This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/F68B5808EF2C11F0B7002CAB4A6F56BC.roa File: F68B5808EF2C11F0B7002CAB4A6F56BC.roa (raw, json) Hash identifier: C+LADPZdKvofM9OR7ZgJmlF/mAqqDMvWRPCLgcznuNk= Subject key identifier: 1C:54:C1:C7:B4:A4:E1:3D:D6:1F:23:85:45:73:42:FE:8D:91:C3:EA Certificate issuer: /CN=A911D3F3/serialNumber=317C307FFC6ECB6CF656F26B8282FFB9E62F9365 Certificate serial: 0694 Authority key identifier: 31:7C:30:7F:FC:6E:CB:6C:F6:56:F2:6B:82:82:FF:B9:E6:2F:93:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXwwf_xuy2z2VvJrgoL_ueYvk2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/F68B5808EF2C11F0B7002CAB4A6F56BC.roa Signing time: Sun 11 Jan 2026 20:59:22 +0000 ROA not before: Sun 11 Jan 2026 20:59:22 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9667 IP address blocks: 103.20.208.0/24 maxlen: 24 103.20.209.0/24 maxlen: 24 103.20.210.0/24 maxlen: 24 103.20.211.0/24 maxlen: 24 180.94.112.0/21 maxlen: 24 202.58.32.0/19 maxlen: 24 203.209.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/MXwwf_xuy2z2VvJrgoL_ueYvk2U.crl rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/MXwwf_xuy2z2VvJrgoL_ueYvk2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXwwf_xuy2z2VvJrgoL_ueYvk2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1684 (0x694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D3F3, serialNumber=317C307FFC6ECB6CF656F26B8282FFB9E62F9365 Validity Not Before: Jan 11 20:59:22 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69640f2a-bbe5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fe:1c:43:35:9c:02:d6:51:f4:ba:a6:0d:ba: 8b:23:62:00:fc:62:76:ed:87:11:4b:24:8c:8e:29: 56:0b:7e:f3:9d:95:c3:e9:8e:61:11:af:13:bb:d1: f3:73:e2:64:bf:40:37:77:78:a8:08:90:03:da:7e: ea:ae:57:37:8f:74:2c:2f:41:79:ed:4e:da:46:94: fe:20:b9:89:2e:53:a5:8d:77:d4:e4:c1:26:65:98: 5e:dc:33:e1:c7:a7:cb:fe:66:b4:dd:6a:7f:c2:db: f9:e7:2c:40:1a:3c:a3:cb:81:30:b1:da:62:95:40: e4:e8:9d:42:a6:80:82:56:f9:a4:b6:2d:e2:15:41: a8:73:2c:8d:c2:12:84:c9:53:08:e3:3e:9a:ed:65: 4b:59:1a:44:ee:e1:41:f5:da:03:d0:70:0b:cd:f7: 0f:0f:a3:ae:d8:52:ec:82:4b:5f:9d:a5:04:2b:7b: 07:b2:97:00:39:07:17:de:d9:ab:a0:58:52:bf:27: b5:d2:8c:55:7f:4f:9f:45:d2:4e:23:f6:dd:6e:83: f6:bb:97:3d:34:20:5f:7f:e3:6f:48:0b:d5:64:c3: a9:79:f1:46:ad:a3:8c:c7:ad:f6:48:91:ab:01:b8: 54:66:2b:4c:c5:e3:0c:88:91:b4:e1:17:38:19:dd: db:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:54:C1:C7:B4:A4:E1:3D:D6:1F:23:85:45:73:42:FE:8D:91:C3:EA X509v3 Authority Key Identifier: keyid:31:7C:30:7F:FC:6E:CB:6C:F6:56:F2:6B:82:82:FF:B9:E6:2F:93:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/MXwwf_xuy2z2VvJrgoL_ueYvk2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXwwf_xuy2z2VvJrgoL_ueYvk2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/F68B5808EF2C11F0B7002CAB4A6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.208.0/22 180.94.112.0/21 202.58.32.0/19 203.209.221.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:17:c6:a4:05:a6:4c:7d:5e:cd:99:79:2e:1c:be:d0:92:20: 52:9a:af:4b:08:63:de:d2:2b:c4:d8:d6:fa:1b:86:9d:9c:c2: b8:3b:1d:eb:64:94:f6:32:fa:88:7b:65:73:9b:2e:26:54:fc: 07:23:d1:11:41:12:b9:49:c7:a4:06:f8:ea:a9:ed:47:0a:8e: 5a:a9:a5:56:b3:9d:f2:8d:a6:ad:66:a2:bf:13:5b:35:dd:c9: f9:9f:4c:0d:f1:86:13:dc:5f:7c:43:2d:af:51:ba:47:ed:b6: 90:04:cf:ff:86:58:53:d4:0a:59:fd:61:d6:e4:26:86:fc:d0: 88:f1:2a:7a:06:bd:8b:1a:89:7e:27:49:44:9c:78:99:81:40: 9c:73:0c:43:72:ee:8a:16:29:03:dc:8e:e0:8f:06:95:93:f9: ef:43:89:43:e0:28:59:3f:ee:91:b7:cb:1e:e9:0d:36:79:7a: ac:33:a9:e5:29:b1:b6:09:2e:30:64:e9:2b:ba:ae:78:bd:94: 06:60:31:62:7a:f4:ef:f1:81:eb:f3:29:0e:9b:c4:d0:0c:6d: e6:6d:ad:ab:f7:dc:e6:f3:1e:af:da:07:c6:90:ec:69:57:1c: 2c:27:ef:97:d5:85:ef:d0:fb:75:12:37:8a:7c:c7:6c:89:e3: 41:2b:95:67 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQzRjMxMTAvBgNVBAUTKDMxN0MzMDdGRkM2RUNCNkNGNjU2RjI2QjgyODJGRkI5 RTYyRjkzNjUwHhcNMjYwMTExMjA1OTIyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY0MGYyYS1iYmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvv4cQzWcAtZR9LqmDbqLI2IA/GJ27YcRSySMjilWC37znZXD6Y5hEa8Tu9Hz c+Jkv0A3d3ioCJAD2n7qrlc3j3QsL0F57U7aRpT+ILmJLlOljXfU5MEmZZhe3DPh x6fL/ma03Wp/wtv55yxAGjyjy4EwsdpilUDk6J1CpoCCVvmkti3iFUGocyyNwhKE yVMI4z6a7WVLWRpE7uFB9doD0HALzfcPD6Ou2FLsgktfnaUEK3sHspcAOQcX3tmr oFhSvye10oxVf0+fRdJOI/bdboP2u5c9NCBff+NvSAvVZMOpefFGraOMx632SJGr AbhUZitMxeMMiJG04Rc4Gd3bUQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFBxUwce0 pOE91h8jhUVzQv6NkcPqMB8GA1UdIwQYMBaAFDF8MH/8bsts9lbya4KC/7nmL5Nl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDNGMy9CMjU0NDgxQUNB MzQxMUVCOEM5MEQ5NDFDNEY5QUUwMi9NWHd3Zl94dXkyejJWdkpyZ29MX3VlWXZr MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Yd3dmX3h1eTJ6MlZ2SnJnb0xfdWVZdmsyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQzRjMvQjI1NDQ4MUFDQTM0MTFFQjhDOTBEOTQxQzRGOUFFMDIvRjY4QjU4MDhF RjJDMTFGMEI3MDAyQ0FCNEE2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJnFNADBAO0XnADBAXKOiADBADL0d0wDQYJKoZIhvcNAQEL BQADggEBAH0XxqQFpkx9Xs2ZeS4cvtCSIFKar0sIY97SK8TY1vobhp2cwrg7Hetk lPYy+oh7ZXObLiZU/Acj0RFBErlJx6QG+Oqp7UcKjlqppVaznfKNpq1mor8TWzXd yfmfTA3xhhPcX3xDLa9RukfttpAEz/+GWFPUCln9YdbkJob80IjxKnoGvYsaiX4n SUSceJmBQJxzDENy7ooWKQPcjuCPBpWT+e9DiUPgKFk/7pG3yx7pDTZ5eqwzqeUp sbYJLjBk6Su6rni9lAZgMWJ69O/xgevzKQ6bxNAMbeZtrav33ObzHq/aB8aQ7GlX HCwn75fVhe/Q+3USN4p8x2yJ40ErlWc= -----END CERTIFICATE-----Generated at Sun Jan 25 10:59:21 2026 by rpki-client