This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/1126128EE44C11F0A977367B746F56BC.roa File: 1126128EE44C11F0A977367B746F56BC.roa (raw, json) Hash identifier: pSWGPuR+3QfF60qBVI3dx6S2rLa2FxxsIPqdHQrRbnk= Subject key identifier: 4E:05:19:BA:07:D7:CC:24:AB:59:40:B9:88:FB:F9:FB:98:84:F1:9D Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3B5A Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/1126128EE44C11F0A977367B746F56BC.roa Signing time: Mon 29 Dec 2025 00:19:40 +0000 ROA not before: Mon 29 Dec 2025 00:19:40 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.104.86.0/24 maxlen: 24 103.182.250.0/24 maxlen: 24 103.182.251.0/24 maxlen: 24 103.188.89.0/24 maxlen: 24 103.253.240.0/22 maxlen: 22 144.48.40.0/22 maxlen: 24 203.191.134.0/24 maxlen: 24 203.191.135.0/24 maxlen: 24 211.44.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 14:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15194 (0x3b5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Dec 29 00:19:40 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6951c91c-7f48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b0:3c:d2:ee:9c:e6:2c:86:9e:3b:87:15:9f: 73:60:90:d6:53:07:e1:00:43:fd:b1:65:a1:52:33: 09:96:eb:1c:1e:c9:75:92:76:d9:d1:28:78:70:09: 5b:6d:e2:16:4c:66:86:82:3d:c7:fe:03:37:4c:82: 21:f8:24:33:2f:a1:a7:eb:b9:ca:4f:0b:22:ca:9c: 9f:b4:b7:45:c3:ba:56:7a:80:0f:26:c8:e1:2b:22: bb:c2:66:73:15:07:d1:6d:6c:bf:33:e9:0e:83:ff: ed:aa:5d:cf:8e:5d:00:8b:55:6b:b3:86:df:48:46: b5:c9:73:ea:b2:02:0b:a9:92:fd:6d:04:a8:be:81: 3c:a4:d2:97:3c:b2:6b:3d:03:bf:77:47:1c:3a:df: 5c:14:eb:55:e6:55:3b:5f:f2:67:8a:3b:29:7f:23: 0d:59:71:04:43:5c:9c:0c:c3:c1:92:ef:fd:81:2b: 82:df:29:f5:51:4a:dd:6f:c1:07:cc:72:2e:53:c9: 67:11:ea:9c:0b:b9:07:0f:2c:b1:0f:f4:61:91:b1: 83:73:fc:7d:66:e0:e1:d4:90:a1:f0:ed:ef:d0:c8: 20:2c:6b:ec:d8:02:14:c5:39:5f:3c:3f:9e:87:7f: c1:d8:b5:06:51:fd:e0:22:99:71:3b:7c:f7:8a:62: f2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:05:19:BA:07:D7:CC:24:AB:59:40:B9:88:FB:F9:FB:98:84:F1:9D X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/1126128EE44C11F0A977367B746F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.86.0/24 103.182.250.0/23 103.188.89.0/24 103.253.240.0/22 144.48.40.0/22 203.191.134.0/23 211.44.103.0/24 Signature Algorithm: sha256WithRSAEncryption d2:f2:26:d1:28:92:c2:67:e9:e0:44:e1:59:72:91:cb:0f:ae: 14:68:d9:aa:1b:2c:97:a4:b0:1c:46:9b:d8:38:ac:65:dc:c0: 5b:0c:d8:b5:e1:fa:27:2b:39:b6:20:c4:a2:7f:2b:8a:e2:04: 1a:b2:cc:c5:3b:49:2d:1d:e7:57:73:fe:37:19:a2:96:42:ac: 3f:9d:9e:ed:1d:1e:ea:14:11:3d:c4:6d:43:22:f5:92:e9:16: 30:05:08:45:53:c4:23:ef:e9:62:bc:92:de:25:f0:7b:b5:4a: ef:f3:94:7b:2d:77:c8:12:ee:4e:ef:11:94:5c:e0:97:2e:85: 0e:39:02:12:f6:99:16:31:8a:15:d4:79:d6:da:82:55:22:63: 2b:7d:e0:2b:47:ee:bc:ce:32:88:ae:98:db:01:92:23:96:7c: fc:16:45:7b:50:a8:9c:d5:95:4e:09:13:c9:58:ea:93:6e:19: af:74:05:75:64:07:79:91:e3:a8:fc:de:35:bf:f1:03:71:28: f4:ac:80:46:9a:9f:98:a1:23:1c:4c:09:17:10:5a:e5:a5:bf: 13:6f:2a:ae:78:3f:87:f8:3e:0c:35:55:e8:b5:c1:87:49:0a: 6d:68:4e:3b:44:c7:8b:f0:9a:e3:ce:45:05:e5:58:ad:8f:af: 3a:c2:49:0c -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICO1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjUxMjI5MDAxOTQwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTUxYzkxYy03ZjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bA80u6c5iyGnjuHFZ9zYJDWUwfhAEP9sWWhUjMJluscHsl1knbZ0Sh4cAlb beIWTGaGgj3H/gM3TIIh+CQzL6Gn67nKTwsiypyftLdFw7pWeoAPJsjhKyK7wmZz FQfRbWy/M+kOg//tql3Pjl0Ai1Vrs4bfSEa1yXPqsgILqZL9bQSovoE8pNKXPLJr PQO/d0ccOt9cFOtV5lU7X/JnijspfyMNWXEEQ1ycDMPBku/9gSuC3yn1UUrdb8EH zHIuU8lnEeqcC7kHDyyxD/RhkbGDc/x9ZuDh1JCh8O3v0MggLGvs2AIUxTlfPD+e h3/B2LUGUf3gIplxO3z3imLyFwIDAQABo4ICuTCCArUwHQYDVR0OBBYEFE4FGboH 18wkq1lAuYj7+fuYhPGdMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvMTEyNjEyOEVF NDRDMTFGMEE5NzczNjdCNzQ2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCoDBABnaFYDBAFntvoDBABnvFkDBAJn/fADBAKQMCgDBAHLv4YD BADTLGcwDQYJKoZIhvcNAQELBQADggEBANLyJtEoksJn6eBE4VlykcsPrhRo2aob LJeksBxGm9g4rGXcwFsM2LXh+icrObYgxKJ/K4riBBqyzMU7SS0d51dz/jcZopZC rD+dnu0dHuoUET3EbUMi9ZLpFjAFCEVTxCPv6WK8kt4l8Hu1Su/zlHstd8gS7k7v EZRc4JcuhQ45AhL2mRYxihXUedbaglUiYyt94CtH7rzOMoiumNsBkiOWfPwWRXtQ qJzVlU4JE8lY6pNuGa90BXVkB3mR46j83jW/8QNxKPSsgEaan5ihIxxMCRcQWuWl vxNvKq54P4f4Pgw1Vei1wYdJCm1oTjtEx4vwmuPORQXlWK2PrzrCSQw= -----END CERTIFICATE-----Generated at Fri Jan 2 09:29:45 2026 by rpki-client