This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/D9D6FFE098E311F08722B635C4F9AE02.roa File: D9D6FFE098E311F08722B635C4F9AE02.roa (raw, json) Hash identifier: 4B3XONtyer/LI/a650TjjRxsYwxE3yzyQKK0hCYJdog= Subject key identifier: 0A:C4:60:5A:C5:0D:A9:78:CC:D0:31:34:ED:7F:D1:A3:F7:71:BC:5C Certificate issuer: /CN=A9173CE6/serialNumber=33195F96C46D4D285D5BDE4B0B030E38314E8FCB Certificate serial: 070B Authority key identifier: 33:19:5F:96:C4:6D:4D:28:5D:5B:DE:4B:0B:03:0E:38:31:4E:8F:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/D9D6FFE098E311F08722B635C4F9AE02.roa Signing time: Fri 21 Nov 2025 04:25:19 +0000 ROA not before: Fri 21 Nov 2025 04:25:19 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133510 IP address blocks: 103.105.139.0/24 maxlen: 24 203.8.10.0/24 maxlen: 24 203.31.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.crl rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6, serialNumber=33195F96C46D4D285D5BDE4B0B030E38314E8FCB Validity Not Before: Nov 21 04:25:19 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=691fe9af-f122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:38:7d:34:5d:2e:f2:c9:5e:03:e2:de:10:18: ef:d1:2a:4f:e8:6f:dc:fa:23:9e:dd:60:6d:da:d2: 7b:f6:85:c5:b7:e1:f0:9d:e8:b0:bc:fc:b8:de:8a: 09:10:30:44:07:60:3d:36:4a:ab:53:0c:65:1c:d3: fa:dc:72:2a:0f:bf:28:8a:1b:05:ca:a8:e3:b3:9c: cb:2e:65:d7:f0:0d:a5:92:d9:75:ae:81:9f:8c:58: 4a:bb:33:a1:0e:0e:ff:eb:04:41:ad:43:61:94:c6: e4:c8:be:fc:19:19:32:f7:8b:f6:26:2e:73:5a:73: ce:ff:89:13:41:1f:e8:73:9f:49:6c:d4:63:ed:4a: 1e:47:ef:07:02:63:4c:ce:18:8a:e9:a9:a5:6b:b5: d7:ed:4b:ae:d9:50:1f:d3:1e:83:97:1e:71:fd:ef: 97:08:1b:24:c9:6c:3a:53:fa:44:c5:e2:7e:e8:fd: 7b:eb:fd:24:ee:2f:40:08:1b:40:5a:b5:d5:9e:8a: 5c:3f:ab:b0:c0:50:1d:f2:20:29:2f:d0:95:83:be: bf:cd:dc:4c:0d:34:4e:d0:f1:c6:df:65:33:9e:e2: a1:77:e9:08:ec:8b:76:70:76:88:62:1f:7c:c3:ac: 29:a1:5a:8f:c7:00:c7:90:fa:4d:d1:81:2f:57:e0: de:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:C4:60:5A:C5:0D:A9:78:CC:D0:31:34:ED:7F:D1:A3:F7:71:BC:5C X509v3 Authority Key Identifier: keyid:33:19:5F:96:C4:6D:4D:28:5D:5B:DE:4B:0B:03:0E:38:31:4E:8F:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/D9D6FFE098E311F08722B635C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.105.139.0/24 203.8.10.0/24 203.31.118.0/23 Signature Algorithm: sha256WithRSAEncryption 08:3b:3d:30:30:d6:f1:1d:46:6e:cc:15:67:8b:a8:37:2e:f4: 82:13:be:b5:0e:48:be:88:48:4e:ca:0a:b8:ed:18:37:77:c1: 54:cf:c9:aa:49:56:7b:27:5d:dc:0c:ff:74:c3:ab:92:8c:81: e9:1b:50:b4:50:b4:8a:dd:13:b6:73:ae:41:b0:e9:b7:d8:46: 6a:3a:5c:5b:93:46:3c:a3:cc:bb:ce:dd:0c:fe:cd:48:f0:f7: 4c:8a:5e:08:6a:df:bd:8e:6b:3b:2d:59:0b:06:6e:64:a4:21: 61:ff:29:c2:39:7b:44:7a:49:75:8d:34:4e:d8:3a:6f:43:c1: f1:bd:80:ea:26:80:a9:e9:f1:09:77:e1:97:9b:68:af:f1:04: 78:a1:dd:db:03:05:a5:95:86:ec:cf:82:b7:1e:88:12:9d:45: 90:bf:8f:f9:5a:d7:00:64:51:cb:10:03:8a:f2:2a:f8:de:79: 72:e1:0f:fa:91:57:8f:c4:0d:a9:c0:9b:eb:53:48:45:c8:be: 74:0e:48:be:cb:45:07:d6:b2:10:70:cb:1a:d4:ac:c8:6c:24: f1:63:06:2c:19:75:df:06:fa:5a:8d:42:20:a9:33:52:d7:fa: 5a:67:fb:92:72:de:d3:c1:3e:a5:8d:ee:92:11:84:9a:f5:e5: f9:d1:0d:9a -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDMzMTk1Rjk2QzQ2RDREMjg1RDVCREU0QjBCMDMwRTM4 MzE0RThGQ0IwHhcNMjUxMTIxMDQyNTE5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFmZTlhZi1mMTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jh9NF0u8sleA+LeEBjv0SpP6G/c+iOe3WBt2tJ79oXFt+HwneiwvPy43ooJ EDBEB2A9NkqrUwxlHNP63HIqD78oihsFyqjjs5zLLmXX8A2lktl1roGfjFhKuzOh Dg7/6wRBrUNhlMbkyL78GRky94v2Ji5zWnPO/4kTQR/oc59JbNRj7UoeR+8HAmNM zhiK6amla7XX7Uuu2VAf0x6Dlx5x/e+XCBskyWw6U/pExeJ+6P176/0k7i9ACBtA WrXVnopcP6uwwFAd8iApL9CVg76/zdxMDTRO0PHG32UznuKhd+kI7It2cHaIYh98 w6wpoVqPxwDHkPpN0YEvV+DepQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFArEYFrF Dal4zNAxNO1/0aP3cbxcMB8GA1UdIwQYMBaAFDMZX5bEbU0oXVveSwsDDjgxTo/L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wRThFMjc4MDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9NeGxmbHNSdFRTaGRXOTVMQ3dNT09ERk9q OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014bGZsc1J0VFNoZFc5NUxDd01PT0RGT2o4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNDRTYvMEU4RTI3ODA3QkQwMTFFQjg1QTY2OTgwQzRGOUFFMDIvRDlENkZGRTA5 OEUzMTFGMDg3MjJCNjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnaYsDBADLCAoDBAHLH3YwDQYJKoZIhvcNAQELBQADggEB AAg7PTAw1vEdRm7MFWeLqDcu9IITvrUOSL6ISE7KCrjtGDd3wVTPyapJVnsnXdwM /3TDq5KMgekbULRQtIrdE7ZzrkGw6bfYRmo6XFuTRjyjzLvO3Qz+zUjw90yKXghq 372OazstWQsGbmSkIWH/KcI5e0R6SXWNNE7YOm9DwfG9gOomgKnp8Ql34ZebaK/x BHih3dsDBaWVhuzPgrceiBKdRZC/j/la1wBkUcsQA4ryKvjeeXLhD/qRV4/EDanA m+tTSEXIvnQOSL7LRQfWshBwyxrUrMhsJPFjBiwZdd8G+lqNQiCpM1LX+lpn+5Jy 3tPBPqWN7pIRhJr15fnRDZo= -----END CERTIFICATE-----Generated at Sun Dec 7 05:19:32 2025 by rpki-client