This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9190753/8EF24A125B6D11EEBC796325C4F9AE02/DAB789C65B6D11EEA95BF025C4F9AE02.roa File: DAB789C65B6D11EEA95BF025C4F9AE02.roa (raw, json) Hash identifier: R7rPLcu7KBIwwKHWQWTFZ/O5x8NWRmyKksg1gxkuSH8= Subject key identifier: AA:AE:66:78:E5:9F:BB:99:3A:E7:4B:CB:92:43:3C:7A:8B:16:D8:48 Certificate issuer: /CN=A9190753/serialNumber=DAD78CAC36D143F174ABE112D495ED5A06ECA740 Certificate serial: 01A5 Authority key identifier: DA:D7:8C:AC:36:D1:43:F1:74:AB:E1:12:D4:95:ED:5A:06:EC:A7:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2teMrDbRQ_F0q-ES1JXtWgbsp0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190753/8EF24A125B6D11EEBC796325C4F9AE02/DAB789C65B6D11EEA95BF025C4F9AE02.roa Signing time: Fri 21 Nov 2025 01:49:15 +0000 ROA not before: Fri 21 Nov 2025 01:49:15 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 955 IP address blocks: 103.203.242.0/23 maxlen: 24 2401:4020::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190753/8EF24A125B6D11EEBC796325C4F9AE02/2teMrDbRQ_F0q-ES1JXtWgbsp0A.crl rsync://rpki.apnic.net/member_repository/A9190753/8EF24A125B6D11EEBC796325C4F9AE02/2teMrDbRQ_F0q-ES1JXtWgbsp0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2teMrDbRQ_F0q-ES1JXtWgbsp0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:36:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190753, serialNumber=DAD78CAC36D143F174ABE112D495ED5A06ECA740 Validity Not Before: Nov 21 01:49:15 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=691fc51b-b12e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e3:63:30:68:eb:27:5b:a0:cd:10:e2:30:5a: a8:21:34:e4:40:be:3c:d4:cc:1d:20:da:14:aa:18: 47:92:ab:81:f4:c7:02:64:77:58:3b:6c:10:9d:0f: 60:07:5e:89:73:26:4a:de:52:2b:7e:1c:a0:92:19: 4a:bc:25:41:0b:6d:2a:30:6c:cb:13:e7:d7:25:86: f6:88:98:b8:4a:eb:b6:0a:e1:6b:ee:72:ef:74:fe: 21:eb:d9:4f:75:8a:be:a5:ee:90:39:e7:20:36:01: fd:27:79:e6:7f:46:e2:7d:07:49:dc:f4:b1:f5:1c: 5c:0c:f1:73:7b:5e:fa:af:8c:a0:cd:19:5f:df:04: 0b:69:e5:66:76:d1:5e:6c:15:cb:ac:41:1a:5b:54: 12:3e:54:23:86:0e:21:a7:fb:ad:f4:1c:ab:0f:f3: 8f:5f:e7:bd:59:f1:6e:31:ff:75:2d:71:0d:40:0f: 31:39:01:ac:a4:6b:87:d4:1d:43:20:ee:54:63:d8: 14:ff:91:1f:96:03:9e:7f:5e:45:0d:dc:d9:33:7f: a8:6e:8b:1a:9e:31:c2:93:70:7e:98:83:77:e4:be: 47:72:eb:ca:41:9c:7c:78:83:5b:13:4c:4a:ef:9b: b5:4d:e3:82:10:93:0a:c9:45:a7:d6:4f:6d:df:2f: db:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:AE:66:78:E5:9F:BB:99:3A:E7:4B:CB:92:43:3C:7A:8B:16:D8:48 X509v3 Authority Key Identifier: keyid:DA:D7:8C:AC:36:D1:43:F1:74:AB:E1:12:D4:95:ED:5A:06:EC:A7:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190753/8EF24A125B6D11EEBC796325C4F9AE02/2teMrDbRQ_F0q-ES1JXtWgbsp0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2teMrDbRQ_F0q-ES1JXtWgbsp0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190753/8EF24A125B6D11EEBC796325C4F9AE02/DAB789C65B6D11EEA95BF025C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.242.0/23 IPv6: 2401:4020::/32 Signature Algorithm: sha256WithRSAEncryption 77:63:65:85:77:c8:cf:80:3c:df:d1:7e:3d:99:7b:db:f3:56: 11:61:71:2a:2a:ac:a5:6d:59:79:72:1c:73:74:c4:2d:7d:68: a1:43:34:27:f7:aa:cc:60:9c:99:e0:4e:f1:41:f7:f2:db:28: cf:42:0c:55:ba:17:7d:f4:a2:55:05:2b:85:e9:87:ce:84:fc: 06:f3:27:68:0e:c3:7d:01:d1:8a:47:b3:1a:61:c7:00:fd:60: 9a:cc:5c:21:9e:7b:e2:43:4a:0e:42:4d:51:34:68:a2:f7:43: 47:ca:93:c7:b6:55:59:79:0c:47:11:4c:72:a7:e1:ea:90:b1: 2d:fc:e6:30:29:af:d6:f3:93:c4:a1:5f:a3:30:02:06:c5:3e: 4d:7f:08:c6:6f:62:7b:4a:d5:a5:f1:f9:09:93:8b:de:b7:4e: 0c:34:92:04:6a:58:ab:2f:9d:69:d1:45:37:47:39:bd:b7:ee: e4:c0:48:d3:58:2d:70:ad:c1:3b:d7:7e:ed:90:54:1f:0a:d6: 55:99:2c:c0:fb:ea:b4:84:47:7b:4f:96:50:63:54:0b:e2:72: 70:9c:52:45:44:3b:07:23:b6:b9:56:82:77:0f:14:69:8d:35: 3a:3a:a7:7f:05:e6:76:69:c2:0b:28:50:59:9c:49:03:e0:1a: 23:5b:bb:e9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTA3NTMxMTAvBgNVBAUTKERBRDc4Q0FDMzZEMTQzRjE3NEFCRTExMkQ0OTVFRDVB MDZFQ0E3NDAwHhcNMjUxMTIxMDE0OTE1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFmYzUxYi1iMTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuNjMGjrJ1ugzRDiMFqoITTkQL481MwdINoUqhhHkquB9McCZHdYO2wQnQ9g B16JcyZK3lIrfhygkhlKvCVBC20qMGzLE+fXJYb2iJi4Suu2CuFr7nLvdP4h69lP dYq+pe6QOecgNgH9J3nmf0bifQdJ3PSx9RxcDPFze176r4ygzRlf3wQLaeVmdtFe bBXLrEEaW1QSPlQjhg4hp/ut9ByrD/OPX+e9WfFuMf91LXENQA8xOQGspGuH1B1D IO5UY9gU/5EflgOef15FDdzZM3+obosanjHCk3B+mIN35L5HcuvKQZx8eINbE0xK 75u1TeOCEJMKyUWn1k9t3y/biQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKquZnjl n7uZOudLy5JDPHqLFthIMB8GA1UdIwQYMBaAFNrXjKw20UPxdKvhEtSV7VoG7KdA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDc1My84RUYyNEExMjVC NkQxMUVFQkM3OTYzMjVDNEY5QUUwMi8ydGVNckRiUlFfRjBxLUVTMUpYdFdnYnNw MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ0ZU1yRGJSUV9GMHEtRVMxSlh0V2dic3AwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTA3NTMvOEVGMjRBMTI1QjZEMTFFRUJDNzk2MzI1QzRGOUFFMDIvREFCNzg5QzY1 QjZEMTFFRUE5NUJGMDI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFny/IwDQQCAAIwBwMFACQBQCAwDQYJKoZIhvcNAQELBQAD ggEBAHdjZYV3yM+APN/Rfj2Ze9vzVhFhcSoqrKVtWXlyHHN0xC19aKFDNCf3qsxg nJngTvFB9/LbKM9CDFW6F330olUFK4Xph86E/AbzJ2gOw30B0YpHsxphxwD9YJrM XCGee+JDSg5CTVE0aKL3Q0fKk8e2VVl5DEcRTHKn4eqQsS385jApr9bzk8ShX6Mw AgbFPk1/CMZvYntK1aXx+QmTi963Tgw0kgRqWKsvnWnRRTdHOb237uTASNNYLXCt wTvXfu2QVB8K1lWZLMD76rSER3tPllBjVAvicnCcUkVEOwcjtrlWgncPFGmNNTo6 p38F5nZpwgsoUFmcSQPgGiNbu+k= -----END CERTIFICATE-----Generated at Sat Dec 6 22:10:14 2025 by rpki-client