This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/587758E6DD3111EAB2EA1D0AC4F9AE02.roa File: 587758E6DD3111EAB2EA1D0AC4F9AE02.roa (raw, json) Hash identifier: uXXT+9g/+/p6f5OrQLz6/RGzKAUaK8qB90gmpcQCwik= Subject key identifier: 10:15:81:67:A2:EA:86:DF:E8:CE:BE:CE:72:37:A9:9D:89:83:6F:42 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: CD4C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/587758E6DD3111EAB2EA1D0AC4F9AE02.roa Signing time: Mon 12 Jan 2026 09:54:13 +0000 ROA not before: Mon 12 Jan 2026 09:54:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45815 IP address blocks: 45.249.252.0/22 maxlen: 24 103.54.136.0/22 maxlen: 24 103.75.56.0/22 maxlen: 24 103.134.160.0/22 maxlen: 24 103.154.75.0/24 maxlen: 24 103.249.97.0/24 maxlen: 24 2400:5300::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:14:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52556 (0xcd4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 12 09:54:13 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6964c4c5-ca25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ea:c5:db:23:98:b4:a9:31:cd:0f:cb:e8:e8: 5e:31:2c:df:c9:7f:0f:37:f6:58:78:5a:a2:f9:f9: 77:6f:dc:9b:bc:f8:f4:2a:63:ce:04:80:ee:ca:ba: 16:64:04:0f:df:ff:e3:81:1f:18:96:d0:a7:c7:ef: 83:75:da:ac:f2:f5:fa:8b:17:83:04:58:36:89:48: 80:1d:69:e7:65:34:b1:3e:c9:d6:8d:80:36:2b:6b: 13:61:69:c2:b2:d7:53:e0:81:17:fe:d0:d2:36:b4: 2f:a6:e4:2d:29:32:98:82:70:b9:b1:39:ab:26:c4: 11:31:3e:14:79:96:f3:ca:29:d4:de:d4:63:9a:29: 39:96:a9:4e:b9:27:2c:69:d3:fe:39:29:b1:df:0c: df:6e:2a:02:03:be:b1:6b:9d:1d:e1:72:4a:2f:03: 39:75:1a:ab:84:ac:ad:59:96:7a:66:db:9f:83:45: b0:25:10:70:0c:3e:48:0c:72:73:ae:00:4b:47:4a: a6:de:05:3f:19:e9:b7:99:b4:ee:48:a0:d4:48:75: 39:1c:dd:e4:77:60:13:5c:40:85:b3:21:3b:50:6c: 11:46:8b:18:0b:ad:a6:4c:c6:76:c6:b6:bb:f0:24: 92:f9:bb:9c:f9:1a:d7:0e:fa:63:ba:81:ac:89:de: 7d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:15:81:67:A2:EA:86:DF:E8:CE:BE:CE:72:37:A9:9D:89:83:6F:42 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/587758E6DD3111EAB2EA1D0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.252.0/22 103.54.136.0/22 103.75.56.0/22 103.134.160.0/22 103.154.75.0/24 103.249.97.0/24 IPv6: 2400:5300::/32 Signature Algorithm: sha256WithRSAEncryption 54:4b:30:23:a4:ca:a3:90:f4:1a:ef:74:02:3a:c3:b9:4d:e0: a2:0f:9c:7f:9c:48:d4:e5:d4:3f:4b:3c:c7:db:a5:35:5d:cf: f3:a2:f1:33:72:d4:d5:de:bc:4c:36:15:43:d4:54:6c:26:08: f6:38:4d:3e:ed:bc:39:5f:5c:e4:7a:db:f2:1b:aa:b1:19:86: 48:a6:64:6a:7b:e7:8e:a5:5b:5a:4e:ac:b5:dc:f0:81:1b:27: a2:5a:b8:cc:8f:cc:29:67:d5:73:02:f5:70:3c:18:0e:b2:3c: ec:81:b9:60:8e:90:c0:07:87:23:7b:1c:e6:9c:07:26:62:6a: d3:ed:7a:93:50:87:c5:91:d9:80:7d:11:7f:c1:2d:3a:85:d5: 51:0d:5a:29:32:3d:19:18:97:00:04:ee:3e:f4:f1:79:f2:f0: 4c:39:7f:af:b8:fb:43:49:bd:be:07:d6:5f:85:a5:40:bc:99: c6:23:f2:33:22:f1:56:4b:94:db:74:eb:46:4f:f2:f7:da:dd: 11:47:8a:79:95:4b:d0:31:e5:bd:d6:01:cd:d3:8e:7b:c7:fc: ad:7d:38:13:bc:93:b1:b7:8f:61:dc:e6:8b:2d:e5:d5:9a:d8: 5e:b8:68:12:3d:39:62:d0:0e:34:ef:03:d1:99:35:ef:16:55: 64:64:e5:70 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIDAM1MMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMMCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDExMjA5NTQxM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAwwNNjk2NGM0YzUtY2EyNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJrqxdsjmLSpMc0Py+joXjEs38l/Dzf2WHhaovn5d2/cm7z49CpjzgSA7sq6 FmQED9//44EfGJbQp8fvg3XarPL1+osXgwRYNolIgB1p52U0sT7J1o2ANitrE2Fp wrLXU+CBF/7Q0ja0L6bkLSkymIJwubE5qybEETE+FHmW88op1N7UY5opOZapTrkn LGnT/jkpsd8M324qAgO+sWudHeFySi8DOXUaq4SsrVmWembbn4NFsCUQcAw+SAxy c64AS0dKpt4FPxnpt5m07kig1Eh1ORzd5HdgE1xAhbMhO1BsEUaLGAutpkzGdsa2 u/Akkvm7nPka1w76Y7qBrInefYsCAwEAAaOCAsIwggK+MB0GA1UdDgQWBBQQFYFn ouqG3+jOvs5yN6mdiYNvQjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU4Nzc1OEU2 REQzMTExRUFCMkVBMUQwQUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEwGCCsGAQUFBwEHAQH/ BD0wOzAqBAIAATAkAwQCLfn8AwQCZzaIAwQCZ0s4AwQCZ4agAwQAZ5pLAwQAZ/lh MA0EAgACMAcDBQAkAFMAMA0GCSqGSIb3DQEBCwUAA4IBAQBUSzAjpMqjkPQa73QC OsO5TeCiD5x/nEjU5dQ/SzzH26U1Xc/zovEzctTV3rxMNhVD1FRsJgj2OE0+7bw5 X1zketvyG6qxGYZIpmRqe+eOpVtaTqy13PCBGyeiWrjMj8wpZ9VzAvVwPBgOsjzs gblgjpDAB4cjexzmnAcmYmrT7XqTUIfFkdmAfRF/wS06hdVRDVopMj0ZGJcABO4+ 9PF58vBMOX+vuPtDSb2+B9ZfhaVAvJnGI/IzIvFWS5TbdOtGT/L32t0RR4p5lUvQ MeW91gHN0457x/ytfTgTvJOxt49h3OaLLeXVmtheuGgSPTli0A407wPRmTXvFlVk ZOVw -----END CERTIFICATE-----Generated at Sun Jan 25 04:35:45 2026 by rpki-client