This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/3CE37DD8C0F911EBB5625E1CC4F9AE02.roa File: 3CE37DD8C0F911EBB5625E1CC4F9AE02.roa (raw, json) Hash identifier: QVD8Bw1P6r5a0IlIN6A6JZ/0x/qlrFJgP7q7ObTb7fI= Subject key identifier: 1B:CD:5E:2C:A3:C8:EA:FC:FE:42:F6:17:1A:07:D0:FD:24:9E:3C:96 Certificate issuer: /CN=A9159298/serialNumber=64CE06A16CA89123556AA9AFD7248DBEF0E69A86 Certificate serial: 063C Authority key identifier: 64:CE:06:A1:6C:A8:91:23:55:6A:A9:AF:D7:24:8D:BE:F0:E6:9A:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM4GoWyokSNVaqmv1ySNvvDmmoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/3CE37DD8C0F911EBB5625E1CC4F9AE02.roa Signing time: Thu 20 Nov 2025 21:43:48 +0000 ROA not before: Thu 20 Nov 2025 21:43:48 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63961 IP address blocks: 103.159.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/ZM4GoWyokSNVaqmv1ySNvvDmmoY.crl rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/ZM4GoWyokSNVaqmv1ySNvvDmmoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM4GoWyokSNVaqmv1ySNvvDmmoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1596 (0x63c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159298, serialNumber=64CE06A16CA89123556AA9AFD7248DBEF0E69A86 Validity Not Before: Nov 20 21:43:48 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=691f8b93-4cce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:5a:4d:40:2d:d6:f3:58:f1:7a:ff:93:20:62: 38:8d:02:8c:b8:9a:0a:f3:ec:77:99:df:73:22:6c: 9c:8b:ae:e7:54:ce:8d:b3:07:fd:e8:eb:cc:ee:03: f2:ef:90:62:f6:64:3b:a4:da:57:62:3a:2d:10:d1: d9:3f:35:b1:05:3a:0e:65:75:cd:88:ee:b9:d3:a0: a3:f0:8d:2a:b0:84:27:72:df:81:c6:59:94:44:cc: 7b:02:21:dd:98:bb:84:01:e5:4c:2a:79:7a:7d:62: 56:46:e4:69:5e:33:d0:e9:e6:a0:dc:91:79:19:88: 9f:42:9a:cd:26:ca:b1:16:ff:88:40:23:46:44:a8: 92:9e:ae:68:d7:01:bc:8e:41:22:4f:e2:73:66:f7: 2c:1e:cc:43:ee:56:a7:d1:23:06:be:14:e2:8f:7d: aa:dc:da:ef:d1:58:74:66:38:6e:70:06:e3:0a:f0: 84:13:92:63:5a:04:db:cb:ff:6d:2f:a6:ea:2d:77: 4b:c9:0f:5f:b6:97:ba:e2:e5:30:b4:92:38:e9:8c: 70:cc:3c:1a:b4:f4:a5:c2:9f:f3:94:8a:4e:6c:9b: 1e:8b:ad:35:ef:aa:a4:10:08:5b:48:55:81:a2:80: dd:16:53:63:4e:b2:2a:a4:ba:74:9f:60:4f:5a:a8: 9b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:CD:5E:2C:A3:C8:EA:FC:FE:42:F6:17:1A:07:D0:FD:24:9E:3C:96 X509v3 Authority Key Identifier: keyid:64:CE:06:A1:6C:A8:91:23:55:6A:A9:AF:D7:24:8D:BE:F0:E6:9A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/ZM4GoWyokSNVaqmv1ySNvvDmmoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM4GoWyokSNVaqmv1ySNvvDmmoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/3CE37DD8C0F911EBB5625E1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.2.0/24 Signature Algorithm: sha256WithRSAEncryption a7:2f:09:8e:1e:60:ad:b2:e7:aa:c5:79:e7:1f:f0:62:5c:b7: 77:c8:48:a7:95:3f:f7:0a:82:1b:9d:da:f1:40:48:c8:64:8a: 45:aa:ba:d6:d3:38:cb:1c:b4:1b:40:3f:c6:a8:2d:f3:bc:ac: 07:ca:76:ce:82:4f:fc:bd:0b:1b:98:d3:ca:77:ca:f7:bc:9b: 66:fe:ca:2e:c0:4d:7e:b0:9d:a2:df:af:e0:b3:7a:4e:93:67: 70:68:07:5b:a7:73:06:33:b6:34:c3:23:0b:36:71:51:23:3e: ef:a2:01:66:26:63:4f:02:80:34:9e:5c:48:44:08:50:0c:5c: bc:32:5a:f0:5b:5a:12:b1:bc:cb:cd:c6:14:b7:73:5a:e7:ba: 40:e6:0f:c5:7b:6e:ca:5c:e2:2a:f6:6f:02:0e:d0:91:fa:72: 8b:48:82:16:fd:23:13:03:7f:b0:d5:ff:2d:31:c3:18:36:0c: 71:8d:c3:06:a1:eb:57:e0:35:87:39:be:bf:d8:82:86:d0:8a: 6a:28:b6:d5:84:6e:76:70:80:95:73:f7:cf:45:21:f7:38:6c: 19:aa:c7:e6:b6:9b:82:31:54:82:c5:c7:ce:e9:00:0a:42:dd: 8d:9f:61:e6:d7:4c:60:0a:54:36:f5:c6:3e:fd:1d:52:3e:d0: 10:80:1b:11 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyOTgxMTAvBgNVBAUTKDY0Q0UwNkExNkNBODkxMjM1NTZBQTlBRkQ3MjQ4REJF RjBFNjlBODYwHhcNMjUxMTIwMjE0MzQ4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFmOGI5My00Y2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl1pNQC3W81jxev+TIGI4jQKMuJoK8+x3md9zImyci67nVM6Nswf96OvM7gPy 75Bi9mQ7pNpXYjotENHZPzWxBToOZXXNiO6506Cj8I0qsIQnct+BxlmURMx7AiHd mLuEAeVMKnl6fWJWRuRpXjPQ6eag3JF5GYifQprNJsqxFv+IQCNGRKiSnq5o1wG8 jkEiT+JzZvcsHsxD7lan0SMGvhTij32q3Nrv0Vh0ZjhucAbjCvCEE5JjWgTby/9t L6bqLXdLyQ9ftpe64uUwtJI46YxwzDwatPSlwp/zlIpObJsei60176qkEAhbSFWB ooDdFlNjTrIqpLp0n2BPWqib9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBvNXiyj yOr8/kL2FxoH0P0knjyWMB8GA1UdIwQYMBaAFGTOBqFsqJEjVWqpr9ckjb7w5pqG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTI5OC82MjIyOUVGMkI2 MUUxMUVCQjBGQzRDNzdDNEY5QUUwMi9aTTRHb1d5b2tTTlZhcW12MXlTTnZ2RG1t b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pNNEdvV3lva1NOVmFxbXYxeVNOdnZEbW1vWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTkyOTgvNjIyMjlFRjJCNjFFMTFFQkIwRkM0Qzc3QzRGOUFFMDIvM0NFMzdERDhD MEY5MTFFQkI1NjI1RTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnwIwDQYJKoZIhvcNAQELBQADggEBAKcvCY4eYK2y56rF eecf8GJct3fISKeVP/cKghud2vFASMhkikWqutbTOMsctBtAP8aoLfO8rAfKds6C T/y9CxuY08p3yve8m2b+yi7ATX6wnaLfr+Czek6TZ3BoB1uncwYztjTDIws2cVEj Pu+iAWYmY08CgDSeXEhECFAMXLwyWvBbWhKxvMvNxhS3c1rnukDmD8V7bspc4ir2 bwIO0JH6cotIghb9IxMDf7DV/y0xwxg2DHGNwwah61fgNYc5vr/YgobQimoottWE bnZwgJVz989FIfc4bBmqx+a2m4IxVILFx87pAApC3Y2fYebXTGAKVDb1xj79HVI+ 0BCAGxE= -----END CERTIFICATE-----Generated at Sat Dec 6 21:25:14 2025 by rpki-client