This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/C38EA6882B3411F0929A5143C4F9AE02.roa File: C38EA6882B3411F0929A5143C4F9AE02.roa (raw, json) Hash identifier: kzGPXYclSOyxPj5Y2dn9ChXBbcDpR/xTPfgnRMIMNWQ= Subject key identifier: EF:09:08:1B:80:F6:18:22:87:5E:0D:65:E7:82:E9:D3:B6:08:DD:5B Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 378E Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/C38EA6882B3411F0929A5143C4F9AE02.roa Signing time: Fri 16 Jan 2026 16:13:40 +0000 ROA not before: Fri 16 Jan 2026 16:13:40 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45725 IP address blocks: 43.230.152.0/24 maxlen: 24 43.230.153.0/24 maxlen: 24 43.230.154.0/24 maxlen: 24 43.230.155.0/24 maxlen: 24 103.245.136.0/24 maxlen: 24 103.245.137.0/24 maxlen: 24 103.245.138.0/24 maxlen: 24 103.245.139.0/24 maxlen: 24 180.211.88.0/21 maxlen: 24 202.150.160.0/21 maxlen: 24 202.150.168.0/21 maxlen: 24 2402:780::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:26:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14222 (0x378e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 16 16:13:40 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=696a63b4-f8f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:8f:c2:07:6f:89:2e:43:a7:78:cd:09:0b:08: 82:6d:bb:8a:45:bf:77:bf:c3:1d:90:f2:ed:1c:4b: 5b:86:b4:d2:14:53:2d:18:c2:89:70:c9:ef:ed:3e: 22:5f:e8:1c:12:51:7c:8b:ee:ef:57:77:0a:00:4c: f5:42:b3:bb:5d:15:cf:c4:1d:30:31:b5:c4:e5:a2: 0f:47:a3:fb:3d:ae:47:06:a1:88:fd:d8:5e:99:0f: 91:a5:d2:e2:5f:26:7f:b3:21:d9:88:15:66:6f:aa: 95:a5:bf:b7:0f:d7:51:6f:f0:17:6a:50:67:95:b1: 12:f9:65:34:91:bf:53:d1:fd:87:4f:0d:97:a7:70: 5d:f6:7e:3d:27:30:bd:f4:49:84:6a:3c:60:57:c7: 48:91:a4:fa:de:d5:be:a4:ff:e9:5f:6e:5b:20:df: 7c:bc:da:b2:10:dc:fb:65:45:67:5a:b7:26:90:3c: c3:73:e3:31:46:bb:cd:be:9f:af:96:9b:5f:b2:6c: 88:b7:09:b0:eb:e8:66:eb:27:20:71:69:f3:70:31: f0:1f:26:f2:81:29:a7:66:f4:79:9d:99:bb:3e:af: 1f:46:e7:85:cb:dd:e5:07:40:a0:ec:2a:92:0d:ea: 18:56:1b:67:a8:98:4b:d4:97:79:01:31:2c:ea:29: d0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:09:08:1B:80:F6:18:22:87:5E:0D:65:E7:82:E9:D3:B6:08:DD:5B X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/C38EA6882B3411F0929A5143C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.152.0/22 103.245.136.0/22 180.211.88.0/21 202.150.160.0/20 IPv6: 2402:780::/32 Signature Algorithm: sha256WithRSAEncryption 7a:58:73:6d:dc:47:81:8d:83:06:7b:9e:7c:81:c7:9c:d1:af: ab:4b:f7:64:fb:8b:85:d5:de:a0:b0:c4:fa:f8:98:03:7c:a3: 29:bd:e5:6a:da:5d:bb:e0:9b:38:75:63:3a:ff:73:e4:55:ac: 7a:37:a6:11:a1:1f:3e:33:d2:c8:ea:af:8a:8c:38:a1:df:46: ad:05:d4:5d:65:bf:c1:dd:d5:ba:be:2b:65:a3:df:da:44:49: eb:44:a9:3b:72:6d:3e:a0:7b:7d:89:ce:52:5c:23:b1:a6:72: 45:54:99:06:c1:24:37:25:b9:9a:27:37:00:38:74:9e:b0:22: e3:b1:f9:66:84:36:de:84:f1:fb:dc:38:1d:5e:2c:6a:17:42: dc:7c:95:38:7f:99:26:52:d8:22:03:fb:ff:2c:aa:db:98:e2: f9:0a:d0:1c:e1:df:5e:7b:99:e6:c6:54:64:0c:b8:c3:49:8d: e2:be:fa:f6:85:fb:c8:a8:13:fa:b4:98:8f:01:b4:bc:84:5d: e9:be:a1:0f:84:cf:8d:7f:e5:78:94:71:7a:1a:f2:ad:b1:06: 3b:ed:53:68:f6:70:9e:3d:ba:20:06:27:76:9c:6a:28:9b:42: 3b:d6:15:76:7e:8a:af:b3:b9:fa:82:ff:a8:ff:03:0c:ed:4b: 30:82:e0:5b -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICN44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjYwMTE2MTYxMzQwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTZhNjNiNC1mOGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjY/CB2+JLkOneM0JCwiCbbuKRb93v8MdkPLtHEtbhrTSFFMtGMKJcMnv7T4i X+gcElF8i+7vV3cKAEz1QrO7XRXPxB0wMbXE5aIPR6P7Pa5HBqGI/dhemQ+RpdLi XyZ/syHZiBVmb6qVpb+3D9dRb/AXalBnlbES+WU0kb9T0f2HTw2Xp3Bd9n49JzC9 9EmEajxgV8dIkaT63tW+pP/pX25bIN98vNqyENz7ZUVnWrcmkDzDc+MxRrvNvp+v lptfsmyItwmw6+hm6ycgcWnzcDHwHybygSmnZvR5nZm7Pq8fRueFy93lB0Cg7CqS DeoYVhtnqJhL1Jd5ATEs6inQGQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFO8JCBuA 9hgih14NZeeC6dO2CN1bMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvQzM4RUE2ODgy QjM0MTFGMDkyOUE1MTQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAIr5pgDBAJn9YgDBAO001gDBATKlqAwDQQCAAIwBwMFACQC B4AwDQYJKoZIhvcNAQELBQADggEBAHpYc23cR4GNgwZ7nnyBx5zRr6tL92T7i4XV 3qCwxPr4mAN8oym95WraXbvgmzh1Yzr/c+RVrHo3phGhHz4z0sjqr4qMOKHfRq0F 1F1lv8Hd1bq+K2Wj39pESetEqTtybT6ge32JzlJcI7GmckVUmQbBJDcluZonNwA4 dJ6wIuOx+WaENt6E8fvcOB1eLGoXQtx8lTh/mSZS2CID+/8sqtuY4vkK0Bzh3157 mebGVGQMuMNJjeK++vaF+8ioE/q0mI8BtLyEXem+oQ+Ez41/5XiUcXoa8q2xBjvt U2j2cJ49uiAGJ3acaiibQjvWFXZ+iq+zufqC/6j/AwztSzCC4Fs= -----END CERTIFICATE-----Generated at Sun Jan 25 13:57:25 2026 by rpki-client