This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/524FB774F2E311F0ACABC44A426F56BC.roa File: 524FB774F2E311F0ACABC44A426F56BC.roa (raw, json) Hash identifier: 3QdjGR+3XVBGGaM2SrVetoioPqkH/97oq43SNYB9suM= Subject key identifier: 82:2C:CC:C8:7F:DC:71:C6:C3:28:61:1A:86:BB:2C:20:5C:04:17:C3 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: CF5A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/524FB774F2E311F0ACABC44A426F56BC.roa Signing time: Thu 22 Jan 2026 12:18:39 +0000 ROA not before: Thu 22 Jan 2026 12:18:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133275 IP address blocks: 43.228.220.0/22 maxlen: 24 43.248.236.0/22 maxlen: 24 43.249.52.0/22 maxlen: 24 45.115.4.0/22 maxlen: 24 45.119.136.0/22 maxlen: 24 45.119.140.0/22 maxlen: 24 45.125.60.0/22 maxlen: 24 103.36.124.0/22 maxlen: 24 103.46.192.0/23 maxlen: 24 103.46.194.0/23 maxlen: 24 103.47.168.0/22 maxlen: 24 103.47.236.0/22 maxlen: 24 103.59.192.0/22 maxlen: 24 103.59.196.0/22 maxlen: 24 103.95.120.0/22 maxlen: 24 103.124.12.0/22 maxlen: 24 103.148.119.0/24 maxlen: 24 103.173.201.0/24 maxlen: 24 103.176.162.0/23 maxlen: 24 103.193.196.0/22 maxlen: 24 103.196.52.0/22 maxlen: 24 103.197.116.0/22 maxlen: 24 103.207.172.0/22 maxlen: 24 103.208.200.0/22 maxlen: 24 103.215.248.0/22 maxlen: 24 103.216.88.0/22 maxlen: 24 103.243.4.0/24 maxlen: 24 103.248.116.0/22 maxlen: 24 137.59.240.0/22 maxlen: 24 157.119.124.0/22 maxlen: 24 157.119.216.0/24 maxlen: 24 157.119.217.0/24 maxlen: 24 157.119.218.0/24 maxlen: 24 157.119.219.0/24 maxlen: 24 175.111.132.0/22 maxlen: 24 210.16.80.0/22 maxlen: 24 220.158.160.0/22 maxlen: 24 2404:4340::/32 maxlen: 32 2404:4340::/33 maxlen: 33 2404:4340::/48 maxlen: 48 2404:4340:1::/48 maxlen: 48 2404:4340:2::/48 maxlen: 48 2404:4340:3::/48 maxlen: 48 2404:4340:4::/48 maxlen: 48 2404:4340:5::/48 maxlen: 48 2404:4340:6::/48 maxlen: 48 2404:4340:7::/48 maxlen: 48 2404:4340:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:14:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53082 (0xcf5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 22 12:18:39 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6972159f-b413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:96:e0:1a:73:fb:8e:87:5f:9d:e7:63:04:92: bf:f5:17:40:84:aa:20:2d:9d:27:0f:4c:eb:49:d2: e3:b2:9a:74:f3:48:25:b5:a6:d0:15:d9:68:cd:cb: 86:43:c4:82:c1:5b:ca:8e:7d:43:f2:1a:f4:6d:81: f0:ff:f4:f0:b2:b8:1d:63:29:f1:45:7b:ea:9b:81: a3:bf:a5:ee:72:00:c5:e2:90:dd:fa:ed:d6:c6:5e: 55:11:bf:c1:30:e0:d0:96:b2:cb:0f:74:8c:c9:dc: e6:64:ab:9c:48:21:b3:70:08:28:e5:38:10:0c:fc: 3c:ec:2b:3a:6e:92:4a:99:36:e9:cb:a9:88:b1:81: 05:5e:d7:c8:97:6b:9e:bd:8e:4a:42:ab:bd:60:ee: 1a:33:58:f2:f6:13:33:01:73:07:eb:5e:8f:ae:7a: 7b:1b:c8:d4:14:cd:ac:95:3c:59:c9:9b:2d:93:94: 4b:ef:22:5e:55:8e:30:0e:2c:f4:22:72:9f:49:36: 63:ab:30:8a:f6:d6:8d:0e:26:ce:1f:13:0d:4f:cf: c9:75:1f:bc:bf:36:22:32:d1:d9:f5:6c:f0:e8:61: aa:a0:e6:b6:17:94:4a:2f:c2:6d:05:93:41:5a:6c: 51:af:08:83:ef:a6:f0:4e:7f:76:9f:22:b6:34:d3: 0a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:2C:CC:C8:7F:DC:71:C6:C3:28:61:1A:86:BB:2C:20:5C:04:17:C3 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/524FB774F2E311F0ACABC44A426F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.228.220.0/22 43.248.236.0/22 43.249.52.0/22 45.115.4.0/22 45.119.136.0/21 45.125.60.0/22 103.36.124.0/22 103.46.192.0/22 103.47.168.0/22 103.47.236.0/22 103.59.192.0/21 103.95.120.0/22 103.124.12.0/22 103.148.119.0/24 103.173.201.0/24 103.176.162.0/23 103.193.196.0/22 103.196.52.0/22 103.197.116.0/22 103.207.172.0/22 103.208.200.0/22 103.215.248.0/22 103.216.88.0/22 103.243.4.0/24 103.248.116.0/22 137.59.240.0/22 157.119.124.0/22 157.119.216.0/22 175.111.132.0/22 210.16.80.0/22 220.158.160.0/22 IPv6: 2404:4340::/32 Signature Algorithm: sha256WithRSAEncryption b8:90:3c:95:8c:b0:ad:72:9a:3e:53:d2:89:ab:14:5c:6a:19: 64:e3:a9:c5:99:ed:fa:bd:46:a8:fe:20:eb:51:0f:12:63:2a: 2f:16:0e:24:f0:c5:b3:55:5f:ac:8d:b3:c5:d9:7d:1f:d2:63: c5:76:48:13:47:65:01:ba:d8:4a:ff:31:81:ed:d4:b4:12:3d: 83:e5:7b:ef:9a:6c:60:3a:5c:19:e0:90:4a:a7:cc:05:5d:27: 89:5a:a0:80:dd:00:6e:09:57:0a:09:4b:29:36:25:cc:7c:0a: 8f:b1:be:34:b9:0a:1c:6f:ee:dc:f6:3f:9b:32:f5:e8:a8:a5: 21:d2:ac:9f:b4:8f:5a:bd:4b:15:d8:d4:29:2e:ef:e2:ea:66: 7c:ff:a1:cd:b4:95:a8:1a:f0:45:17:d6:76:fa:62:99:86:35: fc:72:64:00:3a:9e:cf:11:bb:93:58:f2:13:14:7c:b6:bb:4a: e7:0e:c2:0d:b1:16:27:2f:39:57:7f:89:2c:00:02:8e:59:8f: b8:4f:44:21:42:d0:dd:8d:fa:84:47:20:86:57:57:ad:80:45: 82:ca:6a:7f:58:26:9b:e0:02:9e:f5:50:0c:34:ab:c0:48:44: 8f:32:69:a5:8a:53:d2:3d:cc:d0:ad:da:a5:ed:89:69:3b:33: d9:95:5d:0b -----BEGIN CERTIFICATE----- MIIGOjCCBSKgAwIBAgIDAM9aMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMMCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDEyMjEyMTgzOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAwwNNjk3MjE1OWYtYjQxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANiW4Bpz+46HX53nYwSSv/UXQISqIC2dJw9M60nS47KadPNIJbWm0BXZaM3L hkPEgsFbyo59Q/Ia9G2B8P/08LK4HWMp8UV76puBo7+l7nIAxeKQ3frt1sZeVRG/ wTDg0Jayyw90jMnc5mSrnEghs3AIKOU4EAz8POwrOm6SSpk26cupiLGBBV7XyJdr nr2OSkKrvWDuGjNY8vYTMwFzB+tej656exvI1BTNrJU8WcmbLZOUS+8iXlWOMA4s 9CJyn0k2Y6swivbWjQ4mzh8TDU/PyXUfvL82IjLR2fVs8OhhqqDmtheUSi/CbQWT QVpsUa8Ig++m8E5/dp8itjTTCskCAwEAAaOCA10wggNZMB0GA1UdDgQWBBSCLMzI f9xxxsMoYRqGuywgXAQXwzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzUyNEZCNzc0 RjJFMzExRjBBQ0FCQzQ0QTQyNkY1NkJDLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIHmBggrBgEFBQcBBwEB /wSB1jCB0zCBwQQCAAEwgboDBAIr5NwDBAIr+OwDBAIr+TQDBAItcwQDBAMtd4gD BAItfTwDBAJnJHwDBAJnLsADBAJnL6gDBAJnL+wDBANnO8ADBAJnX3gDBAJnfAwD BABnlHcDBABnrckDBAFnsKIDBAJnwcQDBAJnxDQDBAJnxXQDBAJnz6wDBAJn0MgD BAJn1/gDBAJn2FgDBABn8wQDBAJn+HQDBAKJO/ADBAKdd3wDBAKdd9gDBAKvb4QD BALSEFADBALcnqAwDQQCAAIwBwMFACQEQ0AwDQYJKoZIhvcNAQELBQADggEBALiQ PJWMsK1ymj5T0omrFFxqGWTjqcWZ7fq9Rqj+IOtRDxJjKi8WDiTwxbNVX6yNs8XZ fR/SY8V2SBNHZQG62Er/MYHt1LQSPYPle++abGA6XBngkEqnzAVdJ4laoIDdAG4J VwoJSyk2Jcx8Co+xvjS5Chxv7tz2P5sy9eiopSHSrJ+0j1q9SxXY1Cku7+LqZnz/ oc20laga8EUX1nb6YpmGNfxyZAA6ns8Ru5NY8hMUfLa7SucOwg2xFicvOVd/iSwA Ao5Zj7hPRCFC0N2N+oRHIIZXV62ARYLKan9YJpvgAp71UAw0q8BIRI8yaaWKU9I9 zNCt2qXtiWk7M9mVXQs= -----END CERTIFICATE-----Generated at Sun Jan 25 04:24:19 2026 by rpki-client