This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/35FC192C272C11ED9E64C718C4F9AE02.roa File: 35FC192C272C11ED9E64C718C4F9AE02.roa (raw, json) Hash identifier: u7xmf7mlcB9GCB0bcolcUcNfJD4EHboUgH+LjzJipP0= Subject key identifier: 3B:10:45:D5:85:AB:F3:6F:ED:E0:3C:FC:59:AA:FF:E6:02:A8:B4:03 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 34F7 Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/35FC192C272C11ED9E64C718C4F9AE02.roa Signing time: Tue 02 Dec 2025 14:42:11 +0000 ROA not before: Tue 02 Dec 2025 14:42:11 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 18119 IP address blocks: 43.255.24.0/22 maxlen: 22 103.29.246.0/23 maxlen: 23 103.239.8.0/22 maxlen: 22 114.110.32.0/21 maxlen: 21 202.21.136.0/23 maxlen: 23 202.49.249.0/24 maxlen: 24 202.61.2.0/23 maxlen: 23 2001:4428::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:33:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13559 (0x34f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Dec 2 14:42:11 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692efac2-695f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:54:2a:cd:4a:f3:bc:7d:7d:9d:57:83:89:d1: 88:18:da:1b:20:a6:f6:8c:88:b2:05:be:74:54:9e: 0c:8d:ad:27:fa:0b:b4:11:93:d0:c5:9a:a9:4e:7e: 29:3c:16:08:ed:6e:6e:ac:c7:c8:a2:e5:ea:2f:4c: 92:87:d6:0d:4f:21:9f:1b:2f:b1:5a:56:4d:30:9a: 24:8c:31:40:87:38:84:8d:7f:96:f0:ad:3c:d2:86: 09:20:60:29:43:c2:f4:7d:79:18:b3:eb:33:0c:e4: a4:13:82:e1:89:43:81:91:91:67:bf:e7:af:c2:47: 79:c4:af:d5:7f:12:ce:93:7f:c5:33:80:30:14:ef: 96:3e:af:da:aa:7e:44:f0:de:9e:da:c3:74:fe:3c: a6:ef:71:5a:3d:60:06:e2:5a:25:b0:43:c9:66:e9: 64:8b:07:88:5e:42:2a:02:a3:ed:3d:e2:0f:ea:d0: b8:a1:3f:07:dd:4d:c0:67:ec:10:ed:25:81:7d:65: 48:e5:37:68:fc:db:48:f4:23:87:c5:db:99:21:53: 55:8c:d8:74:27:39:e3:93:db:9e:05:e4:46:9e:1a: 5b:17:b2:74:95:c8:cf:9e:b9:2d:e6:3e:bc:a5:7a: f5:95:f4:c6:09:69:d7:93:09:1f:12:1c:f6:3c:8e: 1a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:10:45:D5:85:AB:F3:6F:ED:E0:3C:FC:59:AA:FF:E6:02:A8:B4:03 X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/35FC192C272C11ED9E64C718C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.24.0/22 103.29.246.0/23 103.239.8.0/22 114.110.32.0/21 202.21.136.0/23 202.49.249.0/24 202.61.2.0/23 IPv6: 2001:4428::/32 Signature Algorithm: sha256WithRSAEncryption 9c:f8:b0:29:f0:30:47:e3:0e:76:2b:76:bd:54:70:16:97:36: 9f:cb:11:e2:9f:f4:cd:66:88:e4:3d:a8:d2:c3:cf:74:6d:ff: 0c:d7:3b:0d:aa:da:11:26:65:ed:3a:6d:27:60:b0:9b:f3:0c: 07:07:dc:71:9a:79:f1:55:91:36:c1:e0:c3:79:42:16:68:1b: f3:ae:cc:73:5e:4d:6f:ab:76:25:77:11:4f:28:43:26:d7:f6: e4:fe:ca:12:54:86:94:8b:f0:25:06:1f:06:7e:9e:5e:59:b3: db:3d:f3:7f:4b:67:e1:d6:67:70:5c:94:a5:a9:41:52:e7:b8: 68:ad:c8:17:6f:a7:59:b2:50:b0:48:70:08:83:36:74:f1:32: 5c:8b:2d:9d:76:c5:a6:68:f8:87:b6:a1:44:1e:cc:10:4e:8d: 2c:9f:c8:68:da:36:29:42:e9:57:79:21:a2:75:8f:35:02:fc: 2c:d5:d1:ff:58:4b:9e:6a:ad:3e:81:1d:bd:55:2c:93:11:b2: e6:38:ec:a3:45:3a:90:8f:32:c1:0e:43:03:a8:29:81:35:98: 57:ac:f2:c1:f5:47:dc:bd:13:32:30:1f:43:5c:f3:e6:fd:36: 87:01:95:69:a6:7b:4d:10:73:c0:70:cb:cd:91:9c:f6:7c:52: 6d:b7:b8:02 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICNPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjUxMjAyMTQ0MjExWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJlZmFjMi02OTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlQqzUrzvH19nVeDidGIGNobIKb2jIiyBb50VJ4Mja0n+gu0EZPQxZqpTn4p PBYI7W5urMfIouXqL0ySh9YNTyGfGy+xWlZNMJokjDFAhziEjX+W8K080oYJIGAp Q8L0fXkYs+szDOSkE4LhiUOBkZFnv+evwkd5xK/VfxLOk3/FM4AwFO+WPq/aqn5E 8N6e2sN0/jym73FaPWAG4lolsEPJZulkiweIXkIqAqPtPeIP6tC4oT8H3U3AZ+wQ 7SWBfWVI5Tdo/NtI9COHxduZIVNVjNh0Jznjk9ueBeRGnhpbF7J0lcjPnrkt5j68 pXr1lfTGCWnXkwkfEhz2PI4aBQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFDsQRdWF q/Nv7eA8/Fmq/+YCqLQDMB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Q3RjIvRjAyODkwM0MxRDhDMTFFMkIxOUQ1RkVBMDhCMDJDRDIvMzVGQzE5MkMy NzJDMTFFRDlFNjRDNzE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBAIr/xgDBAFnHfYDBAJn7wgDBANybiADBAHKFYgDBADKMfkD BAHKPQIwDQQCAAIwBwMFACABRCgwDQYJKoZIhvcNAQELBQADggEBAJz4sCnwMEfj DnYrdr1UcBaXNp/LEeKf9M1miOQ9qNLDz3Rt/wzXOw2q2hEmZe06bSdgsJvzDAcH 3HGaefFVkTbB4MN5QhZoG/OuzHNeTW+rdiV3EU8oQybX9uT+yhJUhpSL8CUGHwZ+ nl5Zs9s9839LZ+HWZ3BclKWpQVLnuGityBdvp1myULBIcAiDNnTxMlyLLZ12xaZo +Ie2oUQezBBOjSyfyGjaNilC6Vd5IaJ1jzUC/CzV0f9YS55qrT6BHb1VLJMRsuY4 7KNFOpCPMsEOQwOoKYE1mFes8sH1R9y9EzIwH0Nc8+b9NocBlWmme00Qc8Bwy82R nPZ8Um23uAI= -----END CERTIFICATE-----Generated at Sat Dec 6 21:27:19 2025 by rpki-client