This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/CF949C10359A11F0AFFF2848C4F9AE02.roa File: CF949C10359A11F0AFFF2848C4F9AE02.roa (raw, json) Hash identifier: XOH6gJKjrvjSKDhXo7GQiBwFnNEiFjJAgya3Fo0FXYg= Subject key identifier: 3F:08:36:3B:8C:D9:BA:3B:A0:62:38:42:2F:D1:2B:B4:D5:92:A2:F6 Certificate issuer: /CN=A913C432/serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Certificate serial: 1022 Authority key identifier: 32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/CF949C10359A11F0AFFF2848C4F9AE02.roa Signing time: Mon 28 Jul 2025 11:00:22 +0000 ROA not before: Mon 28 Jul 2025 11:00:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138981 IP address blocks: 103.138.24.0/22 maxlen: 22 103.138.24.0/24 maxlen: 24 2404:bec0::/32 maxlen: 32 Validation: Failed, certificate revoked on Mon 28 Jul 2025 13:46:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4130 (0x1022) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C432, serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Validity Not Before: Jul 28 11:00:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68875846-b08f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:44:78:0f:13:47:a3:f7:df:b8:b5:5f:28:e1: a4:cc:06:6d:b0:23:2c:9f:fa:64:f8:d3:04:41:2b: 38:a5:1f:1e:5c:64:92:3e:84:66:51:f2:03:3b:fa: 64:99:c4:35:99:ef:85:d8:8b:b2:c8:2e:5b:29:d5: 8d:45:33:37:08:88:97:47:ea:bd:8b:16:bc:c3:96: 15:e9:c2:7f:8d:94:91:95:a7:dc:67:b5:e2:fe:b4: a9:79:c2:e5:08:68:09:db:17:40:ac:06:f9:30:78: 85:c3:b9:51:6b:64:4c:19:c7:d6:a9:02:0a:ac:f7: 57:a4:74:47:e0:ab:42:67:21:68:e4:6a:74:c9:15: 6f:eb:1c:21:16:ff:d6:03:bd:cf:df:ee:12:6f:3f: c8:e6:22:29:96:68:25:5c:64:7f:16:40:a2:27:4b: 2c:7f:7f:8f:eb:9b:8f:c1:23:4a:43:9e:d9:0f:72: dc:d4:31:fe:ee:98:1b:94:e8:1d:d4:a0:c1:d1:b2: 4a:0c:9b:df:f6:7a:6c:6e:16:50:f5:28:36:00:50: 46:2f:f2:72:57:97:26:7e:43:d0:f9:75:06:38:9b: 7d:b6:b5:15:47:71:78:71:58:b6:c4:50:88:83:51: fc:bd:76:df:a6:a4:80:23:cf:3c:8f:2d:37:a4:6f: c3:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:08:36:3B:8C:D9:BA:3B:A0:62:38:42:2F:D1:2B:B4:D5:92:A2:F6 X509v3 Authority Key Identifier: keyid:32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/CF949C10359A11F0AFFF2848C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.24.0/22 IPv6: 2404:bec0::/32 Signature Algorithm: sha256WithRSAEncryption 95:45:b9:d3:4d:f2:03:d9:ff:8e:cb:db:79:97:c5:24:9c:25: d4:2b:9d:09:50:31:5a:13:da:7e:32:b9:8c:6c:8c:9c:bb:a0: 32:84:f3:4c:9d:ad:a4:be:1a:c3:3c:6a:a5:5b:4f:d7:69:07: e6:a9:a8:fe:59:3a:73:e0:8d:dc:57:dd:7a:29:a2:21:e5:12: 53:fb:4f:a6:4f:d2:7b:39:96:85:5d:d7:8a:57:3b:70:cb:7f: 23:ce:ff:4f:cf:da:1c:e0:ee:f5:64:9c:96:09:f0:e2:d8:e0: 23:46:e2:09:fe:e9:93:b9:de:70:60:ab:37:77:e0:30:87:b0: 28:72:f6:45:96:8e:1a:0e:19:76:00:5c:0c:60:be:17:a1:d5: ed:70:7a:e6:07:51:15:30:76:f3:02:8c:d5:00:f2:cc:a4:20: 1e:6e:2a:f3:7b:c7:27:b0:14:06:5f:7b:8d:65:39:d9:95:e6: ff:78:81:2e:c6:6f:eb:03:a3:0c:10:00:55:5a:0b:79:df:a1: a8:94:40:8a:13:41:a8:b7:a9:6f:2b:da:91:96:b6:98:ed:c9: a7:3b:f7:72:f3:37:ae:44:04:d1:6a:12:7a:b3:21:70:c8:9b: cc:08:fc:50:dd:44:51:fa:aa:64:33:99:f5:c3:c1:17:3d:17: f9:49:3a:b8 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICECIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MzIxMTAvBgNVBAUTKDMyOURBMDNEQjk5NDQ3NTE0OThBNUZDQTUzQzg1REFB NjBDQjlBMzIwHhcNMjUwNzI4MTEwMDIyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg3NTg0Ni1iMDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUR4DxNHo/ffuLVfKOGkzAZtsCMsn/pk+NMEQSs4pR8eXGSSPoRmUfIDO/pk mcQ1me+F2IuyyC5bKdWNRTM3CIiXR+q9ixa8w5YV6cJ/jZSRlafcZ7Xi/rSpecLl CGgJ2xdArAb5MHiFw7lRa2RMGcfWqQIKrPdXpHRH4KtCZyFo5Gp0yRVv6xwhFv/W A73P3+4Sbz/I5iIplmglXGR/FkCiJ0ssf3+P65uPwSNKQ57ZD3Lc1DH+7pgblOgd 1KDB0bJKDJvf9npsbhZQ9Sg2AFBGL/JyV5cmfkPQ+XUGOJt9trUVR3F4cVi2xFCI g1H8vXbfpqSAI888jy03pG/DwwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFD8INjuM 2bo7oGI4Qi/RK7TVkqL2MB8GA1UdIwQYMBaAFDKdoD25lEdRSYpfylPIXapgy5oy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQzMi8yRENBQkE2ODVD RjIxMUU5ODQ5MzkyMjRDNEY5QUUwMi9NcDJnUGJtVVIxRkppbF9LVThoZHFtRExt akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01wMmdQYm1VUjFGSmlsX0tVOGhkcW1ETG1qSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M0MzIvMkRDQUJBNjg1Q0YyMTFFOTg0OTM5MjI0QzRGOUFFMDIvQ0Y5NDlDMTAz NTlBMTFGMEFGRkYyODQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnihgwDQQCAAIwBwMFACQEvsAwDQYJKoZIhvcNAQELBQAD ggEBAJVFudNN8gPZ/47L23mXxSScJdQrnQlQMVoT2n4yuYxsjJy7oDKE80ydraS+ GsM8aqVbT9dpB+apqP5ZOnPgjdxX3XopoiHlElP7T6ZP0ns5loVd14pXO3DLfyPO /0/P2hzg7vVknJYJ8OLY4CNG4gn+6ZO53nBgqzd34DCHsChy9kWWjhoOGXYAXAxg vheh1e1weuYHURUwdvMCjNUA8sykIB5uKvN7xyewFAZfe41lOdmV5v94gS7Gb+sD owwQAFVaC3nfoaiUQIoTQai3qW8r2pGWtpjtyac793LzN65EBNFqEnqzIXDIm8wI /FDdRFH6qmQzmfXDwRc9F/lJOrg= -----END CERTIFICATE-----Generated at Mon Dec 22 04:27:20 2025 by rpki-client