This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa File: 7A40B730E2D811EBAB97665DC4F9AE02.roa (raw, json) Hash identifier: UqT90GWN6u938kElL1el3jkr3x6UYEFJjNq4ar+p04k= Subject key identifier: CF:14:90:22:39:71:2F:1A:C3:D4:B1:7C:AA:5F:4E:08:D1:47:A0:70 Certificate issuer: /CN=A919EB4E/serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Certificate serial: 0F20 Authority key identifier: 1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa Signing time: Tue 30 Dec 2025 18:14:33 +0000 ROA not before: Tue 30 Dec 2025 18:14:33 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 59238 IP address blocks: 103.253.132.0/23 maxlen: 24 2400:c540::/32 maxlen: 32 2400:c540::/47 maxlen: 48 2400:c540:2::/47 maxlen: 47 2400:c540:2::/48 maxlen: 48 2400:c540:4::/48 maxlen: 48 2400:c540:52::/48 maxlen: 48 2400:c540:53::/48 maxlen: 48 2400:c540:65::/48 maxlen: 48 2400:c540:80::/48 maxlen: 48 2400:c540:ba::/48 maxlen: 48 2400:c540:100::/48 maxlen: 48 2400:c540:110::/48 maxlen: 48 2400:c540:1cc::/48 maxlen: 48 2400:c540:200::/48 maxlen: 48 2400:c540:c000::/36 maxlen: 36 2400:c540:c036::/48 maxlen: 48 2400:c540:c276::/48 maxlen: 48 2400:c540:c344::/48 maxlen: 48 2400:c540:c392::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3872 (0xf20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EB4E, serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Validity Not Before: Dec 30 18:14:33 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69541689-bde6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:5e:09:c0:51:25:df:8b:b6:6b:2e:86:5a:68: 45:d0:a5:8a:c3:33:80:81:53:cf:5f:6b:59:ac:bd: f9:11:8e:17:53:6f:22:ab:de:92:0e:f6:7e:2f:df: a6:29:a3:28:a8:8d:23:4b:c8:7d:a4:d1:8c:68:7f: f7:d0:80:99:c6:3b:ca:f4:c0:53:68:38:fd:7c:d1: e7:ad:1a:d5:99:4b:64:79:c5:bc:64:e3:fa:16:93: 70:08:c7:4e:82:49:69:bc:87:05:4d:2f:f9:de:38: f4:e8:50:57:bd:16:73:e9:a8:5e:20:9d:dc:32:35: 02:d4:b5:b0:94:fa:87:88:d7:4a:db:d2:e4:14:7b: 09:a1:0d:a2:13:b0:ca:6f:cb:45:14:ef:4d:4f:04: 8e:54:79:b7:2e:f1:3c:1e:8f:ff:9a:12:e3:09:13: 65:01:ed:fa:e2:ae:01:a8:bb:00:a3:97:93:d4:b4: 4e:90:bc:52:c0:d2:c3:63:94:4c:08:0d:ad:d8:0f: f4:fa:7d:7e:f2:38:14:e3:19:2f:5b:69:cd:aa:4b: 02:e4:50:6e:08:c5:48:5d:30:35:44:43:6e:a6:ff: 7b:64:f0:8e:6a:9f:54:99:20:aa:af:2a:a3:4c:45: 39:45:8c:23:1c:97:c4:1b:fb:7d:58:19:81:28:32: 4f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:14:90:22:39:71:2F:1A:C3:D4:B1:7C:AA:5F:4E:08:D1:47:A0:70 X509v3 Authority Key Identifier: keyid:1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.253.132.0/23 IPv6: 2400:c540::/32 Signature Algorithm: sha256WithRSAEncryption 24:7e:bf:da:78:2f:4a:07:e7:22:98:4d:4a:4d:c7:56:b8:2b: 43:49:aa:01:ca:d8:ea:35:7f:3d:7c:9a:84:d0:57:ba:bd:f4: c2:44:f1:7b:4c:7a:fb:d4:65:6c:32:b7:7c:f2:8b:fa:3e:02: 1a:7f:5c:5f:1e:f0:30:10:f1:f8:c2:4e:66:c5:ac:22:01:6f: a0:a6:8d:45:ba:68:ef:a0:b0:60:63:13:0e:d9:1b:ac:5c:bf: 2f:55:33:83:77:92:6e:84:12:da:f4:8f:a9:b7:f6:59:3f:c9: 65:26:50:12:5b:62:a1:32:52:b3:0e:58:3b:e8:fc:b7:53:40: 27:4c:80:bb:f6:75:7d:6a:b6:2a:64:55:3c:01:80:ad:a5:d4: f1:2c:8e:62:c3:45:47:a8:ae:89:b1:26:1c:61:60:a8:46:72: 77:c0:21:f9:f9:27:c1:76:88:d0:fa:a5:03:ac:b8:87:97:8e: 4b:09:99:1c:30:dc:83:83:dc:9c:2e:1a:31:9e:31:88:e4:e9: 7d:32:cd:48:f6:d0:ea:b0:c7:85:98:33:11:e2:23:be:9a:b6: bd:96:e5:ae:fc:8c:e2:b7:5e:7c:88:72:fb:bb:e9:b2:ad:78: f0:12:44:96:3c:4a:ad:8f:81:c7:e1:ac:0e:3f:74:01:ed:78: b6:38:0e:f8 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OUVCNEUxMTAvBgNVBAUTKDFEMzY5NEVGMTQyMUM5MTg1NEE4ODdBQ0E5NjEwQkM1 NjBBRTcwODQwHhcNMjUxMjMwMTgxNDMzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU0MTY4OS1iZGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlF4JwFEl34u2ay6GWmhF0KWKwzOAgVPPX2tZrL35EY4XU28iq96SDvZ+L9+m KaMoqI0jS8h9pNGMaH/30ICZxjvK9MBTaDj9fNHnrRrVmUtkecW8ZOP6FpNwCMdO gklpvIcFTS/53jj06FBXvRZz6aheIJ3cMjUC1LWwlPqHiNdK29LkFHsJoQ2iE7DK b8tFFO9NTwSOVHm3LvE8Ho//mhLjCRNlAe364q4BqLsAo5eT1LROkLxSwNLDY5RM CA2t2A/0+n1+8jgU4xkvW2nNqksC5FBuCMVIXTA1RENupv97ZPCOap9UmSCqryqj TEU5RYwjHJfEG/t9WBmBKDJPfwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFM8UkCI5 cS8aw9SxfKpfTgjRR6BwMB8GA1UdIwQYMBaAFB02lO8UIckYVKiHrKlhC8VgrnCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUI0RS9BMjg0M0MwODk3 MTcxMUU5ODVGQ0FCMTRDNEY5QUUwMi9IVGFVN3hRaHlSaFVxSWVzcVdFTHhXQ3Vj SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hUYVU3eFFoeVJoVXFJZXNxV0VMeFdDdWNJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVCNEUvQTI4NDNDMDg5NzE3MTFFOTg1RkNBQjE0QzRGOUFFMDIvN0E0MEI3MzBF MkQ4MTFFQkFCOTc2NjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn/YQwDQQCAAIwBwMFACQAxUAwDQYJKoZIhvcNAQELBQAD ggEBACR+v9p4L0oH5yKYTUpNx1a4K0NJqgHK2Oo1fz18moTQV7q99MJE8XtMevvU ZWwyt3zyi/o+Ahp/XF8e8DAQ8fjCTmbFrCIBb6CmjUW6aO+gsGBjEw7ZG6xcvy9V M4N3km6EEtr0j6m39lk/yWUmUBJbYqEyUrMOWDvo/LdTQCdMgLv2dX1qtipkVTwB gK2l1PEsjmLDRUeoromxJhxhYKhGcnfAIfn5J8F2iND6pQOsuIeXjksJmRww3IOD 3JwuGjGeMYjk6X0yzUj20Oqwx4WYMxHiI76atr2W5a78jOK3XnyIcvu76bKtePAS RJY8Sq2PgcfhrA4/dAHteLY4Dvg= -----END CERTIFICATE-----Generated at Sun Jan 25 07:50:46 2026 by rpki-client