This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/5CAA8A02C05F11F08562CC0CC4F9AE02.roa File: 5CAA8A02C05F11F08562CC0CC4F9AE02.roa (raw, json) Hash identifier: LcPWm9ZDnNP1sDZFVkma2o5PQ6jPkVljqIjWid9fl7Q= Subject key identifier: 32:28:67:C0:38:BB:18:EF:4B:7B:6C:C9:79:F2:64:79:F3:9F:43:31 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 0872 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/5CAA8A02C05F11F08562CC0CC4F9AE02.roa Signing time: Thu 13 Nov 2025 07:07:06 +0000 ROA not before: Thu 13 Nov 2025 07:07:06 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153706 IP address blocks: 43.229.153.0/24 maxlen: 24 103.228.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2162 (0x872) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Nov 13 07:07:06 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6915839a-0113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b4:24:f2:d3:6e:ad:22:8a:8c:5f:2e:4c:d8: 55:a2:a7:67:03:d2:92:9d:ab:ec:58:d1:c8:d8:bc: 56:e3:77:d9:ed:5b:be:e8:a8:98:64:ff:85:45:ca: f4:c1:62:08:94:90:d1:0b:12:48:7b:16:73:de:f5: c3:67:13:5b:62:67:12:c6:4b:b9:8b:df:27:5c:1c: a3:1f:66:c2:e7:f7:27:b2:bc:72:07:63:cb:d8:11: 21:ed:4e:87:c4:70:31:a6:b4:8d:97:12:41:e6:db: c6:83:78:b6:c5:85:61:9e:4c:8e:e3:8b:22:2b:77: f3:53:e0:91:78:f5:c4:c1:59:0c:ef:83:72:79:41: 62:de:f1:fb:be:47:1e:6c:cc:3e:f0:90:ae:2f:35: e5:7a:27:16:41:56:3b:1a:11:6a:36:46:c4:9a:53: 5f:0d:94:47:0d:2f:d5:9d:3c:11:ab:60:b9:ac:f2: ca:7c:88:18:a4:08:e4:35:fb:d5:28:1a:45:01:0e: 59:fc:68:91:6b:04:29:35:ed:14:52:e2:db:94:16: 59:bf:9b:1e:ad:13:8b:72:8a:dc:02:c5:d8:72:6d: 17:16:cc:c0:0a:0f:db:f0:82:d7:c8:27:97:3e:91: 65:b0:10:4d:4e:db:c7:cd:21:52:55:6f:36:15:59: db:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:28:67:C0:38:BB:18:EF:4B:7B:6C:C9:79:F2:64:79:F3:9F:43:31 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/5CAA8A02C05F11F08562CC0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.153.0/24 103.228.64.0/24 Signature Algorithm: sha256WithRSAEncryption 27:52:91:e1:cb:9d:17:f6:d9:43:4d:cd:bc:e4:91:c0:a0:2e: 7d:e6:42:94:21:5e:30:79:5d:b0:c5:db:e2:1d:aa:20:c3:3e: 5f:0c:c6:59:7f:d7:bb:0a:5a:28:37:f7:80:a8:df:ec:27:f3: b4:c6:94:02:bd:c7:04:68:f5:21:48:46:de:59:bb:d6:7d:af: c0:13:6d:a4:1b:43:c6:3d:e7:65:06:0c:c2:89:7c:ac:21:83: 9b:76:fb:ad:35:d2:73:63:a3:4c:bb:8c:75:28:96:cf:28:6f: 48:91:d3:4c:c7:3d:be:b2:49:3b:64:29:0a:ce:08:e3:a0:80: a9:43:1b:e8:30:a9:41:8c:35:63:17:0f:30:4c:8e:bf:88:30: 74:d9:cf:2d:99:d8:49:36:90:98:6d:9c:40:bf:90:a5:2f:a0: ce:8c:30:20:0e:b1:a0:bb:93:38:47:33:39:74:21:cb:0d:92: a8:c9:46:13:24:08:4e:1a:10:87:f2:31:a1:71:48:04:57:62: 20:6a:b3:fc:9a:b4:70:56:c9:0d:6d:97:bc:b3:39:8b:49:97: 50:4d:42:ca:f3:ea:37:40:48:40:ec:8b:be:f2:61:f7:fe:1b: 02:db:37:d8:36:1f:8e:31:51:7d:02:37:3b:02:81:c9:c8:da: 68:1f:20:04 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUxMTEzMDcwNzA2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTE1ODM5YS0wMTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7Qk8tNurSKKjF8uTNhVoqdnA9KSnavsWNHI2LxW43fZ7Vu+6KiYZP+FRcr0 wWIIlJDRCxJIexZz3vXDZxNbYmcSxku5i98nXByjH2bC5/cnsrxyB2PL2BEh7U6H xHAxprSNlxJB5tvGg3i2xYVhnkyO44siK3fzU+CRePXEwVkM74NyeUFi3vH7vkce bMw+8JCuLzXleicWQVY7GhFqNkbEmlNfDZRHDS/VnTwRq2C5rPLKfIgYpAjkNfvV KBpFAQ5Z/GiRawQpNe0UUuLblBZZv5serROLcorcAsXYcm0XFszACg/b8ILXyCeX PpFlsBBNTtvHzSFSVW82FVnbWQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDIoZ8A4 uxjvS3tsyXnyZHnzn0MxMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvNUNBQThBMDJD MDVGMTFGMDg1NjJDQzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr5ZkDBABn5EAwDQYJKoZIhvcNAQELBQADggEBACdSkeHL nRf22UNNzbzkkcCgLn3mQpQhXjB5XbDF2+IdqiDDPl8Mxll/17sKWig394Co3+wn 87TGlAK9xwRo9SFIRt5Zu9Z9r8ATbaQbQ8Y952UGDMKJfKwhg5t2+6010nNjo0y7 jHUols8ob0iR00zHPb6ySTtkKQrOCOOggKlDG+gwqUGMNWMXDzBMjr+IMHTZzy2Z 2Ek2kJhtnEC/kKUvoM6MMCAOsaC7kzhHMzl0IcsNkqjJRhMkCE4aEIfyMaFxSARX YiBqs/yatHBWyQ1tl7yzOYtJl1BNQsrz6jdASEDsi77yYff+GwLbN9g2H44xUX0C NzsCgcnI2mgfIAQ= -----END CERTIFICATE-----Generated at Fri Dec 5 17:21:11 2025 by rpki-client