This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/1F77EFA44C4011EC952D5A23C4F9AE02.roa File: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (raw, json) Hash identifier: 8xg5MTXXpBnfX0/pQTijWkIRf1MFFgkaGBEoo218ZXc= Subject key identifier: 9F:4D:1D:AC:FB:E7:FA:24:86:C5:E7:89:5F:9F:AF:AC:8C:0F:3D:C2 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 04F3 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/1F77EFA44C4011EC952D5A23C4F9AE02.roa Signing time: Fri 28 Nov 2025 22:54:39 +0000 ROA not before: Fri 28 Nov 2025 22:54:39 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 4755 IP address blocks: 103.23.24.0/24 maxlen: 24 103.23.25.0/24 maxlen: 24 103.23.26.0/24 maxlen: 24 103.23.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:21:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1267 (0x4f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Nov 28 22:54:39 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692a282f-7e24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d5:9e:77:e8:98:b2:c4:50:42:a5:af:59:e2: 5e:c0:d5:f4:12:10:3e:76:ea:22:7f:2e:01:ad:f5: ef:f6:30:49:66:cd:9c:66:0f:e7:7c:ad:c7:4c:74: f6:f0:ac:b3:e1:4a:ed:7b:b4:52:6a:71:55:b9:ea: 42:6d:d4:b8:53:2a:b9:13:49:0f:41:72:ee:55:0e: 92:ca:89:8c:03:53:35:f1:d8:3a:20:42:c3:94:81: 38:1b:84:41:43:04:b6:11:70:78:f7:f4:d3:9e:cb: 40:1f:64:f3:88:46:57:9e:bd:9c:5a:da:cf:70:5d: 9a:f8:97:4d:2d:5f:45:fe:81:6d:fc:5f:76:b9:e6: ef:d1:a9:29:85:27:99:9f:39:2d:5e:19:d3:c6:ee: 87:6e:aa:f9:0c:f2:f4:03:6a:1b:33:5c:54:91:30: 1a:7a:53:a9:11:aa:8f:52:92:51:27:85:82:fc:bb: cf:cb:a0:01:c9:63:7b:fd:44:57:bf:23:a6:53:b3: 8d:9b:c3:32:45:37:3c:14:90:d9:56:2d:20:d8:0e: 6a:5a:25:20:d3:45:13:cc:28:07:e7:b4:15:cd:93: 8a:6f:74:45:75:67:53:51:51:ba:8f:6a:4c:9a:7b: db:53:ba:7d:70:94:4f:6e:e2:e0:bb:d0:eb:d6:06: 6b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:4D:1D:AC:FB:E7:FA:24:86:C5:E7:89:5F:9F:AF:AC:8C:0F:3D:C2 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/1F77EFA44C4011EC952D5A23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.24.0/22 Signature Algorithm: sha256WithRSAEncryption a9:f9:dc:78:9a:41:ca:aa:e1:e2:37:d9:65:2d:5c:74:76:9b: fd:97:6b:80:c1:15:15:0d:64:77:81:72:78:88:9e:ab:9b:5f: 2b:b3:d2:6e:e4:bb:4b:d5:d1:30:25:94:96:81:77:0b:23:a0: 45:ef:c9:5b:33:fd:33:3e:f0:9b:e1:e9:6d:d2:93:38:09:70: d1:bf:0f:80:4d:8b:af:c6:e0:62:0c:c7:34:55:70:ab:c0:0b: a1:35:e0:49:13:84:57:e8:fc:89:d6:10:81:8e:40:31:01:da: d1:45:ac:55:00:c8:c8:61:96:dc:da:b8:db:b9:0a:c1:84:20: 52:ae:fe:51:7d:22:a2:e6:11:09:62:87:67:56:ac:d2:68:c2: 37:e0:09:c3:32:7e:ee:ee:55:4f:0a:ab:cd:f5:ea:82:d1:a8: 12:19:08:dc:20:bf:72:5a:3a:1a:87:47:20:10:3f:46:d0:7b: 5d:ea:8d:98:30:83:e5:48:85:5f:a8:a5:01:1a:0b:db:a2:98: 9f:27:97:16:ca:8a:56:ce:dc:d7:ee:7e:8d:60:bc:e3:c5:8f: a8:06:4c:6f:e3:8a:29:d2:eb:8c:e4:c9:8e:9d:1b:d3:50:e9: 26:28:cc:39:2b:19:56:2b:6f:e3:59:ec:19:31:14:df:c8:6b: f7:cb:60:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUxMTI4MjI1NDM5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJhMjgyZi03ZTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdWed+iYssRQQqWvWeJewNX0EhA+duoify4BrfXv9jBJZs2cZg/nfK3HTHT2 8Kyz4Urte7RSanFVuepCbdS4Uyq5E0kPQXLuVQ6SyomMA1M18dg6IELDlIE4G4RB QwS2EXB49/TTnstAH2TziEZXnr2cWtrPcF2a+JdNLV9F/oFt/F92uebv0akphSeZ nzktXhnTxu6Hbqr5DPL0A2obM1xUkTAaelOpEaqPUpJRJ4WC/LvPy6AByWN7/URX vyOmU7ONm8MyRTc8FJDZVi0g2A5qWiUg00UTzCgH57QVzZOKb3RFdWdTUVG6j2pM mnvbU7p9cJRPbuLgu9Dr1gZriwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ9NHaz7 5/okhsXniV+fr6yMDz3CMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdDQzUvMkFDNEQzM0U0NkIxMTFFQzk0NUI0RjU3QzRGOUFFMDIvMUY3N0VGQTQ0 QzQwMTFFQzk1MkQ1QTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnFxgwDQYJKoZIhvcNAQELBQADggEBAKn53HiaQcqq4eI3 2WUtXHR2m/2Xa4DBFRUNZHeBcniInqubXyuz0m7ku0vV0TAllJaBdwsjoEXvyVsz /TM+8Jvh6W3SkzgJcNG/D4BNi6/G4GIMxzRVcKvAC6E14EkThFfo/InWEIGOQDEB 2tFFrFUAyMhhltzauNu5CsGEIFKu/lF9IqLmEQlih2dWrNJowjfgCcMyfu7uVU8K q8316oLRqBIZCNwgv3JaOhqHRyAQP0bQe13qjZgwg+VIhV+opQEaC9uimJ8nlxbK ilbO3Nfufo1gvOPFj6gGTG/jiinS64zkyY6dG9NQ6SYozDkrGVYrb+NZ7BkxFN/I a/fLYJ0= -----END CERTIFICATE-----Generated at Sat Dec 6 19:13:01 2025 by rpki-client