This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/4D3CA5D082D211EAB2F4F66AC4F9AE02.roa File: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (raw, json) Hash identifier: +4sh+kkJlvofIvhDoAc4FYEyHszuJnLGQWpeb3RoKWE= Subject key identifier: 5C:F3:65:64:D5:3D:A6:E7:46:A8:D1:06:EE:4F:4D:5C:3C:84:AA:C2 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 0A5B Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/4D3CA5D082D211EAB2F4F66AC4F9AE02.roa Signing time: Thu 20 Nov 2025 19:10:10 +0000 ROA not before: Thu 20 Nov 2025 19:10:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 4809 IP address blocks: 63.140.3.0/24 maxlen: 24 63.140.4.0/24 maxlen: 24 63.140.5.0/24 maxlen: 24 63.140.6.0/24 maxlen: 24 63.140.7.0/24 maxlen: 24 63.140.8.0/24 maxlen: 24 63.140.9.0/24 maxlen: 24 63.140.10.0/24 maxlen: 24 63.140.11.0/24 maxlen: 24 63.140.13.0/24 maxlen: 24 63.140.14.0/24 maxlen: 24 63.140.15.0/24 maxlen: 24 69.194.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2651 (0xa5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D, serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Nov 20 19:10:10 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=691f6792-6b02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:76:fe:01:25:98:f4:1a:ef:e8:df:0e:49:88: 21:2b:10:8f:de:95:1b:0a:63:b4:32:43:c3:55:2f: 90:db:76:6b:e1:69:63:f8:fe:af:8e:f1:54:55:1a: 8f:89:7a:80:0c:fa:9d:11:d2:32:2c:bc:42:96:ed: 60:8e:8f:ca:b3:e5:74:41:59:cf:cc:ae:1a:e5:fb: ee:f1:0e:39:f8:9d:cf:78:04:75:61:ce:18:54:38: a4:70:2e:1f:5a:3b:d4:94:0c:b9:d9:ea:80:ae:a0: 08:a2:92:7b:ca:2b:f0:da:27:61:3b:2a:5b:2e:f9: d8:95:2d:59:c0:34:43:2c:b4:36:0c:fd:f6:56:cb: 52:01:28:86:2b:fc:4e:2f:95:a3:d9:c0:a0:25:d8: 80:cd:39:85:2e:aa:c1:e4:7f:fa:5e:f4:75:4c:a7: 10:97:63:d1:ff:8b:67:f1:c3:09:a6:95:8d:a5:53: 5f:a8:8e:79:be:aa:b5:71:84:b1:80:f3:6b:92:2a: e7:42:5e:b1:98:81:e0:a2:22:97:10:b2:1a:d7:ca: 83:8e:d3:22:3a:bf:57:d7:74:4d:42:2c:e1:0f:8a: 69:5c:20:b1:17:52:10:02:22:a3:4e:24:65:eb:2c: 10:92:97:fe:e6:10:d5:ab:89:dd:94:bc:8d:0e:4a: 5f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:F3:65:64:D5:3D:A6:E7:46:A8:D1:06:EE:4F:4D:5C:3C:84:AA:C2 X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/4D3CA5D082D211EAB2F4F66AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 63.140.3.0-63.140.11.255 63.140.13.0-63.140.15.255 69.194.171.0/24 Signature Algorithm: sha256WithRSAEncryption 22:cd:70:d9:a9:00:47:8f:6d:03:7a:7f:6f:13:70:ed:f6:ef: 8b:8d:05:05:61:93:3c:4b:63:52:b8:02:b3:6a:93:36:69:52: 19:1f:24:10:31:d9:d8:2d:bb:c3:34:4a:dc:ca:db:22:14:ce: 73:34:4f:e7:36:cc:0a:0b:04:40:53:97:d8:8d:98:cc:8f:a5: 1d:43:cb:ee:ce:47:3a:d6:b4:d0:66:e1:9b:4e:08:fa:54:67: 78:22:e1:98:6b:46:65:e3:ff:31:97:ec:75:d2:bc:3c:ce:b0: 78:4f:bc:ea:c8:f3:be:de:6d:2c:e2:4a:6f:49:71:22:60:45: 5c:7a:43:6c:27:95:12:aa:2e:64:1d:62:c8:c4:91:ac:e7:50: 2d:da:b2:7b:e3:39:9f:75:b0:8f:37:e3:a1:5f:09:4e:77:86: 32:5b:6b:f2:bf:a5:1f:47:dc:da:ec:42:5c:ad:62:25:54:81: 90:cf:e0:26:f8:b7:48:2f:94:10:20:96:04:8a:09:74:9a:f3: 48:58:c6:d5:97:85:27:f7:a6:9b:77:ef:37:c5:10:f0:1b:a8: 3e:74:4e:b7:06:49:96:93:16:b9:f3:43:db:e2:b1:3c:18:1f: 65:7d:c5:c4:1b:fb:30:d0:11:57:0a:4d:61:59:ed:02:d9:12: 6d:c9:41:3d -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICClswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjUxMTIwMTkxMDEwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFmNjc5Mi02YjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3b+ASWY9Brv6N8OSYghKxCP3pUbCmO0MkPDVS+Q23Zr4Wlj+P6vjvFUVRqP iXqADPqdEdIyLLxClu1gjo/Ks+V0QVnPzK4a5fvu8Q45+J3PeAR1Yc4YVDikcC4f WjvUlAy52eqArqAIopJ7yivw2idhOypbLvnYlS1ZwDRDLLQ2DP32VstSASiGK/xO L5Wj2cCgJdiAzTmFLqrB5H/6XvR1TKcQl2PR/4tn8cMJppWNpVNfqI55vqq1cYSx gPNrkirnQl6xmIHgoiKXELIa18qDjtMiOr9X13RNQizhD4ppXCCxF1IQAiKjTiRl 6ywQkpf+5hDVq4ndlLyNDkpfaQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFFzzZWTV PabnRqjRBu5PTVw8hKrCMB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU3NkQvMkU3NjdFMzI4MkNEMTFFQTg5NUM3QjVDQzRGOUFFMDIvNEQzQ0E1RDA4 MkQyMTFFQUIyRjRGNjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIwDAMEAD+MAwMEAj+MCDAMAwQAP4wNAwQEP4wAAwQARcKrMA0G CSqGSIb3DQEBCwUAA4IBAQAizXDZqQBHj20Den9vE3Dt9u+LjQUFYZM8S2NSuAKz apM2aVIZHyQQMdnYLbvDNErcytsiFM5zNE/nNswKCwRAU5fYjZjMj6UdQ8vuzkc6 1rTQZuGbTgj6VGd4IuGYa0Zl4/8xl+x10rw8zrB4T7zqyPO+3m0s4kpvSXEiYEVc ekNsJ5USqi5kHWLIxJGs51At2rJ74zmfdbCPN+OhXwlOd4YyW2vyv6UfR9za7EJc rWIlVIGQz+Am+LdIL5QQIJYEigl0mvNIWMbVl4Un96abd+83xRDwG6g+dE63BkmW kxa580Pb4rE8GB9lfcXEG/sw0BFXCk1hWe0C2RJtyUE9 -----END CERTIFICATE-----Generated at Sat Dec 6 23:00:14 2025 by rpki-client