This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/21CF7B24C91D11F0841C2E2AC4F9AE02.roa File: 21CF7B24C91D11F0841C2E2AC4F9AE02.roa (raw, json) Hash identifier: R0ZeIXreYlHGHY/JBcaxNvbwWtaBYjtafQ8nNPLMAPc= Subject key identifier: 44:26:0A:5D:D4:C6:D8:8F:62:7C:41:C6:29:3E:61:69:C7:B0:EA:52 Certificate issuer: /CN=A9172D88/serialNumber=B2F05C2CEC3550D2D3C9EB513839F47A002A872E Certificate serial: 0415 Authority key identifier: B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/21CF7B24C91D11F0841C2E2AC4F9AE02.roa Signing time: Mon 24 Nov 2025 10:05:41 +0000 ROA not before: Mon 24 Nov 2025 10:05:41 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 17501 IP address blocks: 103.162.2.0/24 maxlen: 24 2407:b40::/32 maxlen: 32 2407:b40::/48 maxlen: 48 2407:b40:1::/48 maxlen: 48 2407:b40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1045 (0x415) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D88, serialNumber=B2F05C2CEC3550D2D3C9EB513839F47A002A872E Validity Not Before: Nov 24 10:05:41 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69242df4-c1cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d8:c4:35:65:c9:04:61:45:87:29:4e:0e:8c: b1:f6:fc:c9:55:27:9a:56:bc:50:0d:89:9d:c6:b1: 59:b1:12:29:af:e3:08:7c:7b:9b:e7:98:4a:4f:df: f4:34:13:1a:53:19:49:31:b2:5f:02:7b:fe:f7:8c: fa:1b:47:02:e6:92:30:53:9f:4f:e8:25:5c:2d:fe: a0:36:e5:0f:9b:56:67:8b:b5:58:19:cf:f7:d3:d0: 34:c6:81:6f:43:9f:23:e8:81:aa:65:b9:90:c0:01: f8:23:93:95:a2:ae:f1:a5:4b:10:a5:88:e7:81:15: d1:ea:9d:c2:ce:9c:b8:14:72:87:d0:dc:82:51:0b: 60:94:dd:49:7d:00:7d:48:72:99:90:bc:b7:3e:fb: e2:6d:5b:e7:42:4d:c0:d3:3d:28:6b:a9:ad:6f:46: 8f:e5:a6:40:e5:af:3c:6d:4f:fe:2c:84:b0:12:b8: b7:fa:96:38:72:4d:bf:43:79:cb:e0:83:75:48:89: 1a:9f:e2:55:7d:0c:e1:be:38:cb:33:35:90:4c:31: de:46:9e:90:14:b6:8b:69:34:7e:2e:ad:a0:54:90: 75:86:4e:bc:79:e4:d0:74:b2:61:bf:03:74:2b:e8: 4d:c7:ea:9b:00:b7:e7:92:ea:ab:61:e9:3f:26:a8: b4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:26:0A:5D:D4:C6:D8:8F:62:7C:41:C6:29:3E:61:69:C7:B0:EA:52 X509v3 Authority Key Identifier: keyid:B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/21CF7B24C91D11F0841C2E2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.2.0/24 IPv6: 2407:b40::/32 Signature Algorithm: sha256WithRSAEncryption 07:69:dc:65:bb:81:ed:fd:96:ae:50:35:2f:d3:1d:07:f0:10: 10:4d:0a:fb:14:b3:d1:d5:3d:12:05:5f:62:d8:49:05:dd:ad: e5:b8:58:d1:8a:8c:72:8a:05:f0:30:77:bc:57:49:08:86:4c: 6a:f7:fa:bd:44:bd:8c:0b:04:a6:9d:b7:90:4b:49:32:81:21: b1:db:77:b6:d5:fd:89:4a:e4:b2:f2:80:60:c0:30:e7:ef:b4: a2:1a:f5:6d:c0:6e:02:7e:15:39:03:a3:6d:a4:20:a7:47:15: ce:ef:92:28:38:57:cb:c6:51:39:bb:da:8a:da:63:d8:b5:ca: fd:db:ff:ff:9e:f7:16:d0:9b:08:ec:52:d5:b2:4a:32:0c:dc: a6:ee:02:0b:8e:8f:99:db:ac:88:0b:e7:f5:a4:3d:9d:7c:56: ec:b1:fe:94:ef:9b:d7:38:2f:6b:3c:2d:d6:89:a4:81:27:14: ad:c9:41:13:99:97:b5:95:5d:27:ed:1c:18:c7:df:b5:31:c6: 8b:42:98:df:c3:89:c2:b3:39:dd:f8:3c:bb:50:38:71:bf:e7: 5a:11:13:dd:69:cb:a5:d7:7f:e1:94:af:3c:22:b0:84:d3:23: 65:78:51:69:c6:f1:88:a7:0d:b8:dd:fe:83:bb:94:04:6b:5b: 2f:14:a3:7c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEODgxMTAvBgNVBAUTKEIyRjA1QzJDRUMzNTUwRDJEM0M5RUI1MTM4MzlGNDdB MDAyQTg3MkUwHhcNMjUxMTI0MTAwNTQxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI0MmRmNC1jMWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tjENWXJBGFFhylODoyx9vzJVSeaVrxQDYmdxrFZsRIpr+MIfHub55hKT9/0 NBMaUxlJMbJfAnv+94z6G0cC5pIwU59P6CVcLf6gNuUPm1Zni7VYGc/309A0xoFv Q58j6IGqZbmQwAH4I5OVoq7xpUsQpYjngRXR6p3Czpy4FHKH0NyCUQtglN1JfQB9 SHKZkLy3PvvibVvnQk3A0z0oa6mtb0aP5aZA5a88bU/+LISwEri3+pY4ck2/Q3nL 4IN1SIkan+JVfQzhvjjLMzWQTDHeRp6QFLaLaTR+Lq2gVJB1hk68eeTQdLJhvwN0 K+hNx+qbALfnkuqrYek/Jqi0XwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEQmCl3U xtiPYnxBxik+YWnHsOpSMB8GA1UdIwQYMBaAFLLwXCzsNVDS08nrUTg59HoAKocu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ4OC9GMUI3RUFCQTkz QUMxMUVDQjY3QTMxNTJDNEY5QUUwMi9zdkJjTE93MVVOTFR5ZXRST0RuMGVnQXFo eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N2QmNMT3cxVU5MVHlldFJPRG4wZWdBcWh5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJEODgvRjFCN0VBQkE5M0FDMTFFQ0I2N0EzMTUyQzRGOUFFMDIvMjFDRjdCMjRD OTFEMTFGMDg0MUMyRTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnogIwDQQCAAIwBwMFACQHC0AwDQYJKoZIhvcNAQELBQAD ggEBAAdp3GW7ge39lq5QNS/THQfwEBBNCvsUs9HVPRIFX2LYSQXdreW4WNGKjHKK BfAwd7xXSQiGTGr3+r1EvYwLBKadt5BLSTKBIbHbd7bV/YlK5LLygGDAMOfvtKIa 9W3AbgJ+FTkDo22kIKdHFc7vkig4V8vGUTm72oraY9i1yv3b//+e9xbQmwjsUtWy SjIM3KbuAguOj5nbrIgL5/WkPZ18Vuyx/pTvm9c4L2s8LdaJpIEnFK3JQROZl7WV XSftHBjH37UxxotCmN/DicKzOd34PLtQOHG/51oRE91py6XXf+GUrzwisITTI2V4 UWnG8YinDbjd/oO7lARrWy8Uo3w= -----END CERTIFICATE-----Generated at Sat Dec 6 21:14:22 2025 by rpki-client