This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/3420BD0E902C11EA898EFD7FC4F9AE02.roa File: 3420BD0E902C11EA898EFD7FC4F9AE02.roa (raw, json) Hash identifier: zMHFRzeuetbjiblRszIfOLZgbm+9NxVOAUwOXzRBm58= Subject key identifier: DD:61:85:AF:9B:4E:F4:78:C9:8F:32:BF:B6:47:3B:40:45:23:AC:03 Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 374F Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/3420BD0E902C11EA898EFD7FC4F9AE02.roa Signing time: Fri 28 Nov 2025 14:30:21 +0000 ROA not before: Fri 28 Nov 2025 14:30:21 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133761 IP address blocks: 122.154.20.0/24 maxlen: 24 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 14159 (0x374f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475, serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Validity Not Before: Nov 28 14:30:21 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6929b1fd-c63c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:df:aa:a1:76:5e:2c:84:2f:5e:2d:d6:b2:e5: 97:fc:06:ac:a5:fc:6f:51:87:4f:7b:64:e1:8b:6c: 0c:3e:50:9c:73:55:87:51:d2:75:f5:76:b5:70:2d: dd:e3:c4:ab:0f:d3:c1:57:01:64:8d:8c:b0:6c:2b: 62:27:73:ee:4f:32:8a:c0:ed:8d:2b:1a:51:3b:7f: 1e:e3:99:df:0d:fd:cf:a9:4e:94:cb:1f:ec:56:0b: 23:8d:c6:16:76:ae:ba:6b:09:f4:7e:13:be:d6:26: 63:b9:54:40:4f:be:a2:f6:2f:cd:2d:d6:e8:3d:7c: 55:4d:d8:17:d7:71:a3:4b:d9:fc:4b:4a:f1:08:35: dd:ed:b4:77:f3:38:77:8b:2c:01:d0:82:98:af:e6: a1:80:67:1c:db:15:c9:82:49:5c:fc:13:04:87:21: 2b:f6:12:88:58:ec:a3:19:e7:18:a7:70:2f:8d:50: 72:9c:21:45:48:b2:7f:0b:f0:bd:ab:08:0f:fa:ec: 42:40:f2:a7:e6:fd:70:f4:37:e7:3f:d8:b8:ad:e3: f6:ed:c9:99:61:8d:90:07:4c:f7:fc:40:a0:5b:fe: 22:53:37:7b:8c:3e:74:d2:a4:2a:41:67:03:06:39: c3:7a:29:a8:ee:b9:10:08:84:ed:89:41:e5:2d:8c: 7b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:61:85:AF:9B:4E:F4:78:C9:8F:32:BF:B6:47:3B:40:45:23:AC:03 X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/3420BD0E902C11EA898EFD7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.154.20.0/24 Signature Algorithm: sha256WithRSAEncryption c1:c6:3c:9d:cb:c4:70:5c:fe:a9:35:2c:b0:2b:d7:43:69:dd: 93:f6:fa:db:a2:79:fa:08:7d:58:19:e2:5f:6a:10:f1:6e:79: 39:1a:16:0a:a0:40:bc:a6:5d:e4:1b:e0:d8:e0:7b:84:d2:d2: 81:0d:4a:9d:13:0e:0c:9c:28:2b:d1:e5:32:0e:0a:b7:eb:3c: 90:c4:05:c7:46:52:53:d2:53:88:76:09:39:6a:83:b9:e5:10: 4b:86:e4:21:b7:80:61:f4:ee:73:cd:2a:34:ac:61:9d:1a:8d: e6:aa:b5:e7:9f:66:30:79:bf:cc:1c:b0:d7:49:19:ad:05:e7: 8f:2b:a0:6c:1e:09:3f:c9:db:fa:f2:3d:45:22:7c:1f:cd:0b: 91:6d:c5:9d:bc:59:84:80:4c:d3:10:14:e9:80:f6:2b:6b:4e: c2:f1:52:e1:b3:44:82:f6:7c:3b:e8:6e:17:06:aa:9e:a3:07: 6d:e3:33:d7:7d:5d:9e:8d:d8:52:81:75:5a:eb:3d:d2:d6:4c: 15:4d:5a:94:8a:ec:93:95:fa:63:a9:48:ea:e9:1a:fc:c4:a3: c4:58:36:21:a2:04:eb:7c:e4:18:df:2c:3f:21:db:71:01:98: 6b:3b:4a:e2:3d:b0:90:15:f1:6c:6c:41:dc:63:12:b7:be:15: 29:65:0e:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICN08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjUxMTI4MTQzMDIxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI5YjFmZC1jNjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0N+qoXZeLIQvXi3WsuWX/AaspfxvUYdPe2Thi2wMPlCcc1WHUdJ19Xa1cC3d 48SrD9PBVwFkjYywbCtiJ3PuTzKKwO2NKxpRO38e45nfDf3PqU6Uyx/sVgsjjcYW dq66awn0fhO+1iZjuVRAT76i9i/NLdboPXxVTdgX13GjS9n8S0rxCDXd7bR38zh3 iywB0IKYr+ahgGcc2xXJgklc/BMEhyEr9hKIWOyjGecYp3AvjVBynCFFSLJ/C/C9 qwgP+uxCQPKn5v1w9DfnP9i4reP27cmZYY2QB0z3/ECgW/4iUzd7jD500qQqQWcD BjnDeimo7rkQCITtiUHlLYx7ZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN1hha+b TvR4yY8yv7ZHO0BFI6wDMB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvMzQyMEJEMEU5 MDJDMTFFQTg5OEVGRDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB6mhQwDQYJKoZIhvcNAQELBQADggEBAMHGPJ3LxHBc/qk1 LLAr10Np3ZP2+tuiefoIfVgZ4l9qEPFueTkaFgqgQLymXeQb4Njge4TS0oENSp0T DgycKCvR5TIOCrfrPJDEBcdGUlPSU4h2CTlqg7nlEEuG5CG3gGH07nPNKjSsYZ0a jeaqteefZjB5v8wcsNdJGa0F548roGweCT/J2/ryPUUifB/NC5FtxZ28WYSATNMQ FOmA9itrTsLxUuGzRIL2fDvobhcGqp6jB23jM9d9XZ6N2FKBdVrrPdLWTBVNWpSK 7JOV+mOpSOrpGvzEo8RYNiGiBOt85BjfLD8h23EBmGs7SuI9sJAV8WxsQdxjEre+ FSllDlQ= -----END CERTIFICATE-----Generated at Fri Dec 19 12:40:19 2025 by rpki-client