This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F1820EAA902111ED9693760DC4F9AE02.roa File: F1820EAA902111ED9693760DC4F9AE02.roa (raw, json) Hash identifier: ByYn04TAZFjKTwMo/ikEe0NyExtLytR72JWUH9r0xro= Subject key identifier: 61:C3:27:E7:EB:C7:F2:95:BE:00:5B:21:F1:BA:07:85:6D:99:A3:0E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C9B2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F1820EAA902111ED9693760DC4F9AE02.roa Signing time: Fri 05 Dec 2025 07:02:15 +0000 ROA not before: Fri 05 Dec 2025 07:02:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138778 IP address blocks: 103.134.132.0/24 maxlen: 24 103.134.133.0/24 maxlen: 24 2001:df1:b040::/48 maxlen: 48 2401:8460::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51634 (0xc9b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 5 07:02:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69328376-7894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f6:ff:32:ac:15:9b:17:36:46:6f:d3:f5:ad: 63:ab:40:8f:51:f4:df:27:d3:0b:65:22:19:53:6b: 9c:35:76:6a:21:97:e6:bd:f0:a1:f6:98:ff:c9:6d: 4f:f9:64:4b:03:cd:ea:08:18:8d:ac:a5:fb:04:67: 16:bd:be:0c:27:83:a7:57:04:bf:02:a8:ba:a0:cd: 5c:c1:cd:aa:82:9f:89:2a:d1:e6:09:e1:b2:9d:3d: 78:7a:ef:13:c6:e4:f0:c2:40:9b:b1:eb:f9:b8:82: 97:2a:dd:2d:c2:af:cf:81:e7:a8:e1:1b:11:0c:52: 49:b2:4e:3f:8e:d2:8f:37:79:97:93:b9:ad:54:0b: 8e:c8:28:57:1f:9f:b1:04:fb:dc:34:39:26:28:7e: a7:43:cf:09:0c:0f:76:4f:98:c6:08:cd:8c:e8:6e: ae:dc:c1:b8:bb:00:ce:83:64:cb:8a:7a:71:b6:05: 3c:e1:7c:50:3c:a9:b5:21:b1:e6:9f:ef:f4:a0:72: df:11:2f:fd:3e:69:44:47:e0:1d:ef:ec:e1:45:42: f4:53:3f:a1:d4:88:dd:b2:86:9b:fa:40:75:9d:3d: 6c:ce:8b:47:d1:4e:64:4d:74:c5:14:36:50:85:56: e6:0a:0d:45:d0:ee:e8:5d:ed:9e:6e:0f:2d:e6:54: 33:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C3:27:E7:EB:C7:F2:95:BE:00:5B:21:F1:BA:07:85:6D:99:A3:0E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F1820EAA902111ED9693760DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.132.0/23 IPv6: 2001:df1:b040::/48 2401:8460::/32 Signature Algorithm: sha256WithRSAEncryption b0:59:67:f6:a7:4d:5d:f8:09:9b:9b:e7:90:76:be:ff:68:14: 58:64:60:6d:f6:dd:97:0a:a5:89:89:d9:bf:0f:46:8f:8c:e3: 44:22:83:fe:67:2f:68:c4:18:78:06:38:d5:cd:19:71:2b:27: 4d:ea:0f:e2:0e:5f:3c:b6:62:c0:2e:4c:c6:23:07:b9:ab:09: dd:49:f5:e4:ad:80:80:00:a4:83:3b:5b:85:a9:f5:76:d5:48: ec:de:f3:42:cc:07:ef:32:f8:23:66:2b:c9:5d:43:d9:4b:a9: 40:5e:00:bf:7c:d5:d8:37:11:33:ab:45:c7:3e:4d:f2:39:f3: 4e:f0:8d:98:f5:0b:46:96:b6:d4:79:dd:b7:68:4f:3a:34:0f: 67:8e:7f:2c:3d:05:23:a8:c2:9f:0c:c0:9b:c7:a0:8c:e0:82: 2f:fd:e0:14:59:bd:bd:51:7b:ed:02:55:b2:26:6d:80:af:77: 64:11:99:4a:a0:ed:e7:84:97:69:ae:3d:bb:de:13:ca:e3:e6: e0:91:dd:32:61:36:44:ab:90:69:f7:98:ea:20:cc:6a:5f:d0: e0:6c:cc:1a:47:b9:98:a9:a3:7a:db:f3:3b:7a:51:8a:7b:b2: 33:f0:09:87:b2:7d:4c:e9:15:08:95:27:44:61:f5:d9:0b:00: cc:50:ec:2f -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIDAMmyMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTIwNTA3MDIxNVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjkzMjgzNzYtNzg5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMT2/zKsFZsXNkZv0/WtY6tAj1H03yfTC2UiGVNrnDV2aiGX5r3wofaY/8lt T/lkSwPN6ggYjayl+wRnFr2+DCeDp1cEvwKouqDNXMHNqoKfiSrR5gnhsp09eHrv E8bk8MJAm7Hr+biClyrdLcKvz4HnqOEbEQxSSbJOP47Sjzd5l5O5rVQLjsgoVx+f sQT73DQ5Jih+p0PPCQwPdk+YxgjNjOhurtzBuLsAzoNky4p6cbYFPOF8UDyptSGx 5p/v9KBy3xEv/T5pREfgHe/s4UVC9FM/odSI3bKGm/pAdZ09bM6LR9FOZE10xRQ2 UIVW5goNRdDu6F3tnm4PLeZUMzUCAwEAAaOCAq0wggKpMB0GA1UdDgQWBBRhwyfn 68fylb4AWyHxugeFbZmjDjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0YxODIwRUFB OTAyMTExRUQ5NjkzNzYwREM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDcGCCsGAQUFBwEHAQH/ BCgwJjAMBAIAATAGAwQBZ4aEMBYEAgACMBADBwAgAQ3xsEADBQAkAYRgMA0GCSqG SIb3DQEBCwUAA4IBAQCwWWf2p01d+Ambm+eQdr7/aBRYZGBt9t2XCqWJidm/D0aP jONEIoP+Zy9oxBh4BjjVzRlxKydN6g/iDl88tmLALkzGIwe5qwndSfXkrYCAAKSD O1uFqfV21Ujs3vNCzAfvMvgjZivJXUPZS6lAXgC/fNXYNxEzq0XHPk3yOfNO8I2Y 9QtGlrbUed23aE86NA9njn8sPQUjqMKfDMCbx6CM4IIv/eAUWb29UXvtAlWyJm2A r3dkEZlKoO3nhJdprj273hPK4+bgkd0yYTZEq5Bp95jqIMxqX9DgbMwaR7mYqaN6 2/M7elGKe7Iz8AmHsn1M6RUIlSdEYfXZCwDMUOwv -----END CERTIFICATE-----Generated at Sat Dec 6 22:45:43 2025 by rpki-client