This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/9B528A5AB7D611EDACEDEC79C4F9AE02.roa File: 9B528A5AB7D611EDACEDEC79C4F9AE02.roa (raw, json) Hash identifier: FH0izaarCrBwzCIftVaoJ6CqXAybFsPB0JRY9bebxVQ= Subject key identifier: 11:41:76:C8:ED:F3:1A:47:13:6D:AA:5A:9A:3E:96:30:B7:89:C2:85 Certificate issuer: /CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Certificate serial: 0569 Authority key identifier: 87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/9B528A5AB7D611EDACEDEC79C4F9AE02.roa Signing time: Wed 10 Dec 2025 22:17:24 +0000 ROA not before: Wed 10 Dec 2025 22:17:24 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 64098 IP address blocks: 43.227.108.0/23 maxlen: 23 43.227.108.0/24 maxlen: 24 43.227.109.0/24 maxlen: 24 43.227.110.0/24 maxlen: 24 43.227.111.0/24 maxlen: 24 103.46.220.0/24 maxlen: 24 103.46.221.0/24 maxlen: 24 103.46.222.0/24 maxlen: 24 103.46.223.0/24 maxlen: 24 103.197.146.0/24 maxlen: 24 103.197.147.0/24 maxlen: 24 203.23.68.0/24 maxlen: 24 203.23.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 22:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1385 (0x569) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE13, serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Validity Not Before: Dec 10 22:17:24 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6939f174-f676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:30:99:e2:8e:52:aa:bb:2a:55:54:66:69:95: 14:6e:03:64:35:b8:51:1c:92:62:97:31:64:16:56: 8a:ab:b9:ad:ea:f6:be:8f:a1:42:a8:9f:7c:f7:29: 58:eb:7b:77:dc:9f:93:01:f9:01:0a:d5:3c:f2:1f: ae:99:37:6c:f9:a1:31:f1:b7:de:1a:da:41:9a:58: 0f:a4:f9:b1:3c:7c:ea:ee:87:8f:98:7a:8d:af:08: f4:2f:5c:f0:31:a3:75:c8:e9:70:bf:ba:7d:c3:41: 4c:3f:fa:ab:81:36:cc:cf:4a:b1:2c:66:7b:1f:9a: 7c:c9:0b:4a:41:70:28:c0:cd:be:56:e2:53:72:5a: f1:cb:67:e1:3c:9c:de:7f:0d:be:34:68:6c:5d:e2: 9b:02:52:a0:cc:47:3f:71:7b:0d:0f:a9:f9:eb:8b: af:a5:39:e3:7d:31:f3:80:3e:bf:9f:2b:0d:9c:92: 7c:2f:86:5b:36:6d:80:87:d6:bc:cc:06:a6:5a:7f: e0:ee:c5:ca:47:7b:1a:ff:58:64:60:9c:4f:d4:57: 93:09:a2:dc:79:5c:e9:71:b0:67:13:66:e0:bf:11: d9:fc:0b:43:0d:e6:26:31:86:f4:46:0c:87:81:3f: 40:06:6a:51:81:a0:e8:20:68:82:d3:81:4d:d2:c5: 63:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:41:76:C8:ED:F3:1A:47:13:6D:AA:5A:9A:3E:96:30:B7:89:C2:85 X509v3 Authority Key Identifier: keyid:87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/9B528A5AB7D611EDACEDEC79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.227.108.0/22 103.46.220.0/22 103.197.146.0/23 203.23.68.0/23 Signature Algorithm: sha256WithRSAEncryption 29:f2:dd:43:8a:3d:7a:e0:89:1a:6f:ad:2c:c7:c2:d2:dd:70: 6c:8f:45:e7:e6:fa:3c:4e:9e:1c:a1:63:0d:1a:5e:4f:85:24: 44:b8:ef:ad:33:a1:0d:30:42:bf:4f:02:55:71:93:73:06:71: ac:92:14:67:2f:18:ff:83:16:ea:58:41:a9:18:57:4c:6f:85: 5e:18:24:de:c9:e3:3b:0d:13:07:e7:c4:5f:b5:ab:c7:c4:bf: 70:da:5e:7b:17:84:af:f6:de:a9:7a:9f:04:b8:4a:3f:3d:9c: 4b:05:ac:c6:7a:8d:4d:10:23:9b:1d:f6:07:b1:83:df:24:75: 08:be:f9:55:2d:e7:8c:84:5f:0c:ce:3b:5f:e0:72:08:f4:e1: db:bd:cc:be:55:38:38:44:81:ff:27:cd:f6:91:84:9d:06:bb: 2d:69:31:5d:6f:b1:98:63:ea:bf:bc:ab:dc:f1:a6:4e:71:54: c4:9c:4d:af:81:7a:f9:32:44:a3:ce:16:a5:19:b2:b7:99:47: 01:47:f1:2b:bf:fb:69:a9:01:3a:d9:3a:ed:8e:bc:1b:fd:f0: e7:72:a9:ac:23:e6:35:f8:e7:88:61:11:1e:9b:e1:f3:72:a8: f1:e4:45:9e:cc:9f:79:61:e7:18:ef:62:79:a7:2a:33:d9:bc: 64:09:3e:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMTMxMTAvBgNVBAUTKDg3RDNCRDdEMEFERTA2NTA5RUI4NUFDNkJBNTk0ODlE OTU0MDFGN0YwHhcNMjUxMjEwMjIxNzI0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM5ZjE3NC1mNjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjCZ4o5SqrsqVVRmaZUUbgNkNbhRHJJilzFkFlaKq7mt6va+j6FCqJ989ylY 63t33J+TAfkBCtU88h+umTds+aEx8bfeGtpBmlgPpPmxPHzq7oePmHqNrwj0L1zw MaN1yOlwv7p9w0FMP/qrgTbMz0qxLGZ7H5p8yQtKQXAowM2+VuJTclrxy2fhPJze fw2+NGhsXeKbAlKgzEc/cXsND6n564uvpTnjfTHzgD6/nysNnJJ8L4ZbNm2Ah9a8 zAamWn/g7sXKR3sa/1hkYJxP1FeTCaLceVzpcbBnE2bgvxHZ/AtDDeYmMYb0RgyH gT9ABmpRgaDoIGiC04FN0sVjjQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFBFBdsjt 8xpHE22qWpo+ljC3icKFMB8GA1UdIwQYMBaAFIfTvX0K3gZQnrhaxrpZSJ2VQB9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUxMy84OTM2MzU3ODI2 RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJsQ2V1RnJHdWxsSW5aVkFI MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5TzlmUXJlQmxDZXVGckd1bGxJblpWQUgzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0FFMTMvODkzNjM1NzgyNkZCMTFFQ0E3MTM1RDczQzRGOUFFMDIvOUI1MjhBNUFC N0Q2MTFFREFDRURFQzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIr42wDBAJnLtwDBAFnxZIDBAHLF0QwDQYJKoZIhvcNAQEL BQADggEBACny3UOKPXrgiRpvrSzHwtLdcGyPRefm+jxOnhyhYw0aXk+FJES4760z oQ0wQr9PAlVxk3MGcaySFGcvGP+DFupYQakYV0xvhV4YJN7J4zsNEwfnxF+1q8fE v3DaXnsXhK/23ql6nwS4Sj89nEsFrMZ6jU0QI5sd9gexg98kdQi++VUt54yEXwzO O1/gcgj04du9zL5VODhEgf8nzfaRhJ0Guy1pMV1vsZhj6r+8q9zxpk5xVMScTa+B evkyRKPOFqUZsreZRwFH8Su/+2mpATrZOu2OvBv98Odyqawj5jX454hhER6b4fNy qPHkRZ7Mn3lh5xjvYnmnKjPZvGQJPos= -----END CERTIFICATE-----Generated at Fri Dec 12 01:22:30 2025 by rpki-client