This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/9DF3BC14E48011F0AC3D40BC426F56BC.roa File: 9DF3BC14E48011F0AC3D40BC426F56BC.roa (raw, json) Hash identifier: F7JVi3Ysd0rnz27lVTZpYOD/ZVFzooszw+p994EZ3OA= Subject key identifier: E7:31:8D:ED:B4:71:65:F1:56:17:D3:4C:18:C6:B0:DA:05:03:C0:0E Certificate issuer: /CN=A9148BFA/serialNumber=157B0BDE0E3CADB294839BC9815655644DB26E91 Certificate serial: 05D8 Authority key identifier: 15:7B:0B:DE:0E:3C:AD:B2:94:83:9B:C9:81:56:55:64:4D:B2:6E:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/9DF3BC14E48011F0AC3D40BC426F56BC.roa Signing time: Fri 02 Jan 2026 23:18:51 +0000 ROA not before: Fri 02 Jan 2026 23:18:51 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 9009 IP address blocks: 43.226.228.0/24 maxlen: 24 43.226.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/FXsL3g48rbKUg5vJgVZVZE2ybpE.crl rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/FXsL3g48rbKUg5vJgVZVZE2ybpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 22:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148BFA, serialNumber=157B0BDE0E3CADB294839BC9815655644DB26E91 Validity Not Before: Jan 2 23:18:51 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6958525b-a4f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c3:30:79:27:7c:0f:86:ea:e0:20:90:c3:e3: 65:24:7f:1a:af:fe:ea:09:df:00:6c:da:9c:95:92: d9:ba:70:b6:cb:6d:81:2c:14:86:e7:85:03:01:97: 9e:1c:9d:d3:7b:b6:1f:18:e0:46:f6:e1:f2:c9:3c: be:ed:00:78:ad:ae:ab:25:12:91:2b:80:5e:4d:61: 0b:26:f7:4f:de:83:7f:d7:bb:9d:ec:96:ad:0d:63: 4f:4f:f3:78:d9:97:5d:84:51:2c:10:a9:be:06:ad: cb:7c:86:38:dc:3a:ee:b0:58:15:96:7d:d2:b5:8e: 0d:6c:ad:2a:91:e4:7f:c5:96:bb:bc:84:ac:5a:53: df:f8:34:05:cb:4b:49:8b:64:88:db:9e:1a:0b:a3: 26:20:c8:60:86:0f:c7:cb:31:f0:f8:9d:63:88:df: 83:f2:f4:9e:22:b0:3d:fe:ba:78:d9:4e:db:d9:54: 7d:d4:71:06:23:07:77:d8:58:28:7e:42:0f:0c:b8: 2e:30:2a:8c:58:6d:89:2b:76:ea:4a:d0:cc:74:86: 56:eb:54:b9:d7:71:60:cb:a6:68:6e:72:1d:b6:28: ff:48:36:d2:a1:04:05:44:32:82:54:32:19:bf:a9: 42:db:05:15:9d:19:60:64:a7:dc:e4:cf:7c:3b:9f: 6f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:31:8D:ED:B4:71:65:F1:56:17:D3:4C:18:C6:B0:DA:05:03:C0:0E X509v3 Authority Key Identifier: keyid:15:7B:0B:DE:0E:3C:AD:B2:94:83:9B:C9:81:56:55:64:4D:B2:6E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/FXsL3g48rbKUg5vJgVZVZE2ybpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/9DF3BC14E48011F0AC3D40BC426F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.226.228.0/24 43.226.230.0/24 Signature Algorithm: sha256WithRSAEncryption 51:cf:e1:38:68:e1:ae:69:a0:f1:55:e5:6d:22:14:e2:93:fd: 2d:6e:f9:5a:11:76:98:3f:7e:02:f7:d5:ff:80:4d:39:6d:f4: 9c:87:1c:4c:45:21:8f:54:6b:91:c2:cb:fe:96:72:75:70:00: e7:7d:f4:b3:bd:26:07:2e:c4:fb:f2:98:61:54:57:db:f4:a8: e3:ef:c2:25:a6:21:b0:af:78:04:68:6b:da:61:14:31:81:b9: 72:96:dc:02:e8:40:b5:5e:b3:d8:cd:09:7a:f3:78:d4:ed:bd: f5:5d:44:7b:4b:bd:7d:05:4c:12:ba:68:71:a9:c7:b5:ad:2c: ba:41:10:ef:6b:e9:ae:60:2d:d5:53:bb:8d:c1:31:47:e6:4a: a0:ce:5f:ba:2b:96:48:3a:9a:a8:02:55:df:69:31:ca:b6:6d: 72:84:3a:4a:23:02:75:ee:2a:f2:50:c9:1e:c8:03:e6:46:52: 8b:3d:7f:aa:98:20:17:39:d2:59:ff:3a:59:65:02:60:f8:2e: 6b:f7:81:75:5f:da:28:9b:26:e7:c4:83:a7:e2:6a:07:16:f1: 7e:ad:f7:c9:6b:cd:4e:00:ed:22:fc:d2:a2:3d:42:bb:10:7a: 26:90:a0:54:32:5a:c5:ed:fb:e7:6a:21:71:6d:6e:53:96:fc: 5d:82:00:f2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NDhCRkExMTAvBgNVBAUTKDE1N0IwQkRFMEUzQ0FEQjI5NDgzOUJDOTgxNTY1NTY0 NERCMjZFOTEwHhcNMjYwMTAyMjMxODUxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU4NTI1Yi1hNGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcMweSd8D4bq4CCQw+NlJH8ar/7qCd8AbNqclZLZunC2y22BLBSG54UDAZee HJ3Te7YfGOBG9uHyyTy+7QB4ra6rJRKRK4BeTWELJvdP3oN/17ud7JatDWNPT/N4 2ZddhFEsEKm+Bq3LfIY43DrusFgVln3StY4NbK0qkeR/xZa7vISsWlPf+DQFy0tJ i2SI254aC6MmIMhghg/HyzHw+J1jiN+D8vSeIrA9/rp42U7b2VR91HEGIwd32Fgo fkIPDLguMCqMWG2JK3bqStDMdIZW61S513Fgy6ZobnIdtij/SDbSoQQFRDKCVDIZ v6lC2wUVnRlgZKfc5M98O59vuQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOcxje20 cWXxVhfTTBjGsNoFA8AOMB8GA1UdIwQYMBaAFBV7C94OPK2ylIObyYFWVWRNsm6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEJGQS8wNEEyNEMzNDEx NDMxMUVDOTczNjlGNzNDNEY5QUUwMi9GWHNMM2c0OHJiS1VnNXZKZ1ZaVlpFMnli cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZYc0wzZzQ4cmJLVWc1dkpnVlpWWkUyeWJwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhCRkEvMDRBMjRDMzQxMTQzMTFFQzk3MzY5RjczQzRGOUFFMDIvOURGM0JDMTRF NDgwMTFGMEFDM0Q0MEJDNDI2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr4uQDBAAr4uYwDQYJKoZIhvcNAQELBQADggEBAFHP4Tho 4a5poPFV5W0iFOKT/S1u+VoRdpg/fgL31f+ATTlt9JyHHExFIY9Ua5HCy/6WcnVw AOd99LO9JgcuxPvymGFUV9v0qOPvwiWmIbCveARoa9phFDGBuXKW3ALoQLVes9jN CXrzeNTtvfVdRHtLvX0FTBK6aHGpx7WtLLpBEO9r6a5gLdVTu43BMUfmSqDOX7or lkg6mqgCVd9pMcq2bXKEOkojAnXuKvJQyR7IA+ZGUos9f6qYIBc50ln/OlllAmD4 Lmv3gXVf2iibJufEg6fiagcW8X6t98lrzU4A7SL80qI9QrsQeiaQoFQyWsXt++dq IXFtblOW/F2CAPI= -----END CERTIFICATE-----Generated at Sun Jan 18 08:53:45 2026 by rpki-client