This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/D0A263DCB09A11F0937ACB4DC4F9AE02.roa File: D0A263DCB09A11F0937ACB4DC4F9AE02.roa (raw, json) Hash identifier: nAEH7WTGkvQSEikwp5AJuM6xAFw8/aZ/j5XiUALRAiM= Subject key identifier: 8D:70:1E:E4:44:7D:58:61:5D:23:55:7F:DA:06:01:82:F9:7F:85:3A Certificate issuer: /CN=A9171D3F/serialNumber=EFD88F8A289B14C79443128BBBB791B52DA511AD Certificate serial: 022D Authority key identifier: EF:D8:8F:8A:28:9B:14:C7:94:43:12:8B:BB:B7:91:B5:2D:A5:11:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/D0A263DCB09A11F0937ACB4DC4F9AE02.roa Signing time: Fri 23 Jan 2026 01:22:33 +0000 ROA not before: Fri 23 Jan 2026 01:22:33 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 24323 IP address blocks: 103.39.196.0/23 maxlen: 23 103.39.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.crl rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:23:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D3F, serialNumber=EFD88F8A289B14C79443128BBBB791B52DA511AD Validity Not Before: Jan 23 01:22:33 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6972cd59-49c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:af:7e:07:83:79:88:36:5a:cd:8c:6f:40:25: 9b:1b:6f:a0:78:c4:57:0e:a8:80:b5:51:c6:39:77: 66:ba:93:c2:4f:d2:4c:7b:3e:20:c7:ee:e0:05:2b: 66:4d:86:e9:d4:a9:04:41:59:93:95:1e:56:b2:fa: b0:3f:22:da:0c:34:21:3a:ac:c6:79:78:47:a1:46: 13:ce:f7:3e:a6:e8:43:ec:08:ae:f8:34:88:77:de: 36:dc:d8:38:d4:7e:21:a7:fe:a7:28:50:f5:cd:00: da:33:17:9f:f3:f6:cc:6f:7e:6d:5e:37:3a:e6:df: 5a:2b:16:75:33:4c:cc:40:ee:e1:e0:b0:af:33:98: 18:a5:23:5b:09:10:46:ec:18:4a:52:5e:44:e6:63: b5:76:92:7b:bf:19:6b:1d:be:74:0f:5e:97:51:60: 91:c4:ed:63:ae:ff:2d:e5:2b:c5:0e:f7:3d:85:04: f5:33:76:ee:3e:67:bb:18:07:1c:ff:a0:81:43:fe: 84:64:6a:3b:55:91:3c:96:a9:ca:0a:8c:d0:7d:5c: dd:f8:24:53:d2:8e:04:0d:72:4a:83:80:ba:24:87: 35:7e:83:73:f8:50:b5:2c:60:73:b9:84:d5:44:36: b9:5e:f5:59:e8:36:65:cc:10:2d:3f:5c:1f:ca:8e: ce:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:70:1E:E4:44:7D:58:61:5D:23:55:7F:DA:06:01:82:F9:7F:85:3A X509v3 Authority Key Identifier: keyid:EF:D8:8F:8A:28:9B:14:C7:94:43:12:8B:BB:B7:91:B5:2D:A5:11:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/D0A263DCB09A11F0937ACB4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.196.0/23 Signature Algorithm: sha256WithRSAEncryption 92:ef:bf:3f:e9:31:b0:5b:b2:c1:6b:b5:b8:67:72:53:d3:ff: 13:af:ff:b9:a0:d6:af:9d:e0:4d:7a:94:87:bc:a2:63:57:68: 03:26:fa:f2:ea:17:25:f6:83:89:e3:3c:a3:d9:ca:53:61:43: b6:87:6b:1d:60:b2:2f:8c:f2:84:69:b7:9b:cf:af:4c:ff:fa: c0:db:6c:2c:7d:99:02:8f:cb:50:bd:1a:79:ec:b6:af:c1:2b: d5:46:80:d1:4e:6b:cf:0e:b5:34:af:b0:83:f1:31:16:bf:9a: 94:9c:07:40:bc:16:04:5a:3c:2d:49:46:f2:74:13:77:33:3f: ff:b0:5e:76:4a:61:ad:76:b5:96:1e:71:a6:f7:b2:3c:d3:91: 76:75:0a:7d:19:0b:64:65:db:55:62:f7:1d:3d:af:df:a8:e4: 58:58:5e:48:80:d0:e4:54:1f:0f:49:57:9d:f9:92:66:f3:ad: 07:88:18:55:bb:96:dd:d4:c9:7a:a8:cd:7f:4b:c2:36:83:33: 02:55:8f:48:e6:76:b1:ae:ae:43:2a:77:b9:ff:62:76:5f:5f: 53:36:5b:33:89:47:ee:6e:ff:2d:5b:cf:14:17:16:0f:88:57: 1a:06:ce:7e:05:f5:cc:88:f2:df:ba:86:29:c8:47:f0:a3:2c: 8d:76:d9:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzFEM0YxMTAvBgNVBAUTKEVGRDg4RjhBMjg5QjE0Qzc5NDQzMTI4QkJCQjc5MUI1 MkRBNTExQUQwHhcNMjYwMTIzMDEyMjMzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTcyY2Q1OS00OWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuK9+B4N5iDZazYxvQCWbG2+geMRXDqiAtVHGOXdmupPCT9JMez4gx+7gBStm TYbp1KkEQVmTlR5WsvqwPyLaDDQhOqzGeXhHoUYTzvc+puhD7Aiu+DSId9423Ng4 1H4hp/6nKFD1zQDaMxef8/bMb35tXjc65t9aKxZ1M0zMQO7h4LCvM5gYpSNbCRBG 7BhKUl5E5mO1dpJ7vxlrHb50D16XUWCRxO1jrv8t5SvFDvc9hQT1M3buPme7GAcc /6CBQ/6EZGo7VZE8lqnKCozQfVzd+CRT0o4EDXJKg4C6JIc1foNz+FC1LGBzuYTV RDa5XvVZ6DZlzBAtP1wfyo7OXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI1wHuRE fVhhXSNVf9oGAYL5f4U6MB8GA1UdIwQYMBaAFO/Yj4oomxTHlEMSi7u3kbUtpRGt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzRi85QjlDOEU2QUIx QjUxMUVEOTlFMzI2NjlDNEY5QUUwMi83OWlQaWlpYkZNZVVReEtMdTdlUnRTMmxF YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc5aVBpaWliRk1lVVF4S0x1N2VSdFMybEVhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFEM0YvOUI5QzhFNkFCMUI1MTFFRDk5RTMyNjY5QzRGOUFFMDIvRDBBMjYzRENC MDlBMTFGMDkzN0FDQjREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnJ8QwDQYJKoZIhvcNAQELBQADggEBAJLvvz/pMbBbssFr tbhnclPT/xOv/7mg1q+d4E16lIe8omNXaAMm+vLqFyX2g4njPKPZylNhQ7aHax1g si+M8oRpt5vPr0z/+sDbbCx9mQKPy1C9Gnnstq/BK9VGgNFOa88OtTSvsIPxMRa/ mpScB0C8FgRaPC1JRvJ0E3czP/+wXnZKYa12tZYecab3sjzTkXZ1Cn0ZC2Rl21Vi 9x09r9+o5FhYXkiA0ORUHw9JV535kmbzrQeIGFW7lt3UyXqozX9LwjaDMwJVj0jm drGurkMqd7n/YnZfX1M2WzOJR+5u/y1bzxQXFg+IVxoGzn4F9cyI8t+6hinIR/Cj LI122Rw= -----END CERTIFICATE-----Generated at Sun Jan 25 13:53:08 2026 by rpki-client