This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917535F/2E28C85E275A11F08EFF6B76C4F9AE02/A7E91DCE275A11F09892587AC4F9AE02.roa File: A7E91DCE275A11F09892587AC4F9AE02.roa (raw, json) Hash identifier: XAjhA6rZnmUy5R0B6dDTLLxVDTe9uTg164pqzzQZriU= Subject key identifier: 26:0A:FB:E3:2F:48:62:21:0F:17:02:EE:64:46:C4:58:4C:10:1F:C0 Certificate issuer: /CN=A917535F/serialNumber=3D15363FB0A6F4A8D1A8A5C99FA3B4E5931F8B7C Certificate serial: 65 Authority key identifier: 3D:15:36:3F:B0:A6:F4:A8:D1:A8:A5:C9:9F:A3:B4:E5:93:1F:8B:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PRU2P7Cm9KjRqKXJn6O05ZMfi3w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917535F/2E28C85E275A11F08EFF6B76C4F9AE02/A7E91DCE275A11F09892587AC4F9AE02.roa Signing time: Wed 05 Nov 2025 07:21:35 +0000 ROA not before: Wed 05 Nov 2025 07:21:35 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 55720 IP address blocks: 203.99.148.0/24 maxlen: 24 203.99.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917535F/2E28C85E275A11F08EFF6B76C4F9AE02/PRU2P7Cm9KjRqKXJn6O05ZMfi3w.crl rsync://rpki.apnic.net/member_repository/A917535F/2E28C85E275A11F08EFF6B76C4F9AE02/PRU2P7Cm9KjRqKXJn6O05ZMfi3w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PRU2P7Cm9KjRqKXJn6O05ZMfi3w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:47:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917535F, serialNumber=3D15363FB0A6F4A8D1A8A5C99FA3B4E5931F8B7C Validity Not Before: Nov 5 07:21:35 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690afafe-13cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:90:50:4d:02:3f:7a:8a:20:7b:da:bd:f9:1b: c4:6e:ea:8d:f3:e0:cc:47:81:2f:70:24:c9:56:ae: 55:c4:96:c6:37:f8:be:06:61:51:8c:32:48:57:39: b4:0e:ae:1f:a9:d5:2c:70:8d:bd:70:6b:79:93:c0: ff:6a:00:1d:72:40:81:80:b6:42:21:1d:da:ef:cd: f7:de:67:6b:50:f7:de:3f:cd:94:68:ea:06:3d:63: c4:ff:51:5c:12:3a:7f:29:7e:38:33:d8:a6:24:66: 11:aa:b1:c7:f2:69:30:56:7c:e5:02:ab:87:1d:bc: f7:a1:ba:ae:a4:af:21:99:06:b4:bc:92:86:61:d6: 93:0e:d3:83:76:a5:06:8a:0a:af:e9:19:6d:75:b9: 72:45:08:7d:c2:bb:f9:e4:52:9b:8d:73:e8:1f:d4: 75:1e:f3:f6:70:91:aa:05:87:43:11:4b:20:48:d5: bf:e8:6e:92:c6:77:f6:d1:1e:e8:7b:73:dc:a1:52: 97:e7:4a:6c:23:0e:ac:f0:91:d6:7c:01:46:96:47: 0e:5f:9a:ea:e7:4b:d1:b9:d5:a9:7a:74:62:66:bc: b0:dd:3f:1a:cb:c8:ff:c7:70:cd:d2:a6:cf:88:d1: c9:2c:09:c1:39:2e:e9:d6:4d:85:63:15:9e:8a:a0: d6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:0A:FB:E3:2F:48:62:21:0F:17:02:EE:64:46:C4:58:4C:10:1F:C0 X509v3 Authority Key Identifier: keyid:3D:15:36:3F:B0:A6:F4:A8:D1:A8:A5:C9:9F:A3:B4:E5:93:1F:8B:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917535F/2E28C85E275A11F08EFF6B76C4F9AE02/PRU2P7Cm9KjRqKXJn6O05ZMfi3w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PRU2P7Cm9KjRqKXJn6O05ZMfi3w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917535F/2E28C85E275A11F08EFF6B76C4F9AE02/A7E91DCE275A11F09892587AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.99.148.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:03:33:2b:0b:4c:de:73:a3:84:42:2d:d2:fd:ca:d2:bd:d9: fd:7e:19:c7:1e:ba:1e:7a:28:76:64:ae:d3:ac:19:cf:bf:96: f0:d7:f3:d8:3f:f3:22:3c:13:7a:f2:53:9d:cd:4d:ab:6b:67: 01:18:10:eb:22:ff:5d:5c:d4:4d:bd:cc:72:c9:56:f8:f9:79: 0f:2f:82:50:ca:1e:0c:da:6c:73:16:41:ba:a7:56:cb:60:63: f1:5e:52:db:15:19:ce:90:89:b7:82:73:f5:d5:a4:01:b2:6c: 37:00:4b:1b:4b:0f:4a:57:d7:9e:0a:b7:07:a5:8e:56:21:e6: 0a:d7:6a:c6:13:b7:de:d3:6a:cc:ec:5e:76:d2:62:71:52:9b: 7b:d1:cb:55:4a:8b:ad:03:1d:f5:b1:d1:f6:87:aa:b6:9e:12: f8:11:9b:d6:c8:98:b6:4b:4e:3c:23:c7:6c:3a:71:2b:0d:48: 00:92:25:b4:95:be:ec:c4:fc:71:e6:02:72:42:b4:a2:ae:6b: 0b:61:11:f4:c8:79:1f:db:32:ac:40:1e:3f:b6:f1:91:9f:7c: ef:a1:38:30:9d:42:c7:64:a1:24:ad:d5:18:af:c3:ff:11:b9: fe:43:e1:c5:65:39:5f:c3:e5:9f:ed:af:6c:9d:35:9c:3e:65: 47:1f:a8:5a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTM1RjExMC8GA1UEBRMoM0QxNTM2M0ZCMEE2RjRBOEQxQThBNUM5OUZBM0I0RTU5 MzFGOEI3QzAeFw0yNTExMDUwNzIxMzVaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MGFmYWZlLTEzY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDykFBNAj96iiB72r35G8Ru6o3z4MxHgS9wJMlWrlXElsY3+L4GYVGMMkhXObQO rh+p1Sxwjb1wa3mTwP9qAB1yQIGAtkIhHdrvzffeZ2tQ994/zZRo6gY9Y8T/UVwS On8pfjgz2KYkZhGqscfyaTBWfOUCq4cdvPehuq6kryGZBrS8koZh1pMO04N2pQaK Cq/pGW11uXJFCH3Cu/nkUpuNc+gf1HUe8/ZwkaoFh0MRSyBI1b/obpLGd/bRHuh7 c9yhUpfnSmwjDqzwkdZ8AUaWRw5fmurnS9G51al6dGJmvLDdPxrLyP/HcM3Sps+I 0cksCcE5LunWTYVjFZ6KoNYBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJgr74y9I YiEPFwLuZEbEWEwQH8AwHwYDVR0jBBgwFoAUPRU2P7Cm9KjRqKXJn6O05ZMfi3ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1MzVGLzJFMjhDODVFMjc1 QTExRjA4RUZGNkI3NkM0RjlBRTAyL1BSVTJQN0NtOUtqUnFLWEpuNk8wNVpNZmkz dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUFJVMlA3Q205S2pScUtYSm42TzA1Wk1maTN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTM1Ri8yRTI4Qzg1RTI3NUExMUYwOEVGRjZCNzZDNEY5QUUwMi9BN0U5MURDRTI3 NUExMUYwOTg5MjU4N0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEActjlDANBgkqhkiG9w0BAQsFAAOCAQEAjQMzKwtM3nOjhEIt 0v3K0r3Z/X4Zxx66HnoodmSu06wZz7+W8Nfz2D/zIjwTevJTnc1Nq2tnARgQ6yL/ XVzUTb3McslW+Pl5Dy+CUMoeDNpscxZBuqdWy2Bj8V5S2xUZzpCJt4Jz9dWkAbJs NwBLG0sPSlfXngq3B6WOViHmCtdqxhO33tNqzOxedtJicVKbe9HLVUqLrQMd9bHR 9oeqtp4S+BGb1siYtktOPCPHbDpxKw1IAJIltJW+7MT8ceYCckK0oq5rC2ER9Mh5 H9syrEAeP7bxkZ9876E4MJ1Cx2ShJK3VGK/D/xG5/kPhxWU5X8Pln+2vbJ01nD5l Rx+oWg== -----END CERTIFICATE-----Generated at Sat Dec 6 13:54:10 2025 by rpki-client