This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3F0/F3C2A9222B8A11EEADD2210CC4F9AE02/37D03D8CC48111F0BA91643FC4F9AE02.roa File: 37D03D8CC48111F0BA91643FC4F9AE02.roa (raw, json) Hash identifier: RetyQblwcd4ST+I6H1q28mp6Zq67zv2ACfTggQIeETs= Subject key identifier: 7E:C1:A3:7E:3C:C1:D4:D0:FE:1A:0B:75:0F:92:3B:C2:8F:30:C4:1F Certificate issuer: /CN=A919A3F0/serialNumber=FE05EFB70125D520476F63BC609F554DC49AC59C Certificate serial: 01CF Authority key identifier: FE:05:EF:B7:01:25:D5:20:47:6F:63:BC:60:9F:55:4D:C4:9A:C5:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_gXvtwEl1SBHb2O8YJ9VTcSaxZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3F0/F3C2A9222B8A11EEADD2210CC4F9AE02/37D03D8CC48111F0BA91643FC4F9AE02.roa Signing time: Wed 03 Dec 2025 02:02:14 +0000 ROA not before: Wed 03 Dec 2025 02:02:14 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 0 IP address blocks: 114.142.136.0/21 maxlen: 24 121.91.104.0/22 maxlen: 22 121.91.104.0/24 maxlen: 24 121.91.105.0/24 maxlen: 24 121.91.106.0/24 maxlen: 24 121.91.107.0/24 maxlen: 24 121.91.108.0/22 maxlen: 22 121.91.108.0/24 maxlen: 24 121.91.109.0/24 maxlen: 24 121.91.110.0/24 maxlen: 24 121.91.111.0/24 maxlen: 24 124.197.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3F0/F3C2A9222B8A11EEADD2210CC4F9AE02/_gXvtwEl1SBHb2O8YJ9VTcSaxZw.crl rsync://rpki.apnic.net/member_repository/A919A3F0/F3C2A9222B8A11EEADD2210CC4F9AE02/_gXvtwEl1SBHb2O8YJ9VTcSaxZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_gXvtwEl1SBHb2O8YJ9VTcSaxZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:17:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3F0, serialNumber=FE05EFB70125D520476F63BC609F554DC49AC59C Validity Not Before: Dec 3 02:02:14 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=692f9a25-bbeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b6:63:81:3a:ac:b0:a4:4f:1d:60:3a:9b:1d: 1a:05:43:2c:67:a5:d0:48:2d:9d:89:d1:82:85:ca: 92:c1:1e:37:26:58:13:00:35:2a:9e:17:34:93:91: db:7b:df:db:58:12:95:0a:4c:2f:35:e6:82:dd:c3: e3:1a:05:1d:86:f3:09:9b:ef:c0:2a:25:28:a0:de: 68:83:a0:88:79:f5:3d:26:ef:4e:da:eb:92:ea:62: a2:cb:c1:12:26:ae:68:7a:51:4b:04:aa:75:3b:77: 4a:4b:c6:c3:f1:c8:e6:67:f8:d0:69:84:64:2d:b5: 46:8f:ef:e8:82:5e:65:89:d9:93:b0:8c:e0:5f:70: 36:5e:3c:13:79:25:72:d8:9d:1f:3c:a5:86:38:d0: ce:54:97:dc:22:45:d3:b1:62:dc:3f:99:49:01:0e: f4:92:f2:a9:5a:1d:ae:87:50:cf:b7:ca:9a:c5:a6: 5f:80:90:ab:65:8e:32:22:af:8c:b6:1b:1e:79:8c: ad:45:f1:24:f4:fb:97:29:61:cf:9d:b8:ad:5c:92: a2:ff:a1:84:00:8f:bb:b2:0b:0b:d4:42:79:ec:8a: 1f:8a:76:91:92:42:03:c5:80:8d:73:d9:0f:3f:27: 45:04:41:0f:c0:be:4e:70:46:a3:9b:35:fd:ba:8b: cf:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:C1:A3:7E:3C:C1:D4:D0:FE:1A:0B:75:0F:92:3B:C2:8F:30:C4:1F X509v3 Authority Key Identifier: keyid:FE:05:EF:B7:01:25:D5:20:47:6F:63:BC:60:9F:55:4D:C4:9A:C5:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3F0/F3C2A9222B8A11EEADD2210CC4F9AE02/_gXvtwEl1SBHb2O8YJ9VTcSaxZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_gXvtwEl1SBHb2O8YJ9VTcSaxZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3F0/F3C2A9222B8A11EEADD2210CC4F9AE02/37D03D8CC48111F0BA91643FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.142.136.0/21 121.91.104.0/21 124.197.56.0/21 Signature Algorithm: sha256WithRSAEncryption 55:f1:4d:b4:97:21:5e:99:57:26:56:b7:3d:64:a9:f2:84:f8: ec:ee:82:a5:29:9c:db:5f:c0:b4:f7:b5:12:ff:09:d8:a0:ed: cf:ef:08:db:5c:d5:88:b4:d5:c2:9b:4f:eb:ff:d1:a2:5d:e8: f9:2f:4a:ed:5a:11:5c:22:f2:77:7c:74:d5:af:24:51:4c:78: fb:5a:9b:77:d1:2e:33:a6:d8:d7:30:17:26:8b:6a:2e:b3:60: 4e:8f:6f:c1:3d:f7:b0:44:74:ec:da:7d:fc:1c:85:42:28:7a: 09:89:67:85:2b:1b:2c:4f:e3:77:da:63:3b:33:19:f0:0c:53: ee:71:37:7c:ab:0b:cd:c7:7a:20:e0:1b:9c:17:fa:cf:43:ac: 1c:2e:85:c4:33:c5:31:76:ad:01:4c:ff:c0:24:18:53:b3:3e: 49:00:7a:24:0b:4c:ff:d3:ba:9e:5a:77:d7:72:e9:89:15:4c: 6e:37:06:10:36:0a:1f:71:21:aa:ef:8f:7b:d9:41:ce:f5:1c: 0c:8c:17:c4:89:5e:44:a0:01:6a:94:fe:bb:ac:1a:9f:66:8c: 32:72:6e:37:28:0d:3f:1e:17:10:a1:81:b0:1f:07:b4:71:41: 40:39:f4:31:be:5b:7e:c8:fc:66:54:e6:f6:9a:0f:67:df:a6: 87:1c:45:9f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzRjAxMTAvBgNVBAUTKEZFMDVFRkI3MDEyNUQ1MjA0NzZGNjNCQzYwOUY1NTRE QzQ5QUM1OUMwHhcNMjUxMjAzMDIwMjE0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmOWEyNS1iYmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7ZjgTqssKRPHWA6mx0aBUMsZ6XQSC2didGChcqSwR43JlgTADUqnhc0k5Hb e9/bWBKVCkwvNeaC3cPjGgUdhvMJm+/AKiUooN5og6CIefU9Ju9O2uuS6mKiy8ES Jq5oelFLBKp1O3dKS8bD8cjmZ/jQaYRkLbVGj+/ogl5lidmTsIzgX3A2XjwTeSVy 2J0fPKWGONDOVJfcIkXTsWLcP5lJAQ70kvKpWh2uh1DPt8qaxaZfgJCrZY4yIq+M thseeYytRfEk9PuXKWHPnbitXJKi/6GEAI+7sgsL1EJ57IofinaRkkIDxYCNc9kP PydFBEEPwL5OcEajmzX9uovPMwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFH7Bo348 wdTQ/hoLdQ+SO8KPMMQfMB8GA1UdIwQYMBaAFP4F77cBJdUgR29jvGCfVU3EmsWc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNGMC9GM0MyQTkyMjJC OEExMUVFQUREMjIxMENDNEY5QUUwMi9fZ1h2dHdFbDFTQkhiMk84WUo5VlRjU2F4 WncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19nWHZ0d0VsMVNCSGIyTzhZSjlWVGNTYXhady5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUEzRjAvRjNDMkE5MjIyQjhBMTFFRUFERDIyMTBDQzRGOUFFMDIvMzdEMDNEOEND NDgxMTFGMEJBOTE2NDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBANyjogDBAN5W2gDBAN8xTgwDQYJKoZIhvcNAQELBQADggEB AFXxTbSXIV6ZVyZWtz1kqfKE+OzugqUpnNtfwLT3tRL/Cdig7c/vCNtc1Yi01cKb T+v/0aJd6PkvSu1aEVwi8nd8dNWvJFFMePtam3fRLjOm2NcwFyaLai6zYE6Pb8E9 97BEdOzaffwchUIoegmJZ4UrGyxP43faYzszGfAMU+5xN3yrC83HeiDgG5wX+s9D rBwuhcQzxTF2rQFM/8AkGFOzPkkAeiQLTP/Tup5ad9dy6YkVTG43BhA2Ch9xIarv j3vZQc71HAyMF8SJXkSgAWqU/rusGp9mjDJybjcoDT8eFxChgbAfB7RxQUA59DG+ W37I/GZU5vaaD2ffpoccRZ8= -----END CERTIFICATE-----Generated at Sat Dec 6 12:39:14 2025 by rpki-client