This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa File: 9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa (raw, json) Hash identifier: 70xXWkwNQOqL2UEtMJ5SkT0IFNV0TQ+TXG3w2RYSHvQ= Subject key identifier: E0:8D:59:04:27:F2:F4:4E:66:26:C6:56:79:6F:C5:57:52:8B:A7:0A Certificate issuer: /CN=A9173C8A/serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E Certificate serial: 1974 Authority key identifier: 4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa Signing time: Sat 20 Dec 2025 16:13:54 +0000 ROA not before: Sat 20 Dec 2025 16:13:54 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136004 IP address blocks: 103.79.117.0/24 maxlen: 24 103.99.176.0/23 maxlen: 23 103.99.176.0/24 maxlen: 24 103.99.177.0/24 maxlen: 24 103.120.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:13:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6516 (0x1974) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C8A, serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E Validity Not Before: Dec 20 16:13:54 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6946cb41-39d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8f:dc:91:d5:de:4d:89:0e:9f:7e:58:f7:ab: 62:f6:f4:bf:0d:14:21:e4:c1:ff:59:30:65:45:10: ff:84:75:cb:2e:cc:81:d5:5d:8f:5e:f4:a0:44:ce: db:7e:24:9e:c4:aa:71:4c:d2:ee:29:56:05:b7:5b: 0d:7d:aa:49:b5:37:1f:50:08:2a:d2:40:73:2d:b5: f3:13:f5:b4:9a:6d:94:b5:85:c6:9b:60:59:6f:24: d4:82:4d:a6:ca:e5:8a:34:d6:3e:03:a6:8c:fb:9c: a5:85:12:e3:59:92:f1:09:d3:2e:bf:da:92:64:b5: ca:92:8d:bf:0d:06:de:f0:ff:cc:5a:7e:b5:4c:7f: fd:31:4b:2d:3c:30:72:15:c0:8a:1e:4c:35:ea:9f: b7:c7:49:87:2c:79:c7:83:c1:c6:88:36:48:18:f0: 49:61:56:74:fc:01:1b:98:be:e6:4f:4e:9d:d6:c9: 54:17:89:0e:5f:b0:aa:7f:9c:cb:c6:e9:dd:24:7d: 3d:4f:8a:41:06:fb:b1:7c:b7:94:61:6c:13:1f:bf: 40:f5:13:cf:c5:44:a8:ff:21:8f:a1:17:97:c6:ad: 66:66:81:c4:63:f1:ba:81:98:51:e4:91:91:10:80: 76:d2:7e:b9:1f:07:ee:c4:43:62:46:85:49:59:5e: f2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:8D:59:04:27:F2:F4:4E:66:26:C6:56:79:6F:C5:57:52:8B:A7:0A X509v3 Authority Key Identifier: keyid:4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.117.0/24 103.99.176.0/23 103.120.110.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:a1:51:41:6a:57:6f:63:a3:7c:1e:d7:7f:09:37:d9:e2:f3: 54:b3:90:5e:fb:5e:fb:db:fb:63:ba:35:d7:86:da:ab:5d:97: 2e:d0:38:eb:22:7a:e3:e7:f2:3d:b0:a7:e2:cb:4d:73:14:b7: 9e:4d:bd:48:cf:48:03:09:45:d5:fc:32:50:38:32:7b:33:f0: 55:22:3c:3f:4d:79:00:ba:33:5d:07:26:8c:ca:a8:91:30:00: 3d:85:40:70:47:a4:f6:9c:91:ae:3e:fd:ca:33:bb:39:54:4c: f5:d5:f8:8c:74:aa:de:4a:49:2e:dd:98:7c:35:f8:d0:c1:6c: 6f:2c:23:a1:01:96:63:d7:2e:22:70:d1:25:a4:c5:25:72:ff: cb:6c:f3:44:a6:3a:a9:b9:86:b8:93:28:cf:8f:b0:a2:c1:dd: 6d:0c:3c:5a:8f:03:99:2e:18:08:39:28:d6:9b:c4:4d:04:f0: 6e:bf:d9:33:4c:84:81:7e:f9:71:1d:27:f3:58:ce:50:47:67: 58:85:2b:27:71:75:3d:ef:cd:ab:09:3d:82:08:38:a2:ed:cd: 44:a7:f4:57:df:0e:f7:ab:ca:6f:39:4e:ec:35:0b:a2:2c:4d: 6e:10:42:b5:39:21:ad:4b:98:50:15:f8:a1:18:0e:09:2a:95: c6:9e:e4:5d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICGXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzNDOEExMTAvBgNVBAUTKDRFMkIyMEQ5NTM3MzJCNzVFRUQxMkYxMjk5MjFBMEIx QjVFQjE1OEUwHhcNMjUxMjIwMTYxMzU0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ2Y2I0MS0zOWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4/ckdXeTYkOn35Y96ti9vS/DRQh5MH/WTBlRRD/hHXLLsyB1V2PXvSgRM7b fiSexKpxTNLuKVYFt1sNfapJtTcfUAgq0kBzLbXzE/W0mm2UtYXGm2BZbyTUgk2m yuWKNNY+A6aM+5ylhRLjWZLxCdMuv9qSZLXKko2/DQbe8P/MWn61TH/9MUstPDBy FcCKHkw16p+3x0mHLHnHg8HGiDZIGPBJYVZ0/AEbmL7mT06d1slUF4kOX7Cqf5zL xundJH09T4pBBvuxfLeUYWwTH79A9RPPxUSo/yGPoReXxq1mZoHEY/G6gZhR5JGR EIB20n65HwfuxENiRoVJWV7y3wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOCNWQQn 8vROZibGVnlvxVdSi6cKMB8GA1UdIwQYMBaAFE4rINlTcyt17tEvEpkhoLG16xWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M4QS9FN0ZGQzVGNDg2 RjcxMUU3ODYzNEVDN0VDNEY5QUUwMi9UaXNnMlZOekszWHUwUzhTbVNHZ3NiWHJG WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rpc2cyVk56SzNYdTBTOFNtU0dnc2JYckZZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNDOEEvRTdGRkM1RjQ4NkY3MTFFNzg2MzRFQzdFQzRGOUFFMDIvOUZENUM4RjQ4 RUZFMTFFODhDNkVCRDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnT3UDBAFnY7ADBABneG4wDQYJKoZIhvcNAQELBQADggEB AD6hUUFqV29jo3we138JN9ni81SzkF77Xvvb+2O6NdeG2qtdly7QOOsieuPn8j2w p+LLTXMUt55NvUjPSAMJRdX8MlA4Mnsz8FUiPD9NeQC6M10HJozKqJEwAD2FQHBH pPacka4+/cozuzlUTPXV+Ix0qt5KSS7dmHw1+NDBbG8sI6EBlmPXLiJw0SWkxSVy /8ts80SmOqm5hriTKM+PsKLB3W0MPFqPA5kuGAg5KNabxE0E8G6/2TNMhIF++XEd J/NYzlBHZ1iFKydxdT3vzasJPYIIOKLtzUSn9FffDverym85Tuw1C6IsTW4QQrU5 Ia1LmFAV+KEYDgkqlcae5F0= -----END CERTIFICATE-----Generated at Sun Dec 21 10:22:18 2025 by rpki-client