This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/D3D1604C2B6711EC8CD1C61FC4F9AE02.roa File: D3D1604C2B6711EC8CD1C61FC4F9AE02.roa (raw, json) Hash identifier: WA0g9RnykAtUExLfaZP3OVzcBqkoQ/6xGucY55FekVI= Subject key identifier: BF:ED:F6:90:5B:09:D9:0A:D7:97:48:E0:81:31:6A:D0:54:B2:A0:77 Certificate issuer: /CN=A917AFE7/serialNumber=DCC07A9D8FFE378DDDAF3CD0E41A9EF6FDD3148F Certificate serial: 0535 Authority key identifier: DC:C0:7A:9D:8F:FE:37:8D:DD:AF:3C:D0:E4:1A:9E:F6:FD:D3:14:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/D3D1604C2B6711EC8CD1C61FC4F9AE02.roa Signing time: Sun 28 Dec 2025 23:19:11 +0000 ROA not before: Sun 28 Dec 2025 23:19:11 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 139814 IP address blocks: 103.145.164.0/23 maxlen: 23 103.145.164.0/24 maxlen: 24 103.145.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1333 (0x535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AFE7, serialNumber=DCC07A9D8FFE378DDDAF3CD0E41A9EF6FDD3148F Validity Not Before: Dec 28 23:19:11 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6951baef-e523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:40:9d:f7:72:8a:37:3b:8e:c4:a6:e1:15:29: b1:08:a5:6c:b1:9a:11:29:72:aa:1c:ba:23:ba:58: 24:88:ad:89:c4:fa:5d:27:34:b3:cb:65:fa:8d:12: 2a:d1:38:44:0c:05:9c:6b:53:b5:b2:d0:75:21:9a: c2:89:19:cf:da:6d:c9:74:d0:a8:1b:d5:02:f8:86: f7:ee:48:da:98:b8:f9:7c:73:54:f2:e7:27:15:f4: 5d:0f:f6:c8:ac:7c:ae:fd:08:56:56:82:c2:bf:ad: ee:99:8d:b4:ef:0e:ad:69:82:e3:94:50:fc:60:ef: 1b:24:35:7b:c8:31:88:da:2f:3f:73:04:db:bb:cb: 4b:ed:d9:f7:72:9b:b5:91:bd:4e:bf:9b:49:30:77: 55:6c:85:17:8f:2a:42:24:c6:23:e2:b4:0a:cf:d1: db:58:9d:54:20:96:cc:6b:52:e4:4e:e7:36:80:3a: df:e7:d1:63:ee:b6:60:01:62:b2:a7:62:59:18:78: 6e:29:3d:b1:06:91:16:94:6e:2a:5e:13:eb:68:9a: 98:71:c8:43:4c:21:cc:fa:8b:d2:0e:a1:d4:ee:cd: f5:b4:9b:29:f8:07:1a:a6:43:b0:e5:c2:b2:f6:5d: 0d:34:ff:e1:be:a8:b7:54:4f:69:de:e8:5c:a3:66: 89:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:ED:F6:90:5B:09:D9:0A:D7:97:48:E0:81:31:6A:D0:54:B2:A0:77 X509v3 Authority Key Identifier: keyid:DC:C0:7A:9D:8F:FE:37:8D:DD:AF:3C:D0:E4:1A:9E:F6:FD:D3:14:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/D3D1604C2B6711EC8CD1C61FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.164.0/23 Signature Algorithm: sha256WithRSAEncryption 91:73:66:29:52:8e:f4:0a:a8:a8:ab:cf:45:e5:b2:4b:0f:32: 28:4a:16:2b:56:d9:ec:2b:40:7f:9b:b8:65:48:c4:35:44:3f: 81:6c:27:5b:6a:d3:ae:fe:4b:e3:cb:2f:5f:63:13:c4:e6:7f: 49:48:1f:cb:57:84:91:d8:fc:2d:d6:6c:99:aa:42:3b:fe:ca: 85:aa:d6:59:18:31:bd:17:e8:1e:89:cb:b4:0e:5f:7b:8e:d9: 1e:ba:5c:4a:64:c0:61:ce:6c:d4:a5:34:3c:13:ee:d5:fd:6a: b4:57:01:89:2f:81:7a:b3:72:40:77:5f:3c:76:5a:49:63:58: 80:0b:fe:bd:5b:31:da:24:a9:6d:64:2b:3b:05:57:fd:14:db: 47:70:de:33:19:32:32:eb:33:9b:f5:a6:3e:f3:4d:db:aa:bd: 68:55:31:36:6d:e9:49:47:84:f5:a5:37:6b:03:ff:b7:e7:58: f0:37:b8:11:12:c4:a7:f0:a5:73:61:a9:24:76:c6:78:19:8a: 13:e7:10:06:c3:f3:15:e5:7c:03:51:6b:53:31:6f:dd:ab:e4: 54:67:a9:ea:6c:78:20:94:90:de:f2:21:e7:5e:35:05:d1:9d: 7c:4d:0a:33:ad:10:8d:20:09:5f:d1:e6:78:ab:9b:07:44:12: 44:bc:1f:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx N0FGRTcxMTAvBgNVBAUTKERDQzA3QTlEOEZGRTM3OEREREFGM0NEMEU0MUE5RUY2 RkREMzE0OEYwHhcNMjUxMjI4MjMxOTExWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTUxYmFlZi1lNTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUCd93KKNzuOxKbhFSmxCKVssZoRKXKqHLojulgkiK2JxPpdJzSzy2X6jRIq 0ThEDAWca1O1stB1IZrCiRnP2m3JdNCoG9UC+Ib37kjamLj5fHNU8ucnFfRdD/bI rHyu/QhWVoLCv63umY207w6taYLjlFD8YO8bJDV7yDGI2i8/cwTbu8tL7dn3cpu1 kb1Ov5tJMHdVbIUXjypCJMYj4rQKz9HbWJ1UIJbMa1LkTuc2gDrf59Fj7rZgAWKy p2JZGHhuKT2xBpEWlG4qXhPraJqYcchDTCHM+ovSDqHU7s31tJsp+AcapkOw5cKy 9l0NNP/hvqi3VE9p3uhco2aJCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL/t9pBb CdkK15dI4IExatBUsqB3MB8GA1UdIwQYMBaAFNzAep2P/jeN3a880OQanvb90xSP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUZFNy9GOEI2NTM3NDI5 MTIxMUVDODYzMUI4NTRDNEY5QUUwMi8zTUI2bllfLU40M2RyenpRNUJxZTl2M1RG STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNNQjZuWV8tTjQzZHJ6elE1QnFlOXYzVEZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FGRTcvRjhCNjUzNzQyOTEyMTFFQzg2MzFCODU0QzRGOUFFMDIvRDNEMTYwNEMy QjY3MTFFQzhDRDFDNjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkaQwDQYJKoZIhvcNAQELBQADggEBAJFzZilSjvQKqKir z0XlsksPMihKFitW2ewrQH+buGVIxDVEP4FsJ1tq067+S+PLL19jE8Tmf0lIH8tX hJHY/C3WbJmqQjv+yoWq1lkYMb0X6B6Jy7QOX3uO2R66XEpkwGHObNSlNDwT7tX9 arRXAYkvgXqzckB3Xzx2WkljWIAL/r1bMdokqW1kKzsFV/0U20dw3jMZMjLrM5v1 pj7zTduqvWhVMTZt6UlHhPWlN2sD/7fnWPA3uBESxKfwpXNhqSR2xngZihPnEAbD 8xXlfANRa1Mxb92r5FRnqepseCCUkN7yIedeNQXRnXxNCjOtEI0gCV/R5nirmwdE EkS8HzA= -----END CERTIFICATE-----Generated at Sun Jan 25 14:06:11 2026 by rpki-client