This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/87C1A5F8245711F083602A0BC4F9AE02.roa File: 87C1A5F8245711F083602A0BC4F9AE02.roa (raw, json) Hash identifier: EANvDel33mvxXFe9omaJU7NrbUFposThakUlVJ4Fm3Q= Subject key identifier: 01:54:B1:5F:91:94:BD:6A:38:66:42:1E:A2:14:F1:6D:61:D4:4B:38 Certificate issuer: /CN=A9173780/serialNumber=9BC66CFF809A8A71212005DD9C27047AB418C8A7 Certificate serial: 0A6F Authority key identifier: 9B:C6:6C:FF:80:9A:8A:71:21:20:05:DD:9C:27:04:7A:B4:18:C8:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8Zs_4CainEhIAXdnCcEerQYyKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/87C1A5F8245711F083602A0BC4F9AE02.roa Signing time: Sat 08 Nov 2025 19:09:39 +0000 ROA not before: Sat 08 Nov 2025 19:09:39 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 24479 IP address blocks: 203.3.167.0/24 maxlen: 24 203.28.212.0/24 maxlen: 24 203.170.2.0/23 maxlen: 23 203.170.2.0/24 maxlen: 24 203.170.4.0/22 maxlen: 22 203.170.8.0/21 maxlen: 21 203.170.8.0/24 maxlen: 24 203.170.9.0/24 maxlen: 24 203.170.10.0/24 maxlen: 24 203.170.11.0/24 maxlen: 24 203.170.12.0/24 maxlen: 24 203.170.13.0/24 maxlen: 24 203.170.14.0/24 maxlen: 24 2402:4d40::/32 maxlen: 32 2402:4d40::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/m8Zs_4CainEhIAXdnCcEerQYyKc.crl rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/m8Zs_4CainEhIAXdnCcEerQYyKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8Zs_4CainEhIAXdnCcEerQYyKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2671 (0xa6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173780, serialNumber=9BC66CFF809A8A71212005DD9C27047AB418C8A7 Validity Not Before: Nov 8 19:09:39 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690f9573-5404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8d:d0:91:6f:5d:6c:6d:db:c3:36:b5:e1:06: c6:7e:6a:79:49:f0:60:4b:86:4d:b6:54:83:90:93: 16:79:4f:b9:f3:c1:7a:e4:25:f5:2a:42:3e:08:4d: 3b:f4:90:8a:fe:be:84:20:5b:ee:33:e3:65:86:82: ed:6b:96:89:c0:47:9d:5e:52:04:ba:86:98:4e:67: ba:3a:ea:15:f1:3c:cb:28:d7:62:33:f5:d7:c6:05: 6a:9c:5f:30:37:99:2e:01:81:23:97:5a:02:37:0d: 89:27:9a:77:af:e6:c4:a0:82:3c:52:45:77:a5:20: b8:40:57:cb:69:e9:e8:39:ca:e2:35:26:7e:da:bc: b0:b4:2c:5e:a7:f6:c3:1c:a8:03:0f:34:eb:0c:a3: a6:8d:76:f8:7c:ed:c0:e9:79:46:a2:97:02:aa:ac: d1:37:b5:38:7e:1c:14:a2:1c:32:f4:87:6c:a6:30: 7d:07:ed:e0:8a:c7:c4:d9:68:6c:7c:24:0c:24:69: 2c:51:05:7d:37:f1:68:7b:04:ea:8c:31:bc:0e:39: af:cf:c1:76:1f:d0:0a:87:84:4c:67:29:86:e4:51: c7:97:ef:e9:4d:14:6b:66:5e:3b:88:16:38:49:da: 7e:7b:16:d9:1c:39:53:6e:59:e1:c7:79:bd:08:00: af:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:54:B1:5F:91:94:BD:6A:38:66:42:1E:A2:14:F1:6D:61:D4:4B:38 X509v3 Authority Key Identifier: keyid:9B:C6:6C:FF:80:9A:8A:71:21:20:05:DD:9C:27:04:7A:B4:18:C8:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/m8Zs_4CainEhIAXdnCcEerQYyKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8Zs_4CainEhIAXdnCcEerQYyKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/87C1A5F8245711F083602A0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.3.167.0/24 203.28.212.0/24 203.170.2.0-203.170.15.255 IPv6: 2402:4d40::/32 Signature Algorithm: sha256WithRSAEncryption 4f:ed:f3:44:dd:27:a6:ad:ef:da:6f:3d:a1:bb:a1:e8:d3:fd: 10:fe:a9:fc:b5:6a:d3:9e:c0:44:f5:34:b6:f7:22:33:6f:0c: ad:f8:f4:42:ec:a4:0d:e9:db:2d:5e:b2:68:68:23:9c:a3:7c: 16:92:5e:3a:c3:14:cd:4a:72:e2:dd:32:ec:4b:ac:c5:55:c8: 47:1b:94:41:94:de:92:16:55:db:1c:60:de:fa:33:ee:ca:d2: b4:6c:fb:b8:07:9e:87:d4:6a:39:4f:e5:d6:1c:b3:77:60:01: 63:d1:d8:dd:a7:48:90:b9:81:ff:1a:84:ae:d2:9a:00:ee:35: 45:f8:c1:10:03:28:4b:98:fb:19:e8:7e:66:29:9f:49:49:9f: f2:31:1e:e7:37:ae:a0:32:ea:d7:5d:79:46:91:d3:d5:2c:23: f1:e7:16:67:e8:0a:58:16:b7:e1:a6:4f:45:7b:fa:0d:49:1b: 02:1a:42:27:91:43:75:98:a5:8e:c0:92:f0:6d:ad:fd:01:4a: 59:72:15:99:c0:2f:bc:08:32:fe:6b:9e:bc:48:9a:2b:41:ad: 5f:ed:b9:42:4f:c5:de:50:86:48:5a:56:0e:46:67:08:d8:6d: 3f:26:c2:85:26:d2:f3:79:96:08:1d:65:82:af:50:64:8c:8d: c9:2d:7c:fe -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICCm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM3ODAxMTAvBgNVBAUTKDlCQzY2Q0ZGODA5QThBNzEyMTIwMDVERDlDMjcwNDdB QjQxOEM4QTcwHhcNMjUxMTA4MTkwOTM5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBmOTU3My01NDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzo3QkW9dbG3bwza14QbGfmp5SfBgS4ZNtlSDkJMWeU+588F65CX1KkI+CE07 9JCK/r6EIFvuM+NlhoLta5aJwEedXlIEuoaYTme6OuoV8TzLKNdiM/XXxgVqnF8w N5kuAYEjl1oCNw2JJ5p3r+bEoII8UkV3pSC4QFfLaenoOcriNSZ+2rywtCxep/bD HKgDDzTrDKOmjXb4fO3A6XlGopcCqqzRN7U4fhwUohwy9IdspjB9B+3gisfE2Whs fCQMJGksUQV9N/FoewTqjDG8Djmvz8F2H9AKh4RMZymG5FHHl+/pTRRrZl47iBY4 Sdp+exbZHDlTblnhx3m9CACv+QIDAQABo4ICuDCCArQwHQYDVR0OBBYEFAFUsV+R lL1qOGZCHqIU8W1h1Es4MB8GA1UdIwQYMBaAFJvGbP+AmopxISAF3ZwnBHq0GMin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Mzc4MC84RUI2MkRGQTc3 RUQxMUVBQUE0Q0M0MjJDNEY5QUUwMi9tOFpzXzRDYWluRWhJQVhkbkNjRWVyUVl5 S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL204WnNfNENhaW5FaElBWGRuQ2NFZXJRWXlLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzM3ODAvOEVCNjJERkE3N0VEMTFFQUFBNENDNDIyQzRGOUFFMDIvODdDMUE1Rjgy NDU3MTFGMDgzNjAyQTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMCAEAgABMBoDBADLA6cDBADLHNQwDAMEAcuqAgMEBMuqADANBAIAAjAHAwUA JAJNQDANBgkqhkiG9w0BAQsFAAOCAQEAT+3zRN0npq3v2m89obuh6NP9EP6p/LVq 057ARPU0tvciM28Mrfj0QuykDenbLV6yaGgjnKN8FpJeOsMUzUpy4t0y7EusxVXI RxuUQZTekhZV2xxg3voz7srStGz7uAeeh9RqOU/l1hyzd2ABY9HY3adIkLmB/xqE rtKaAO41RfjBEAMoS5j7Geh+ZimfSUmf8jEe5zeuoDLq1115RpHT1Swj8ecWZ+gK WBa34aZPRXv6DUkbAhpCJ5FDdZiljsCS8G2t/QFKWXIVmcAvvAgy/muevEiaK0Gt X+25Qk/F3lCGSFpWDkZnCNhtPybChSbS83mWCB1lgq9QZIyNyS18/g== -----END CERTIFICATE-----Generated at Sat Dec 6 20:05:57 2025 by rpki-client