This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916EC8B/D81D53706FCE11EDBC02945DC4F9AE02/9F13CA9AC60C11F0BE755750C4F9AE02.roa File: 9F13CA9AC60C11F0BE755750C4F9AE02.roa (raw, json) Hash identifier: PyeUHh2Ng6SJ5El0I6XUEocd+w1I2M5sfj3R1NBqgdo= Subject key identifier: C2:60:12:16:99:16:21:2E:9B:65:E0:37:E3:84:A8:6E:58:35:B8:8E Certificate issuer: /CN=A916EC8B/serialNumber=1104CE2C6D91EF9D9A33956F0731D9E23F13AFBE Certificate serial: 0243 Authority key identifier: 11:04:CE:2C:6D:91:EF:9D:9A:33:95:6F:07:31:D9:E2:3F:13:AF:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EQTOLG2R752aM5VvBzHZ4j8Tr74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EC8B/D81D53706FCE11EDBC02945DC4F9AE02/9F13CA9AC60C11F0BE755750C4F9AE02.roa Signing time: Wed 03 Dec 2025 09:09:50 +0000 ROA not before: Wed 03 Dec 2025 09:09:50 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138004 IP address blocks: 103.52.140.0/24 maxlen: 24 103.52.141.0/24 maxlen: 24 103.52.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EC8B/D81D53706FCE11EDBC02945DC4F9AE02/EQTOLG2R752aM5VvBzHZ4j8Tr74.crl rsync://rpki.apnic.net/member_repository/A916EC8B/D81D53706FCE11EDBC02945DC4F9AE02/EQTOLG2R752aM5VvBzHZ4j8Tr74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EQTOLG2R752aM5VvBzHZ4j8Tr74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:16:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EC8B, serialNumber=1104CE2C6D91EF9D9A33956F0731D9E23F13AFBE Validity Not Before: Dec 3 09:09:50 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=692ffe5e-8f77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fd:e9:aa:08:90:ee:93:5f:e3:a0:b9:bf:cc: 27:87:67:de:c9:91:6f:67:0e:4a:64:ac:52:b9:6c: 9c:d9:dc:4d:0a:80:f7:b7:74:c0:e5:c9:d9:f4:e7: 6b:8d:f9:4b:64:9f:11:02:85:c7:0f:da:13:6f:59: 05:7f:30:d6:dd:a4:52:0d:d6:95:8e:a2:12:53:e9: cb:c4:89:0c:8e:7a:32:62:06:8d:77:6b:db:4a:70: 8b:48:5a:34:be:ef:6d:be:3e:b0:f0:1a:4c:e8:46: b8:46:b7:86:23:92:02:fa:8f:a7:b5:2a:47:0b:89: 54:3e:49:e8:76:66:a8:ec:23:c8:50:da:06:f9:fd: 98:d4:95:57:cf:27:6c:c9:1d:c9:f5:07:f6:d0:16: de:32:a2:61:ed:42:4d:98:68:90:1e:5f:f1:6e:62: b6:39:05:81:5d:01:cc:1f:79:81:3b:aa:d6:5d:4b: 94:90:1d:93:0f:0b:75:ed:4a:10:f2:44:15:b2:3c: a5:33:65:2f:89:2f:fe:5e:ec:58:e1:c7:51:47:a2: 3c:9e:04:c9:48:61:07:80:44:e6:e7:e8:f3:1a:00: fc:8e:d0:41:38:5f:1a:17:dc:46:f5:03:19:ac:b0: 93:25:b6:31:89:5a:f3:b1:a9:17:c6:17:dd:bf:16: 3b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:60:12:16:99:16:21:2E:9B:65:E0:37:E3:84:A8:6E:58:35:B8:8E X509v3 Authority Key Identifier: keyid:11:04:CE:2C:6D:91:EF:9D:9A:33:95:6F:07:31:D9:E2:3F:13:AF:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EC8B/D81D53706FCE11EDBC02945DC4F9AE02/EQTOLG2R752aM5VvBzHZ4j8Tr74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EQTOLG2R752aM5VvBzHZ4j8Tr74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EC8B/D81D53706FCE11EDBC02945DC4F9AE02/9F13CA9AC60C11F0BE755750C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.52.140.0/23 103.52.143.0/24 Signature Algorithm: sha256WithRSAEncryption 67:f9:31:5b:ec:88:63:44:e5:30:32:5a:af:33:e3:28:74:eb: 61:ef:89:be:3e:18:6c:a7:e1:d8:04:b7:98:14:e4:5d:b6:43: dd:1a:13:4f:5b:c8:fd:4d:a3:39:f0:52:e9:4d:9e:5a:4b:12: a3:d1:b9:e9:70:d5:29:7f:43:cb:68:25:69:26:b2:b1:1d:a4: ad:04:ed:9b:bc:e7:86:05:69:73:b1:61:2d:89:e1:7e:eb:81: b5:29:f3:c0:73:2b:69:1b:3e:ba:b1:95:96:07:e8:57:34:04: 3c:3d:fc:61:f4:72:5b:08:2f:72:f1:c0:30:dc:c1:16:69:a6: be:0f:11:62:35:2a:96:4d:dc:19:5a:80:2d:65:94:79:80:ed: f0:85:b1:f1:15:4d:ba:f8:d9:58:39:32:6d:2d:a5:c6:42:fb: e8:fe:9a:c3:8d:ce:7c:9b:23:61:e3:eb:02:e3:dc:17:be:87: 27:6e:a0:28:fc:57:fd:26:c1:d8:2d:95:ad:a8:36:75:4a:90: d5:cd:ec:de:5a:b2:80:47:fa:78:76:d7:a4:92:21:9f:7f:1e: a3:a5:a5:43:f7:1f:5a:01:a4:83:89:33:bc:b8:1d:52:2a:58: 9f:44:0c:62:75:6a:c6:af:7d:3f:e0:48:ff:bf:f0:58:3e:8e: 9b:e7:dc:be -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVDOEIxMTAvBgNVBAUTKDExMDRDRTJDNkQ5MUVGOUQ5QTMzOTU2RjA3MzFEOUUy M0YxM0FGQkUwHhcNMjUxMjAzMDkwOTUwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmZmU1ZS04Zjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzv3pqgiQ7pNf46C5v8wnh2feyZFvZw5KZKxSuWyc2dxNCoD3t3TA5cnZ9Odr jflLZJ8RAoXHD9oTb1kFfzDW3aRSDdaVjqISU+nLxIkMjnoyYgaNd2vbSnCLSFo0 vu9tvj6w8BpM6Ea4RreGI5IC+o+ntSpHC4lUPknodmao7CPIUNoG+f2Y1JVXzyds yR3J9Qf20BbeMqJh7UJNmGiQHl/xbmK2OQWBXQHMH3mBO6rWXUuUkB2TDwt17UoQ 8kQVsjylM2UviS/+XuxY4cdRR6I8ngTJSGEHgETm5+jzGgD8jtBBOF8aF9xG9QMZ rLCTJbYxiVrzsakXxhfdvxY7EQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMJgEhaZ FiEum2XgN+OEqG5YNbiOMB8GA1UdIwQYMBaAFBEEzixtke+dmjOVbwcx2eI/E6++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUM4Qi9EODFENTM3MDZG Q0UxMUVEQkMwMjk0NURDNEY5QUUwMi9FUVRPTEcyUjc1MmFNNVZ2QnpIWjRqOFRy NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VRVE9MRzJSNzUyYU01VnZCekhaNGo4VHI3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVDOEIvRDgxRDUzNzA2RkNFMTFFREJDMDI5NDVEQzRGOUFFMDIvOUYxM0NBOUFD NjBDMTFGMEJFNzU1NzUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnNIwDBABnNI8wDQYJKoZIhvcNAQELBQADggEBAGf5MVvs iGNE5TAyWq8z4yh062Hvib4+GGyn4dgEt5gU5F22Q90aE09byP1NoznwUulNnlpL EqPRuelw1Sl/Q8toJWkmsrEdpK0E7Zu854YFaXOxYS2J4X7rgbUp88BzK2kbPrqx lZYH6Fc0BDw9/GH0clsIL3LxwDDcwRZppr4PEWI1KpZN3BlagC1llHmA7fCFsfEV Tbr42Vg5Mm0tpcZC++j+msONznybI2Hj6wLj3Be+hyduoCj8V/0mwdgtla2oNnVK kNXN7N5asoBH+nh216SSIZ9/HqOlpUP3H1oBpIOJM7y4HVIqWJ9EDGJ1asavfT/g SP+/8Fg+jpvn3L4= -----END CERTIFICATE-----Generated at Sat Dec 6 20:13:40 2025 by rpki-client