This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142BA8/DE78D58C720911EC9D93BB6CC4F9AE02/4A9AA792720D11EC90C07770C4F9AE02.roa File: 4A9AA792720D11EC90C07770C4F9AE02.roa (raw, json) Hash identifier: /hJF4+9z5MGZrJ3Wdj1OHWA0NOcwtwcmrngTW3hyYNk= Subject key identifier: BB:DE:1A:12:2C:72:BE:53:F4:CC:E0:DD:91:8F:A8:7F:4F:DA:12:22 Certificate issuer: /CN=A9142BA8/serialNumber=CA559412E2A238021A94EF2718EDB001EF96EA85 Certificate serial: 046D Authority key identifier: CA:55:94:12:E2:A2:38:02:1A:94:EF:27:18:ED:B0:01:EF:96:EA:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ylWUEuKiOAIalO8nGO2wAe-W6oU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142BA8/DE78D58C720911EC9D93BB6CC4F9AE02/4A9AA792720D11EC90C07770C4F9AE02.roa Signing time: Wed 10 Dec 2025 22:39:06 +0000 ROA not before: Wed 10 Dec 2025 22:39:06 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 149425 IP address blocks: 103.179.60.0/23 maxlen: 24 2001:df0:49c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142BA8/DE78D58C720911EC9D93BB6CC4F9AE02/ylWUEuKiOAIalO8nGO2wAe-W6oU.crl rsync://rpki.apnic.net/member_repository/A9142BA8/DE78D58C720911EC9D93BB6CC4F9AE02/ylWUEuKiOAIalO8nGO2wAe-W6oU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ylWUEuKiOAIalO8nGO2wAe-W6oU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1133 (0x46d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142BA8, serialNumber=CA559412E2A238021A94EF2718EDB001EF96EA85 Validity Not Before: Dec 10 22:39:06 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6939f68a-02c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1b:20:8c:3c:15:98:28:8a:a7:24:5a:3d:68: 28:79:60:73:7c:a6:5d:b3:4f:35:58:02:46:64:a3: 5f:20:d8:24:32:2f:f4:d4:d5:8a:23:2c:4c:0b:9e: c3:a2:62:35:29:38:7b:65:53:1c:9c:b5:f4:9b:9b: 9b:61:69:97:91:ac:61:80:8e:99:3d:a0:b8:44:20: f6:29:c0:ff:4f:0d:df:b4:0e:e8:42:6b:ab:f0:9e: f2:5a:c9:5b:11:fb:c6:8a:63:8f:88:ea:15:1e:54: f1:dd:08:01:47:28:bc:23:6d:e0:17:ab:65:be:51: ca:1b:7c:69:23:03:a6:e5:7b:ef:b8:85:71:cf:f4: 88:fd:71:48:4a:c7:d7:02:e9:6f:4f:58:72:eb:40: fa:76:45:4e:73:37:31:0a:32:1e:a5:51:51:a5:b5: 50:03:bb:08:ba:5f:45:14:61:fc:a7:a8:1d:e9:d3: 1c:58:07:a8:b0:e8:62:e8:75:ea:5c:dd:09:c8:73: 30:75:a6:ad:fb:05:a5:88:4f:07:7b:d7:06:9e:4d: ab:e8:b3:42:39:c7:a3:86:65:11:f5:02:b1:3f:91: ec:1c:fd:e4:05:d0:56:4b:e3:80:49:a5:0e:06:43: 00:ac:4a:f3:22:a1:ee:1b:16:ec:5b:e1:bd:86:ed: ae:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DE:1A:12:2C:72:BE:53:F4:CC:E0:DD:91:8F:A8:7F:4F:DA:12:22 X509v3 Authority Key Identifier: keyid:CA:55:94:12:E2:A2:38:02:1A:94:EF:27:18:ED:B0:01:EF:96:EA:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142BA8/DE78D58C720911EC9D93BB6CC4F9AE02/ylWUEuKiOAIalO8nGO2wAe-W6oU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ylWUEuKiOAIalO8nGO2wAe-W6oU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142BA8/DE78D58C720911EC9D93BB6CC4F9AE02/4A9AA792720D11EC90C07770C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.60.0/23 IPv6: 2001:df0:49c0::/48 Signature Algorithm: sha256WithRSAEncryption 5b:40:46:02:04:5f:38:fa:e6:eb:75:6b:a0:df:e6:bf:c3:8e: 44:87:33:e1:69:c9:57:59:3a:83:55:2e:69:a0:88:4e:0d:9a: 8d:7e:40:10:df:00:5f:2b:84:65:be:5a:29:91:f4:b3:e1:c0: a0:80:3f:d1:22:68:55:86:97:df:ab:a2:e4:20:40:27:fa:ba: 2c:5d:0a:e2:67:29:b7:ea:ec:26:3d:f3:50:f7:ba:d6:52:fb: fd:94:5b:51:1e:ab:94:a6:41:6c:76:b2:3b:3e:cb:f4:3a:77: e3:fe:f2:ec:97:c3:3a:0d:c0:89:54:0d:f5:b3:2d:fd:24:ea: 78:49:ac:92:39:5f:1d:9d:55:8f:fd:8f:a4:d1:cb:ee:92:8e: ac:34:7f:63:14:2e:5f:55:73:92:cf:c8:d4:1f:79:b7:ef:89: 21:ea:ae:54:d1:0a:cf:a2:b0:61:bf:28:49:41:a3:9f:e1:e1: d8:a8:1f:95:08:05:40:4c:56:0a:d1:34:d8:5d:3e:91:e0:6c: a6:d1:4b:31:68:eb:42:30:e6:ea:0a:d6:6f:2c:14:80:f7:55: 56:92:62:fc:4d:ef:d8:39:63:da:01:27:90:a2:d3:f5:9f:fa: 6a:76:b8:00:23:c5:48:72:89:6a:f7:75:6b:96:c3:25:3d:87: c9:5a:b9:14 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJCQTgxMTAvBgNVBAUTKENBNTU5NDEyRTJBMjM4MDIxQTk0RUYyNzE4RURCMDAx RUY5NkVBODUwHhcNMjUxMjEwMjIzOTA2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM5ZjY4YS0wMmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhsgjDwVmCiKpyRaPWgoeWBzfKZds081WAJGZKNfINgkMi/01NWKIyxMC57D omI1KTh7ZVMcnLX0m5ubYWmXkaxhgI6ZPaC4RCD2KcD/Tw3ftA7oQmur8J7yWslb EfvGimOPiOoVHlTx3QgBRyi8I23gF6tlvlHKG3xpIwOm5XvvuIVxz/SI/XFISsfX AulvT1hy60D6dkVOczcxCjIepVFRpbVQA7sIul9FFGH8p6gd6dMcWAeosOhi6HXq XN0JyHMwdaat+wWliE8He9cGnk2r6LNCOcejhmUR9QKxP5HsHP3kBdBWS+OASaUO BkMArErzIqHuGxbsW+G9hu2uVwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLveGhIs cr5T9Mzg3ZGPqH9P2hIiMB8GA1UdIwQYMBaAFMpVlBLiojgCGpTvJxjtsAHvluqF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkJBOC9ERTc4RDU4Qzcy MDkxMUVDOUQ5M0JCNkNDNEY5QUUwMi95bFdVRXVLaU9BSWFsTzhuR08yd0FlLVc2 b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lsV1VFdUtpT0FJYWxPOG5HTzJ3QWUtVzZvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDJCQTgvREU3OEQ1OEM3MjA5MTFFQzlEOTNCQjZDQzRGOUFFMDIvNEE5QUE3OTI3 MjBEMTFFQzkwQzA3NzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnszwwDwQCAAIwCQMHACABDfBJwDANBgkqhkiG9w0BAQsF AAOCAQEAW0BGAgRfOPrm63VroN/mv8OORIcz4WnJV1k6g1UuaaCITg2ajX5AEN8A XyuEZb5aKZH0s+HAoIA/0SJoVYaX36ui5CBAJ/q6LF0K4mcpt+rsJj3zUPe61lL7 /ZRbUR6rlKZBbHayOz7L9Dp34/7y7JfDOg3AiVQN9bMt/STqeEmskjlfHZ1Vj/2P pNHL7pKOrDR/YxQuX1Vzks/I1B95t++JIequVNEKz6KwYb8oSUGjn+Hh2KgflQgF QExWCtE02F0+keBsptFLMWjrQjDm6grWbywUgPdVVpJi/E3v2Dlj2gEnkKLT9Z/6 ana4ACPFSHKJavd1a5bDJT2HyVq5FA== -----END CERTIFICATE-----Generated at Tue Dec 23 20:06:05 2025 by rpki-client