This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/C08B939607D911EDA41A0B25C4F9AE02.roa File: C08B939607D911EDA41A0B25C4F9AE02.roa (raw, json) Hash identifier: bHifsknQi0NkHDmqRWXM1fMiczawE4gokOksn/oKdCA= Subject key identifier: 22:DF:60:5F:84:EC:56:09:BD:52:54:A0:29:96:70:BD:B2:8F:01:CF Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 05FC Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/C08B939607D911EDA41A0B25C4F9AE02.roa Signing time: Sun 11 Jan 2026 13:49:31 +0000 ROA not before: Sun 11 Jan 2026 13:49:31 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 59117 IP address blocks: 103.135.208.0/22 maxlen: 24 103.204.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 22:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1532 (0x5fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Jan 11 13:49:31 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6963aa6b-22ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cf:c9:7f:b3:a6:ec:54:3c:17:f1:38:8c:5b: de:b8:c6:71:44:44:73:0e:21:2d:4c:3b:59:93:4d: 65:a4:a9:a9:bc:9d:44:d0:7f:e5:af:f5:17:c7:c0: 96:fb:74:70:29:20:07:90:57:35:79:df:3b:96:5c: e2:10:a7:d8:d9:5f:ac:b4:47:38:aa:f9:19:bf:f1: ca:3d:a3:9c:a1:5f:98:49:a5:90:d1:81:3f:3a:df: 8f:83:f8:11:0e:08:d1:23:a4:91:fc:4b:c7:0c:9a: 06:05:6b:81:32:ff:6e:ff:26:d9:aa:55:46:e4:d4: 43:d8:a3:9c:76:19:64:1e:a3:dd:32:49:38:8e:41: ec:d7:e1:5b:1c:93:9f:57:bd:3c:4d:ef:88:4f:12: a2:65:70:f8:19:9f:ff:4e:a8:83:de:e2:5e:cf:a2: 15:49:9d:1e:0d:a6:80:da:11:33:06:96:1f:49:16: 76:56:6f:9f:aa:cd:69:40:21:5b:00:13:38:29:f3: 3e:90:55:ea:80:8d:57:2c:3f:52:0b:05:c0:e6:cb: 44:99:23:62:06:46:da:0f:65:f3:06:a3:1e:10:43: f4:a4:95:03:eb:c2:e4:e5:42:35:89:0d:35:91:82: 1c:60:f0:a0:59:46:0d:1c:cc:2e:ac:02:a4:94:3c: 33:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:DF:60:5F:84:EC:56:09:BD:52:54:A0:29:96:70:BD:B2:8F:01:CF X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/C08B939607D911EDA41A0B25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.208.0/22 103.204.13.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:34:0c:1c:30:29:b3:55:f7:aa:7f:33:e5:a8:96:84:8b:08: 2b:58:d0:71:7c:f5:00:8f:ff:e4:c6:4a:83:7b:e4:dc:de:de: 7d:e8:8e:ee:74:9c:15:67:50:e1:28:cc:9e:ee:b8:76:7d:2a: 41:62:9b:51:94:93:f4:3a:2c:e2:aa:b1:71:00:4a:0f:fe:48: e6:5d:9b:86:0e:68:6a:c3:ef:ec:c2:0c:67:83:d2:51:97:88: bf:c9:36:d9:ba:db:d1:31:8c:11:e0:6f:36:01:46:c7:f4:c1: f8:ce:15:f7:b4:5c:cb:bb:9a:aa:8b:39:24:3a:22:eb:36:43: ab:2d:7e:75:d9:07:77:0e:10:3a:3c:ff:c1:ca:5f:22:97:e0: d8:78:13:6b:10:72:0b:f8:9a:7f:b4:fc:2c:08:77:d3:56:b7: fd:9e:f2:ae:da:73:9d:2f:16:d3:60:e4:ba:ed:7d:ab:41:f2: 33:fe:04:59:e2:2c:43:aa:4f:41:16:21:fc:84:8a:07:b8:04: 7a:e0:b0:26:26:b7:0f:bd:4a:a0:b4:c3:db:47:d6:2d:3e:e3: 97:58:00:8d:cf:61:16:fe:74:55:ff:08:9e:4a:ca:ee:ef:7c: 8f:8c:6c:8f:05:15:ae:96:03:24:6a:9e:19:59:92:82:90:ee: 04:f2:e1:50 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjYwMTExMTM0OTMxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTYzYWE2Yi0yMmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAws/Jf7Om7FQ8F/E4jFveuMZxRERzDiEtTDtZk01lpKmpvJ1E0H/lr/UXx8CW +3RwKSAHkFc1ed87llziEKfY2V+stEc4qvkZv/HKPaOcoV+YSaWQ0YE/Ot+Pg/gR DgjRI6SR/EvHDJoGBWuBMv9u/ybZqlVG5NRD2KOcdhlkHqPdMkk4jkHs1+FbHJOf V708Te+ITxKiZXD4GZ//TqiD3uJez6IVSZ0eDaaA2hEzBpYfSRZ2Vm+fqs1pQCFb ABM4KfM+kFXqgI1XLD9SCwXA5stEmSNiBkbaD2XzBqMeEEP0pJUD68Lk5UI1iQ01 kYIcYPCgWUYNHMwurAKklDwzBwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCLfYF+E 7FYJvVJUoCmWcL2yjwHPMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvQzA4QjkzOTYw N0Q5MTFFREE0MUEwQjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnh9ADBABnzA0wDQYJKoZIhvcNAQELBQADggEBAEs0DBww KbNV96p/M+WoloSLCCtY0HF89QCP/+TGSoN75Nze3n3oju50nBVnUOEozJ7uuHZ9 KkFim1GUk/Q6LOKqsXEASg/+SOZdm4YOaGrD7+zCDGeD0lGXiL/JNtm629ExjBHg bzYBRsf0wfjOFfe0XMu7mqqLOSQ6Ius2Q6stfnXZB3cOEDo8/8HKXyKX4Nh4E2sQ cgv4mn+0/CwId9NWt/2e8q7ac50vFtNg5LrtfatB8jP+BFniLEOqT0EWIfyEige4 BHrgsCYmtw+9SqC0w9tH1i0+45dYAI3PYRb+dFX/CJ5Kyu7vfI+MbI8FFa6WAyRq nhlZkoKQ7gTy4VA= -----END CERTIFICATE-----Generated at Sun Jan 18 13:15:03 2026 by rpki-client