This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915E47C/47B55992AD0F11E5B978FD54C4F9AE02/27CF6BE84EED11EF8D4BE30CC4F9AE02.roa File: 27CF6BE84EED11EF8D4BE30CC4F9AE02.roa (raw, json) Hash identifier: yMBDorU4Lt5NEIhIOX3t46/cZp8SC2Q4+GgHPUR0It0= Subject key identifier: 2F:80:88:70:0A:56:7A:D9:DB:E6:CB:86:E0:7B:A4:08:59:6D:A2:D9 Certificate issuer: /CN=A915E47C/serialNumber=1B8198E297ECFB8FB51AF79624D3B684A1F9B51D Certificate serial: 22D0 Authority key identifier: 1B:81:98:E2:97:EC:FB:8F:B5:1A:F7:96:24:D3:B6:84:A1:F9:B5:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4GY4pfs-4-1GveWJNO2hKH5tR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E47C/47B55992AD0F11E5B978FD54C4F9AE02/27CF6BE84EED11EF8D4BE30CC4F9AE02.roa Signing time: Fri 28 Nov 2025 22:58:14 +0000 ROA not before: Fri 28 Nov 2025 22:58:14 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.205.76.0/24 maxlen: 24 103.205.77.0/24 maxlen: 24 103.205.78.0/24 maxlen: 24 103.205.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E47C/47B55992AD0F11E5B978FD54C4F9AE02/G4GY4pfs-4-1GveWJNO2hKH5tR0.crl rsync://rpki.apnic.net/member_repository/A915E47C/47B55992AD0F11E5B978FD54C4F9AE02/G4GY4pfs-4-1GveWJNO2hKH5tR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4GY4pfs-4-1GveWJNO2hKH5tR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:38:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8912 (0x22d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E47C, serialNumber=1B8198E297ECFB8FB51AF79624D3B684A1F9B51D Validity Not Before: Nov 28 22:58:14 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=692a2906-be01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:53:f6:21:07:11:7f:9e:5a:03:4f:89:b0:be: 1e:3e:af:1b:a7:e4:e3:af:2c:71:e2:18:8e:e7:bd: b6:a2:09:08:d6:95:b2:87:98:f6:31:aa:9a:a7:6e: e1:6a:94:f2:3d:02:40:2b:5e:68:62:a5:47:12:85: ce:94:bc:19:6d:78:73:07:53:ce:35:6a:35:9b:3e: 7b:db:4f:a0:9f:6b:c8:7f:5f:14:aa:09:1e:49:f6: 24:1d:ba:dd:62:6d:d7:73:b7:73:91:e2:07:5e:00: 2f:57:4b:d0:d1:37:22:63:16:8c:6f:80:ab:a2:a9: 85:37:25:e5:d4:24:cf:23:fb:f2:55:37:1b:86:5e: 4a:3d:5c:06:72:3d:79:e7:a9:8f:a6:57:ca:54:d8: 9d:d1:6a:a2:cc:52:ec:33:4f:75:1c:dd:29:7b:06: 27:7e:46:e2:56:4a:4b:49:65:a2:82:69:dc:4b:63: 6c:0e:2e:fc:5c:f3:11:7e:f1:eb:2c:af:c3:0c:c2: e1:90:fb:43:5b:8c:77:8d:52:7f:3d:1b:fb:d8:9c: 06:6b:d1:fe:6f:f9:10:8f:3e:0b:a4:c2:3f:4a:ff: 6e:86:2b:1a:3f:50:9a:de:82:0b:d1:7c:75:59:0c: 7b:f9:8b:fb:b1:0d:2b:7a:47:44:8d:89:ff:71:c2: dd:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:80:88:70:0A:56:7A:D9:DB:E6:CB:86:E0:7B:A4:08:59:6D:A2:D9 X509v3 Authority Key Identifier: keyid:1B:81:98:E2:97:EC:FB:8F:B5:1A:F7:96:24:D3:B6:84:A1:F9:B5:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E47C/47B55992AD0F11E5B978FD54C4F9AE02/G4GY4pfs-4-1GveWJNO2hKH5tR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4GY4pfs-4-1GveWJNO2hKH5tR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E47C/47B55992AD0F11E5B978FD54C4F9AE02/27CF6BE84EED11EF8D4BE30CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.205.76.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:66:d5:f5:79:a2:55:6c:cb:42:02:8e:8e:89:d4:61:63:e2: 6f:34:e5:c1:e8:6d:b8:a0:6d:48:df:28:cc:6d:34:5a:73:d2: 9e:2b:f0:90:4d:a9:d4:41:52:1e:39:72:81:f4:98:e5:8b:36: ae:f7:c8:e2:80:99:25:34:2c:aa:6c:cf:d8:7c:96:ec:42:2c: 2a:7f:bf:be:8b:97:79:e2:95:d4:b2:0d:e0:59:8e:44:96:7c: f8:ff:02:1b:60:ac:fd:7f:9e:3c:91:94:00:c9:b5:4c:20:eb: 85:3e:f8:1f:f2:ef:1b:bf:ce:ac:d1:dc:b6:a9:21:53:b4:c0: 69:b5:e8:bc:89:45:f3:52:3a:67:51:d2:61:45:fe:3c:1d:ff: eb:9c:ac:de:0f:14:28:56:7f:00:c1:82:45:b8:d3:31:ad:40: 38:6c:37:14:80:66:15:7d:79:d0:94:25:41:28:30:66:9d:d3: f4:c2:1f:a1:6e:6d:92:69:57:5a:96:49:ef:8d:46:ef:cb:fb: d1:2f:b7:f6:57:fd:86:ca:33:21:67:cf:55:86:6c:07:b9:c3: 08:c8:0b:76:b9:22:a5:42:6b:0a:ae:a9:61:ec:b1:c4:e9:c9: 5d:28:7e:ea:c1:82:fe:33:4e:78:17:40:fe:d4:d1:1d:b5:c5: 2a:58:7e:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICItAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU0N0MxMTAvBgNVBAUTKDFCODE5OEUyOTdFQ0ZCOEZCNTFBRjc5NjI0RDNCNjg0 QTFGOUI1MUQwHhcNMjUxMTI4MjI1ODE0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJhMjkwNi1iZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVP2IQcRf55aA0+JsL4ePq8bp+Tjryxx4hiO5722ogkI1pWyh5j2Maqap27h apTyPQJAK15oYqVHEoXOlLwZbXhzB1PONWo1mz5720+gn2vIf18UqgkeSfYkHbrd Ym3Xc7dzkeIHXgAvV0vQ0TciYxaMb4CroqmFNyXl1CTPI/vyVTcbhl5KPVwGcj15 56mPplfKVNid0WqizFLsM091HN0pewYnfkbiVkpLSWWigmncS2NsDi78XPMRfvHr LK/DDMLhkPtDW4x3jVJ/PRv72JwGa9H+b/kQjz4LpMI/Sv9uhisaP1Ca3oIL0Xx1 WQx7+Yv7sQ0rekdEjYn/ccLdYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFC+AiHAK VnrZ2+bLhuB7pAhZbaLZMB8GA1UdIwQYMBaAFBuBmOKX7PuPtRr3liTTtoSh+bUd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTQ3Qy80N0I1NTk5MkFE MEYxMUU1Qjk3OEZENTRDNEY5QUUwMi9HNEdZNHBmcy00LTFHdmVXSk5PMmhLSDV0 UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0R1k0cGZzLTQtMUd2ZVdKTk8yaEtINXRSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUU0N0MvNDdCNTU5OTJBRDBGMTFFNUI5NzhGRDU0QzRGOUFFMDIvMjdDRjZCRTg0 RUVEMTFFRjhENEJFMzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnzUwwDQYJKoZIhvcNAQELBQADggEBAB5m1fV5olVsy0IC jo6J1GFj4m805cHobbigbUjfKMxtNFpz0p4r8JBNqdRBUh45coH0mOWLNq73yOKA mSU0LKpsz9h8luxCLCp/v76Ll3nildSyDeBZjkSWfPj/AhtgrP1/njyRlADJtUwg 64U++B/y7xu/zqzR3LapIVO0wGm16LyJRfNSOmdR0mFF/jwd/+ucrN4PFChWfwDB gkW40zGtQDhsNxSAZhV9edCUJUEoMGad0/TCH6FubZJpV1qWSe+NRu/L+9Evt/ZX /YbKMyFnz1WGbAe5wwjIC3a5IqVCawquqWHsscTpyV0ofurBgv4zTngXQP7U0R21 xSpYfsk= -----END CERTIFICATE-----Generated at Sat Dec 6 11:41:04 2025 by rpki-client