This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172878/4C998A361D8A11E28A1F23E408B02CD2/C552F48EC80011EAAD578B77C4F9AE02.roa File: C552F48EC80011EAAD578B77C4F9AE02.roa (raw, json) Hash identifier: XdSTq9a3+iFe4VI7nDUck0LhT2SZbH7g4xQmyCXOz+E= Subject key identifier: 0A:4B:43:88:A7:14:30:58:D3:2C:83:DB:97:DD:3F:2F:B6:34:76:28 Certificate issuer: /CN=A9172878/serialNumber=A3D00626C2F9B462C5507FF180C36DE9C3399CB2 Certificate serial: 3578 Authority key identifier: A3:D0:06:26:C2:F9:B4:62:C5:50:7F:F1:80:C3:6D:E9:C3:39:9C:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9AGJsL5tGLFUH_xgMNt6cM5nLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172878/4C998A361D8A11E28A1F23E408B02CD2/C552F48EC80011EAAD578B77C4F9AE02.roa Signing time: Wed 31 Dec 2025 15:10:28 +0000 ROA not before: Wed 31 Dec 2025 15:10:28 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 131322 IP address blocks: 61.4.64.0/20 maxlen: 20 61.4.64.0/24 maxlen: 24 61.4.65.0/24 maxlen: 24 61.4.66.0/24 maxlen: 24 61.4.67.0/24 maxlen: 24 61.4.68.0/24 maxlen: 24 61.4.69.0/24 maxlen: 24 61.4.70.0/24 maxlen: 24 61.4.71.0/24 maxlen: 24 61.4.73.0/24 maxlen: 24 61.4.74.0/24 maxlen: 24 61.4.75.0/24 maxlen: 24 61.4.76.0/24 maxlen: 24 61.4.77.0/24 maxlen: 24 61.4.78.0/24 maxlen: 24 61.4.79.0/24 maxlen: 24 122.248.96.0/19 maxlen: 19 122.248.107.0/24 maxlen: 24 122.248.108.0/24 maxlen: 24 122.248.109.0/24 maxlen: 24 122.248.110.0/24 maxlen: 24 122.248.111.0/24 maxlen: 24 122.248.117.0/24 maxlen: 24 203.81.160.0/20 maxlen: 20 203.81.166.0/24 maxlen: 24 203.81.167.0/24 maxlen: 24 203.81.170.0/24 maxlen: 24 2406:ea00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172878/4C998A361D8A11E28A1F23E408B02CD2/o9AGJsL5tGLFUH_xgMNt6cM5nLI.crl rsync://rpki.apnic.net/member_repository/A9172878/4C998A361D8A11E28A1F23E408B02CD2/o9AGJsL5tGLFUH_xgMNt6cM5nLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9AGJsL5tGLFUH_xgMNt6cM5nLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:31:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13688 (0x3578) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172878, serialNumber=A3D00626C2F9B462C5507FF180C36DE9C3399CB2 Validity Not Before: Dec 31 15:10:28 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69553ce4-7d0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f3:fa:66:67:fe:7a:3c:ea:c4:05:03:9e:85: c7:9c:6e:53:83:bc:a3:20:61:7b:f7:da:61:01:13: 79:c6:6b:55:c5:1c:b9:7e:df:de:26:10:8a:f6:c3: 94:2d:c6:ec:df:a7:1b:37:6e:ac:68:a4:34:9b:15: e0:f8:72:69:d1:39:ff:45:29:ea:c1:3c:ff:89:0a: b3:ac:b7:7a:85:8e:73:15:b2:28:53:f5:89:8c:2b: b9:d9:f9:7d:ff:4c:ae:b0:d9:ac:ec:df:f8:99:7e: 90:6e:59:23:64:da:aa:ce:56:1d:ac:1a:9a:ae:ea: 1f:3a:f5:c5:b0:19:3c:f6:48:9a:0f:20:3d:8b:05: 81:75:5b:0c:79:ed:39:34:db:3c:60:d9:39:df:2a: 8b:76:17:47:eb:45:d9:73:8c:fc:53:ce:3d:e7:14: 2a:f9:33:17:52:9a:16:f0:0a:d7:b0:15:d7:41:43: 40:de:d0:06:81:81:b3:21:26:44:a8:83:eb:71:09: c0:7b:64:b6:5c:fb:b1:e8:2c:fe:77:e7:bd:99:a6: 79:e1:7d:d0:8f:86:3c:04:54:c5:00:14:ec:62:79: 92:fc:1c:5f:54:f3:e5:e0:c2:34:73:65:26:64:b4: f8:4e:4a:c1:d0:6c:10:ea:a4:a8:d8:e3:86:c5:22: 6e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:4B:43:88:A7:14:30:58:D3:2C:83:DB:97:DD:3F:2F:B6:34:76:28 X509v3 Authority Key Identifier: keyid:A3:D0:06:26:C2:F9:B4:62:C5:50:7F:F1:80:C3:6D:E9:C3:39:9C:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172878/4C998A361D8A11E28A1F23E408B02CD2/o9AGJsL5tGLFUH_xgMNt6cM5nLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9AGJsL5tGLFUH_xgMNt6cM5nLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172878/4C998A361D8A11E28A1F23E408B02CD2/C552F48EC80011EAAD578B77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.4.64.0/20 122.248.96.0/19 203.81.160.0/20 IPv6: 2406:ea00::/32 Signature Algorithm: sha256WithRSAEncryption 3e:5b:9c:90:8d:49:65:ab:83:29:be:2c:eb:21:09:36:87:50: f4:de:89:36:5b:d0:f0:de:92:1c:66:24:1a:5b:6f:35:a9:a9: eb:ff:07:7f:c7:96:eb:7a:d8:c1:47:c2:b7:37:3c:ce:58:7b: 49:03:74:6e:a0:c5:f7:0d:e1:7a:78:ec:60:75:f8:ae:9a:0a: 30:26:e6:d1:a1:8a:ec:ce:6d:c0:b1:87:5a:6d:40:f0:25:c5: ef:20:bc:51:69:c7:bd:5b:f1:2f:66:da:85:ac:f7:db:de:17: 04:f5:58:af:94:9f:b6:f0:71:d5:0e:4e:ee:62:3a:54:4e:02: 14:ff:5d:0a:85:26:d4:85:1f:79:7f:93:b2:6d:b3:b6:2b:bf: 38:e6:65:bb:db:20:aa:1e:e6:e8:df:2b:9a:2e:be:77:c7:e5: be:85:0b:e5:72:ea:1e:ed:e1:60:51:4a:51:ba:07:61:6a:29: 62:4d:67:ea:a8:a4:38:70:28:2d:1d:ca:29:d9:f1:34:20:dd: 49:27:a4:96:c1:8b:c1:48:ed:d5:f4:d9:cb:18:06:4e:e2:87: b9:13:79:60:d0:c4:a7:83:4e:b9:fe:35:59:32:36:8a:e3:3b: a5:e8:61:dc:d4:c0:3b:b6:bd:73:0d:45:cf:5e:f2:fe:23:7a: 41:43:2b:92 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICNXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzI4NzgxMTAvBgNVBAUTKEEzRDAwNjI2QzJGOUI0NjJDNTUwN0ZGMTgwQzM2REU5 QzMzOTlDQjIwHhcNMjUxMjMxMTUxMDI4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU1M2NlNC03ZDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvP6Zmf+ejzqxAUDnoXHnG5Tg7yjIGF799phARN5xmtVxRy5ft/eJhCK9sOU Lcbs36cbN26saKQ0mxXg+HJp0Tn/RSnqwTz/iQqzrLd6hY5zFbIoU/WJjCu52fl9 /0yusNms7N/4mX6QblkjZNqqzlYdrBqaruofOvXFsBk89kiaDyA9iwWBdVsMee05 NNs8YNk53yqLdhdH60XZc4z8U8495xQq+TMXUpoW8ArXsBXXQUNA3tAGgYGzISZE qIPrcQnAe2S2XPux6Cz+d+e9maZ54X3Qj4Y8BFTFABTsYnmS/BxfVPPl4MI0c2Um ZLT4TkrB0GwQ6qSo2OOGxSJuKwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFApLQ4in FDBY0yyD25fdPy+2NHYoMB8GA1UdIwQYMBaAFKPQBibC+bRixVB/8YDDbenDOZyy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Mjg3OC80Qzk5OEEzNjFE OEExMUUyOEExRjIzRTQwOEIwMkNEMi9vOUFHSnNMNXRHTEZVSF94Z01OdDZjTTVu TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285QUdKc0w1dEdMRlVIX3hnTU50NmNNNW5MSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI4NzgvNEM5OThBMzYxRDhBMTFFMjhBMUYyM0U0MDhCMDJDRDIvQzU1MkY0OEVD ODAwMTFFQUFENTc4Qjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAQ9BEADBAV6+GADBATLUaAwDQQCAAIwBwMFACQG6gAwDQYJ KoZIhvcNAQELBQADggEBAD5bnJCNSWWrgym+LOshCTaHUPTeiTZb0PDekhxmJBpb bzWpqev/B3/Hlut62MFHwrc3PM5Ye0kDdG6gxfcN4Xp47GB1+K6aCjAm5tGhiuzO bcCxh1ptQPAlxe8gvFFpx71b8S9m2oWs99veFwT1WK+Un7bwcdUOTu5iOlROAhT/ XQqFJtSFH3l/k7Jts7YrvzjmZbvbIKoe5ujfK5ouvnfH5b6FC+Vy6h7t4WBRSlG6 B2FqKWJNZ+qopDhwKC0dyinZ8TQg3UknpJbBi8FI7dX02csYBk7ih7kTeWDQxKeD Trn+NVkyNorjO6XoYdzUwDu2vXMNRc9e8v4jekFDK5I= -----END CERTIFICATE-----Generated at Sun Jan 25 18:57:58 2026 by rpki-client