This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D65/1A0DA82A406111EAA2BCE512C4F9AE02/F84C1D9C406111EAA351F913C4F9AE02.roa File: F84C1D9C406111EAA351F913C4F9AE02.roa (raw, json) Hash identifier: AK153DE4IViUL08h9ezbFgHOOI6exu7JR3ZXNtY89U0= Subject key identifier: FB:C1:38:43:3D:C5:A0:CA:FC:C5:6E:5D:83:4A:B6:A4:F9:2D:47:E9 Certificate issuer: /CN=A9157D65/serialNumber=A77838D7F541C61DB069DABCE5D83709A7C2AE0D Certificate serial: 0B95 Authority key identifier: A7:78:38:D7:F5:41:C6:1D:B0:69:DA:BC:E5:D8:37:09:A7:C2:AE:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3g41_VBxh2wadq85dg3CafCrg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D65/1A0DA82A406111EAA2BCE512C4F9AE02/F84C1D9C406111EAA351F913C4F9AE02.roa Signing time: Sat 10 Jan 2026 19:15:52 +0000 ROA not before: Sat 10 Jan 2026 19:15:52 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 138551 IP address blocks: 103.132.187.0/24 maxlen: 24 103.148.108.0/24 maxlen: 24 2001:df7:8500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D65/1A0DA82A406111EAA2BCE512C4F9AE02/p3g41_VBxh2wadq85dg3CafCrg0.crl rsync://rpki.apnic.net/member_repository/A9157D65/1A0DA82A406111EAA2BCE512C4F9AE02/p3g41_VBxh2wadq85dg3CafCrg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3g41_VBxh2wadq85dg3CafCrg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:34:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2965 (0xb95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D65, serialNumber=A77838D7F541C61DB069DABCE5D83709A7C2AE0D Validity Not Before: Jan 10 19:15:52 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6962a568-b02d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7a:51:1f:17:c3:99:c7:0f:f2:bc:a4:97:4d: f5:6b:95:62:7c:c5:4d:b4:db:78:24:e1:c5:f7:8f: 0e:9f:1f:35:0d:3e:3f:88:33:0d:f8:3a:b2:a4:e2: 46:7e:16:bc:c8:84:a8:62:02:37:b0:86:0f:78:77: 8c:59:d5:25:63:e4:74:39:da:bb:51:ed:46:49:57: 21:31:56:01:e3:2a:e7:69:b4:7b:51:ef:cc:56:84: 48:0f:13:c4:5d:16:0d:e5:75:24:85:73:9b:78:fe: 8e:57:c9:4f:6d:2b:56:07:2c:05:38:fb:e1:9b:d4: da:52:4d:d8:b8:89:da:72:17:0b:fa:90:7e:02:c3: ab:70:c7:5e:8a:2f:ea:08:45:66:72:9b:c5:84:29: 9f:79:1a:36:8f:69:75:8f:e9:00:9c:3c:8f:f9:e9: ba:99:b2:59:d0:01:27:d9:a9:2c:2e:a7:3f:57:f1: 02:73:6a:fd:f7:fd:e8:d4:bd:bc:8e:6b:c6:21:d6: df:8c:69:75:18:14:64:c3:ae:b0:ef:c7:70:88:8b: 48:ba:29:ee:aa:29:13:9f:a9:05:10:48:c5:2e:97: bc:26:23:83:60:a3:af:fa:46:74:54:df:36:44:bc: aa:29:2b:6b:be:1a:a2:4f:d2:93:0e:45:67:f6:6f: 94:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C1:38:43:3D:C5:A0:CA:FC:C5:6E:5D:83:4A:B6:A4:F9:2D:47:E9 X509v3 Authority Key Identifier: keyid:A7:78:38:D7:F5:41:C6:1D:B0:69:DA:BC:E5:D8:37:09:A7:C2:AE:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D65/1A0DA82A406111EAA2BCE512C4F9AE02/p3g41_VBxh2wadq85dg3CafCrg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3g41_VBxh2wadq85dg3CafCrg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D65/1A0DA82A406111EAA2BCE512C4F9AE02/F84C1D9C406111EAA351F913C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.187.0/24 103.148.108.0/24 IPv6: 2001:df7:8500::/48 Signature Algorithm: sha256WithRSAEncryption 4b:05:c5:a1:1c:ef:95:62:bd:2a:d3:e7:d4:0e:86:d0:70:75: d6:fe:31:3c:32:3a:9d:10:e6:e8:8d:ae:5f:bc:67:ca:02:c5: 2c:4b:98:96:f2:8d:3d:37:7f:ce:81:10:f1:a5:58:82:77:cd: 08:33:12:a4:0d:d4:4e:7d:c9:d0:28:79:e3:47:84:24:a6:89: 9d:7c:7f:89:37:46:48:b2:86:76:ff:37:0b:4d:6c:b5:18:01: 52:1f:0a:ee:5b:e6:36:39:c5:41:30:59:d5:56:db:e4:89:bf: 73:4f:ae:bd:c7:da:2d:ae:87:d9:75:f7:75:aa:44:41:b2:c1: 00:60:6e:ec:96:62:19:08:c3:f9:82:c5:e0:66:c0:7e:8e:3a: 6c:72:db:db:a5:75:5b:a1:07:a7:b7:77:93:d4:00:82:8b:e3: 90:ad:7b:78:a5:c3:14:a1:69:ca:2d:9d:20:27:38:cb:4c:8e: a3:91:44:fd:79:ce:ee:b1:1c:a1:4a:a6:de:d0:44:4e:52:65: 59:f5:bf:d4:71:2e:62:10:71:48:05:f2:d4:75:4c:d3:b1:02: 02:48:ab:66:77:dd:10:88:1e:46:22:7e:c5:88:5d:0b:7a:ae: c3:30:78:cc:58:3e:4b:50:8f:50:20:38:15:d3:5c:c1:62:c3: e7:c1:fb:f1 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICC5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTdENjUxMTAvBgNVBAUTKEE3NzgzOEQ3RjU0MUM2MURCMDY5REFCQ0U1RDgzNzA5 QTdDMkFFMEQwHhcNMjYwMTEwMTkxNTUyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTYyYTU2OC1iMDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunpRHxfDmccP8rykl031a5VifMVNtNt4JOHF948Onx81DT4/iDMN+DqypOJG fha8yISoYgI3sIYPeHeMWdUlY+R0Odq7Ue1GSVchMVYB4yrnabR7Ue/MVoRIDxPE XRYN5XUkhXObeP6OV8lPbStWBywFOPvhm9TaUk3YuInachcL+pB+AsOrcMdeii/q CEVmcpvFhCmfeRo2j2l1j+kAnDyP+em6mbJZ0AEn2aksLqc/V/ECc2r99/3o1L28 jmvGIdbfjGl1GBRkw66w78dwiItIuinuqikTn6kFEEjFLpe8JiODYKOv+kZ0VN82 RLyqKStrvhqiT9KTDkVn9m+UqQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPvBOEM9 xaDK/MVuXYNKtqT5LUfpMB8GA1UdIwQYMBaAFKd4ONf1QcYdsGnavOXYNwmnwq4N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2NS8xQTBEQTgyQTQw NjExMUVBQTJCQ0U1MTJDNEY5QUUwMi9wM2c0MV9WQnhoMndhZHE4NWRnM0NhZkNy ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AzZzQxX1ZCeGgyd2FkcTg1ZGczQ2FmQ3JnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdENjUvMUEwREE4MkE0MDYxMTFFQUEyQkNFNTEyQzRGOUFFMDIvRjg0QzFEOUM0 MDYxMTFFQUEzNTFGOTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnhLsDBABnlGwwDwQCAAIwCQMHACABDfeFADANBgkqhkiG 9w0BAQsFAAOCAQEASwXFoRzvlWK9KtPn1A6G0HB11v4xPDI6nRDm6I2uX7xnygLF LEuYlvKNPTd/zoEQ8aVYgnfNCDMSpA3UTn3J0Ch540eEJKaJnXx/iTdGSLKGdv83 C01stRgBUh8K7lvmNjnFQTBZ1Vbb5Im/c0+uvcfaLa6H2XX3dapEQbLBAGBu7JZi GQjD+YLF4GbAfo46bHLb26V1W6EHp7d3k9QAgovjkK17eKXDFKFpyi2dICc4y0yO o5FE/XnO7rEcoUqm3tBETlJlWfW/1HEuYhBxSAXy1HVM07ECAkirZnfdEIgeRiJ+ xYhdC3quwzB4zFg+S1CPUCA4FdNcwWLD58H78Q== -----END CERTIFICATE-----Generated at Sun Jan 25 12:19:19 2026 by rpki-client