This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/4BB2BBFEEA0B11F09069D0EA6F6F56BC.roa File: 4BB2BBFEEA0B11F09069D0EA6F6F56BC.roa (raw, json) Hash identifier: AMx60k45maDeTL13AMZnH+5OR5Ly36xO1XjUBnVESes= Subject key identifier: 5A:3C:01:7E:E9:E6:CF:27:C0:52:F9:CA:76:FF:0E:85:36:89:E2:95 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0BC3 Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/4BB2BBFEEA0B11F09069D0EA6F6F56BC.roa Signing time: Wed 21 Jan 2026 08:40:57 +0000 ROA not before: Wed 21 Jan 2026 08:40:57 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 23532 IP address blocks: 103.23.72.0/24 maxlen: 24 103.23.73.0/24 maxlen: 24 103.23.74.0/24 maxlen: 24 103.23.75.0/24 maxlen: 24 103.246.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:35:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3011 (0xbc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Jan 21 08:40:57 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69709119-0268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:40:4a:42:78:14:9f:cf:06:79:82:af:2c:24: c4:fc:aa:75:35:77:79:47:0f:4a:45:7f:cd:d6:17: 7c:15:d2:99:5b:fb:9e:0b:d5:ee:74:56:13:52:73: fe:16:95:3c:e3:12:cc:18:d7:9c:aa:13:26:21:7f: 38:25:02:57:8a:c6:87:90:22:86:0a:64:16:f9:c2: 98:02:f8:36:20:6c:a4:48:8e:84:2d:95:7f:6f:62: 63:27:18:c5:3a:60:60:aa:04:03:cf:83:16:e8:95: 1f:55:bb:17:d5:c5:6e:78:94:9d:0b:0a:97:cf:d8: a2:7e:ea:07:84:d9:9e:86:e4:59:9f:18:42:e6:c4: 89:fd:1a:06:b6:9d:b4:11:ff:94:9d:ff:3e:f6:20: 94:e5:c2:cf:59:03:01:83:45:15:7b:2e:3f:d6:b2: a5:46:1b:0d:77:e3:98:b5:a3:61:50:6f:b6:1f:1c: 60:7a:c2:a6:1b:85:2d:0a:ca:4f:af:0d:78:71:e7: e9:e0:80:18:a0:35:54:84:72:80:f6:cb:eb:f2:1b: c7:c6:90:6b:ae:7f:2f:a5:c9:71:cb:90:fc:31:8b: 60:25:39:9e:30:fd:92:95:85:25:c3:0c:28:e3:d0: bb:a1:69:2b:22:cb:01:60:69:50:96:8f:7c:57:37: 56:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:3C:01:7E:E9:E6:CF:27:C0:52:F9:CA:76:FF:0E:85:36:89:E2:95 X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/4BB2BBFEEA0B11F09069D0EA6F6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.72.0/22 103.246.255.0/24 Signature Algorithm: sha256WithRSAEncryption 01:95:e9:be:07:09:1f:1e:da:dc:82:d7:e5:22:24:e2:3d:59: 19:aa:9a:ac:a2:f7:71:c5:51:bb:74:59:8e:d8:9e:69:ba:18: b4:b2:e4:e9:70:55:e0:16:dd:c9:5f:c1:9b:b3:3c:78:e0:03: 9a:70:2b:9c:62:c8:b5:eb:ff:8e:0c:ad:ab:4c:5c:f7:d0:80: 28:12:7f:24:64:f8:ea:2f:ea:a9:38:89:d9:90:a1:b2:44:49: e1:c9:93:5c:22:32:cf:97:e3:a1:62:a4:1d:42:3f:8b:33:f4: 18:4d:de:ec:02:27:ef:f1:3c:29:43:3b:3f:c5:84:59:94:21: 6e:e6:60:a8:78:cd:b2:85:ac:15:a9:40:28:88:c6:ab:bc:fc: b9:fc:69:2b:22:e1:25:18:5d:6c:6a:64:da:9b:33:5b:8e:74: 81:00:f8:93:af:4f:07:ac:24:71:ba:db:37:b1:b6:d1:48:f6: 0f:25:98:26:dc:69:7e:b2:81:92:a2:a1:d9:c5:d1:f8:53:30: c7:7c:66:9b:d0:6b:66:4f:ac:3a:91:e4:b8:42:06:09:78:aa: 3a:20:1c:5c:c5:0e:56:40:cd:26:fc:73:eb:c0:f6:22:c2:d2: 39:db:9d:70:9f:8b:b9:73:b9:a0:73:b2:7e:5e:31:99:9d:cf: 81:15:99:e9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjYwMTIxMDg0MDU3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTcwOTExOS0wMjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskBKQngUn88GeYKvLCTE/Kp1NXd5Rw9KRX/N1hd8FdKZW/ueC9XudFYTUnP+ FpU84xLMGNecqhMmIX84JQJXisaHkCKGCmQW+cKYAvg2IGykSI6ELZV/b2JjJxjF OmBgqgQDz4MW6JUfVbsX1cVueJSdCwqXz9iifuoHhNmehuRZnxhC5sSJ/RoGtp20 Ef+Unf8+9iCU5cLPWQMBg0UVey4/1rKlRhsNd+OYtaNhUG+2HxxgesKmG4UtCspP rw14cefp4IAYoDVUhHKA9svr8hvHxpBrrn8vpclxy5D8MYtgJTmeMP2SlYUlwwwo 49C7oWkrIssBYGlQlo98VzdWKQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFo8AX7p 5s8nwFL5ynb/DoU2ieKVMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNDAvNjE3RjM1MzY0MEUxMTFFQUJDNjJEQjI2QzRGOUFFMDIvNEJCMkJCRkVF QTBCMTFGMDkwNjlEMEVBNkY2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnF0gDBABn9v8wDQYJKoZIhvcNAQELBQADggEBAAGV6b4H CR8e2tyC1+UiJOI9WRmqmqyi93HFUbt0WY7Ynmm6GLSy5OlwVeAW3clfwZuzPHjg A5pwK5xiyLXr/44MratMXPfQgCgSfyRk+Oov6qk4idmQobJESeHJk1wiMs+X46Fi pB1CP4sz9BhN3uwCJ+/xPClDOz/FhFmUIW7mYKh4zbKFrBWpQCiIxqu8/Ln8aSsi 4SUYXWxqZNqbM1uOdIEA+JOvTwesJHG62zexttFI9g8lmCbcaX6ygZKiodnF0fhT MMd8ZpvQa2ZPrDqR5LhCBgl4qjogHFzFDlZAzSb8c+vA9iLC0jnbnXCfi7lzuaBz sn5eMZmdz4EVmek= -----END CERTIFICATE-----Generated at Sun Jan 25 05:57:25 2026 by rpki-client