This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/ECFCBBA4D8D711EF91AD5538C4F9AE02.roa File: ECFCBBA4D8D711EF91AD5538C4F9AE02.roa (raw, json) Hash identifier: CFBqGrENbSw1XfQ7uC4u+IdtW8NWbBKVAsfQlkJjuvA= Subject key identifier: 43:E8:CD:DB:7B:1C:A7:34:EB:D3:E0:07:3F:4F:1A:A8:ED:C9:95:E5 Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 0485 Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/ECFCBBA4D8D711EF91AD5538C4F9AE02.roa Signing time: Thu 27 Nov 2025 13:50:09 +0000 ROA not before: Thu 27 Nov 2025 13:50:09 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138115 IP address blocks: 202.155.14.0/24 maxlen: 24 202.155.132.0/24 maxlen: 24 202.155.137.0/24 maxlen: 24 202.155.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1157 (0x485) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18, serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Validity Not Before: Nov 27 13:50:09 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69285711-c5a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:40:c8:ac:a8:8d:b7:c9:98:c7:d0:4b:09:52: f5:32:81:92:2f:71:50:7c:fd:03:2d:f9:bb:3d:fc: 57:9b:23:4f:b5:ec:55:f7:91:5e:f7:c7:9d:d4:ee: fe:ec:b8:a5:6f:92:0c:80:c1:d8:0a:21:4d:e8:4f: 93:57:aa:07:56:31:be:76:df:7e:fc:84:e9:48:16: bc:30:d6:d2:72:02:98:8b:d3:93:ee:14:61:be:43: 81:2b:1b:59:38:92:ef:6c:f3:11:1e:89:15:c1:7d: 5f:e3:99:a5:ad:14:62:4a:4c:9d:c0:94:19:72:66: 3d:b5:1d:f6:ab:c8:13:19:d2:74:6e:6c:de:60:99: 00:59:a8:b4:bb:c0:86:81:ca:ad:f7:f8:76:4a:3d: 91:93:52:0d:3a:0b:c3:88:e3:58:17:60:63:3a:f6: 0c:01:8d:c2:2c:4d:b6:fb:34:3b:29:6b:7f:aa:50: 6c:bf:f4:3e:1d:22:fe:2a:b4:b3:4f:66:c3:3e:5f: a9:ba:f1:11:2f:92:7d:5c:15:cf:9f:75:50:f6:fb: c6:23:de:9d:79:95:88:e0:74:96:d6:e8:f0:bb:8e: 8a:be:26:aa:78:a8:c1:a2:55:71:9d:0b:d0:e9:c0: ed:c3:a8:3c:54:3d:49:43:f4:d1:32:c5:be:84:1a: d4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E8:CD:DB:7B:1C:A7:34:EB:D3:E0:07:3F:4F:1A:A8:ED:C9:95:E5 X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/ECFCBBA4D8D711EF91AD5538C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.155.14.0/24 202.155.132.0/24 202.155.137.0/24 202.155.157.0/24 Signature Algorithm: sha256WithRSAEncryption a5:8a:86:ba:67:79:41:e0:d6:c7:e9:3e:c8:9b:0a:db:51:af: 93:c3:39:69:96:01:76:07:40:b6:88:1d:ff:fc:bf:a8:7d:b2: b5:45:af:d7:fe:06:6d:9a:57:b3:34:bf:d2:1e:ad:b1:7c:57: 77:6a:a6:31:be:f2:31:c1:cd:7d:26:f0:a4:54:44:f2:f8:90: 1e:c2:74:74:d0:a5:a4:c8:eb:0c:55:b3:1a:52:a5:f0:29:e7: 11:43:4a:5d:cb:99:a8:86:f2:86:2e:4a:e0:25:b7:f4:da:ce: 61:98:58:95:3f:9c:b0:8a:de:89:e0:23:6c:1f:2b:01:ac:39: b8:b0:ae:ea:69:88:c6:26:f2:75:55:ef:2b:57:0b:4b:87:a8: 9c:ff:4d:c6:bf:0c:96:ac:82:fa:36:14:36:de:cc:6f:31:46: 2f:b3:b9:4b:5b:db:c6:ad:68:60:8f:62:10:17:22:3e:23:04: c3:d5:43:f9:0d:78:62:d1:0a:28:8d:4c:75:37:bb:e7:df:0c: 21:84:41:a9:e0:75:f2:61:f9:23:c5:2a:78:16:70:94:eb:cb: 0c:c2:eb:e8:b3:81:22:a0:7a:11:10:51:87:2e:90:0a:70:fe: 80:af:bc:f8:f7:d6:ad:57:8e:a3:d2:8b:1d:a4:ac:9d:a3:f8: 2d:59:52:eb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUxMTI3MTM1MDA5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI4NTcxMS1jNWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7UDIrKiNt8mYx9BLCVL1MoGSL3FQfP0DLfm7PfxXmyNPtexV95Fe98ed1O7+ 7Lilb5IMgMHYCiFN6E+TV6oHVjG+dt9+/ITpSBa8MNbScgKYi9OT7hRhvkOBKxtZ OJLvbPMRHokVwX1f45mlrRRiSkydwJQZcmY9tR32q8gTGdJ0bmzeYJkAWai0u8CG gcqt9/h2Sj2Rk1INOgvDiONYF2BjOvYMAY3CLE22+zQ7KWt/qlBsv/Q+HSL+KrSz T2bDPl+puvERL5J9XBXPn3VQ9vvGI96deZWI4HSW1ujwu46KviaqeKjBolVxnQvQ 6cDtw6g8VD1JQ/TRMsW+hBrU6wIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFEPozdt7 HKc069PgBz9PGqjtyZXlMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvRUNGQ0JCQTRE OEQ3MTFFRjkxQUQ1NTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBADKmw4DBADKm4QDBADKm4kDBADKm50wDQYJKoZIhvcNAQEL BQADggEBAKWKhrpneUHg1sfpPsibCttRr5PDOWmWAXYHQLaIHf/8v6h9srVFr9f+ Bm2aV7M0v9IerbF8V3dqpjG+8jHBzX0m8KRURPL4kB7CdHTQpaTI6wxVsxpSpfAp 5xFDSl3LmaiG8oYuSuAlt/TazmGYWJU/nLCK3ongI2wfKwGsObiwruppiMYm8nVV 7ytXC0uHqJz/Tca/DJasgvo2FDbezG8xRi+zuUtb28ataGCPYhAXIj4jBMPVQ/kN eGLRCiiNTHU3u+ffDCGEQangdfJh+SPFKngWcJTrywzC6+izgSKgehEQUYcukApw /oCvvPj31q1XjqPSix2krJ2j+C1ZUus= -----END CERTIFICATE-----Generated at Sat Dec 6 18:13:51 2025 by rpki-client