This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/338057C478FC11F08A64057FC4F9AE02.roa File: 338057C478FC11F08A64057FC4F9AE02.roa (raw, json) Hash identifier: D9OA1wEZ+SpMFieXs2Qo8c9QgwUmXkHijSJpz3XqkYw= Subject key identifier: B4:A1:FE:D1:5D:22:89:CF:F6:5D:A7:2B:5E:5B:88:0A:39:8D:6D:AF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C85B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/338057C478FC11F08A64057FC4F9AE02.roa Signing time: Fri 28 Nov 2025 06:37:59 +0000 ROA not before: Fri 28 Nov 2025 06:37:59 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 13150 IP address blocks: 118.94.81.0/24 maxlen: 24 118.94.82.0/24 maxlen: 24 118.94.83.0/24 maxlen: 24 118.94.84.0/24 maxlen: 24 118.94.85.0/24 maxlen: 24 118.94.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:12:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51291 (0xc85b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 28 06:37:59 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69294347-c884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:66:7f:a6:e4:3c:50:47:05:78:fb:5f:ae:65: 9a:29:10:21:11:7b:95:1a:b2:12:a4:2f:d5:bd:60: 26:fe:b2:cb:13:63:2f:60:48:db:e1:2a:75:9b:90: 45:cf:9f:b4:d4:ad:e4:cb:b1:c1:e8:02:c6:0c:b7: f9:27:a7:c6:ce:8f:5c:b7:c7:98:e5:4e:05:88:85: dc:7d:7c:1d:42:ea:84:85:bb:04:e2:a8:15:66:e2: fd:10:b6:92:38:16:d0:31:2b:66:5a:4e:2b:e9:26: 6e:c9:fa:a2:74:7a:fe:83:32:74:eb:65:c6:09:66: a9:9d:f6:f3:fd:b6:a1:13:23:09:ee:b5:30:d0:50: b7:1e:0f:7b:ac:a9:fb:9f:bf:c2:88:d1:23:04:58: 46:d3:44:7d:d5:da:72:74:23:06:84:d6:63:4a:9b: d1:d2:1c:79:a5:bd:4f:fe:b7:99:2a:08:b0:b0:8c: 71:2f:bf:f7:4c:35:99:24:03:36:dc:0a:77:fa:e7: 12:f5:70:d7:b9:3b:e4:59:e9:03:9b:cb:04:b8:0f: ac:c0:0e:cd:fd:83:82:60:a4:cc:27:40:04:16:2a: 40:43:be:ed:84:b1:e8:1c:41:1f:30:28:d2:30:94: e5:7b:49:16:5a:93:2d:a6:0f:0f:79:4e:fa:e7:33: 74:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:A1:FE:D1:5D:22:89:CF:F6:5D:A7:2B:5E:5B:88:0A:39:8D:6D:AF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/338057C478FC11F08A64057FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.94.81.0-118.94.85.255 118.94.91.0/24 Signature Algorithm: sha256WithRSAEncryption 34:70:80:9e:b5:7c:e2:b8:66:f7:6e:2b:b7:65:61:82:b8:81: aa:63:9a:d8:b8:60:e9:3b:77:f5:33:a1:e8:0f:88:98:59:39: 15:da:48:d0:2e:cd:d2:5c:fd:52:90:96:e0:af:74:eb:70:d1: 92:f9:f8:29:93:a1:d2:06:69:cd:e9:ca:b7:de:7e:16:09:8b: b7:58:d7:0d:b4:1d:f3:3b:ac:d3:ee:a0:14:58:b1:be:9c:73: 75:d7:a4:3b:03:8f:de:d3:f6:cc:0e:f4:7a:2d:14:2c:5f:24: 8f:91:ff:80:ab:97:e8:1c:92:ca:41:7e:44:04:0d:8f:0e:e7: d6:25:a6:a5:15:c0:e9:a2:5f:65:95:0b:b1:b5:e4:e7:df:a9: 4d:44:f6:67:66:3e:04:83:4a:f7:13:48:ff:e9:f5:56:dd:f3: b8:bf:a1:87:72:42:56:f0:5e:d6:66:d6:98:2d:04:f5:c3:77: b7:d9:99:98:34:17:6a:77:d0:b6:82:82:ef:b7:2f:6b:f0:e6: 21:f5:21:4d:6f:2a:22:77:a3:a7:05:ca:17:65:7c:36:fe:5e: a5:e4:02:4d:cb:a7:9f:8b:9e:38:d1:d7:06:a5:a1:c0:9d:41: 97:26:37:30:ba:8f:c1:45:64:e6:7c:f1:3d:88:55:ad:a6:02: 70:6f:a1:cc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgIDAMhbMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTEyODA2Mzc1OVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjkyOTQzNDctYzg4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMxmf6bkPFBHBXj7X65lmikQIRF7lRqyEqQv1b1gJv6yyxNjL2BI2+EqdZuQ Rc+ftNSt5MuxwegCxgy3+Senxs6PXLfHmOVOBYiF3H18HULqhIW7BOKoFWbi/RC2 kjgW0DErZlpOK+kmbsn6onR6/oMydOtlxglmqZ328/22oRMjCe61MNBQtx4Pe6yp +5+/wojRIwRYRtNEfdXacnQjBoTWY0qb0dIceaW9T/63mSoIsLCMcS+/90w1mSQD NtwKd/rnEvVw17k75FnpA5vLBLgPrMAOzf2DgmCkzCdABBYqQEO+7YSx6BxBHzAo 0jCU5XtJFlqTLaYPD3lO+uczdG0CAwEAAaOCAqMwggKfMB0GA1UdDgQWBBS0of7R XSKJz/ZdpyteW4gKOY1trzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzMzODA1N0M0 NzhGQzExRjA4QTY0MDU3RkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMC0GCCsGAQUFBwEHAQH/ BB4wHDAaBAIAATAUMAwDBAB2XlEDBAF2XlQDBAB2XlswDQYJKoZIhvcNAQELBQAD ggEBADRwgJ61fOK4ZvduK7dlYYK4gapjmti4YOk7d/UzoegPiJhZORXaSNAuzdJc /VKQluCvdOtw0ZL5+CmTodIGac3pyrfefhYJi7dY1w20HfM7rNPuoBRYsb6cc3XX pDsDj97T9swO9HotFCxfJI+R/4Crl+gckspBfkQEDY8O59YlpqUVwOmiX2WVC7G1 5OffqU1E9mdmPgSDSvcTSP/p9Vbd87i/oYdyQlbwXtZm1pgtBPXDd7fZmZg0F2p3 0LaCgu+3L2vw5iH1IU1vKiJ3o6cFyhdlfDb+XqXkAk3Lp5+LnjjR1walocCdQZcm NzC6j8FFZOZ88T2IVa2mAnBvocw= -----END CERTIFICATE-----Generated at Sun Dec 7 05:19:23 2025 by rpki-client