This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/3D40FCB88F8711F09B34137DC4F9AE02.roa File: 3D40FCB88F8711F09B34137DC4F9AE02.roa (raw, json) Hash identifier: q/QVu9DMFaSzQbJqSrX2Ep2nR7Y5rIPykBBb3kMELnI= Subject key identifier: DA:62:CE:E4:62:E7:CB:8E:37:6D:54:3C:CE:F1:26:9D:A4:B6:1A:A0 Certificate issuer: /CN=A9193045/serialNumber=66E85461BB352A498DB55703646305CA37E74FB4 Certificate serial: 03E5 Authority key identifier: 66:E8:54:61:BB:35:2A:49:8D:B5:57:03:64:63:05:CA:37:E7:4F:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/3D40FCB88F8711F09B34137DC4F9AE02.roa Signing time: Fri 19 Sep 2025 01:07:43 +0000 ROA not before: Fri 19 Sep 2025 01:07:43 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 131995 IP address blocks: 103.29.152.0/22 maxlen: 22 2401:af00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.crl rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:58:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 997 (0x3e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193045, serialNumber=66E85461BB352A498DB55703646305CA37E74FB4 Validity Not Before: Sep 19 01:07:43 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ccacdf-9178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:88:79:81:28:3c:08:07:f8:4b:40:c9:f5:6d: de:ca:1e:29:59:29:4a:80:9e:21:b3:c6:6a:86:a6: 70:eb:e5:7a:0e:0a:11:9a:5a:6c:db:7c:61:43:f4: 27:f0:76:fc:b2:81:6d:8b:22:ed:ad:68:74:84:16: f4:2d:26:aa:f6:e7:03:69:43:91:cb:96:c8:9c:88: 49:77:2e:80:e7:20:43:90:0d:b8:ba:50:af:d6:28: 0d:da:30:8e:fd:75:a0:29:36:05:aa:4a:a0:a6:2a: 27:7d:75:3c:27:54:d7:21:ba:86:52:50:36:3d:97: 60:fd:a1:a4:41:19:de:af:96:c1:d2:aa:8b:d4:50: d8:58:84:7d:54:52:4c:36:85:59:f7:c2:dd:ba:ef: 32:6a:51:55:5a:b0:75:8f:c8:a5:01:1c:96:99:78: c3:9e:ad:7e:97:69:e6:93:39:bd:b6:58:1e:61:0f: 9f:24:a8:19:61:5e:87:31:a9:4d:d2:c5:13:15:07: d1:98:40:57:10:57:4e:9a:56:ee:6b:d6:1c:9d:19: fd:6e:9d:13:5b:1e:eb:06:ff:04:cb:59:8b:f4:ed: 55:3d:bf:f5:5c:f3:a6:49:30:fa:8d:43:c0:1d:4f: ea:57:44:ef:16:48:5c:3f:ac:43:42:4e:1c:6c:ed: 4a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:62:CE:E4:62:E7:CB:8E:37:6D:54:3C:CE:F1:26:9D:A4:B6:1A:A0 X509v3 Authority Key Identifier: keyid:66:E8:54:61:BB:35:2A:49:8D:B5:57:03:64:63:05:CA:37:E7:4F:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/3D40FCB88F8711F09B34137DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.152.0/22 IPv6: 2401:af00::/32 Signature Algorithm: sha256WithRSAEncryption b8:99:43:50:85:dd:32:44:26:3c:f2:df:d8:f8:23:ce:7e:da: ae:95:6c:c7:75:2f:17:f6:e4:90:46:ab:68:10:cc:35:ca:71: 8c:ea:80:3e:ea:0c:01:b1:b6:05:85:89:0d:90:a3:dc:51:2a: 14:96:1c:8d:c3:a2:6e:7f:c8:34:55:28:7c:33:64:78:4d:be: 75:b6:49:3b:3d:32:28:49:7b:06:b0:ac:22:d2:31:4f:86:f1: ad:76:d0:14:45:25:12:87:0a:6d:03:5d:72:a9:19:33:25:b8: c6:8f:52:c5:4b:7a:bc:04:f8:c5:25:18:0d:80:45:e8:c7:27: 73:fa:88:41:94:fc:22:d6:f2:11:f2:86:2c:3e:ea:7c:51:44: ba:47:eb:88:f2:d2:bb:6b:a2:8c:8a:39:84:52:bd:67:4e:cf: 1f:f8:8e:b2:67:a2:cf:97:cd:44:42:ad:52:4d:a9:0c:dc:c3: 69:6a:63:ed:fb:d2:e7:42:e0:13:68:54:6e:30:ba:59:e3:8e: 70:2e:f3:32:62:c1:28:70:81:78:2c:84:30:ba:fc:73:65:e8: 66:b2:e5:7e:ff:7a:51:94:9d:94:ec:e1:0a:68:bf:e2:45:85: e8:cc:10:1f:7f:dc:bd:5a:52:33:c1:bf:fe:bd:f1:55:4b:64: 72:d5:bd:9a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwNDUxMTAvBgNVBAUTKDY2RTg1NDYxQkIzNTJBNDk4REI1NTcwMzY0NjMwNUNB MzdFNzRGQjQwHhcNMjUwOTE5MDEwNzQzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjYWNkZi05MTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqYh5gSg8CAf4S0DJ9W3eyh4pWSlKgJ4hs8ZqhqZw6+V6DgoRmlps23xhQ/Qn 8Hb8soFtiyLtrWh0hBb0LSaq9ucDaUORy5bInIhJdy6A5yBDkA24ulCv1igN2jCO /XWgKTYFqkqgpionfXU8J1TXIbqGUlA2PZdg/aGkQRner5bB0qqL1FDYWIR9VFJM NoVZ98Lduu8yalFVWrB1j8ilARyWmXjDnq1+l2nmkzm9tlgeYQ+fJKgZYV6HMalN 0sUTFQfRmEBXEFdOmlbua9YcnRn9bp0TWx7rBv8Ey1mL9O1VPb/1XPOmSTD6jUPA HU/qV0TvFkhcP6xDQk4cbO1KzQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNpizuRi 58uON21UPM7xJp2kthqgMB8GA1UdIwQYMBaAFGboVGG7NSpJjbVXA2RjBco350+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzA0NS9CRkFEQzYxMDlG MjkxMUVDOUMyRDY3ODVDNEY5QUUwMi9adWhVWWJzMUtrbU50VmNEWkdNRnlqZm5U N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1aFVZYnMxS2ttTnRWY0RaR01GeWpmblQ3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMwNDUvQkZBREM2MTA5RjI5MTFFQzlDMkQ2Nzg1QzRGOUFFMDIvM0Q0MEZDQjg4 Rjg3MTFGMDlCMzQxMzdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnHZgwDQQCAAIwBwMFACQBrwAwDQYJKoZIhvcNAQELBQAD ggEBALiZQ1CF3TJEJjzy39j4I85+2q6VbMd1Lxf25JBGq2gQzDXKcYzqgD7qDAGx tgWFiQ2Qo9xRKhSWHI3Dom5/yDRVKHwzZHhNvnW2STs9MihJewawrCLSMU+G8a12 0BRFJRKHCm0DXXKpGTMluMaPUsVLerwE+MUlGA2ARejHJ3P6iEGU/CLW8hHyhiw+ 6nxRRLpH64jy0rtrooyKOYRSvWdOzx/4jrJnos+XzURCrVJNqQzcw2lqY+370udC 4BNoVG4wulnjjnAu8zJiwShwgXgshDC6/HNl6Gay5X7/elGUnZTs4Qpov+JFhejM EB9/3L1aUjPBv/698VVLZHLVvZo= -----END CERTIFICATE-----Generated at Sat Dec 6 16:29:23 2025 by rpki-client