This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B736/F133EF0C842D11EF99E83D84C4F9AE02/A8F4AE389D7E11EF91A24C73C4F9AE02.roa File: A8F4AE389D7E11EF91A24C73C4F9AE02.roa (raw, json) Hash identifier: O99/eUmVrOaInFrLKu3b2QTb8AjH44ACQYMp0A50NSY= Subject key identifier: F2:11:6A:BD:99:4C:4A:42:A2:D3:37:19:10:66:6D:E6:90:04:82:6A Certificate issuer: /CN=A917B736/serialNumber=30BE1EB9D3AC49D0AFEE1353C3F9D1167A007B17 Certificate serial: E5 Authority key identifier: 30:BE:1E:B9:D3:AC:49:D0:AF:EE:13:53:C3:F9:D1:16:7A:00:7B:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ML4eudOsSdCv7hNTw_nRFnoAexc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B736/F133EF0C842D11EF99E83D84C4F9AE02/A8F4AE389D7E11EF91A24C73C4F9AE02.roa Signing time: Tue 25 Nov 2025 03:51:23 +0000 ROA not before: Tue 25 Nov 2025 03:51:23 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 8075 IP address blocks: 103.103.44.0/23 maxlen: 23 103.103.46.0/23 maxlen: 23 2401:ef40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B736/F133EF0C842D11EF99E83D84C4F9AE02/ML4eudOsSdCv7hNTw_nRFnoAexc.crl rsync://rpki.apnic.net/member_repository/A917B736/F133EF0C842D11EF99E83D84C4F9AE02/ML4eudOsSdCv7hNTw_nRFnoAexc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ML4eudOsSdCv7hNTw_nRFnoAexc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:34:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B736, serialNumber=30BE1EB9D3AC49D0AFEE1353C3F9D1167A007B17 Validity Not Before: Nov 25 03:51:23 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692527bb-9385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ff:0a:56:21:23:a2:f7:75:28:4d:ea:a2:59: 0b:fe:e1:f5:9c:29:9c:58:40:82:b9:3e:f6:c6:be: 8a:28:10:67:47:8c:0e:c6:12:1f:a1:71:1d:e7:51: 59:8d:b2:19:d8:1a:0e:68:4c:ff:50:02:14:97:65: 61:a7:16:27:de:d1:55:91:62:cd:e1:b3:dc:8d:62: 6d:e2:80:1c:ef:68:c4:fa:9c:b3:96:27:07:53:86: ce:18:cc:7d:88:69:53:3f:31:f7:e6:93:70:df:d1: d0:e3:a2:3a:63:a3:35:f1:8a:f7:1b:d7:35:76:77: 94:d7:b5:2a:91:56:6e:5e:7f:fc:11:0d:37:18:bb: f9:e3:e4:37:4f:31:20:fb:8e:66:66:29:9f:75:ae: 6c:71:2c:28:5c:84:17:d1:42:6c:9f:fa:9d:bd:41: 80:8f:f2:ca:8c:65:33:f5:6a:fa:ed:34:92:33:4a: 8d:43:4e:e3:45:13:66:78:85:95:5f:bb:6c:ee:e5: 65:45:ef:24:d2:b0:bb:90:ac:66:7e:93:3a:9d:52: a0:28:95:57:8e:44:24:c3:dc:ac:21:7b:aa:5e:9a: 71:27:96:09:a0:31:b0:64:d7:18:2e:96:bf:55:2e: a7:ce:f9:2a:27:7e:ca:3f:08:46:f6:2e:ab:42:4b: 1f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:11:6A:BD:99:4C:4A:42:A2:D3:37:19:10:66:6D:E6:90:04:82:6A X509v3 Authority Key Identifier: keyid:30:BE:1E:B9:D3:AC:49:D0:AF:EE:13:53:C3:F9:D1:16:7A:00:7B:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B736/F133EF0C842D11EF99E83D84C4F9AE02/ML4eudOsSdCv7hNTw_nRFnoAexc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ML4eudOsSdCv7hNTw_nRFnoAexc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B736/F133EF0C842D11EF99E83D84C4F9AE02/A8F4AE389D7E11EF91A24C73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.103.44.0/22 IPv6: 2401:ef40::/48 Signature Algorithm: sha256WithRSAEncryption 63:53:c8:79:34:42:c4:67:9e:fa:30:5c:50:c5:46:6b:e6:24: 43:64:cb:a3:7b:c6:81:2a:e6:ff:3b:c6:7b:e7:b9:58:2b:a5: 20:bc:1f:0f:8e:11:e6:65:ad:e1:56:18:c3:14:c4:ca:ed:df: 12:c1:64:ec:8c:ab:90:df:43:ca:0d:33:30:db:ab:1f:c0:65: 3b:3a:f0:c4:58:92:51:27:b5:85:c0:41:bc:c9:a7:f8:a0:8c: 37:8e:f7:dc:9c:89:76:44:3e:9b:fa:79:4d:d7:2d:8f:ca:f0: 2d:33:16:f3:94:34:de:e9:bd:d5:1d:bd:aa:80:31:af:d0:03: 09:cc:ff:b6:5f:71:06:e1:fe:66:fa:81:12:50:1c:83:25:92: 69:ce:68:0a:9b:d2:b8:6b:02:25:b4:1e:54:72:a3:4a:c3:68: a2:e9:79:d8:7a:f1:cd:cf:7b:f7:7d:1e:bf:a3:9b:36:65:23: f7:36:d3:20:f4:a1:fe:63:d7:05:85:d2:23:ec:bd:6c:a5:c1: e9:e1:7c:d2:e4:5d:9c:20:c9:37:54:fb:99:61:20:a5:82:ee: d8:6d:1b:17:66:7e:14:d2:22:6d:82:b1:1f:c5:51:9d:42:bb: 5d:d9:18:72:c4:2c:20:ea:a9:83:e2:48:3e:cc:34:dd:ca:e0: fc:7c:d2:c2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I3MzYxMTAvBgNVBAUTKDMwQkUxRUI5RDNBQzQ5RDBBRkVFMTM1M0MzRjlEMTE2 N0EwMDdCMTcwHhcNMjUxMTI1MDM1MTIzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI1MjdiYi05Mzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/8KViEjovd1KE3qolkL/uH1nCmcWECCuT72xr6KKBBnR4wOxhIfoXEd51FZ jbIZ2BoOaEz/UAIUl2VhpxYn3tFVkWLN4bPcjWJt4oAc72jE+pyzlicHU4bOGMx9 iGlTPzH35pNw39HQ46I6Y6M18Yr3G9c1dneU17UqkVZuXn/8EQ03GLv54+Q3TzEg +45mZimfda5scSwoXIQX0UJsn/qdvUGAj/LKjGUz9Wr67TSSM0qNQ07jRRNmeIWV X7ts7uVlRe8k0rC7kKxmfpM6nVKgKJVXjkQkw9ysIXuqXppxJ5YJoDGwZNcYLpa/ VS6nzvkqJ37KPwhG9i6rQksfHwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPIRar2Z TEpCotM3GRBmbeaQBIJqMB8GA1UdIwQYMBaAFDC+HrnTrEnQr+4TU8P50RZ6AHsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjczNi9GMTMzRUYwQzg0 MkQxMUVGOTlFODNEODRDNEY5QUUwMi9NTDRldWRPc1NkQ3Y3aE5Ud19uUkZub0Fl eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01MNGV1ZE9zU2RDdjdoTlR3X25SRm5vQWV4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I3MzYvRjEzM0VGMEM4NDJEMTFFRjk5RTgzRDg0QzRGOUFFMDIvQThGNEFFMzg5 RDdFMTFFRjkxQTI0QzczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnZywwDwQCAAIwCQMHACQB70AAADANBgkqhkiG9w0BAQsF AAOCAQEAY1PIeTRCxGee+jBcUMVGa+YkQ2TLo3vGgSrm/zvGe+e5WCulILwfD44R 5mWt4VYYwxTEyu3fEsFk7IyrkN9Dyg0zMNurH8BlOzrwxFiSUSe1hcBBvMmn+KCM N4733JyJdkQ+m/p5Tdctj8rwLTMW85Q03um91R29qoAxr9ADCcz/tl9xBuH+ZvqB ElAcgyWSac5oCpvSuGsCJbQeVHKjSsNooul52Hrxzc97930ev6ObNmUj9zbTIPSh /mPXBYXSI+y9bKXB6eF80uRdnCDJN1T7mWEgpYLu2G0bF2Z+FNIibYKxH8VRnUK7 XdkYcsQsIOqpg+JIPsw03crg/HzSwg== -----END CERTIFICATE-----Generated at Sun Dec 7 01:56:37 2025 by rpki-client