This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/F8672B3EBB5D11EEB6706D74C4F9AE02.roa File: F8672B3EBB5D11EEB6706D74C4F9AE02.roa (raw, json) Hash identifier: VyUQn7OFmzVtPJY/o0TMLp4UuOnUuaMYRqTbQVIxCXU= Subject key identifier: 28:09:32:E6:91:C4:55:B3:8D:B4:81:47:C4:72:D1:B7:C1:BD:C6:F7 Certificate issuer: /CN=A918134E/serialNumber=6538819F3BF4932CA082C146AF2FEACBEF878CB8 Certificate serial: 015F Authority key identifier: 65:38:81:9F:3B:F4:93:2C:A0:82:C1:46:AF:2F:EA:CB:EF:87:8C:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZTiBnzv0kyyggsFGry_qy--HjLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/F8672B3EBB5D11EEB6706D74C4F9AE02.roa Signing time: Sat 29 Nov 2025 02:30:29 +0000 ROA not before: Sat 29 Nov 2025 02:30:28 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 141438 IP address blocks: 203.145.32.0/23 maxlen: 23 203.145.32.0/24 maxlen: 24 203.145.33.0/24 maxlen: 24 2001:df3:2640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.crl rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZTiBnzv0kyyggsFGry_qy--HjLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:14:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918134E, serialNumber=6538819F3BF4932CA082C146AF2FEACBEF878CB8 Validity Not Before: Nov 29 02:30:28 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692a5ac4-0aba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:19:ba:1d:90:7a:9b:d6:4d:38:48:d3:42:76: 19:19:9a:1e:92:c3:a5:50:42:6f:4b:2c:8c:c8:39: 97:f2:2f:be:28:5c:36:86:de:03:2d:9c:01:bb:3a: 7f:f2:fe:90:fa:31:ff:0c:69:e5:c7:c5:64:85:50: ab:a7:48:56:87:a1:47:b7:51:f8:cd:ca:ae:d3:ed: 7b:14:17:84:6b:c2:e2:0d:49:07:fa:14:a1:bd:a1: f1:79:79:d8:48:4f:f6:a3:7c:be:a8:14:78:cd:5a: 8e:78:b4:9f:75:c0:f5:ed:32:8b:d3:95:43:3c:8d: c7:47:6e:fb:77:8c:64:7d:b9:52:a7:de:2b:b7:0f: bb:be:13:ae:f9:10:40:50:0b:09:0d:e7:22:02:7b: 48:c3:46:8a:3e:c9:8f:6e:65:15:74:b2:04:a0:eb: e2:6e:d2:87:55:8a:e0:34:a1:7c:ae:4b:b3:75:c7: ec:b8:af:47:1a:db:37:00:af:5e:b5:6c:59:97:51: 60:c6:84:d5:e3:f3:37:93:a4:6e:d6:ec:52:71:bd: bc:ff:66:d7:a8:df:ce:3b:13:d5:b9:ad:bb:4c:f1: a4:70:b4:22:57:d2:7b:8d:e0:60:35:48:3c:ee:64: ab:ac:ea:db:12:a9:ad:1a:5e:4c:c9:31:d9:2e:24: 28:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:09:32:E6:91:C4:55:B3:8D:B4:81:47:C4:72:D1:B7:C1:BD:C6:F7 X509v3 Authority Key Identifier: keyid:65:38:81:9F:3B:F4:93:2C:A0:82:C1:46:AF:2F:EA:CB:EF:87:8C:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZTiBnzv0kyyggsFGry_qy--HjLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/F8672B3EBB5D11EEB6706D74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.145.32.0/23 IPv6: 2001:df3:2640::/48 Signature Algorithm: sha256WithRSAEncryption 44:07:c4:b3:44:1d:0b:5f:52:3f:ba:35:9e:b1:5f:53:22:71: b1:26:74:b8:f5:cf:51:95:99:f6:8b:9a:61:8c:f9:3a:5d:6e: 77:0a:d6:1d:90:f2:73:11:41:91:76:5c:6f:93:6c:ef:fb:b2: 7c:c2:bd:ba:64:68:fc:c0:7e:85:cd:05:8a:9d:81:11:47:28: 96:74:33:37:25:f6:88:64:1d:ca:f1:db:80:3e:14:9b:a8:3a: fc:33:3f:55:d0:86:b8:f6:80:fa:7b:c2:f7:ab:96:a4:06:47: 1a:e1:e2:dc:ea:55:6d:1f:3c:c6:6c:fb:02:7a:fb:90:e6:0a: 15:d1:b6:54:95:55:2b:4e:06:94:83:60:ee:66:81:6f:7c:a4: 70:24:32:b2:5b:56:f9:fd:72:47:47:2b:13:e0:2e:c7:3e:01: 9b:0a:9c:aa:52:98:f4:67:df:4d:a4:c7:2c:6c:26:cc:d4:ab: 85:c2:fc:b6:fa:d4:1e:ca:f5:86:40:88:92:bb:8e:7d:7b:6d: 87:3d:8c:8e:29:ff:82:90:d1:12:89:5e:1d:27:8a:47:b2:ca: bd:1d:ca:bf:ba:90:76:9f:b2:9c:e0:0b:24:c1:45:22:72:29: 13:cb:31:09:23:8b:38:18:3e:2c:ea:c1:a2:92:ac:a4:7c:ef: 35:de:38:f5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzNEUxMTAvBgNVBAUTKDY1Mzg4MTlGM0JGNDkzMkNBMDgyQzE0NkFGMkZFQUNC RUY4NzhDQjgwHhcNMjUxMTI5MDIzMDI4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJhNWFjNC0wYWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xm6HZB6m9ZNOEjTQnYZGZoeksOlUEJvSyyMyDmX8i++KFw2ht4DLZwBuzp/ 8v6Q+jH/DGnlx8VkhVCrp0hWh6FHt1H4zcqu0+17FBeEa8LiDUkH+hShvaHxeXnY SE/2o3y+qBR4zVqOeLSfdcD17TKL05VDPI3HR277d4xkfblSp94rtw+7vhOu+RBA UAsJDeciAntIw0aKPsmPbmUVdLIEoOvibtKHVYrgNKF8rkuzdcfsuK9HGts3AK9e tWxZl1FgxoTV4/M3k6Ru1uxScb28/2bXqN/OOxPVua27TPGkcLQiV9J7jeBgNUg8 7mSrrOrbEqmtGl5MyTHZLiQohQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCgJMuaR xFWzjbSBR8Ry0bfBvcb3MB8GA1UdIwQYMBaAFGU4gZ879JMsoILBRq8v6svvh4y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTM0RS8yQkZGMTQxMkJC NUQxMUVFODMzMDIwNzNDNEY5QUUwMi9aVGlCbnp2MGt5eWdnc0ZHcnlfcXktLUhq TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pUaUJuenYwa3l5Z2dzRkdyeV9xeS0tSGpMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODEzNEUvMkJGRjE0MTJCQjVEMTFFRTgzMzAyMDczQzRGOUFFMDIvRjg2NzJCM0VC QjVEMTFFRUI2NzA2RDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAHLkSAwDwQCAAIwCQMHACABDfMmQDANBgkqhkiG9w0BAQsF AAOCAQEARAfEs0QdC19SP7o1nrFfUyJxsSZ0uPXPUZWZ9ouaYYz5Ol1udwrWHZDy cxFBkXZcb5Ns7/uyfMK9umRo/MB+hc0Fip2BEUcolnQzNyX2iGQdyvHbgD4Um6g6 /DM/VdCGuPaA+nvC96uWpAZHGuHi3OpVbR88xmz7Anr7kOYKFdG2VJVVK04GlINg 7maBb3ykcCQysltW+f1yR0crE+Auxz4BmwqcqlKY9GffTaTHLGwmzNSrhcL8tvrU Hsr1hkCIkruOfXtthz2Mjin/gpDREoleHSeKR7LKvR3Kv7qQdp+ynOALJMFFInIp E8sxCSOLOBg+LOrBopKspHzvNd449Q== -----END CERTIFICATE-----Generated at Sun Dec 7 02:35:12 2025 by rpki-client