This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/BB90D9FECF4B11F08EB76486C4F9AE02.roa File: BB90D9FECF4B11F08EB76486C4F9AE02.roa (raw, json) Hash identifier: vyWjtraKy2uNU188bHY1lVeQD/xqPddD3pXN0n/73vU= Subject key identifier: BD:A9:4D:DB:40:C1:04:06:41:C9:47:7F:6A:D8:E2:48:AC:9A:F3:7B Certificate issuer: /CN=A9118A69/serialNumber=350731B66044D34A3D2DA7589BD8331D145FE498 Certificate serial: 012A Authority key identifier: 35:07:31:B6:60:44:D3:4A:3D:2D:A7:58:9B:D8:33:1D:14:5F:E4:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQcxtmBE00o9LadYm9gzHRRf5Jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/BB90D9FECF4B11F08EB76486C4F9AE02.roa Signing time: Tue 02 Dec 2025 06:54:22 +0000 ROA not before: Tue 02 Dec 2025 06:54:22 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 31128 IP address blocks: 103.142.152.128/27 maxlen: 27 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/NQcxtmBE00o9LadYm9gzHRRf5Jg.crl rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/NQcxtmBE00o9LadYm9gzHRRf5Jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQcxtmBE00o9LadYm9gzHRRf5Jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118A69, serialNumber=350731B66044D34A3D2DA7589BD8331D145FE498 Validity Not Before: Dec 2 06:54:22 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=692e8d1e-4fc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a4:d5:95:b5:8d:87:ea:9a:70:2b:05:70:bf: cd:a3:df:32:43:11:45:7c:3e:76:46:35:42:19:5c: 2e:29:3d:c2:ba:10:34:b5:cf:b8:95:fc:f8:a3:69: 84:50:a0:30:f1:b5:7d:2a:42:0a:b0:35:56:a1:4a: 24:cf:2a:08:2a:37:05:0b:46:09:8f:4f:76:68:b1: 8c:02:e7:28:78:ad:8a:cf:f5:2f:01:fc:80:20:fa: 12:f2:89:a1:a8:a2:9a:4d:0e:06:b5:cd:cc:1d:aa: 11:6e:8e:13:1d:7f:54:35:35:d6:a3:0d:9e:7a:b2: 2e:45:7d:0b:59:76:36:e3:be:7f:be:51:ad:96:37: 8d:bc:be:70:b2:da:26:0c:bb:aa:bf:1e:94:8a:3f: c3:16:d0:79:8d:04:af:ff:1e:c2:c3:f8:ac:fe:5b: 7e:50:13:12:57:a3:84:04:92:75:66:ad:e3:84:9d: b2:2f:e2:09:fd:02:de:08:3f:4a:cb:73:7d:dd:dd: 79:b5:aa:46:97:ff:3d:93:8c:40:63:cd:4a:3f:a5: ea:48:6f:f6:90:7d:4a:c7:09:66:30:5e:25:02:9f: 1f:1f:4f:24:26:dd:c1:b3:27:cc:5b:45:80:dc:7f: b1:9c:ff:2e:16:8f:18:d2:63:21:7f:11:f8:20:ef: 79:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A9:4D:DB:40:C1:04:06:41:C9:47:7F:6A:D8:E2:48:AC:9A:F3:7B X509v3 Authority Key Identifier: keyid:35:07:31:B6:60:44:D3:4A:3D:2D:A7:58:9B:D8:33:1D:14:5F:E4:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/NQcxtmBE00o9LadYm9gzHRRf5Jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQcxtmBE00o9LadYm9gzHRRf5Jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/BB90D9FECF4B11F08EB76486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.152.128/27 Signature Algorithm: sha256WithRSAEncryption 1d:a8:ac:b7:2d:28:1d:4f:61:99:c0:49:2c:33:0a:fb:b3:b5: 97:e9:a0:8b:e9:88:d7:33:57:02:57:1d:6c:fc:5d:6c:39:eb: 64:d9:5d:6c:60:3e:a5:8c:78:d3:23:df:9c:13:66:04:e2:a6: 60:2d:52:8a:ce:73:59:16:61:8a:67:56:f3:c8:f9:28:95:42: 72:4b:6e:47:12:39:35:31:d4:88:5f:66:3e:f9:25:23:b7:37: 9f:6a:e3:0a:59:bb:59:52:b1:c1:f7:a4:cd:58:d3:5d:1c:9c: d6:39:ef:73:a2:5c:6f:17:7d:f1:92:42:b2:14:83:54:2d:b7: b9:f3:23:3a:28:fa:dc:5c:49:92:31:c5:87:ee:93:67:35:4c: 15:37:7e:df:44:3b:28:d8:29:76:d3:ca:41:b3:e3:06:a5:84: d0:e7:a5:2f:41:61:79:6b:ba:7e:f2:40:db:f5:ad:35:b9:68: dd:8b:7d:ef:28:23:c2:41:52:32:d1:47:6c:73:38:fd:da:3a: 95:2c:62:0e:e8:04:98:96:84:43:71:12:33:d5:ed:56:65:65: f9:4e:95:ea:77:17:01:ec:71:b2:95:18:18:46:2c:04:d5:35: ed:51:22:b9:5a:00:71:4f:d3:46:22:58:d4:89:43:fe:0b:e3: 87:00:6e:4a -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThBNjkxMTAvBgNVBAUTKDM1MDczMUI2NjA0NEQzNEEzRDJEQTc1ODlCRDgzMzFE MTQ1RkU0OTgwHhcNMjUxMjAyMDY1NDIyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJlOGQxZS00ZmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKTVlbWNh+qacCsFcL/No98yQxFFfD52RjVCGVwuKT3CuhA0tc+4lfz4o2mE UKAw8bV9KkIKsDVWoUokzyoIKjcFC0YJj092aLGMAucoeK2Kz/UvAfyAIPoS8omh qKKaTQ4Gtc3MHaoRbo4THX9UNTXWow2eerIuRX0LWXY2475/vlGtljeNvL5wstom DLuqvx6Uij/DFtB5jQSv/x7Cw/is/lt+UBMSV6OEBJJ1Zq3jhJ2yL+IJ/QLeCD9K y3N93d15tapGl/89k4xAY81KP6XqSG/2kH1KxwlmMF4lAp8fH08kJt3BsyfMW0WA 3H+xnP8uFo8Y0mMhfxH4IO95PQIDAQABo4ICljCCApIwHQYDVR0OBBYEFL2pTdtA wQQGQclHf2rY4kismvN7MB8GA1UdIwQYMBaAFDUHMbZgRNNKPS2nWJvYMx0UX+SY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEE2OS9DNjIwMTFENjBD RTgxMUVGOUVGREEzMUJDNEY5QUUwMi9OUWN4dG1CRTAwbzlMYWRZbTlnekhSUmY1 SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05RY3h0bUJFMDBvOUxhZFltOWd6SFJSZjVKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MThBNjkvQzYyMDExRDYwQ0U4MTFFRjlFRkRBMzFCQzRGOUFFMDIvQkI5MEQ5RkVD RjRCMTFGMDhFQjc2NDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgABMAcDBQVnjpiAMA0GCSqGSIb3DQEBCwUAA4IBAQAdqKy3LSgdT2GZ wEksMwr7s7WX6aCL6YjXM1cCVx1s/F1sOetk2V1sYD6ljHjTI9+cE2YE4qZgLVKK znNZFmGKZ1bzyPkolUJyS25HEjk1MdSIX2Y++SUjtzefauMKWbtZUrHB96TNWNNd HJzWOe9zolxvF33xkkKyFINULbe58yM6KPrcXEmSMcWH7pNnNUwVN37fRDso2Cl2 08pBs+MGpYTQ56UvQWF5a7p+8kDb9a01uWjdi33vKCPCQVIy0Udsczj92jqVLGIO 6ASYloRDcRIz1e1WZWX5TpXqdxcB7HGylRgYRiwE1TXtUSK5WgBxT9NGIljUiUP+ C+OHAG5K -----END CERTIFICATE-----Generated at Fri Dec 5 15:39:52 2025 by rpki-client