This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914597C/63FFB560B92E11ED9CEEF21DC4F9AE02/24C95396C48F11F084A49D1CC4F9AE02.roa File: 24C95396C48F11F084A49D1CC4F9AE02.roa (raw, json) Hash identifier: Bfhzd+IGZ6R99CYO7LD/i6E83Q9Cxr5l+dNjJDeKCCs= Subject key identifier: 3C:2B:F5:32:DF:B2:74:73:56:E3:9E:3D:F5:69:04:CE:D3:D6:48:56 Certificate issuer: /CN=A914597C/serialNumber=570741627FE7CFD594EA2F7F449616B77C2AC842 Certificate serial: 01FB Authority key identifier: 57:07:41:62:7F:E7:CF:D5:94:EA:2F:7F:44:96:16:B7:7C:2A:C8:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VwdBYn_nz9WU6i9_RJYWt3wqyEI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914597C/63FFB560B92E11ED9CEEF21DC4F9AE02/24C95396C48F11F084A49D1CC4F9AE02.roa Signing time: Tue 18 Nov 2025 14:59:13 +0000 ROA not before: Tue 18 Nov 2025 14:59:13 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 212238 IP address blocks: 103.171.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914597C/63FFB560B92E11ED9CEEF21DC4F9AE02/VwdBYn_nz9WU6i9_RJYWt3wqyEI.crl rsync://rpki.apnic.net/member_repository/A914597C/63FFB560B92E11ED9CEEF21DC4F9AE02/VwdBYn_nz9WU6i9_RJYWt3wqyEI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VwdBYn_nz9WU6i9_RJYWt3wqyEI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914597C, serialNumber=570741627FE7CFD594EA2F7F449616B77C2AC842 Validity Not Before: Nov 18 14:59:13 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=691c89c0-ba75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:87:50:ce:f2:df:05:a3:7e:aa:59:ba:69:0f: 30:dd:8b:7a:e0:23:15:5a:e6:07:57:1a:e8:9b:50: 6f:50:c5:9c:5a:01:f7:e7:f6:a1:1a:23:bc:1a:6b: b7:2b:eb:10:5d:99:46:fa:9a:84:c8:11:d3:6c:04: 63:20:c8:4e:75:f2:89:8f:ab:ef:f1:cb:e6:55:61: 78:f9:c5:9b:a4:b9:d7:71:c2:82:3b:ab:0d:e7:3f: 47:8d:14:85:80:cb:4f:5f:83:6f:4b:94:7a:14:9e: b7:54:fa:47:f0:cd:ab:da:c0:6f:49:f0:0c:c2:85: 0b:e0:c4:42:da:1c:c3:3f:ce:a0:cd:a7:fb:cb:73: e5:f4:31:09:f5:c9:ea:bc:29:98:21:64:5e:ec:ed: b8:b1:dd:95:b5:d2:f6:02:13:e7:c6:fb:21:14:0b: 8f:51:a8:fc:50:95:ee:5c:97:8c:52:bc:cb:84:21: bf:a7:8a:77:28:51:36:92:5c:0f:01:d8:8c:a3:02: 9f:f6:68:67:d4:79:69:8e:f9:04:84:54:ab:3d:2d: 4c:aa:ac:f0:ee:4f:bd:6a:ca:97:3c:eb:24:45:b6: f5:1d:34:73:43:d3:24:9d:84:e8:09:ad:9a:19:6b: fb:e5:3a:26:8a:1b:ea:ea:e8:cc:e8:8e:6f:00:45: d7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:2B:F5:32:DF:B2:74:73:56:E3:9E:3D:F5:69:04:CE:D3:D6:48:56 X509v3 Authority Key Identifier: keyid:57:07:41:62:7F:E7:CF:D5:94:EA:2F:7F:44:96:16:B7:7C:2A:C8:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914597C/63FFB560B92E11ED9CEEF21DC4F9AE02/VwdBYn_nz9WU6i9_RJYWt3wqyEI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VwdBYn_nz9WU6i9_RJYWt3wqyEI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914597C/63FFB560B92E11ED9CEEF21DC4F9AE02/24C95396C48F11F084A49D1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.123.0/24 Signature Algorithm: sha256WithRSAEncryption 63:64:82:8b:1e:84:dd:45:24:d5:3c:20:18:74:81:66:cb:5c: 96:27:05:69:bc:0c:7e:be:91:b4:6f:15:ab:e0:97:94:03:1d: b1:e9:e7:ad:37:64:94:10:14:c4:d9:bb:07:5b:7a:fd:79:f7: 04:aa:31:a2:68:be:81:51:76:d6:56:2a:86:10:8d:85:65:7f: 35:26:35:d9:52:2d:e4:be:f2:14:74:fd:6a:77:38:3c:3a:a9: ef:d8:bf:7d:03:cf:54:59:67:68:95:9d:10:1b:76:2a:fd:0f: c6:ca:5b:84:f5:d5:83:36:dd:d7:a7:12:b8:cc:ed:c1:8e:68: 79:ef:ca:33:46:25:01:e4:35:3f:4c:3b:3a:57:80:0b:53:74: b6:1d:d2:ec:c1:a2:68:a3:cf:3a:a1:89:5f:bc:02:40:0c:27: 8a:9e:ee:fb:c6:cd:65:af:42:6a:93:92:6c:65:c9:1d:cb:e5: 27:b4:b3:66:bd:ae:bb:ef:00:a2:3c:bd:7b:fa:55:e3:21:1f: 8f:81:08:5a:88:50:ae:76:2d:b5:88:63:c5:98:a4:0b:e1:e2: 77:74:3e:f0:f1:f1:bc:2b:69:fc:73:32:e4:01:34:1c:0a:ed: 6e:7e:cf:e4:c6:0f:bd:e9:bd:20:9c:f1:05:1e:ba:6d:7c:2d: a2:73:7a:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU5N0MxMTAvBgNVBAUTKDU3MDc0MTYyN0ZFN0NGRDU5NEVBMkY3RjQ0OTYxNkI3 N0MyQUM4NDIwHhcNMjUxMTE4MTQ1OTEzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFjODljMC1iYTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIdQzvLfBaN+qlm6aQ8w3Yt64CMVWuYHVxrom1BvUMWcWgH35/ahGiO8Gmu3 K+sQXZlG+pqEyBHTbARjIMhOdfKJj6vv8cvmVWF4+cWbpLnXccKCO6sN5z9HjRSF gMtPX4NvS5R6FJ63VPpH8M2r2sBvSfAMwoUL4MRC2hzDP86gzaf7y3Pl9DEJ9cnq vCmYIWRe7O24sd2VtdL2AhPnxvshFAuPUaj8UJXuXJeMUrzLhCG/p4p3KFE2klwP AdiMowKf9mhn1HlpjvkEhFSrPS1Mqqzw7k+9asqXPOskRbb1HTRzQ9MknYToCa2a GWv75Tomihvq6ujM6I5vAEXXZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDwr9TLf snRzVuOePfVpBM7T1khWMB8GA1UdIwQYMBaAFFcHQWJ/58/VlOovf0SWFrd8KshC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTk3Qy82M0ZGQjU2MEI5 MkUxMUVEOUNFRUYyMURDNEY5QUUwMi9Wd2RCWW5fbno5V1U2aTlfUkpZV3Qzd3F5 RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z3ZEJZbl9uejlXVTZpOV9SSllXdDN3cXlFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU5N0MvNjNGRkI1NjBCOTJFMTFFRDlDRUVGMjFEQzRGOUFFMDIvMjRDOTUzOTZD NDhGMTFGMDg0QTQ5RDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnq3swDQYJKoZIhvcNAQELBQADggEBAGNkgosehN1FJNU8 IBh0gWbLXJYnBWm8DH6+kbRvFavgl5QDHbHp5603ZJQQFMTZuwdbev159wSqMaJo voFRdtZWKoYQjYVlfzUmNdlSLeS+8hR0/Wp3ODw6qe/Yv30Dz1RZZ2iVnRAbdir9 D8bKW4T11YM23denErjM7cGOaHnvyjNGJQHkNT9MOzpXgAtTdLYd0uzBomijzzqh iV+8AkAMJ4qe7vvGzWWvQmqTkmxlyR3L5Se0s2a9rrvvAKI8vXv6VeMhH4+BCFqI UK52LbWIY8WYpAvh4nd0PvDx8bwrafxzMuQBNBwK7W5+z+TGD73pvSCc8QUeum18 LaJzeqk= -----END CERTIFICATE-----Generated at Wed Dec 3 12:02:53 2025 by rpki-client