END CERTIFICATE-----Generated at Sun Jan 25 08:02:40 2026 by rpki-client