This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0454DCC4C63A11EAB59CC262C4F9AE02.roa File: 0454DCC4C63A11EAB59CC262C4F9AE02.roa (raw, json) Hash identifier: F/RYd3ytJh5yFgQdyRkxFSJhV52q+D70PP6ta1blkdo= Subject key identifier: 12:46:1B:E7:E3:15:98:1D:5B:54:21:25:69:4A:36:19:52:4B:17:9C Certificate issuer: /CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Certificate serial: 0905 Authority key identifier: 2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0454DCC4C63A11EAB59CC262C4F9AE02.roa Signing time: Tue 06 Jan 2026 19:07:48 +0000 ROA not before: Tue 06 Jan 2026 19:07:48 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 14618 IP address blocks: 202.173.24.0/21 maxlen: 21 202.173.24.0/24 maxlen: 24 202.173.25.0/24 maxlen: 24 202.173.26.0/24 maxlen: 24 202.173.27.0/24 maxlen: 24 202.173.28.0/24 maxlen: 24 202.173.31.0/24 maxlen: 24 Validation: Failed, certificate revoked on Tue 06 Jan 2026 20:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2309 (0x905) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142241, serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Validity Not Before: Jan 6 19:07:48 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=695d5d83-37f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a5:61:b8:57:8a:e1:ee:e4:8a:f8:c7:82:d5: 0b:62:73:be:99:9d:39:27:cd:e6:32:56:63:18:74: 95:9c:ea:03:db:7d:38:b4:c5:99:27:4d:fd:05:ac: b2:6d:e7:60:6f:b0:8e:b3:a9:34:ec:38:86:3a:ae: df:02:56:22:fb:2e:d6:4d:d1:cf:42:ca:23:1e:86: 6f:9f:b4:22:8b:f8:26:9f:00:05:d0:b4:5e:86:4a: 27:ed:d6:86:9e:6e:64:11:c9:3b:38:0c:f9:61:25: 64:10:a6:f1:5d:45:f4:06:7b:1b:b3:a5:f4:d6:b4: 62:d3:07:f1:d7:45:13:a0:79:10:65:a7:21:6b:db: 9f:b7:d1:98:34:51:5c:07:6b:2c:1d:24:46:ed:2b: a5:86:05:e0:8a:95:0d:a1:ef:91:9c:46:9b:56:41: 00:cc:83:30:d6:02:53:65:4e:b8:16:90:f0:1c:6d: 1c:fb:4b:90:d5:9a:9a:e2:4d:e7:31:3a:0d:5e:5c: 5f:26:09:20:78:f9:d6:76:c4:d7:93:8f:fe:e0:8d: 95:fe:85:a9:66:d6:16:a0:44:d5:91:f4:29:4d:08: da:7b:4f:c8:10:15:8a:6e:43:7d:cc:ba:2b:4a:06: f3:7b:bb:6c:f3:9f:48:a7:73:df:c6:fb:12:a6:75: a3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:46:1B:E7:E3:15:98:1D:5B:54:21:25:69:4A:36:19:52:4B:17:9C X509v3 Authority Key Identifier: keyid:2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0454DCC4C63A11EAB59CC262C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.173.24.0/21 Signature Algorithm: sha256WithRSAEncryption 10:72:54:23:73:f9:bd:33:fc:f2:ab:fe:3d:45:78:c6:dc:9a: e1:4e:f2:de:f5:4a:6a:93:4d:45:89:47:a7:cf:31:c6:56:29: 1b:c2:f8:c6:72:f7:38:78:46:69:7a:8d:ef:5b:90:86:71:ab: 80:5d:61:b9:c4:de:58:e9:9a:06:eb:8f:0b:db:06:3c:35:b3: c5:8a:8c:6e:b9:10:2d:04:83:14:53:d6:1f:0b:9b:b0:e4:6c: 93:95:88:ed:13:3e:65:fc:04:f2:4a:63:49:0f:e0:43:ab:ed: 0a:05:f4:7c:1d:25:bc:03:b4:c8:d2:58:5e:3c:45:ba:ee:6a: b7:eb:04:fb:71:88:88:dc:5c:4f:6b:45:8d:74:73:27:e9:3d: ea:05:c1:76:66:7c:23:d8:b6:17:60:44:c8:a4:90:9a:33:ea: 58:b5:3b:1d:1a:9b:e8:d6:88:b5:fd:fb:e5:93:4f:ff:76:63: 4a:bd:0a:19:70:1b:8b:3c:bf:1f:c7:62:b0:a9:5c:a5:91:a5: fc:35:83:c4:8b:f9:d3:d6:b1:d2:72:dc:df:df:45:61:03:51: 7a:32:34:df:ac:de:98:1e:b0:66:36:d3:f7:bf:99:d2:96:17: 5c:d6:8b:86:44:c6:4c:0b:34:7c:30:98:d5:7e:03:ec:25:4d: e8:38:83:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyNDExMTAvBgNVBAUTKDJCNTMwOTFEQzlDQjM4NDQ3NzU4RTYxRDlERUUxNTM1 NDE0MTNFRDAwHhcNMjYwMTA2MTkwNzQ4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVkNWQ4My0zN2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqVhuFeK4e7kivjHgtULYnO+mZ05J83mMlZjGHSVnOoD2304tMWZJ039Bayy bedgb7COs6k07DiGOq7fAlYi+y7WTdHPQsojHoZvn7Qii/gmnwAF0LRehkon7daG nm5kEck7OAz5YSVkEKbxXUX0Bnsbs6X01rRi0wfx10UToHkQZacha9uft9GYNFFc B2ssHSRG7SulhgXgipUNoe+RnEabVkEAzIMw1gJTZU64FpDwHG0c+0uQ1Zqa4k3n MToNXlxfJgkgePnWdsTXk4/+4I2V/oWpZtYWoETVkfQpTQjae0/IEBWKbkN9zLor Sgbze7ts859Ip3PfxvsSpnWjjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBJGG+fj FZgdW1QhJWlKNhlSSxecMB8GA1UdIwQYMBaAFCtTCR3JyzhEd1jmHZ3uFTVBQT7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjI0MS80RjdCOTg2NkM1 RjcxMUVBQkE5RDIwODFDNEY5QUUwMi9LMU1KSGNuTE9FUjNXT1lkbmU0Vk5VRkJQ dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTUpIY25MT0VSM1dPWWRuZTRWTlVGQlB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyNDEvNEY3Qjk4NjZDNUY3MTFFQUJBOUQyMDgxQzRGOUFFMDIvMDQ1NERDQzRD NjNBMTFFQUI1OUNDMjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKrRgwDQYJKoZIhvcNAQELBQADggEBABByVCNz+b0z/PKr /j1FeMbcmuFO8t71SmqTTUWJR6fPMcZWKRvC+MZy9zh4Rml6je9bkIZxq4BdYbnE 3ljpmgbrjwvbBjw1s8WKjG65EC0EgxRT1h8Lm7DkbJOViO0TPmX8BPJKY0kP4EOr 7QoF9HwdJbwDtMjSWF48RbruarfrBPtxiIjcXE9rRY10cyfpPeoFwXZmfCPYthdg RMikkJoz6li1Ox0am+jWiLX9++WTT/92Y0q9ChlwG4s8vx/HYrCpXKWRpfw1g8SL +dPWsdJy3N/fRWEDUXoyNN+s3pgesGY20/e/mdKWF1zWi4ZExkwLNHwwmNV+A+wl Teg4g+Y= -----END CERTIFICATE-----Generated at Tue Feb 3 20:36:11 2026 by rpki-client