This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8D9232DCF6A611F08D7B2A8A406F56BC.roa File: 8D9232DCF6A611F08D7B2A8A406F56BC.roa (raw, json) Hash identifier: dkbcEQM35alBKy9xVhoLk4lGVGSPqIEaFOpKjICN+eU= Subject key identifier: 9C:E7:44:CA:2A:03:1E:97:34:32:5C:D7:07:95:F6:DB:2A:44:00:7C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: CE3F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8D9232DCF6A611F08D7B2A8A406F56BC.roa Signing time: Wed 21 Jan 2026 08:52:45 +0000 ROA not before: Wed 21 Jan 2026 08:52:45 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136374 IP address blocks: 103.27.2.0/24 maxlen: 24 103.52.220.0/24 maxlen: 24 103.52.221.0/24 maxlen: 24 103.52.222.0/24 maxlen: 24 103.52.223.0/24 maxlen: 24 103.66.54.0/24 maxlen: 24 103.94.84.0/22 maxlen: 24 103.228.250.0/24 maxlen: 24 103.228.251.0/24 maxlen: 24 2404:8c40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:14:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52799 (0xce3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 21 08:52:45 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=697093dd-89ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:62:07:7d:0d:ed:43:da:06:26:89:df:15:88: ab:f3:07:42:3a:37:61:a8:6b:0a:73:77:04:da:39: 0b:18:f1:c5:ad:2e:72:97:d0:a5:b1:7a:43:2d:79: 70:ed:29:10:e0:97:cf:09:3f:a6:88:99:a9:1a:d1: b5:07:46:43:6a:03:37:f6:e3:2c:5d:7b:2d:62:ae: 95:86:48:2c:a2:82:ff:b0:10:4a:ac:7b:05:4c:c3: 39:e8:ba:05:7e:4e:2c:74:c4:71:ab:f7:25:87:ea: 88:fb:2e:09:a2:04:48:21:7d:69:cf:52:e0:c8:5b: b5:46:48:a8:92:17:ac:c1:c5:18:71:91:e2:a3:98: 6a:f7:5d:1d:b0:eb:f2:e3:0c:c3:08:22:05:b0:0d: 66:d6:e4:3a:f1:24:97:f2:54:34:6b:be:77:55:f8: d2:06:85:fa:42:b0:f3:89:3c:de:0f:76:e2:cc:02: 3e:e3:6a:21:86:fa:96:fd:d7:5b:0c:14:09:80:6d: 04:d6:b7:c6:61:2e:6d:6d:ba:88:1d:66:bf:5e:c7: c4:25:22:65:0e:a2:84:c3:1f:b9:01:7f:1a:1b:19: 23:46:48:00:f1:44:0d:44:b1:ca:f1:03:f5:fc:eb: 03:a4:72:37:5d:2a:20:bf:e1:83:71:14:37:bd:31: 77:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E7:44:CA:2A:03:1E:97:34:32:5C:D7:07:95:F6:DB:2A:44:00:7C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8D9232DCF6A611F08D7B2A8A406F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.2.0/24 103.52.220.0/22 103.66.54.0/24 103.94.84.0/22 103.228.250.0/23 IPv6: 2404:8c40::/32 Signature Algorithm: sha256WithRSAEncryption 75:f8:cf:82:e2:72:d9:fc:dc:3a:c7:54:3e:56:4b:68:92:2f: e7:05:33:2f:73:89:c8:5b:ad:c0:62:76:63:43:f5:fd:a6:33: 89:58:e6:e7:86:75:64:38:56:00:cc:da:49:fe:92:11:75:56: e2:9a:e7:d5:48:b4:3b:cb:ac:a2:ee:91:4d:93:b9:26:e1:cb: 09:65:0f:1f:1b:e5:b3:e0:ff:07:46:da:d2:86:a6:a4:5e:11: 17:98:d4:42:9b:df:75:ae:8d:96:32:0b:54:f7:f3:66:df:10: 30:59:f0:22:14:29:3e:cd:fd:04:58:17:d0:75:ae:12:9d:b6: b4:b3:d6:bd:66:0b:98:1e:5f:47:2e:2f:b3:15:cf:ae:a7:d7: 8c:0a:ea:8a:9e:b4:01:9e:d7:2a:8c:83:2b:03:49:aa:44:67: 9c:99:d0:28:ed:28:c5:ae:b1:bd:16:1e:e7:2a:61:06:1a:a0: 8c:4e:56:bc:fd:2a:fa:c1:ec:90:80:d4:7a:2a:74:40:5f:17: b2:48:7c:73:e4:7c:fb:78:d5:66:72:c3:76:14:26:d0:c1:ba: c0:f9:24:0f:ea:ae:d8:93:00:a5:c5:ac:fd:f5:1b:8f:77:bb: e2:e3:90:27:24:ba:34:fb:fa:90:0b:67:d5:cf:86:b8:dc:be: 07:84:cd:da -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgIDAM4/MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMMCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDEyMTA4NTI0NVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAwwNNjk3MDkzZGQtODlhZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJtiB30N7UPaBiaJ3xWIq/MHQjo3YahrCnN3BNo5Cxjxxa0ucpfQpbF6Qy15 cO0pEOCXzwk/poiZqRrRtQdGQ2oDN/bjLF17LWKulYZILKKC/7AQSqx7BUzDOei6 BX5OLHTEcav3JYfqiPsuCaIESCF9ac9S4MhbtUZIqJIXrMHFGHGR4qOYavddHbDr 8uMMwwgiBbANZtbkOvEkl/JUNGu+d1X40gaF+kKw84k83g924swCPuNqIYb6lv3X WwwUCYBtBNa3xmEubW26iB1mv17HxCUiZQ6ihMMfuQF/GhsZI0ZIAPFEDUSxyvED 9fzrA6RyN10qIL/hg3EUN70xd78CAwEAAaOCArwwggK4MB0GA1UdDgQWBBSc50TK KgMelzQyXNcHlfbbKkQAfDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhEOTIzMkRD RjZBNjExRjA4RDdCMkE4QTQwNkY1NkJDLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEYGCCsGAQUFBwEHAQH/ BDcwNTAkBAIAATAeAwQAZxsCAwQCZzTcAwQAZ0I2AwQCZ15UAwQBZ+T6MA0EAgAC MAcDBQAkBIxAMA0GCSqGSIb3DQEBCwUAA4IBAQB1+M+C4nLZ/Nw6x1Q+Vktoki/n BTMvc4nIW63AYnZjQ/X9pjOJWObnhnVkOFYAzNpJ/pIRdVbimufVSLQ7y6yi7pFN k7km4csJZQ8fG+Wz4P8HRtrShqakXhEXmNRCm991ro2WMgtU9/Nm3xAwWfAiFCk+ zf0EWBfQda4Snba0s9a9ZguYHl9HLi+zFc+up9eMCuqKnrQBntcqjIMrA0mqRGec mdAo7SjFrrG9Fh7nKmEGGqCMTla8/Sr6weyQgNR6KnRAXxeySHxz5Hz7eNVmcsN2 FCbQwbrA+SQP6q7YkwClxaz99RuPd7vi45AnJLo0+/qQC2fVz4a43L4HhM3a -----END CERTIFICATE-----Generated at Sun Jan 25 04:24:11 2026 by rpki-client