This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/ABC651E668F611EFBDC1C345C4F9AE02.roa File: ABC651E668F611EFBDC1C345C4F9AE02.roa (raw, json) Hash identifier: CZLbLDcndy2xxG5xhFEstQ1CfMNrOMxWn16hiuaCB3A= Subject key identifier: C4:5F:C3:78:1E:DA:52:B9:4B:B8:26:28:16:A4:D9:B5:B1:7C:CF:44 Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 03E1 Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/ABC651E668F611EFBDC1C345C4F9AE02.roa Signing time: Tue 02 Dec 2025 23:59:16 +0000 ROA not before: Tue 02 Dec 2025 23:59:16 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 45796 IP address blocks: 103.23.120.0/22 maxlen: 24 115.31.158.0/24 maxlen: 24 115.31.164.0/24 maxlen: 24 223.27.200.0/24 maxlen: 24 223.27.232.0/24 maxlen: 24 223.27.237.0/24 maxlen: 24 2402:9b00::/32 maxlen: 32 2402:9b00:80::/48 maxlen: 48 2402:9b00:82::/48 maxlen: 48 2402:9b00:83::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 23:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 993 (0x3e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A, serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Validity Not Before: Dec 2 23:59:16 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692f7d53-5e4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6e:c1:59:eb:c4:e8:db:b8:0c:18:e3:4f:be: ec:3b:27:ef:92:51:86:11:87:f8:cb:54:6c:6c:8f: 37:a0:49:ae:8f:e3:50:37:88:11:57:c9:d9:1d:36: 8e:8c:f8:56:e8:96:b2:24:67:9d:3a:ea:89:b5:52: 0d:a6:44:bd:73:7a:33:95:ab:7d:46:f8:70:b0:0c: e7:fa:15:2b:5f:51:96:6d:40:6a:cf:46:d6:e8:c9: df:99:67:63:44:84:52:2a:d3:83:47:cd:da:cb:1a: 3b:e7:30:b3:67:d7:91:23:e3:f3:c1:14:86:9a:c4: 0e:eb:e6:45:58:cd:6e:88:01:b8:54:d4:ce:76:46: 1c:bb:70:a2:a0:ac:92:28:b4:56:21:80:a4:73:25: 9b:21:56:fb:0c:83:bc:60:5a:77:5f:64:da:77:fc: 93:92:4e:07:b6:93:c6:b2:a9:c8:d0:7f:2d:ef:a3: 79:f6:58:3a:9a:da:86:17:2a:b0:6c:93:e0:7c:b5: 0d:75:13:a4:03:13:33:19:66:63:a2:5e:95:ac:04: fb:a1:ec:79:1f:79:7f:90:f8:d0:0a:9b:17:fd:5a: 6a:7d:80:43:b7:be:39:35:f1:11:c4:9e:bd:7f:a0: 15:50:e8:9d:3e:08:37:c0:ed:44:cf:53:52:96:64: ce:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:5F:C3:78:1E:DA:52:B9:4B:B8:26:28:16:A4:D9:B5:B1:7C:CF:44 X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/ABC651E668F611EFBDC1C345C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.120.0/22 115.31.158.0/24 115.31.164.0/24 223.27.200.0/24 223.27.232.0/24 223.27.237.0/24 IPv6: 2402:9b00::/32 Signature Algorithm: sha256WithRSAEncryption 82:ec:8c:88:ee:cc:85:b2:31:cf:f5:7d:70:a5:33:52:44:e1: de:56:0a:61:66:aa:7d:c2:86:27:ac:a3:ad:86:0d:f3:df:0e: ce:0f:0e:99:32:82:ee:a4:87:c2:d4:d1:68:5d:9d:66:58:9e: 58:5e:1b:25:c9:c1:8d:0f:72:28:35:7d:fa:ac:b6:bf:57:d0: 57:19:80:6d:21:74:9e:cc:a3:df:5b:19:85:f3:3b:dd:f7:fd: 1c:9e:c2:3c:fc:4c:b4:23:b7:7f:d4:15:36:e9:3f:34:58:2b: 6a:76:fb:e3:54:3f:5c:2b:9b:5d:d5:2e:ef:99:90:65:b1:f5: d2:73:ec:b5:72:61:ad:a8:85:8a:d6:6c:55:c7:50:af:00:40: 5e:65:a8:7d:a2:1a:a4:00:62:29:66:1e:73:37:7d:c1:33:bd: e7:fc:21:28:c3:80:7f:19:9e:c6:ee:9e:0a:e6:bd:25:22:57: 2c:39:fe:e6:1b:19:b1:04:dd:63:c9:a7:7f:6b:1a:35:0b:db: 44:c0:54:cb:b3:39:e5:b9:26:3c:15:23:96:23:cb:43:4a:9c: 7d:76:d9:e6:c1:6b:2c:f7:5a:99:3a:62:7c:62:9f:1f:96:37: 53:3a:2a:d5:d4:2c:17:d0:99:6f:31:96:cb:c8:9f:2f:85:3f: 54:ac:72:48 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICA+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjUxMjAyMjM1OTE2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmN2Q1My01ZTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxm7BWevE6Nu4DBjjT77sOyfvklGGEYf4y1RsbI83oEmuj+NQN4gRV8nZHTaO jPhW6JayJGedOuqJtVINpkS9c3ozlat9RvhwsAzn+hUrX1GWbUBqz0bW6MnfmWdj RIRSKtODR83ayxo75zCzZ9eRI+PzwRSGmsQO6+ZFWM1uiAG4VNTOdkYcu3CioKyS KLRWIYCkcyWbIVb7DIO8YFp3X2Tad/yTkk4HtpPGsqnI0H8t76N59lg6mtqGFyqw bJPgfLUNdROkAxMzGWZjol6VrAT7oex5H3l/kPjQCpsX/VpqfYBDt745NfERxJ69 f6AVUOidPgg3wO1Ez1NSlmTOJQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFMRfw3ge 2lK5S7gmKBak2bWxfM9EMB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvQUJDNjUxRTY2 OEY2MTFFRkJEQzFDMzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAJnF3gDBABzH54DBABzH6QDBADfG8gDBADfG+gDBADfG+0w DQQCAAIwBwMFACQCmwAwDQYJKoZIhvcNAQELBQADggEBAILsjIjuzIWyMc/1fXCl M1JE4d5WCmFmqn3Chieso62GDfPfDs4PDpkygu6kh8LU0WhdnWZYnlheGyXJwY0P cig1ffqstr9X0FcZgG0hdJ7Mo99bGYXzO933/Ryewjz8TLQjt3/UFTbpPzRYK2p2 ++NUP1wrm13VLu+ZkGWx9dJz7LVyYa2ohYrWbFXHUK8AQF5lqH2iGqQAYilmHnM3 fcEzvef8ISjDgH8ZnsbungrmvSUiVyw5/uYbGbEE3WPJp39rGjUL20TAVMuzOeW5 JjwVI5Yjy0NKnH122ebBayz3Wpk6Ynxinx+WN1M6KtXULBfQmW8xlsvIny+FP1Ss ckg= -----END CERTIFICATE-----Generated at Wed Dec 10 16:10:22 2025 by rpki-client