This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/4154E51AC91311EBA6226F45C4F9AE02.roa File: 4154E51AC91311EBA6226F45C4F9AE02.roa (raw, json) Hash identifier: wB1sovbilxKTEjHlhwxxiGzC+zOOhC0FN6B3+See3J0= Subject key identifier: DD:61:58:36:A4:CC:DF:2F:9C:B5:1A:A8:C9:B4:AF:24:4F:C4:74:85 Certificate issuer: /CN=A9120FD4/serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Certificate serial: 0D16 Authority key identifier: 62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/4154E51AC91311EBA6226F45C4F9AE02.roa Signing time: Thu 18 Dec 2025 18:15:37 +0000 ROA not before: Thu 18 Dec 2025 18:15:37 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 58768 IP address blocks: 103.140.116.0/23 maxlen: 24 203.190.8.0/21 maxlen: 24 2400:fa40::/32 maxlen: 32 2400:fa40::/48 maxlen: 48 2400:fa40:1::/48 maxlen: 48 2400:fa40:2::/48 maxlen: 48 2400:fa40:3::/48 maxlen: 48 2400:fa40:4::/48 maxlen: 48 2400:fa40:5::/48 maxlen: 48 2400:fa40:a::/48 maxlen: 48 2400:fa40:b::/48 maxlen: 48 2400:fa40:a00::/40 maxlen: 40 2400:fa40:e000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:43:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3350 (0xd16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120FD4, serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Validity Not Before: Dec 18 18:15:37 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=694444c9-0c80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:71:8c:32:76:a8:3f:59:ea:ee:7d:15:87:b7: d0:d7:b2:bd:e4:fc:cf:88:30:1b:5e:e2:37:ea:e5: 75:66:b7:4f:30:a3:3c:03:15:bf:4d:99:32:1d:c7: d3:ea:ce:e0:dc:fb:e4:63:62:2a:a7:b7:1d:14:0b: 8d:e1:d9:93:fd:e2:ea:99:e2:44:ab:71:6f:7b:93: 4c:75:80:de:1a:eb:12:04:ce:ff:62:ae:23:96:8f: 8c:8d:74:62:5a:0a:f8:a4:f6:84:c1:65:ac:72:d7: 35:4a:74:1c:e8:c8:4c:45:44:fd:0d:a7:c7:d7:58: 6d:46:b9:d5:cf:3b:5a:2b:f4:e7:4a:b5:ef:43:35: 18:ac:6d:97:d8:04:89:81:6b:98:54:4a:62:77:cb: 81:e6:16:9f:7d:a8:c4:cd:63:78:96:3c:db:ea:39: 30:2b:ef:9d:29:21:ed:b6:27:7f:fd:dc:f1:f8:b4: 6e:4e:0b:c6:0e:65:ae:43:5d:79:50:7c:e7:53:d2: cb:ad:a7:8b:4f:65:94:e8:6b:35:8c:74:d7:47:73: f0:4e:2c:92:75:7e:44:7a:dd:61:d1:24:42:1f:a0: a2:65:59:5d:60:38:e4:57:7b:90:1f:b1:7b:e1:8e: 54:11:9b:22:67:01:a8:99:0d:a7:3d:01:05:28:5e: c9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:61:58:36:A4:CC:DF:2F:9C:B5:1A:A8:C9:B4:AF:24:4F:C4:74:85 X509v3 Authority Key Identifier: keyid:62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/4154E51AC91311EBA6226F45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.116.0/23 203.190.8.0/21 IPv6: 2400:fa40::/32 Signature Algorithm: sha256WithRSAEncryption cd:57:42:1a:d6:78:ca:4c:16:67:19:8d:6b:73:de:1c:b9:4b: 02:0b:f0:28:85:62:f2:39:89:9c:37:36:d3:e7:1f:49:96:a1: e1:a5:c4:a5:b2:33:fb:40:e5:fc:13:b8:cf:79:a1:47:01:e8: 1b:c6:b6:da:c3:df:5c:01:fd:4a:f1:95:33:31:77:44:34:f3: 16:b7:a2:59:36:f3:20:ee:5b:dd:5e:1d:94:66:33:0c:2f:13: 00:88:6e:de:05:3f:5e:a5:07:69:e0:f8:38:d0:e5:88:b7:af: 7a:2c:93:f5:cd:c4:a6:dc:6c:c6:0b:0a:a9:87:11:91:5a:89: b8:56:a6:2d:b6:7e:bc:6f:f7:14:54:06:90:48:2c:ab:00:ee: b6:b9:ff:bd:8b:6b:e8:f9:68:b0:81:f7:0d:ed:13:a5:6a:eb: 28:04:00:1a:24:8d:f7:d6:86:69:88:55:e0:b5:09:7c:d2:43: 2a:19:3f:66:55:71:27:bf:4f:50:fa:0a:79:60:5f:40:13:d9: 19:07:2d:a8:4a:c1:c9:33:3c:eb:82:59:33:b1:03:90:79:ca: 79:d2:cb:64:07:6d:b0:45:14:7b:dc:3b:41:d7:2a:27:11:fa: 47:38:3d:c7:32:0b:22:8a:a8:13:ab:29:cc:2e:3b:e9:d2:18: 34:cf:f6:0e -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBGRDQxMTAvBgNVBAUTKDYyQzZCMUEwQjJDM0E2MTRGM0NCNDNGQUJCMzFCRjgx NjE2QjU0QjQwHhcNMjUxMjE4MTgxNTM3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ0NDRjOS0wYzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAknGMMnaoP1nq7n0Vh7fQ17K95PzPiDAbXuI36uV1ZrdPMKM8AxW/TZkyHcfT 6s7g3PvkY2Iqp7cdFAuN4dmT/eLqmeJEq3Fve5NMdYDeGusSBM7/Yq4jlo+MjXRi Wgr4pPaEwWWsctc1SnQc6MhMRUT9DafH11htRrnVzztaK/TnSrXvQzUYrG2X2ASJ gWuYVEpid8uB5haffajEzWN4ljzb6jkwK++dKSHttid//dzx+LRuTgvGDmWuQ115 UHznU9LLraeLT2WU6Gs1jHTXR3PwTiySdX5Eet1h0SRCH6CiZVldYDjkV3uQH7F7 4Y5UEZsiZwGomQ2nPQEFKF7JJwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFN1hWDak zN8vnLUaqMm0ryRPxHSFMB8GA1UdIwQYMBaAFGLGsaCyw6YU88tD+rsxv4Fha1S0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEZENC84MDlDMjREMkY1 NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBoVHp5MFA2dXpHX2dXRnJW TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzYXhvTExEcGhUenkwUDZ1ekdfZ1dGclZMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBGRDQvODA5QzI0RDJGNTUxMTFFOTlENUI3RDNEQzRGOUFFMDIvNDE1NEU1MUFD OTEzMTFFQkE2MjI2RjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnjHQDBAPLvggwDQQCAAIwBwMFACQA+kAwDQYJKoZIhvcN AQELBQADggEBAM1XQhrWeMpMFmcZjWtz3hy5SwIL8CiFYvI5iZw3NtPnH0mWoeGl xKWyM/tA5fwTuM95oUcB6BvGttrD31wB/UrxlTMxd0Q08xa3olk28yDuW91eHZRm MwwvEwCIbt4FP16lB2ng+DjQ5Yi3r3osk/XNxKbcbMYLCqmHEZFaibhWpi22frxv 9xRUBpBILKsA7ra5/72La+j5aLCB9w3tE6Vq6ygEABokjffWhmmIVeC1CXzSQyoZ P2ZVcSe/T1D6CnlgX0AT2RkHLahKwckzPOuCWTOxA5B5ynnSy2QHbbBFFHvcO0HX KicR+kc4PccyCyKKqBOrKcwuO+nSGDTP9g4= -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:04 2025 by rpki-client