This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918CD53/C11537984A1B11EDBFA60825C4F9AE02/01F3383E4A1F11EDBFDEFE29C4F9AE02.roa File: 01F3383E4A1F11EDBFDEFE29C4F9AE02.roa (raw, json) Hash identifier: sDuSKtyUD5HBd71nsCaEL0lNauT2pLOnkprnd8zIwRw= Subject key identifier: 96:1F:39:09:51:52:CE:77:BF:D6:48:A0:37:DF:3B:A4:2E:52:19:1A Certificate issuer: /CN=A918CD53/serialNumber=AD6D47B75853B68E2F14AF74C65A764EE4D1D99C Certificate serial: 024F Authority key identifier: AD:6D:47:B7:58:53:B6:8E:2F:14:AF:74:C6:5A:76:4E:E4:D1:D9:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rW1Ht1hTto4vFK90xlp2TuTR2Zw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CD53/C11537984A1B11EDBFA60825C4F9AE02/01F3383E4A1F11EDBFDEFE29C4F9AE02.roa Signing time: Mon 01 Dec 2025 00:28:04 +0000 ROA not before: Mon 01 Dec 2025 00:28:04 +0000 ROA not after: Mon 30 Mar 2026 00:00:00 +0000 asID: 150340 IP address blocks: 103.16.248.0/24 maxlen: 24 103.16.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CD53/C11537984A1B11EDBFA60825C4F9AE02/rW1Ht1hTto4vFK90xlp2TuTR2Zw.crl rsync://rpki.apnic.net/member_repository/A918CD53/C11537984A1B11EDBFA60825C4F9AE02/rW1Ht1hTto4vFK90xlp2TuTR2Zw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rW1Ht1hTto4vFK90xlp2TuTR2Zw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CD53, serialNumber=AD6D47B75853B68E2F14AF74C65A764EE4D1D99C Validity Not Before: Dec 1 00:28:04 2025 GMT Not After : Mar 30 00:00:00 2026 GMT Subject: CN=692ce113-d0db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:59:99:8a:45:32:9c:8a:8e:85:56:8f:a4:a1: 65:bb:f2:cd:96:b1:43:16:75:18:41:1f:1e:a2:4d: f9:11:e9:12:e8:21:45:b8:ba:26:61:7a:09:bb:58: 0e:63:2e:66:64:3a:73:ec:e3:19:38:22:57:0c:94: 5c:24:f1:c3:90:9b:b1:96:14:bc:fb:e5:40:95:36: 05:53:1f:3e:87:a7:7f:38:c4:5b:37:e9:e2:c1:1c: d5:cb:6f:46:64:3e:55:5b:41:62:8e:ba:9a:16:a1: 80:c8:e8:71:4b:88:7c:50:14:f6:d5:e1:ec:4d:82: 8c:b0:07:2e:31:26:bd:92:a4:d8:7e:23:b0:78:af: 55:b2:56:96:1f:31:06:e7:0f:b9:a9:63:b8:a5:d1: fc:67:c0:0f:a5:80:a0:73:ce:98:1e:26:c1:fd:be: 57:2c:65:5d:7c:9d:2f:f2:db:f6:9a:58:cf:40:0d: 35:0d:4e:de:c4:1d:86:91:be:3b:60:f9:ed:af:03: bf:14:97:8a:fd:58:44:ed:00:46:91:8d:1d:6e:de: e9:92:c9:db:05:7d:0e:5f:a9:92:67:bf:3a:d2:56: 9f:fb:fb:97:4f:94:a6:c8:03:63:ed:76:da:63:ba: af:4c:3b:8f:2c:c2:1e:a3:26:03:06:2e:ee:12:5f: 5e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:1F:39:09:51:52:CE:77:BF:D6:48:A0:37:DF:3B:A4:2E:52:19:1A X509v3 Authority Key Identifier: keyid:AD:6D:47:B7:58:53:B6:8E:2F:14:AF:74:C6:5A:76:4E:E4:D1:D9:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CD53/C11537984A1B11EDBFA60825C4F9AE02/rW1Ht1hTto4vFK90xlp2TuTR2Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rW1Ht1hTto4vFK90xlp2TuTR2Zw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CD53/C11537984A1B11EDBFA60825C4F9AE02/01F3383E4A1F11EDBFDEFE29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.248.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:5e:a9:78:5d:eb:bb:09:a5:8a:ba:6c:f2:a7:8c:57:6d:a4: ed:1b:83:04:61:1e:63:0c:96:29:86:9b:89:2d:65:d6:60:c9: b6:eb:d9:cd:ab:84:b3:b4:03:ac:0a:c2:fb:7e:0f:7a:8f:41: 53:74:23:11:e5:61:37:e5:7f:14:87:8f:36:93:9b:3e:d9:f5: 6a:2f:a2:9a:42:c1:83:58:dc:b1:f0:85:c9:23:7c:d8:5a:b0: ab:f2:93:b8:57:62:0f:98:c8:67:bc:79:21:bd:b4:1e:cb:13: eb:84:cd:d7:dc:50:33:b3:2d:39:41:d5:96:8b:d3:09:97:5d: ed:01:3e:62:2c:3a:e5:f4:86:80:48:79:94:f1:d0:65:95:e1: 52:8e:02:fc:fc:74:74:75:3d:95:75:51:73:26:65:29:0c:6d: e2:18:57:f1:6f:13:cf:d9:da:76:eb:e4:34:b4:b5:76:f6:c3: 50:17:16:c3:e3:85:37:4c:47:59:14:a8:af:ae:32:69:1e:2c: b7:83:96:09:75:b2:7b:e5:33:ce:c4:7a:11:41:49:85:2b:49: 61:fd:63:a7:10:7a:7e:54:a4:80:37:bb:31:0f:3d:c5:b7:66: 3a:bc:9d:bb:37:24:cd:f8:cf:54:26:b2:df:80:c7:c8:a8:d0: fc:54:a3:fb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENENTMxMTAvBgNVBAUTKEFENkQ0N0I3NTg1M0I2OEUyRjE0QUY3NEM2NUE3NjRF RTREMUQ5OUMwHhcNMjUxMjAxMDAyODA0WhcNMjYwMzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJjZTExMy1kMGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVmZikUynIqOhVaPpKFlu/LNlrFDFnUYQR8eok35EekS6CFFuLomYXoJu1gO Yy5mZDpz7OMZOCJXDJRcJPHDkJuxlhS8++VAlTYFUx8+h6d/OMRbN+niwRzVy29G ZD5VW0FijrqaFqGAyOhxS4h8UBT21eHsTYKMsAcuMSa9kqTYfiOweK9VslaWHzEG 5w+5qWO4pdH8Z8APpYCgc86YHibB/b5XLGVdfJ0v8tv2mljPQA01DU7exB2Gkb47 YPntrwO/FJeK/VhE7QBGkY0dbt7pksnbBX0OX6mSZ7860laf+/uXT5SmyANj7Xba Y7qvTDuPLMIeoyYDBi7uEl9ewwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJYfOQlR Us53v9ZIoDffO6QuUhkaMB8GA1UdIwQYMBaAFK1tR7dYU7aOLxSvdMZadk7k0dmc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0Q1My9DMTE1Mzc5ODRB MUIxMUVEQkZBNjA4MjVDNEY5QUUwMi9yVzFIdDFoVHRvNHZGSzkweGxwMlR1VFIy WncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JXMUh0MWhUdG80dkZLOTB4bHAyVHVUUjJady5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OENENTMvQzExNTM3OTg0QTFCMTFFREJGQTYwODI1QzRGOUFFMDIvMDFGMzM4M0U0 QTFGMTFFREJGREVGRTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnEPgwDQYJKoZIhvcNAQELBQADggEBAG1eqXhd67sJpYq6 bPKnjFdtpO0bgwRhHmMMlimGm4ktZdZgybbr2c2rhLO0A6wKwvt+D3qPQVN0IxHl YTflfxSHjzaTmz7Z9WovoppCwYNY3LHwhckjfNhasKvyk7hXYg+YyGe8eSG9tB7L E+uEzdfcUDOzLTlB1ZaL0wmXXe0BPmIsOuX0hoBIeZTx0GWV4VKOAvz8dHR1PZV1 UXMmZSkMbeIYV/FvE8/Z2nbr5DS0tXb2w1AXFsPjhTdMR1kUqK+uMmkeLLeDlgl1 snvlM87EehFBSYUrSWH9Y6cQen5UpIA3uzEPPcW3Zjq8nbs3JM34z1Qmst+Ax8io 0PxUo/s= -----END CERTIFICATE-----Generated at Sat Dec 6 23:20:33 2025 by rpki-client