This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/7EF2846AD16911EF9ECCE01FC4F9AE02.roa File: 7EF2846AD16911EF9ECCE01FC4F9AE02.roa (raw, json) Hash identifier: jXWB36+aUwW3gMQ6oCZ4givUDcVN7PCST84/uqy66zs= Subject key identifier: CF:50:58:1E:FD:60:76:A9:1A:9A:4B:2E:C3:94:9F:66:11:79:56:74 Certificate issuer: /CN=A9114EF6/serialNumber=AF461D57A90A335B2FA77A7AAEC16734954923B1 Certificate serial: BC Authority key identifier: AF:46:1D:57:A9:0A:33:5B:2F:A7:7A:7A:AE:C1:67:34:95:49:23:B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r0YdV6kKM1svp3p6rsFnNJVJI7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/7EF2846AD16911EF9ECCE01FC4F9AE02.roa Signing time: Mon 01 Dec 2025 05:02:14 +0000 ROA not before: Mon 01 Dec 2025 05:02:14 +0000 ROA not after: Sat 31 Mar 2029 00:00:00 +0000 asID: 153491 IP address blocks: 161.248.120.0/23 maxlen: 23 161.248.120.0/24 maxlen: 24 161.248.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.crl rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r0YdV6kKM1svp3p6rsFnNJVJI7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114EF6, serialNumber=AF461D57A90A335B2FA77A7AAEC16734954923B1 Validity Not Before: Dec 1 05:02:14 2025 GMT Not After : Mar 31 00:00:00 2029 GMT Subject: CN=692d2156-a549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:8a:42:4b:23:ec:79:11:c6:0e:64:53:a9:12: 2b:3b:83:0b:72:a1:d6:89:d6:06:3c:35:fb:b0:25: 5d:77:80:5e:7c:2d:ae:f0:3c:72:75:01:1e:be:54: b0:09:a0:c4:f7:17:8e:9c:18:50:7c:f5:3d:de:e8: d0:7f:f1:f1:f4:1e:f0:8b:3c:ca:60:3d:91:64:0c: 33:33:48:14:17:c1:89:1d:da:c7:95:02:99:ea:24: 4b:cc:16:62:6b:f6:1f:51:9f:19:68:95:cc:b1:df: f6:0f:e1:6d:7a:7e:f6:1a:ce:6d:5c:84:29:b8:73: bc:76:2a:39:8f:25:a6:c8:b0:50:4d:b8:0a:75:69: 4a:d0:f0:16:4a:7e:65:a2:8f:92:78:a4:49:31:42: 61:cc:6f:a1:a7:f8:00:d7:62:27:df:8a:54:c0:4f: 0a:b1:4f:6d:af:f2:22:a6:af:2b:8d:6b:5c:22:df: 8b:73:85:bf:82:1a:2f:b1:c2:aa:92:89:49:24:1c: 95:8f:52:06:83:d6:f9:2c:78:c2:35:5b:1c:e4:d4: 9a:c6:35:00:f6:8c:0f:08:7a:9e:95:f7:86:ab:43: 99:4a:43:52:c9:93:aa:e5:69:33:ff:fc:04:a2:61: 54:28:18:01:9d:94:4c:37:fd:c6:24:07:2a:5b:2b: 2b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:50:58:1E:FD:60:76:A9:1A:9A:4B:2E:C3:94:9F:66:11:79:56:74 X509v3 Authority Key Identifier: keyid:AF:46:1D:57:A9:0A:33:5B:2F:A7:7A:7A:AE:C1:67:34:95:49:23:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r0YdV6kKM1svp3p6rsFnNJVJI7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/7EF2846AD16911EF9ECCE01FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.120.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:24:3b:8f:43:96:21:a7:f0:9d:ae:a7:86:fa:59:bc:68:a4: 25:be:fd:0f:57:87:0f:0b:a8:c6:43:6d:c7:3b:47:76:3a:96: dc:7d:33:c0:04:8f:d5:cb:bc:63:5f:58:d1:c2:8f:ff:3f:ee: 5d:af:67:a1:c2:ed:fa:32:0f:f9:d2:2a:f0:3b:0b:2e:48:2f: d5:c7:a4:c9:4d:0b:a1:1d:13:1e:ba:d1:3b:fb:15:a5:82:12: 41:0f:15:3a:20:3c:4d:c8:3a:6d:97:c7:2d:e0:bc:34:aa:fe: e7:bb:a5:35:48:a5:75:92:e0:5f:d3:41:dd:1b:35:3d:aa:c5: 7c:2d:83:de:9a:c5:42:2f:79:99:aa:b5:1e:e7:b4:e6:f8:b0: 31:e0:24:de:9e:7b:10:e0:a6:88:8c:24:29:38:cf:06:9b:71: a0:f2:78:6e:66:bc:a9:3f:ea:88:40:b4:64:f3:bc:a4:db:97: 01:ff:6d:83:3b:de:60:c0:51:6b:72:d9:4a:0e:1f:78:36:bd: 17:33:cc:67:cb:a4:ab:b5:44:f0:5e:81:00:9c:db:d8:ed:a2: f7:c4:97:35:da:c5:6b:30:31:21:50:ce:45:29:00:44:3f:cb: 36:30:b2:5f:f2:b0:16:ed:cd:63:00:9c:79:cd:e8:94:f0:2f: 14:0e:bd:8f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRFRjYxMTAvBgNVBAUTKEFGNDYxRDU3QTkwQTMzNUIyRkE3N0E3QUFFQzE2NzM0 OTU0OTIzQjEwHhcNMjUxMjAxMDUwMjE0WhcNMjkwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJkMjE1Ni1hNTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44pCSyPseRHGDmRTqRIrO4MLcqHWidYGPDX7sCVdd4BefC2u8DxydQEevlSw CaDE9xeOnBhQfPU93ujQf/Hx9B7wizzKYD2RZAwzM0gUF8GJHdrHlQKZ6iRLzBZi a/YfUZ8ZaJXMsd/2D+Ften72Gs5tXIQpuHO8dio5jyWmyLBQTbgKdWlK0PAWSn5l oo+SeKRJMUJhzG+hp/gA12In34pUwE8KsU9tr/Iipq8rjWtcIt+Lc4W/ghovscKq kolJJByVj1IGg9b5LHjCNVsc5NSaxjUA9owPCHqelfeGq0OZSkNSyZOq5Wkz//wE omFUKBgBnZRMN/3GJAcqWysrdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM9QWB79 YHapGppLLsOUn2YReVZ0MB8GA1UdIwQYMBaAFK9GHVepCjNbL6d6eq7BZzSVSSOx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEVGNi84REFFMDVBMEQw RDQxMUVGQkNENTEyM0VDNEY5QUUwMi9yMFlkVjZrS00xc3ZwM3A2cnNGbk5KVkpJ N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3IwWWRWNmtLTTFzdnAzcDZyc0ZuTkpWSkk3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTRFRjYvOERBRTA1QTBEMEQ0MTFFRkJDRDUxMjNFQzRGOUFFMDIvN0VGMjg0NkFE MTY5MTFFRjlFQ0NFMDFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+HgwDQYJKoZIhvcNAQELBQADggEBAAokO49DliGn8J2u p4b6WbxopCW+/Q9Xhw8LqMZDbcc7R3Y6ltx9M8AEj9XLvGNfWNHCj/8/7l2vZ6HC 7foyD/nSKvA7Cy5IL9XHpMlNC6EdEx660Tv7FaWCEkEPFTogPE3IOm2Xxy3gvDSq /ue7pTVIpXWS4F/TQd0bNT2qxXwtg96axUIveZmqtR7ntOb4sDHgJN6eexDgpoiM JCk4zwabcaDyeG5mvKk/6ohAtGTzvKTblwH/bYM73mDAUWty2UoOH3g2vRczzGfL pKu1RPBegQCc29jtovfElzXaxWswMSFQzkUpAEQ/yzYwsl/ysBbtzWMAnHnN6JTw LxQOvY8= -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:55 2025 by rpki-client