This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/B902532EFEA211EDB9013076C4F9AE02.roa File: B902532EFEA211EDB9013076C4F9AE02.roa (raw, json) Hash identifier: drfPb+wsZvR+2/MNwdz1cNWuRVIEZ+Qx8nSL5NiDabc= Subject key identifier: AE:10:DF:FC:32:55:57:54:D4:6A:5F:D0:FD:C5:B5:2B:1C:D1:0C:66 Certificate issuer: /CN=A911D3F3/serialNumber=317C307FFC6ECB6CF656F26B8282FFB9E62F9365 Certificate serial: 064E Authority key identifier: 31:7C:30:7F:FC:6E:CB:6C:F6:56:F2:6B:82:82:FF:B9:E6:2F:93:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXwwf_xuy2z2VvJrgoL_ueYvk2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/B902532EFEA211EDB9013076C4F9AE02.roa Signing time: Fri 14 Nov 2025 21:43:20 +0000 ROA not before: Fri 14 Nov 2025 21:43:20 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 63956 IP address blocks: 45.112.244.0/22 maxlen: 24 103.20.17.0/24 maxlen: 24 103.21.108.0/24 maxlen: 24 103.52.116.0/22 maxlen: 24 103.97.52.0/22 maxlen: 22 103.97.52.0/24 maxlen: 24 103.97.53.0/24 maxlen: 24 103.97.54.0/24 maxlen: 24 103.97.55.0/24 maxlen: 24 103.225.96.0/24 maxlen: 24 202.46.160.0/20 maxlen: 24 203.12.129.0/24 maxlen: 24 203.18.194.0/24 maxlen: 24 203.210.102.0/24 maxlen: 24 2402:1b80::/32 maxlen: 36 2402:1b80::/40 maxlen: 40 2402:1b80:10::/48 maxlen: 48 2402:1b80:11::/48 maxlen: 48 2402:1b80:14::/48 maxlen: 48 2402:1b80:103::/48 maxlen: 48 2402:1b80:104::/48 maxlen: 48 2402:1b80:106::/48 maxlen: 48 2402:1b80:203::/48 maxlen: 48 2402:1b80:204::/48 maxlen: 48 2402:1b80:206::/48 maxlen: 48 2402:1b80:300::/40 maxlen: 40 2402:1b80:304::/48 maxlen: 48 2402:1b80:306::/48 maxlen: 48 2402:1b80:403::/48 maxlen: 48 2402:1b80:600::/40 maxlen: 40 2402:1b80:3000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/MXwwf_xuy2z2VvJrgoL_ueYvk2U.crl rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/MXwwf_xuy2z2VvJrgoL_ueYvk2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXwwf_xuy2z2VvJrgoL_ueYvk2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 21:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1614 (0x64e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D3F3, serialNumber=317C307FFC6ECB6CF656F26B8282FFB9E62F9365 Validity Not Before: Nov 14 21:43:20 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6917a278-29d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:29:46:93:f4:18:9b:9d:fb:80:3f:8a:5c:cd: d8:69:0d:fd:86:04:c1:50:4d:69:f8:29:ac:32:1a: 30:da:ca:0b:95:96:d8:a3:03:b7:2e:41:b0:95:e4: 92:63:bc:bd:ff:e2:57:f6:c6:38:96:51:bc:f1:f7: 6a:87:29:fe:db:b5:58:67:38:57:3b:df:05:75:a3: e9:12:ae:9c:e5:6c:4a:01:0c:4f:22:ba:a8:53:d9: 90:11:f4:36:52:74:4c:63:fd:96:c3:53:69:d9:7c: 7d:5f:c1:fa:4f:29:cd:a1:7f:7d:17:ae:1e:cb:0e: de:65:66:c9:a8:cc:bf:9d:b6:80:52:58:d0:b5:cb: 62:0f:ed:66:63:7d:9d:c2:e6:1b:a0:df:54:bc:51: 3f:c2:23:59:c0:c0:6e:75:1e:15:79:34:fc:64:ff: 20:40:e3:e4:b8:28:49:98:8e:29:0e:b7:a5:8b:16: 9a:cf:e2:b0:62:2b:15:aa:6a:35:1d:e8:c6:8d:87: cb:6a:ac:c0:ff:41:d4:a0:38:78:4d:80:53:76:04: 57:d5:57:f0:87:36:35:e1:d2:ed:cb:f9:14:22:62: c7:06:d1:90:f1:89:a2:64:54:ae:0e:b9:ae:82:82: e0:9d:84:2c:59:3e:79:8c:21:94:9f:b2:4d:fa:81: f7:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:10:DF:FC:32:55:57:54:D4:6A:5F:D0:FD:C5:B5:2B:1C:D1:0C:66 X509v3 Authority Key Identifier: keyid:31:7C:30:7F:FC:6E:CB:6C:F6:56:F2:6B:82:82:FF:B9:E6:2F:93:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/MXwwf_xuy2z2VvJrgoL_ueYvk2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXwwf_xuy2z2VvJrgoL_ueYvk2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/B902532EFEA211EDB9013076C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.112.244.0/22 103.20.17.0/24 103.21.108.0/24 103.52.116.0/22 103.97.52.0/22 103.225.96.0/24 202.46.160.0/20 203.12.129.0/24 203.18.194.0/24 203.210.102.0/24 IPv6: 2402:1b80::/32 Signature Algorithm: sha256WithRSAEncryption cd:c3:c6:6d:09:98:9d:67:02:d9:b0:6d:37:63:25:76:94:0e: 21:9d:a1:a2:32:f3:d9:fb:fe:eb:bc:31:aa:75:8d:cf:24:7b: 45:10:7d:e2:e6:04:3f:fa:f1:14:d0:af:32:91:0a:78:df:1e: 07:44:e8:a0:32:1c:10:a1:72:43:d2:5b:da:44:08:9d:c5:93: 6d:94:7d:e8:3e:2c:46:55:c1:54:39:d1:9f:b8:25:ca:be:4c: f4:af:65:71:af:7f:07:62:b1:8a:77:66:f8:03:38:5f:41:c6: f6:33:df:ec:f1:a7:ff:c2:0e:a7:31:3c:0d:0c:2c:55:bf:8c: a3:65:55:2c:88:db:a3:62:7c:2c:96:63:1d:b6:f0:88:5e:ee: d5:76:17:fa:72:05:eb:6c:b4:c0:34:06:21:6f:39:b8:c4:ef: 8d:53:11:2f:e6:1f:03:d9:f0:29:65:f4:c6:26:d1:68:08:6f: 97:76:ac:45:a7:b6:a2:21:52:4b:db:32:2b:09:26:cb:c3:15: 54:0b:a8:6f:4a:94:00:7d:81:a7:07:bf:0e:8d:76:5f:b2:10: a3:3c:cb:c7:04:18:53:45:48:a9:c6:a0:d3:ef:28:48:95:ba: bc:c0:4b:c0:ac:42:d6:6f:c5:13:25:2a:8f:1b:f7:68:9d:3e: 52:6f:bf:76 -----BEGIN CERTIFICATE----- MIIFtjCCBJ6gAwIBAgICBk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQzRjMxMTAvBgNVBAUTKDMxN0MzMDdGRkM2RUNCNkNGNjU2RjI2QjgyODJGRkI5 RTYyRjkzNjUwHhcNMjUxMTE0MjE0MzIwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTE3YTI3OC0yOWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnilGk/QYm537gD+KXM3YaQ39hgTBUE1p+CmsMhow2soLlZbYowO3LkGwleSS Y7y9/+JX9sY4llG88fdqhyn+27VYZzhXO98FdaPpEq6c5WxKAQxPIrqoU9mQEfQ2 UnRMY/2Ww1Np2Xx9X8H6TynNoX99F64eyw7eZWbJqMy/nbaAUljQtctiD+1mY32d wuYboN9UvFE/wiNZwMBudR4VeTT8ZP8gQOPkuChJmI4pDrelixaaz+KwYisVqmo1 HejGjYfLaqzA/0HUoDh4TYBTdgRX1VfwhzY14dLty/kUImLHBtGQ8YmiZFSuDrmu goLgnYQsWT55jCGUn7JN+oH3lQIDAQABo4IC2jCCAtYwHQYDVR0OBBYEFK4Q3/wy VVdU1Gpf0P3FtSsc0QxmMB8GA1UdIwQYMBaAFDF8MH/8bsts9lbya4KC/7nmL5Nl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDNGMy9CMjU0NDgxQUNB MzQxMUVCOEM5MEQ5NDFDNEY5QUUwMi9NWHd3Zl94dXkyejJWdkpyZ29MX3VlWXZr MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Yd3dmX3h1eTJ6MlZ2SnJnb0xfdWVZdmsyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQzRjMvQjI1NDQ4MUFDQTM0MTFFQjhDOTBEOTQxQzRGOUFFMDIvQjkwMjUzMkVG RUEyMTFFREI5MDEzMDc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZAYIKwYBBQUHAQcBAf8E VTBTMEIEAgABMDwDBAItcPQDBABnFBEDBABnFWwDBAJnNHQDBAJnYTQDBABn4WAD BATKLqADBADLDIEDBADLEsIDBADL0mYwDQQCAAIwBwMFACQCG4AwDQYJKoZIhvcN AQELBQADggEBAM3Dxm0JmJ1nAtmwbTdjJXaUDiGdoaIy89n7/uu8Map1jc8ke0UQ feLmBD/68RTQrzKRCnjfHgdE6KAyHBChckPSW9pECJ3Fk22Ufeg+LEZVwVQ50Z+4 Jcq+TPSvZXGvfwdisYp3ZvgDOF9BxvYz3+zxp//CDqcxPA0MLFW/jKNlVSyI26Ni fCyWYx228Ihe7tV2F/pyBetstMA0BiFvObjE741TES/mHwPZ8Cll9MYm0WgIb5d2 rEWntqIhUkvbMisJJsvDFVQLqG9KlAB9gacHvw6Ndl+yEKM8y8cEGFNFSKnGoNPv KEiVurzAS8CsQtZvxRMlKo8b92idPlJvv3Y= -----END CERTIFICATE-----Generated at Wed Dec 10 02:43:47 2025 by rpki-client