This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/B0071914AAE811EA8412810FC4F9AE02.roa File: B0071914AAE811EA8412810FC4F9AE02.roa (raw, json) Hash identifier: ojZF8Xg4/gBKedLUsgMWVXrFZGNR/WxrXtUpw168pus= Subject key identifier: 61:4C:44:F1:D6:EA:FC:57:F1:FD:95:7B:18:45:82:F3:63:A5:D7:C3 Certificate issuer: /CN=A911C005/serialNumber=830DCFCB5A9AA0C7FA7D7AB9989DA2343DED2C22 Certificate serial: 096C Authority key identifier: 83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/B0071914AAE811EA8412810FC4F9AE02.roa Signing time: Mon 15 Dec 2025 06:42:19 +0000 ROA not before: Mon 15 Dec 2025 06:42:19 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 9474 IP address blocks: 202.140.64.0/19 maxlen: 19 202.140.64.0/20 maxlen: 20 202.140.69.0/24 maxlen: 24 202.140.72.0/24 maxlen: 24 202.140.76.0/24 maxlen: 24 202.140.77.0/24 maxlen: 24 202.140.78.0/24 maxlen: 24 202.140.80.0/21 maxlen: 21 202.140.88.0/21 maxlen: 21 202.140.90.0/24 maxlen: 24 202.140.92.0/24 maxlen: 24 202.140.94.0/24 maxlen: 24 202.140.96.0/19 maxlen: 19 202.140.101.0/24 maxlen: 24 202.140.107.0/24 maxlen: 24 202.140.108.0/24 maxlen: 24 202.140.110.0/24 maxlen: 24 202.140.112.0/24 maxlen: 24 202.140.114.0/24 maxlen: 24 2403:fa00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.crl rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2412 (0x96c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C005, serialNumber=830DCFCB5A9AA0C7FA7D7AB9989DA2343DED2C22 Validity Not Before: Dec 15 06:42:19 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=693fadcb-e2f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:79:84:a4:7e:6d:9d:c6:2c:ff:d0:2f:a8:72: 5b:7d:c6:75:8d:a1:0b:52:93:c2:12:aa:16:a7:96: 94:8a:f2:75:5b:11:1b:b9:d5:ba:84:ec:9a:2d:0f: be:b5:dc:85:69:c5:ad:85:69:31:cb:e0:d2:c2:8d: ab:0e:3e:90:48:eb:fc:ed:5e:3a:1b:42:db:cf:31: ff:4e:8d:a7:7e:12:7f:59:0b:bb:c1:b4:d6:1a:19: 4b:69:a9:46:f0:d0:72:14:3f:07:63:26:55:fd:92: 7e:01:41:87:0e:8a:bb:4f:02:7e:41:ce:e0:b9:a6: 74:6c:29:3a:a0:f2:85:ab:94:f1:31:81:18:c0:8b: 72:7d:51:e3:48:a8:7f:7c:16:f0:55:af:ca:12:dc: 10:9f:5d:18:f8:8d:a1:eb:f1:86:fc:ae:1e:88:f5: 55:3c:76:3e:5a:b0:91:65:dd:14:96:52:58:16:47: 30:4f:22:18:15:12:56:f9:2a:bf:b2:aa:10:cd:24: 27:d6:86:51:27:1d:cf:08:a9:e6:29:2d:0e:ea:20: 2d:0c:e4:5c:46:21:7a:ec:87:be:1a:d5:f0:5d:ef: e9:27:21:ef:8d:5b:7e:cf:10:1a:d6:b6:e1:b5:92: 42:1d:61:dc:24:4e:de:4b:0f:39:0b:63:c3:ba:24: c8:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:4C:44:F1:D6:EA:FC:57:F1:FD:95:7B:18:45:82:F3:63:A5:D7:C3 X509v3 Authority Key Identifier: keyid:83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/B0071914AAE811EA8412810FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.140.64.0/18 IPv6: 2403:fa00::/32 Signature Algorithm: sha256WithRSAEncryption 4b:88:c0:b4:09:a5:91:45:40:79:79:ba:17:2b:d8:82:20:a2: dd:e3:f4:3a:59:5d:cb:c8:ad:50:80:89:74:f5:74:79:eb:2e: c7:f1:13:f0:d7:2a:98:28:75:5c:6f:57:ec:cb:ef:b5:6d:99: 68:31:aa:74:24:9c:1c:75:75:69:bc:81:eb:c7:93:b1:05:a8: 0e:3e:7e:71:a1:b0:92:1a:fa:61:9f:6d:9d:71:d8:61:3a:02: 3b:b4:df:2a:2d:da:bd:c5:92:5b:67:16:85:35:c5:07:b9:b5: c4:df:18:bc:40:5c:05:e2:34:07:8f:d4:f8:1f:27:5f:90:f1: 87:bd:b9:8b:57:e2:b3:5a:cc:7b:3f:f7:af:bc:62:7d:17:33: 18:f7:cf:cd:92:33:27:fe:62:e5:b8:43:46:09:3d:bc:4e:7f: 49:5e:1e:70:61:a6:d1:7c:19:53:b1:5f:26:da:22:ec:fd:30: 33:98:da:55:63:b8:4a:13:2d:b8:ed:32:d7:af:af:c4:e3:2d: 65:75:b4:dc:20:23:58:be:3a:11:06:0d:ca:04:ff:5c:b8:2b: f8:07:21:81:77:cc:84:52:74:ca:c1:45:52:78:39:14:87:25: 74:c9:12:24:5a:64:52:f3:34:2d:98:3f:a7:32:af:b6:e1:6e: 7a:49:d0:cb -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMwMDUxMTAvBgNVBAUTKDgzMERDRkNCNUE5QUEwQzdGQTdEN0FCOTk4OURBMjM0 M0RFRDJDMjIwHhcNMjUxMjE1MDY0MjE5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNmYWRjYi1lMmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5XmEpH5tncYs/9AvqHJbfcZ1jaELUpPCEqoWp5aUivJ1WxEbudW6hOyaLQ++ tdyFacWthWkxy+DSwo2rDj6QSOv87V46G0LbzzH/To2nfhJ/WQu7wbTWGhlLaalG 8NByFD8HYyZV/ZJ+AUGHDoq7TwJ+Qc7guaZ0bCk6oPKFq5TxMYEYwItyfVHjSKh/ fBbwVa/KEtwQn10Y+I2h6/GG/K4eiPVVPHY+WrCRZd0UllJYFkcwTyIYFRJW+Sq/ sqoQzSQn1oZRJx3PCKnmKS0O6iAtDORcRiF67Ie+GtXwXe/pJyHvjVt+zxAa1rbh tZJCHWHcJE7eSw85C2PDuiTIDQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGFMRPHW 6vxX8f2VexhFgvNjpdfDMB8GA1UdIwQYMBaAFIMNz8tamqDH+n16uZidojQ97Swi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzAwNS84Q0E2ODI3NkFB RTcxMUVBQTkxMjJCMEVDNEY5QUUwMi9ndzNQeTFxYW9NZjZmWHE1bUoyaU5EM3RM Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3M1B5MXFhb01mNmZYcTVtSjJpTkQzdExDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMwMDUvOENBNjgyNzZBQUU3MTFFQUE5MTIyQjBFQzRGOUFFMDIvQjAwNzE5MTRB QUU4MTFFQTg0MTI4MTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAbKjEAwDQQCAAIwBwMFACQD+gAwDQYJKoZIhvcNAQELBQAD ggEBAEuIwLQJpZFFQHl5uhcr2IIgot3j9DpZXcvIrVCAiXT1dHnrLsfxE/DXKpgo dVxvV+zL77VtmWgxqnQknBx1dWm8gevHk7EFqA4+fnGhsJIa+mGfbZ1x2GE6Aju0 3yot2r3FkltnFoU1xQe5tcTfGLxAXAXiNAeP1PgfJ1+Q8Ye9uYtX4rNazHs/96+8 Yn0XMxj3z82SMyf+YuW4Q0YJPbxOf0leHnBhptF8GVOxXybaIuz9MDOY2lVjuEoT LbjtMtevr8TjLWV1tNwgI1i+OhEGDcoE/1y4K/gHIYF3zIRSdMrBRVJ4ORSHJXTJ EiRaZFLzNC2YP6cyr7bhbnpJ0Ms= -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:38 2025 by rpki-client