This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/20B5026203BC11EB9D8B117AC4F9AE02.roa File: 20B5026203BC11EB9D8B117AC4F9AE02.roa (raw, json) Hash identifier: 8YKP2RbGJI18Eivm8l0W85evj9/KsafIZVFjCR28kTw= Subject key identifier: EC:8A:9C:0C:72:1B:CD:BA:DB:50:6D:09:7C:F4:C3:3B:8E:B9:3D:D7 Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 3752 Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/20B5026203BC11EB9D8B117AC4F9AE02.roa Signing time: Fri 28 Nov 2025 14:30:23 +0000 ROA not before: Fri 28 Nov 2025 14:30:23 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 135566 IP address blocks: 122.155.26.0/24 maxlen: 24 122.155.27.0/24 maxlen: 24 202.139.197.0/24 maxlen: 24 202.139.198.0/24 maxlen: 24 202.139.199.0/24 maxlen: 24 202.139.200.0/24 maxlen: 24 202.139.201.0/24 maxlen: 24 202.139.202.0/24 maxlen: 24 202.139.203.0/24 maxlen: 24 202.139.204.0/24 maxlen: 24 202.139.205.0/24 maxlen: 24 202.139.206.0/24 maxlen: 24 202.139.207.0/24 maxlen: 24 202.139.208.0/24 maxlen: 24 202.139.209.0/24 maxlen: 24 202.139.210.0/24 maxlen: 24 202.139.211.0/24 maxlen: 24 202.139.212.0/24 maxlen: 24 202.139.213.0/24 maxlen: 24 202.139.215.0/24 maxlen: 24 202.139.216.0/24 maxlen: 24 202.139.217.0/24 maxlen: 24 2001:c38:90a0::/44 maxlen: 44 2001:c38:90a9::/48 maxlen: 48 2001:c38:90ae::/48 maxlen: 48 2001:c38:90af::/48 maxlen: 48 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 14162 (0x3752) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475, serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Validity Not Before: Nov 28 14:30:23 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6929b1ff-57ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:4e:d2:2e:9f:67:bd:43:a3:b4:24:26:be:0f: b0:c1:5e:a8:9e:4a:2f:87:f4:33:a2:5c:60:53:2f: 19:8c:70:f4:43:ec:f0:37:41:95:6a:a3:a8:32:12: c1:64:8c:3c:39:bf:c7:f7:eb:c1:19:e8:db:7c:0d: a3:e3:60:38:1c:58:83:fd:78:e5:65:9d:04:5d:cb: cd:15:8c:ab:04:69:b3:3b:ac:d9:2a:cb:3b:bc:d8: f5:21:18:5b:8f:ca:ca:ff:30:68:f6:09:8d:c2:1d: 68:c1:c2:4f:ad:dc:20:db:b0:9d:4b:4b:dd:a2:c5: b5:72:da:28:ab:02:7b:c8:72:a3:45:e7:0a:30:2d: 9b:a0:f3:eb:f7:db:38:39:94:2d:95:2f:ba:94:16: da:97:19:2d:79:51:ee:dd:cc:de:3d:b3:a2:31:6a: 5e:18:49:68:d0:0c:a1:90:4c:e4:b5:73:a0:98:8b: 8a:75:9e:b5:0b:77:c9:13:04:b7:7a:c9:8f:5d:e8: ff:5e:9a:38:31:98:5e:52:a0:71:d3:3d:5b:78:44: f4:87:21:55:40:91:9a:3c:4f:a6:db:0b:31:52:d2: 1b:45:9f:bd:aa:c6:af:b7:c1:97:e9:f9:14:23:44: e0:01:9a:63:82:6d:aa:d6:f1:04:dc:ed:37:d8:23: be:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:8A:9C:0C:72:1B:CD:BA:DB:50:6D:09:7C:F4:C3:3B:8E:B9:3D:D7 X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/20B5026203BC11EB9D8B117AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.155.26.0/23 202.139.197.0-202.139.213.255 202.139.215.0-202.139.217.255 IPv6: 2001:c38:90a0::/44 Signature Algorithm: sha256WithRSAEncryption a5:7e:35:7a:62:27:f6:77:56:2f:e9:46:5c:1c:e0:33:41:f0: 83:59:3f:8f:b5:f3:30:26:96:e4:0f:3a:1f:6b:9a:1b:9a:be: b3:88:67:01:a3:b4:1e:0b:90:86:13:34:18:4a:bc:6d:4e:1f: 2d:54:e8:1c:c1:15:ef:a6:ec:1b:6d:03:bd:cc:58:22:a1:c6: 8c:e0:55:e3:f5:38:a7:f1:49:b2:af:ad:c7:35:cd:b2:67:45: 95:3d:d2:05:17:1d:0e:ab:23:18:25:01:96:5b:4c:76:96:8a: 2a:9d:fb:d5:fd:34:ab:43:2a:99:52:88:cc:06:78:f0:ae:66: 64:d8:de:40:a6:04:ce:07:29:24:1e:e3:c1:bc:fb:c5:eb:19: 4c:6a:d2:f5:c5:a6:d7:38:5d:39:95:31:08:4c:48:7a:4f:b2: 10:cf:ec:ba:a0:07:f9:b4:4b:f8:9f:27:dd:6b:3a:09:30:a4: 8d:7d:8b:ce:03:7b:84:53:ad:08:d8:a8:75:5a:77:a8:76:44: 60:69:3f:51:fc:a7:16:92:8a:30:78:e3:c1:b1:cb:20:17:e5: 06:ff:fb:0a:a7:3e:d7:1e:4c:fe:ee:e5:00:92:d1:e9:c4:1c: 9f:9e:a6:f6:11:4b:fd:3b:54:bb:5e:2e:4b:07:3c:e4:59:d1: a8:41:73:d4 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICN1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjUxMTI4MTQzMDIzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI5YjFmZi01N2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA507SLp9nvUOjtCQmvg+wwV6onkovh/QzolxgUy8ZjHD0Q+zwN0GVaqOoMhLB ZIw8Ob/H9+vBGejbfA2j42A4HFiD/XjlZZ0EXcvNFYyrBGmzO6zZKss7vNj1IRhb j8rK/zBo9gmNwh1owcJPrdwg27CdS0vdosW1ctooqwJ7yHKjRecKMC2boPPr99s4 OZQtlS+6lBbalxkteVHu3czePbOiMWpeGElo0AyhkEzktXOgmIuKdZ61C3fJEwS3 esmPXej/Xpo4MZheUqBx0z1beET0hyFVQJGaPE+m2wsxUtIbRZ+9qsavt8GX6fkU I0TgAZpjgm2q1vEE3O032CO+MwIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFOyKnAxy G82621BtCXz0wzuOuT3XMB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvMjBCNTAyNjIw M0JDMTFFQjlEOEIxMTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCgEAgABMCIDBAF6mxowDAMEAMqLxQMEAcqL1DAMAwQAyovXAwQByovYMA8E AgACMAkDBwQgAQw4kKAwDQYJKoZIhvcNAQELBQADggEBAKV+NXpiJ/Z3Vi/pRlwc 4DNB8INZP4+18zAmluQPOh9rmhuavrOIZwGjtB4LkIYTNBhKvG1OHy1U6BzBFe+m 7BttA73MWCKhxozgVeP1OKfxSbKvrcc1zbJnRZU90gUXHQ6rIxglAZZbTHaWiiqd +9X9NKtDKplSiMwGePCuZmTY3kCmBM4HKSQe48G8+8XrGUxq0vXFptc4XTmVMQhM SHpPshDP7LqgB/m0S/ifJ91rOgkwpI19i84De4RTrQjYqHVad6h2RGBpP1H8pxaS ijB448GxyyAX5Qb/+wqnPtceTP7u5QCS0enEHJ+epvYRS/07VLteLksHPORZ0ahB c9Q= -----END CERTIFICATE-----Generated at Fri Dec 19 12:40:20 2025 by rpki-client