This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/34CC285A5C6011EB80D50F0CC4F9AE02.roa File: 34CC285A5C6011EB80D50F0CC4F9AE02.roa (raw, json) Hash identifier: NT27Q4+crppd5YzCD9rpV43tvmiUM1bUNKwwd266KfY= Subject key identifier: F8:98:BA:92:B6:20:32:58:36:0D:C0:41:AC:22:47:42:45:F1:7F:86 Certificate issuer: /CN=A9171A1B/serialNumber=4C349C51CA598907D5C07CB1F24851FC048DAD1A Certificate serial: 0742 Authority key identifier: 4C:34:9C:51:CA:59:89:07:D5:C0:7C:B1:F2:48:51:FC:04:8D:AD:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDScUcpZiQfVwHyx8khR_ASNrRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/34CC285A5C6011EB80D50F0CC4F9AE02.roa Signing time: Thu 04 Dec 2025 21:04:43 +0000 ROA not before: Thu 04 Dec 2025 21:04:43 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 138399 IP address blocks: 103.124.132.0/22 maxlen: 22 103.124.132.0/24 maxlen: 24 103.124.133.0/24 maxlen: 24 103.124.134.0/24 maxlen: 24 103.124.135.0/24 maxlen: 24 2403:e040::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/TDScUcpZiQfVwHyx8khR_ASNrRo.crl rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/TDScUcpZiQfVwHyx8khR_ASNrRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDScUcpZiQfVwHyx8khR_ASNrRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:48:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1858 (0x742) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A1B, serialNumber=4C349C51CA598907D5C07CB1F24851FC048DAD1A Validity Not Before: Dec 4 21:04:43 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6931f76b-080b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6a:b2:bc:3b:dd:06:d0:a4:b8:98:1d:7f:67: 05:54:be:db:84:65:ac:7a:af:f2:46:12:7a:bb:2a: bf:a8:59:77:2d:ba:76:6e:32:41:da:fb:c2:3b:d5: 6b:77:1d:4b:eb:c5:36:c6:f8:ed:c1:3f:b4:8d:09: d5:26:60:39:0a:cf:94:d3:5d:fb:da:e7:97:c0:34: 20:29:c3:32:78:dd:57:c9:fb:0a:08:b0:c6:e3:34: 2b:64:fb:ae:f2:3e:d5:34:04:2b:ef:be:92:1a:42: 6f:d0:44:f2:44:41:89:90:4e:49:b2:cb:eb:98:eb: 95:b9:ea:65:2b:ca:44:e8:f4:2a:cd:5f:70:1f:cf: b6:07:b3:8e:1f:8a:b6:13:43:0f:96:00:97:ce:ec: 66:e0:22:7b:ab:cd:4c:f6:6b:5f:33:37:5b:09:d4: 40:a7:81:2f:55:20:2f:c0:56:4f:97:73:6e:ae:80: 35:fe:f6:7d:f8:38:ec:f3:e7:a6:57:36:2f:89:06: 3f:14:24:68:f9:7a:e8:7b:03:72:17:cf:a4:b9:14: 43:28:7e:f8:2e:b5:9b:a6:66:c5:75:f5:a5:33:3a: b8:03:a9:af:81:9b:d9:bb:36:9d:11:14:57:26:b3: b0:10:4b:6c:2b:cc:98:7e:b3:58:c8:21:d7:04:3b: ba:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:98:BA:92:B6:20:32:58:36:0D:C0:41:AC:22:47:42:45:F1:7F:86 X509v3 Authority Key Identifier: keyid:4C:34:9C:51:CA:59:89:07:D5:C0:7C:B1:F2:48:51:FC:04:8D:AD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/TDScUcpZiQfVwHyx8khR_ASNrRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDScUcpZiQfVwHyx8khR_ASNrRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/34CC285A5C6011EB80D50F0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.132.0/22 IPv6: 2403:e040::/32 Signature Algorithm: sha256WithRSAEncryption 28:f9:d8:3e:d6:d7:87:16:1b:67:92:04:51:8f:e6:4b:8a:18: b1:af:d6:03:65:4a:61:c6:a7:99:db:8f:2e:1b:64:b5:69:83: ef:c8:6b:63:48:30:73:44:98:8f:f1:74:9b:ed:a2:ce:41:0a: f7:71:ea:ff:1b:1a:b4:dc:4a:b5:6f:1a:85:55:83:02:0a:3b: 31:e0:17:2b:8c:2d:4e:42:b3:3f:18:12:7f:69:39:11:14:3d: bf:a7:1c:c0:2b:8f:20:65:c2:10:dc:01:ac:de:97:df:88:10: b0:ec:03:0c:d7:32:b1:74:7f:ac:93:d0:e7:8c:2c:5d:f0:47: 9a:d4:3a:9b:f2:14:f0:c0:62:d6:36:18:60:2e:06:10:51:3c: fb:74:8b:c7:47:4f:1e:18:68:88:c2:78:82:49:fa:dc:8b:99: df:55:00:b5:4f:0d:00:8b:69:55:6d:33:e5:3f:3a:52:d6:9e: 3e:11:a1:ac:a6:9c:51:17:4d:c2:0e:36:37:99:e8:3d:31:e5: 38:51:99:7e:57:5f:10:7f:a9:b7:35:99:1e:5f:27:41:c0:02: 99:ec:9f:e4:79:cc:ae:2d:0f:ea:29:b1:48:7b:45:1c:41:2e: 61:f2:7b:a2:cc:6e:b2:6b:cb:8e:68:99:d4:dd:79:4b:59:5f: 3f:dd:07:84 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMUIxMTAvBgNVBAUTKDRDMzQ5QzUxQ0E1OTg5MDdENUMwN0NCMUYyNDg1MUZD MDQ4REFEMUEwHhcNMjUxMjA0MjEwNDQzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMxZjc2Yi0wODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WqyvDvdBtCkuJgdf2cFVL7bhGWseq/yRhJ6uyq/qFl3Lbp2bjJB2vvCO9Vr dx1L68U2xvjtwT+0jQnVJmA5Cs+U01372ueXwDQgKcMyeN1XyfsKCLDG4zQrZPuu 8j7VNAQr776SGkJv0ETyREGJkE5JssvrmOuVueplK8pE6PQqzV9wH8+2B7OOH4q2 E0MPlgCXzuxm4CJ7q81M9mtfMzdbCdRAp4EvVSAvwFZPl3NuroA1/vZ9+Djs8+em VzYviQY/FCRo+XroewNyF8+kuRRDKH74LrWbpmbFdfWlMzq4A6mvgZvZuzadERRX JrOwEEtsK8yYfrNYyCHXBDu6ZwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPiYupK2 IDJYNg3AQawiR0JF8X+GMB8GA1UdIwQYMBaAFEw0nFHKWYkH1cB8sfJIUfwEja0a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUExQi9EQzU4Q0M1QTVD NDExMUVCODFEN0M2MEJDNEY5QUUwMi9URFNjVWNwWmlRZlZ3SHl4OGtoUl9BU05y Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1REU2NVY3BaaVFmVndIeXg4a2hSX0FTTnJSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFBMUIvREM1OENDNUE1QzQxMTFFQjgxRDdDNjBCQzRGOUFFMDIvMzRDQzI4NUE1 QzYwMTFFQjgwRDUwRjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfIQwDQQCAAIwBwMFACQD4EAwDQYJKoZIhvcNAQELBQAD ggEBACj52D7W14cWG2eSBFGP5kuKGLGv1gNlSmHGp5nbjy4bZLVpg+/Ia2NIMHNE mI/xdJvtos5BCvdx6v8bGrTcSrVvGoVVgwIKOzHgFyuMLU5Csz8YEn9pOREUPb+n HMArjyBlwhDcAazel9+IELDsAwzXMrF0f6yT0OeMLF3wR5rUOpvyFPDAYtY2GGAu BhBRPPt0i8dHTx4YaIjCeIJJ+tyLmd9VALVPDQCLaVVtM+U/OlLWnj4RoaymnFEX TcIONjeZ6D0x5ThRmX5XXxB/qbc1mR5fJ0HAApnsn+R5zK4tD+opsUh7RRxBLmHy e6LMbrJry45omdTdeUtZXz/dB4Q= -----END CERTIFICATE-----Generated at Sun Dec 7 13:08:49 2025 by rpki-client