This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/2B68155C2C9D11EEB080623AC4F9AE02.roa File: 2B68155C2C9D11EEB080623AC4F9AE02.roa (raw, json) Hash identifier: duhm3OcJs6TmE+F67eO7tEr4XPrYJsej9u+KiPXcJ/0= Subject key identifier: 86:8E:BA:AE:41:C0:19:61:46:B1:AC:3D:01:3F:8A:0A:B9:A0:2D:34 Certificate issuer: /CN=A9143848/serialNumber=482D3E700EE5F1A4ADA7516F2E567834E710D135 Certificate serial: 01DF Authority key identifier: 48:2D:3E:70:0E:E5:F1:A4:AD:A7:51:6F:2E:56:78:34:E7:10:D1:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/2B68155C2C9D11EEB080623AC4F9AE02.roa Signing time: Wed 17 Dec 2025 03:22:21 +0000 ROA not before: Wed 17 Dec 2025 03:22:21 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 135615 IP address blocks: 103.175.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.crl rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:10:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143848, serialNumber=482D3E700EE5F1A4ADA7516F2E567834E710D135 Validity Not Before: Dec 17 03:22:21 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=694221ec-5b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:95:5c:4d:44:e2:86:d5:2b:6c:b5:78:5c:78: 3f:e3:50:4d:9e:d7:f7:a8:62:b7:c5:23:11:2d:62: bf:b6:b6:8c:37:71:39:99:03:66:24:3e:46:b6:24: 5a:48:59:fc:b1:28:b7:68:f1:d3:8d:ac:5e:ad:0c: 3d:c4:89:38:b6:1c:e6:14:44:c1:f2:66:23:e6:f6: 91:17:f5:4a:7f:f8:98:98:3e:59:30:0e:d1:52:36: 56:3f:a0:32:48:e6:ae:1c:27:a5:1e:dd:12:4d:63: 0f:51:21:ea:39:10:f3:c4:09:60:09:b0:fd:7b:48: c4:db:c6:73:d6:0e:d0:c3:22:26:de:07:08:d0:01: 17:38:16:f7:cd:17:56:5e:de:7a:0e:f6:9b:d9:18: a4:12:26:a6:f9:40:42:8d:d7:ee:cc:d6:90:7e:39: ed:c3:86:00:7e:af:50:e6:92:8a:87:8c:25:50:a5: 4d:6b:52:77:45:7c:32:db:c6:9e:fb:b4:ed:0b:17: 40:11:15:ec:a9:c8:af:57:c6:bd:05:f3:30:da:62: c0:a3:81:3d:47:0f:b4:91:4e:84:aa:d4:61:56:23: 52:76:db:bd:fe:d8:e7:27:cf:92:9a:5d:6d:25:74: 3b:1f:4b:cf:ca:e7:3a:e8:a4:83:62:e6:dc:fe:7c: 45:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:8E:BA:AE:41:C0:19:61:46:B1:AC:3D:01:3F:8A:0A:B9:A0:2D:34 X509v3 Authority Key Identifier: keyid:48:2D:3E:70:0E:E5:F1:A4:AD:A7:51:6F:2E:56:78:34:E7:10:D1:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/2B68155C2C9D11EEB080623AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.56.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:de:49:60:d4:49:e0:d3:34:37:0c:23:77:c6:ef:83:b6:85: 18:36:c0:64:25:80:02:ef:1f:25:1b:34:49:93:66:ec:c9:36: 73:1b:93:a2:95:8a:d3:22:de:ef:a1:5b:e3:dd:0e:42:5f:01: 29:26:01:e5:66:34:c9:67:71:3e:d7:2d:48:20:c9:76:3b:bb: 43:18:85:b8:a3:82:95:64:f4:df:cc:ef:66:84:7d:aa:a7:7f: 87:f7:92:6f:41:14:26:0f:7e:b8:35:48:d2:ee:2d:18:54:55: dd:fe:44:20:b1:f5:4e:17:58:f3:ec:ff:29:cc:20:ff:d0:bd: 11:08:61:37:28:69:39:03:67:56:6f:d5:b9:81:32:6c:5b:db: e7:3d:12:5d:66:77:84:bf:57:79:01:41:7c:d7:8f:10:73:9a: ef:ac:89:42:a0:7f:ee:f8:8c:ea:f2:c7:78:12:19:fb:03:22: 3d:cb:04:75:5c:7f:55:5d:be:89:dc:24:6b:5f:a6:42:ae:2d: 39:7a:52:f6:f7:9f:5f:79:27:06:8b:3a:be:80:92:57:9e:3d: ab:b7:35:aa:b6:86:91:8a:ec:10:dd:bc:37:65:48:5e:59:0b: 4e:00:89:0a:ed:ae:fb:f7:1c:8f:4e:9a:65:df:4d:67:57:65: 04:c1:f8:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM4NDgxMTAvBgNVBAUTKDQ4MkQzRTcwMEVFNUYxQTRBREE3NTE2RjJFNTY3ODM0 RTcxMEQxMzUwHhcNMjUxMjE3MDMyMjIxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQyMjFlYy01YjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpVcTUTihtUrbLV4XHg/41BNntf3qGK3xSMRLWK/traMN3E5mQNmJD5GtiRa SFn8sSi3aPHTjaxerQw9xIk4thzmFETB8mYj5vaRF/VKf/iYmD5ZMA7RUjZWP6Ay SOauHCelHt0STWMPUSHqORDzxAlgCbD9e0jE28Zz1g7QwyIm3gcI0AEXOBb3zRdW Xt56Dvab2RikEiam+UBCjdfuzNaQfjntw4YAfq9Q5pKKh4wlUKVNa1J3RXwy28ae +7TtCxdAERXsqcivV8a9BfMw2mLAo4E9Rw+0kU6EqtRhViNSdtu9/tjnJ8+Sml1t JXQ7H0vPyuc66KSDYubc/nxFywIDAQABo4IClTCCApEwHQYDVR0OBBYEFIaOuq5B wBlhRrGsPQE/igq5oC00MB8GA1UdIwQYMBaAFEgtPnAO5fGkradRby5WeDTnENE1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Mzg0OC8xNjE4REI3NDJC QjYxMUVFQkI3RDUyNkFDNEY5QUUwMi9TQzAtY0E3bDhhU3RwMUZ2TGxaNE5PY1Ew VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDMC1jQTdsOGFTdHAxRnZMbFo0Tk9jUTBUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDM4NDgvMTYxOERCNzQyQkI2MTFFRUJCN0Q1MjZBQzRGOUFFMDIvMkI2ODE1NUMy QzlEMTFFRUIwODA2MjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrzgwDQYJKoZIhvcNAQELBQADggEBAD3eSWDUSeDTNDcM I3fG74O2hRg2wGQlgALvHyUbNEmTZuzJNnMbk6KVitMi3u+hW+PdDkJfASkmAeVm NMlncT7XLUggyXY7u0MYhbijgpVk9N/M72aEfaqnf4f3km9BFCYPfrg1SNLuLRhU Vd3+RCCx9U4XWPPs/ynMIP/QvREIYTcoaTkDZ1Zv1bmBMmxb2+c9El1md4S/V3kB QXzXjxBzmu+siUKgf+74jOryx3gSGfsDIj3LBHVcf1VdvoncJGtfpkKuLTl6Uvb3 n195JwaLOr6AkleePau3Naq2hpGK7BDdvDdlSF5ZC04AiQrtrvv3HI9OmmXfTWdX ZQTB+E4= -----END CERTIFICATE-----Generated at Sat Dec 20 09:35:54 2025 by rpki-client