This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/4020FFBCF80111ECAC7ADB0CC4F9AE02.roa File: 4020FFBCF80111ECAC7ADB0CC4F9AE02.roa (raw, json) Hash identifier: sfhbrvmWZN0HTJsAuG8NcAIzTv9LRqIxX3DkvwLrq9Y= Subject key identifier: A2:29:7C:8F:8E:3A:A3:02:88:5F:C1:CF:1A:0E:8C:FE:16:2C:F6:17 Certificate issuer: /CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1 Certificate serial: 0AA9 Authority key identifier: 74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/4020FFBCF80111ECAC7ADB0CC4F9AE02.roa Signing time: Sat 08 Nov 2025 19:40:22 +0000 ROA not before: Sat 08 Nov 2025 19:40:21 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 17907 IP address blocks: 103.28.160.0/24 maxlen: 24 2401:380::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:38:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2729 (0xaa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E475, serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1 Validity Not Before: Nov 8 19:40:21 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690f9ca5-6a18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6a:1d:2c:0b:b9:34:9a:39:fd:af:f3:e2:94: bc:b7:60:f0:77:49:23:93:5a:fa:21:55:ab:9c:c9: 57:20:d0:dd:27:51:85:c8:1d:3f:9e:8c:58:3e:d9: b8:6f:4b:55:0e:4c:4e:28:f6:88:67:e9:d6:f8:20: 02:9b:79:81:57:2c:6c:6c:cc:2b:67:dd:c7:14:8f: 2d:7c:ee:11:93:1e:28:4a:4a:89:40:82:d4:74:17: 8f:c9:35:49:19:b3:34:c7:65:e4:d0:85:d4:a5:82: bf:ed:e4:fd:4e:b2:77:d2:e8:10:36:0f:20:6d:95: 38:3e:26:7c:67:d3:e2:44:44:5c:f3:71:cb:dd:d1: 23:b9:75:50:9d:42:8a:ba:e5:ef:03:46:e0:4e:b3: 28:63:df:98:c8:ab:70:71:a4:9d:3a:49:a1:eb:d3: bc:28:2e:6a:56:86:e2:d4:45:d8:b1:ad:6a:08:09: 77:49:79:95:61:f4:7e:fa:f9:38:f8:72:60:ae:77: b0:c0:82:2e:ed:e6:a0:49:e3:13:9a:e7:72:52:98: ef:0e:50:64:d1:7d:cf:b4:df:61:f6:d7:a4:e1:27: f5:0a:8d:e6:6e:57:1f:a8:a9:ed:b8:ed:08:0f:f8: d6:ea:db:03:eb:e3:50:bc:de:60:0e:93:e5:2e:97: cb:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:29:7C:8F:8E:3A:A3:02:88:5F:C1:CF:1A:0E:8C:FE:16:2C:F6:17 X509v3 Authority Key Identifier: keyid:74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/4020FFBCF80111ECAC7ADB0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.160.0/24 IPv6: 2401:380::/32 Signature Algorithm: sha256WithRSAEncryption 9b:3d:4c:4e:e4:02:df:c8:d5:5b:66:48:d4:f1:08:ad:e9:d3: d8:c3:55:d7:98:72:bb:47:f8:39:bc:ab:f0:14:97:90:ae:5a: 82:93:e0:53:7e:45:10:48:c9:ae:47:15:28:4b:1f:4e:49:2d: da:03:57:56:b1:0e:3a:07:33:aa:b2:ea:74:4d:1c:c9:5c:10: 4a:f3:8e:29:3a:9f:50:c9:a2:75:2b:c8:f5:3b:02:89:99:1e: f4:51:ae:9f:0c:f4:b4:bf:b1:ce:75:85:ee:b9:74:32:4e:5e: 47:dc:75:0a:fb:82:10:e7:dd:f6:54:ee:8c:88:62:e9:4b:b4: fe:b9:a0:5f:f6:8d:93:7f:70:dd:f2:dd:58:d4:de:71:29:3e: 11:92:2e:a2:44:f3:55:50:a6:73:c8:25:f3:dd:84:13:e7:30: a2:78:dd:cd:4a:16:71:8e:76:9a:34:bf:a6:c7:6c:36:0c:91: 99:d1:51:03:a1:11:40:65:d2:a9:7c:b7:be:13:f3:94:c7:a5: ff:b1:6b:ac:35:a4:fc:e6:08:8d:50:7f:d8:e8:4d:c4:f8:94: ba:23:80:7e:b2:1c:22:37:ee:a7:82:3f:4c:be:72:1b:db:34: 35:37:80:33:42:e0:d1:d0:c7:12:e1:fe:43:9a:4f:70:c3:63: a2:f5:48:bc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU0NzUxMTAvBgNVBAUTKDc0NUZGNEYwNjNBQjVEMTcxRTA1MjUxQjMxRTI5NEE0 QkM3OTczQjEwHhcNMjUxMTA4MTk0MDIxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBmOWNhNS02YTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6modLAu5NJo5/a/z4pS8t2Dwd0kjk1r6IVWrnMlXINDdJ1GFyB0/noxYPtm4 b0tVDkxOKPaIZ+nW+CACm3mBVyxsbMwrZ93HFI8tfO4Rkx4oSkqJQILUdBePyTVJ GbM0x2Xk0IXUpYK/7eT9TrJ30ugQNg8gbZU4PiZ8Z9PiRERc83HL3dEjuXVQnUKK uuXvA0bgTrMoY9+YyKtwcaSdOkmh69O8KC5qVobi1EXYsa1qCAl3SXmVYfR++vk4 +HJgrnewwIIu7eagSeMTmudyUpjvDlBk0X3PtN9h9tek4Sf1Co3mblcfqKntuO0I D/jW6tsD6+NQvN5gDpPlLpfL3QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKIpfI+O OqMCiF/BzxoOjP4WLPYXMB8GA1UdIwQYMBaAFHRf9PBjq10XHgUlGzHilKS8eXOx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTQ3NS9EQTgzQUE3QUNB MTExMUVBQTQ3OUM3MzRDNEY5QUUwMi9kRl8wOEdPclhSY2VCU1ViTWVLVXBMeDVj N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RGXzA4R09yWFJjZUJTVWJNZUtVcEx4NWM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUU0NzUvREE4M0FBN0FDQTExMTFFQUE0NzlDNzM0QzRGOUFFMDIvNDAyMEZGQkNG ODAxMTFFQ0FDN0FEQjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnHKAwDQQCAAIwBwMFACQBA4AwDQYJKoZIhvcNAQELBQAD ggEBAJs9TE7kAt/I1VtmSNTxCK3p09jDVdeYcrtH+Dm8q/AUl5CuWoKT4FN+RRBI ya5HFShLH05JLdoDV1axDjoHM6qy6nRNHMlcEErzjik6n1DJonUryPU7AomZHvRR rp8M9LS/sc51he65dDJOXkfcdQr7ghDn3fZU7oyIYulLtP65oF/2jZN/cN3y3VjU 3nEpPhGSLqJE81VQpnPIJfPdhBPnMKJ43c1KFnGOdpo0v6bHbDYMkZnRUQOhEUBl 0ql8t74T85THpf+xa6w1pPzmCI1Qf9joTcT4lLojgH6yHCI37qeCP0y+chvbNDU3 gDNC4NHQxxLh/kOaT3DDY6L1SLw= -----END CERTIFICATE-----Generated at Sat Dec 6 19:14:44 2025 by rpki-client