This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/BDECB94CEC4F11EEB0B9B467C4F9AE02.roa File: BDECB94CEC4F11EEB0B9B467C4F9AE02.roa (raw, json) Hash identifier: uEBZBpPU5RsuDU0jiQ8sjI+ENEYJnx75tY0iKW3OWuQ= Subject key identifier: 61:53:54:B6:4B:82:15:C9:33:B5:A2:5D:B0:A3:0B:CD:1A:A7:70:AC Certificate issuer: /CN=A919A777/serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Certificate serial: 01A0 Authority key identifier: 64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/BDECB94CEC4F11EEB0B9B467C4F9AE02.roa Signing time: Tue 13 Jan 2026 21:25:02 +0000 ROA not before: Tue 13 Jan 2026 21:25:02 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134835 IP address blocks: 45.120.156.0/24 maxlen: 24 45.120.157.0/24 maxlen: 24 45.120.159.0/24 maxlen: 24 45.125.164.0/24 maxlen: 24 45.125.165.0/24 maxlen: 24 45.125.166.0/24 maxlen: 24 45.125.167.0/24 maxlen: 24 103.56.216.0/24 maxlen: 24 103.56.217.0/24 maxlen: 24 103.56.218.0/24 maxlen: 24 103.56.219.0/24 maxlen: 24 103.194.41.0/24 maxlen: 24 103.194.42.0/24 maxlen: 24 103.194.43.0/24 maxlen: 24 103.200.96.0/24 maxlen: 24 103.200.97.0/24 maxlen: 24 103.204.172.0/24 maxlen: 24 103.204.173.0/24 maxlen: 24 103.204.174.0/24 maxlen: 24 103.204.175.0/24 maxlen: 24 122.128.96.0/24 maxlen: 24 122.128.97.0/24 maxlen: 24 122.128.99.0/24 maxlen: 24 2403:ad80:60::/45 maxlen: 45 2403:ad80:80::/45 maxlen: 45 2403:ad80:88::/45 maxlen: 45 2403:ad80:98::/45 maxlen: 45 2403:ad80:a0::/45 maxlen: 45 2403:ad80:3c00::/38 maxlen: 38 2403:ad80:4c00::/38 maxlen: 38 2403:ad80:5000::/38 maxlen: 38 2403:ad80:8100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A777, serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Validity Not Before: Jan 13 21:25:02 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6966b82e-0644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ae:90:41:98:1b:c4:76:fc:fc:a8:89:dd:1f: 93:78:ee:59:bc:4d:21:54:f5:54:9c:4d:fd:99:e5: bf:28:28:3f:8a:46:32:06:95:8b:38:67:56:23:31: 66:fb:a8:dc:6b:d2:86:65:28:3e:5e:7d:5e:3f:d8: 96:cf:cb:e6:9d:ad:b4:74:70:31:d3:04:fd:71:2a: f1:b2:b6:47:e1:ad:7c:92:80:e7:9e:47:a8:a6:ba: 2f:d0:31:68:c5:11:68:37:d6:85:fe:b9:d3:b2:e3: 00:a7:fe:8d:65:28:52:d6:f2:05:76:eb:97:a2:aa: a5:b0:6b:e2:4a:08:1a:38:49:13:fa:f6:45:fa:e8: 1a:bd:e1:f9:64:db:be:8e:09:52:de:35:a5:98:76: 12:1d:1f:8d:b0:7e:22:ca:a6:c2:1c:46:8b:46:ae: 88:34:35:4b:8d:e7:e3:4f:a3:d3:ab:9c:27:47:be: f3:4d:71:ef:84:d8:70:ac:43:65:58:26:c6:87:bc: 2c:1c:9d:3a:9a:92:fe:ea:de:aa:94:8b:6a:a1:84: 1e:1b:a2:8b:38:0e:c3:f1:4d:14:d3:8f:ff:51:7a: 00:80:4e:91:d1:1c:36:bf:78:25:28:f9:3d:af:0b: 4d:28:43:8e:f9:f8:81:79:e5:f4:2c:ce:d9:f6:5f: de:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:53:54:B6:4B:82:15:C9:33:B5:A2:5D:B0:A3:0B:CD:1A:A7:70:AC X509v3 Authority Key Identifier: keyid:64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/BDECB94CEC4F11EEB0B9B467C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.120.156.0/23 45.120.159.0/24 45.125.164.0/22 103.56.216.0/22 103.194.41.0-103.194.43.255 103.200.96.0/23 103.204.172.0/22 122.128.96.0/23 122.128.99.0/24 IPv6: 2403:ad80:60::/45 2403:ad80:80::/44 2403:ad80:98::-2403:ad80:a7:ffff:ffff:ffff:ffff:ffff 2403:ad80:3c00::/38 2403:ad80:4c00::-2403:ad80:53ff:ffff:ffff:ffff:ffff:ffff 2403:ad80:8100::/40 Signature Algorithm: sha256WithRSAEncryption 6d:a3:3d:4f:6c:62:e2:1c:7f:02:39:bb:8f:ba:73:62:59:4c: d9:43:45:39:d7:ad:4c:9a:f6:10:05:c5:a8:06:ed:17:bb:24: 14:77:c6:5f:ae:0d:ea:85:11:60:e2:d9:66:cf:98:4a:1c:a7: d2:f1:c4:2e:fb:94:84:4e:f1:fa:dd:f7:5d:05:d5:e9:94:65: 00:aa:31:40:52:8b:22:a3:f8:ff:f1:ec:42:42:67:64:76:e7: d8:14:a8:58:3b:f3:7a:58:a3:09:fa:57:7a:6f:19:4c:1a:43: f2:62:5e:ee:bd:ba:3a:47:95:af:ab:31:ed:0e:68:78:bf:29: 40:f3:5a:c7:1e:11:33:f7:02:fa:4c:55:ba:7e:f2:d7:78:52: 4c:09:7f:90:f6:dd:1b:ef:65:8b:4d:0d:db:be:cf:4d:1a:3a: 6e:c6:33:1d:c9:8d:8f:fe:ac:e8:8a:77:75:cb:ab:71:30:6c: 4a:a7:6d:5d:36:bb:8f:c4:c3:66:3a:4b:b1:eb:e1:be:4d:40: d6:91:51:04:4a:a6:6a:5d:5f:ae:e6:f1:a7:59:c3:0f:d9:15: 96:5b:70:c7:af:d8:48:df:c0:dd:81:cf:b2:4b:ac:53:79:97: 14:64:49:09:38:ff:18:0a:c4:19:01:a4:1b:a4:47:08:32:12: 94:56:42:d2 -----BEGIN CERTIFICATE----- MIIF/DCCBOSgAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3NzcxMTAvBgNVBAUTKDY0N0QwOTI3REIzQjE3OEUyRjY1NEEzMjY4NTU3RkU1 QjVENjcyOUMwHhcNMjYwMTEzMjEyNTAyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY2YjgyZS0wNjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxa6QQZgbxHb8/KiJ3R+TeO5ZvE0hVPVUnE39meW/KCg/ikYyBpWLOGdWIzFm +6jca9KGZSg+Xn1eP9iWz8vmna20dHAx0wT9cSrxsrZH4a18koDnnkeoprov0DFo xRFoN9aF/rnTsuMAp/6NZShS1vIFduuXoqqlsGviSggaOEkT+vZF+ugaveH5ZNu+ jglS3jWlmHYSHR+NsH4iyqbCHEaLRq6INDVLjefjT6PTq5wnR77zTXHvhNhwrENl WCbGh7wsHJ06mpL+6t6qlItqoYQeG6KLOA7D8U0U04//UXoAgE6R0Rw2v3glKPk9 rwtNKEOO+fiBeeX0LM7Z9l/eyQIDAQABo4IDIDCCAxwwHQYDVR0OBBYEFGFTVLZL ghXJM7WiXbCjC80ap3CsMB8GA1UdIwQYMBaAFGR9CSfbOxeOL2VKMmhVf+W11nKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTc3Ny8wQkE1NzJCMEVD NEYxMUVFQTFCMzg4NjZDNEY5QUUwMi9aSDBKSjlzN0Y0NHZaVW95YUZWXzViWFdj cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pIMEpKOXM3RjQ0dlpVb3lhRlZfNWJYV2Nwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3NzcvMEJBNTcyQjBFQzRGMTFFRUExQjM4ODY2QzRGOUFFMDIvQkRFQ0I5NENF QzRGMTFFRUIwQjlCNDY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgakGCCsGAQUFBwEHAQH/ BIGZMIGWMEQEAgABMD4DBAEteJwDBAAteJ8DBAItfaQDBAJnONgwDAMEAGfCKQME AmfCKAMEAWfIYAMEAmfMrAMEAXqAYAMEAHqAYzBOBAIAAjBIAwcDJAOtgABgAwcE JAOtgACAMBIDBwMkA62AAJgDBwMkA62AAKADBgIkA62APDAQAwYCJAOtgEwDBgIk A62AUAMGACQDrYCBMA0GCSqGSIb3DQEBCwUAA4IBAQBtoz1PbGLiHH8CObuPunNi WUzZQ0U5161MmvYQBcWoBu0XuyQUd8Zfrg3qhRFg4tlmz5hKHKfS8cQu+5SETvH6 3fddBdXplGUAqjFAUosio/j/8exCQmdkdufYFKhYO/N6WKMJ+ld6bxlMGkPyYl7u vbo6R5WvqzHtDmh4vylA81rHHhEz9wL6TFW6fvLXeFJMCX+Q9t0b72WLTQ3bvs9N GjpuxjMdyY2P/qzoind1y6txMGxKp21dNruPxMNmOkux6+G+TUDWkVEESqZqXV+u 5vGnWcMP2RWWW3DHr9hI38Ddgc+yS6xTeZcUZEkJOP8YCsQZAaQbpEcIMhKUVkLS -----END CERTIFICATE-----Generated at Sun Jan 25 07:49:38 2026 by rpki-client