This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa File: B0D3DA64107B11F097717C77C4F9AE02.roa (raw, json) Hash identifier: L5Ep8B/7RUWRgMjdNe40xAsqxONjhV0tjlDFWICACUA= Subject key identifier: 16:31:7F:9C:07:0F:19:D2:F3:F8:AD:CA:BE:BD:09:C2:FB:C2:89:7A Certificate issuer: /CN=A9176C8F/serialNumber=057395B4878FB1A67FCBAD582617B7BAAF2C31FF Certificate serial: 0144 Authority key identifier: 05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa Signing time: Wed 24 Dec 2025 07:04:45 +0000 ROA not before: Wed 24 Dec 2025 07:04:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 149296 IP address blocks: 43.255.52.0/24 maxlen: 24 43.255.53.0/24 maxlen: 24 43.255.54.0/24 maxlen: 24 43.255.55.0/24 maxlen: 24 103.129.52.0/22 maxlen: 22 103.129.54.0/23 maxlen: 23 103.129.54.0/24 maxlen: 24 103.129.55.0/24 maxlen: 24 2401:bbe0:200::/40 maxlen: 40 2401:bbe0:500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=057395B4878FB1A67FCBAD582617B7BAAF2C31FF Validity Not Before: Dec 24 07:04:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=694b908d-7e1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:05:a2:4d:d6:66:33:e0:4e:06:71:2f:bf:bb: 03:f9:c8:23:09:40:0a:79:71:1b:e5:c1:3b:54:93: b4:33:98:a6:55:66:6a:13:74:48:6d:58:7f:14:a4: 89:4f:8b:89:d4:29:6b:b3:a2:60:2c:51:a7:4b:2d: a6:5d:a7:ee:3b:df:6d:7f:2d:fc:37:37:72:ae:3a: b7:b3:bf:0d:99:2a:98:ca:9c:73:6a:97:c4:49:1f: 99:5d:41:c1:57:b9:8c:d4:10:ff:a5:0f:c4:b7:fc: bb:82:2e:e8:21:da:76:08:b5:e9:4c:f7:3b:90:e5: 5f:9a:b2:24:3b:25:7b:55:f8:4d:b4:47:36:5d:fb: c8:aa:ee:5f:78:e5:0f:bf:59:92:4a:81:03:bf:e1: e8:83:10:5d:47:5e:fd:54:47:7d:49:93:a3:5f:8d: 74:95:45:79:ff:e8:c4:57:a2:70:c1:9e:88:ed:37: e7:17:a4:27:e6:90:a6:bc:c4:bb:00:cf:94:cd:a7: 86:c5:e1:de:e4:2a:7e:c9:36:1b:c8:93:2b:57:87: ab:90:a1:0f:8f:78:4f:2d:5e:76:c3:e5:83:e7:f2: 68:7a:bd:a7:df:26:8e:71:ae:c7:1f:28:46:1b:cc: 1b:d1:7b:92:07:66:12:5c:a5:78:0f:82:33:67:d1: f8:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:31:7F:9C:07:0F:19:D2:F3:F8:AD:CA:BE:BD:09:C2:FB:C2:89:7A X509v3 Authority Key Identifier: keyid:05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.52.0/22 103.129.52.0/22 IPv6: 2401:bbe0:200::/40 2401:bbe0:500::/40 Signature Algorithm: sha256WithRSAEncryption 06:23:60:b2:8a:53:3b:63:38:22:c7:34:71:22:77:ee:18:ff: 6b:7e:16:a3:94:83:e2:35:d0:c8:c5:a8:cf:b6:70:dd:4a:a4: 78:73:2e:6f:4b:99:7c:61:52:b9:f8:69:5e:8f:9f:85:8d:1f: fb:81:c2:05:94:e8:d3:fa:ef:53:b6:a6:8b:ef:54:66:0a:b1: 7f:15:45:48:fd:53:1e:a8:04:27:ed:3b:01:61:e7:cb:c4:d3: 8d:91:b8:e7:ea:b3:85:e9:f9:0e:a0:0b:02:03:56:75:fd:6a: 62:3b:c3:50:fc:b2:0d:d4:13:9c:3d:9c:f5:e7:97:80:b1:ac: 90:c3:7f:50:26:31:5c:8f:19:b2:9f:25:e1:90:84:50:5a:32: 75:23:11:a9:d1:54:3a:8c:31:56:5e:a8:ea:df:9c:cc:a4:d2: 08:59:49:67:6a:0b:41:cd:c5:ee:7a:6d:0a:4c:39:72:25:cc: e1:02:42:03:cd:d7:06:67:1c:81:42:ea:84:1f:0e:d2:c4:88: 71:d8:4a:a3:ad:8d:aa:c4:13:9b:82:35:38:a7:3f:89:84:fc: 70:d4:00:5c:d7:fa:cb:71:83:75:aa:89:54:0e:98:de:ad:8e: 40:60:fb:57:30:06:e2:81:35:22:dc:18:67:de:44:9d:3b:d7: a5:1a:22:2e -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDA1NzM5NUI0ODc4RkIxQTY3RkNCQUQ1ODI2MTdCN0JB QUYyQzMxRkYwHhcNMjUxMjI0MDcwNDQ1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTRiOTA4ZC03ZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkQWiTdZmM+BOBnEvv7sD+cgjCUAKeXEb5cE7VJO0M5imVWZqE3RIbVh/FKSJ T4uJ1Clrs6JgLFGnSy2mXafuO99tfy38Nzdyrjq3s78NmSqYypxzapfESR+ZXUHB V7mM1BD/pQ/Et/y7gi7oIdp2CLXpTPc7kOVfmrIkOyV7VfhNtEc2XfvIqu5feOUP v1mSSoEDv+HogxBdR179VEd9SZOjX410lUV5/+jEV6JwwZ6I7TfnF6Qn5pCmvMS7 AM+UzaeGxeHe5Cp+yTYbyJMrV4erkKEPj3hPLV52w+WD5/Joer2n3yaOca7HHyhG G8wb0XuSB2YSXKV4D4IzZ9H4ZwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFBYxf5wH DxnS8/ityr69CcL7wol6MB8GA1UdIwQYMBaAFAVzlbSHj7Gmf8utWCYXt7qvLDH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GQTBFMDVBNDZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9CWE9WdEllUHNhWl95NjFZSmhlM3VxOHNN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JYT1Z0SWVQc2FaX3k2MVlKaGUzdXE4c01mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZDOEYvRkEwRTA1QTQ2QjVBMTFFRkJDOTk5MjVDQzRGOUFFMDIvQjBEM0RBNjQx MDdCMTFGMDk3NzE3Qzc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMBIEAgABMAwDBAIr/zQDBAJngTQwFgQCAAIwEAMGACQBu+ACAwYAJAG74AUw DQYJKoZIhvcNAQELBQADggEBAAYjYLKKUztjOCLHNHEid+4Y/2t+FqOUg+I10MjF qM+2cN1KpHhzLm9LmXxhUrn4aV6Pn4WNH/uBwgWU6NP671O2povvVGYKsX8VRUj9 Ux6oBCftOwFh58vE042RuOfqs4Xp+Q6gCwIDVnX9amI7w1D8sg3UE5w9nPXnl4Cx rJDDf1AmMVyPGbKfJeGQhFBaMnUjEanRVDqMMVZeqOrfnMyk0ghZSWdqC0HNxe56 bQpMOXIlzOECQgPN1wZnHIFC6oQfDtLEiHHYSqOtjarEE5uCNTinP4mE/HDUAFzX +stxg3WqiVQOmN6tjkBg+1cwBuKBNSLcGGfeRJ0716UaIi4= -----END CERTIFICATE-----Generated at Sun Jan 25 09:27:45 2026 by rpki-client