This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa File: 89340B10B5E011EE91DD4D53C4F9AE02.roa (raw, json) Hash identifier: Gt/oRcVaexfNA1Wibp4cycw9KNuAJ1VfL6/5H0dZRto= Subject key identifier: 0B:24:CC:80:1D:CF:DB:10:AD:EC:83:4E:1D:83:EC:C0:1B:4E:C5:3A Certificate issuer: /CN=A9175299/serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Certificate serial: 0B9C Authority key identifier: 81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa Signing time: Wed 31 Dec 2025 19:16:17 +0000 ROA not before: Wed 31 Dec 2025 19:16:17 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138385 IP address blocks: 103.124.52.0/22 maxlen: 23 103.124.52.0/24 maxlen: 24 103.124.53.0/24 maxlen: 24 103.124.54.0/24 maxlen: 24 103.124.55.0/24 maxlen: 24 2403:da40::/32 maxlen: 32 2403:da40::/33 maxlen: 33 2403:da40:b::/48 maxlen: 48 2403:da40:100::/40 maxlen: 40 2403:da40:100::/48 maxlen: 48 2403:da40:101::/48 maxlen: 48 2403:da40:102::/48 maxlen: 48 2403:da40:103::/48 maxlen: 48 2403:da40:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2972 (0xb9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175299, serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Validity Not Before: Dec 31 19:16:17 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69557681-ebe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:97:8e:58:09:e4:6f:89:bf:95:43:fc:fa:aa: 6e:d1:a0:91:d1:41:1d:9f:f3:7e:c0:56:75:27:cc: 7f:5c:14:0b:f6:1f:46:c2:60:1f:45:ed:9f:0a:0c: 12:99:f7:8f:c0:be:9f:d6:c0:24:d7:73:cb:08:cd: d9:5b:7b:2b:bb:6e:f2:28:33:3a:39:59:a3:c0:fb: 43:bd:68:67:fa:be:17:e2:c1:c7:be:89:4c:6d:50: 05:36:49:7c:7f:01:ab:29:ad:56:1b:9c:9a:54:12: 6f:27:19:e9:81:af:27:9b:1e:70:21:47:a5:b8:99: be:1e:70:9f:8c:01:2e:ea:75:5d:ed:f4:32:a7:e8: 28:d2:08:aa:b9:66:37:03:3b:3f:ee:59:22:a6:8d: 2d:bf:7f:c7:c4:52:c7:d8:12:bb:32:6c:de:3b:a8: 3a:4f:14:61:ac:a0:25:19:00:02:5f:e7:81:e9:bd: ba:af:2c:6e:c2:22:a4:6c:c8:9e:42:1a:56:01:dd: 44:a2:fe:6a:1b:13:6b:24:1e:ac:c1:21:64:dc:71: 97:3c:82:78:8b:1b:dc:12:ed:df:6a:9a:56:75:fa: 84:ba:ef:06:92:50:e5:b6:53:b8:2f:97:0b:4a:96: af:b5:b6:d3:75:53:8c:19:54:e9:f8:0f:d0:fb:6b: 4d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:24:CC:80:1D:CF:DB:10:AD:EC:83:4E:1D:83:EC:C0:1B:4E:C5:3A X509v3 Authority Key Identifier: keyid:81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.52.0/22 IPv6: 2403:da40::/32 Signature Algorithm: sha256WithRSAEncryption 2a:29:ce:b7:8b:49:9c:4b:93:78:03:f1:c3:5d:37:b5:ad:52: 82:82:1d:0d:60:c1:ff:5c:5d:c3:7a:00:68:9b:01:5b:5f:7a: 51:65:79:1e:10:7e:5c:11:25:71:ec:f5:a1:9c:cb:cc:a7:5f: 5c:00:08:4a:c7:14:a1:ab:5d:33:d9:31:cc:72:14:c6:3d:38: 4a:f7:f5:fe:9f:1a:62:3e:55:bb:8c:f2:d6:3a:fc:e1:48:66: 69:d5:9e:c3:4a:22:02:00:15:eb:b9:5b:bd:eb:91:5b:2b:d2: a8:90:fb:80:83:64:38:57:6f:b6:12:82:df:f9:05:e0:ae:81: a8:c7:67:ef:96:00:24:8b:0a:02:bd:6e:6e:9e:82:47:51:ce: 2e:db:1a:7d:58:84:ae:51:8d:67:3f:49:2e:0a:88:60:12:7e: 98:7c:43:48:aa:8b:54:c0:a0:1b:f8:5a:ee:15:6c:83:b0:4a: c8:01:cd:65:fd:90:81:7e:b3:00:7e:f9:bc:6f:28:61:e0:f7: 88:4b:9a:c3:d4:51:41:9e:99:08:a5:17:e0:08:23:f9:cb:ac: ac:68:b0:90:9b:7b:1d:ae:37:da:de:99:4b:29:76:4d:5d:8c: 94:8e:3f:b3:37:82:37:9b:93:99:ca:de:c6:37:b6:d0:cf:31: 9f:36:d2:cc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzUyOTkxMTAvBgNVBAUTKDgxQTcxNTFCMTc3NTkyRjg2ODIzQjY5RjQzNzYyNEU5 QzAwMkRFNDEwHhcNMjUxMjMxMTkxNjE3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU1NzY4MS1lYmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5eOWAnkb4m/lUP8+qpu0aCR0UEdn/N+wFZ1J8x/XBQL9h9GwmAfRe2fCgwS mfePwL6f1sAk13PLCM3ZW3sru27yKDM6OVmjwPtDvWhn+r4X4sHHvolMbVAFNkl8 fwGrKa1WG5yaVBJvJxnpga8nmx5wIUeluJm+HnCfjAEu6nVd7fQyp+go0giquWY3 Azs/7lkipo0tv3/HxFLH2BK7MmzeO6g6TxRhrKAlGQACX+eB6b26ryxuwiKkbMie QhpWAd1Eov5qGxNrJB6swSFk3HGXPIJ4ixvcEu3fappWdfqEuu8GklDltlO4L5cL SpavtbbTdVOMGVTp+A/Q+2tNBQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAskzIAd z9sQreyDTh2D7MAbTsU6MB8GA1UdIwQYMBaAFIGnFRsXdZL4aCO2n0N2JOnAAt5B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI5OS8yNjg5MEVEQTQy QzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2aG9JN2FmUTNZazZjQUMz a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhY1ZHeGQxa3Zob0k3YWZRM1lrNmNBQzNrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUyOTkvMjY4OTBFREE0MkM1MTFFQUIyNkNGRDFCQzRGOUFFMDIvODkzNDBCMTBC NUUwMTFFRTkxREQ0RDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfDQwDQQCAAIwBwMFACQD2kAwDQYJKoZIhvcNAQELBQAD ggEBACopzreLSZxLk3gD8cNdN7WtUoKCHQ1gwf9cXcN6AGibAVtfelFleR4QflwR JXHs9aGcy8ynX1wACErHFKGrXTPZMcxyFMY9OEr39f6fGmI+VbuM8tY6/OFIZmnV nsNKIgIAFeu5W73rkVsr0qiQ+4CDZDhXb7YSgt/5BeCugajHZ++WACSLCgK9bm6e gkdRzi7bGn1YhK5RjWc/SS4KiGASfph8Q0iqi1TAoBv4Wu4VbIOwSsgBzWX9kIF+ swB++bxvKGHg94hLmsPUUUGemQilF+AII/nLrKxosJCbex2uN9remUspdk1djJSO P7M3gjebk5nK3sY3ttDPMZ820sw= -----END CERTIFICATE-----Generated at Sun Jan 25 10:43:35 2026 by rpki-client