This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/89EA369C2A7411F09A757F45C4F9AE02.roa File: 89EA369C2A7411F09A757F45C4F9AE02.roa (raw, json) Hash identifier: qZ3WHC7Uzfdz/tVUKGRkSRxqqkmsAfOeaIWYl8nNrfQ= Subject key identifier: 62:82:57:B8:44:66:EB:B9:0E:2D:58:DD:E3:C4:C2:E6:18:D4:4F:29 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0CA4 Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/89EA369C2A7411F09A757F45C4F9AE02.roa Signing time: Wed 24 Dec 2025 18:16:04 +0000 ROA not before: Wed 24 Dec 2025 18:16:04 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 58715 IP address blocks: 103.126.20.0/22 maxlen: 23 103.126.21.0/24 maxlen: 24 103.126.22.0/24 maxlen: 24 103.126.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 18:08:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3236 (0xca4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Dec 24 18:16:04 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=694c2de4-1c04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:35:da:61:f5:13:14:6e:d5:70:61:f9:b1:a2: f0:e1:79:14:c5:9f:aa:77:61:f8:cb:a8:49:e4:df: d7:74:f7:ee:85:3e:f8:db:c2:20:20:4e:8b:49:76: 27:b3:23:92:77:00:03:7a:0d:b0:f9:fe:de:87:98: c4:a9:10:30:76:74:c2:37:33:1e:86:ba:ad:31:de: 74:84:2f:13:00:7e:4a:79:d5:af:3a:76:b2:57:82: fe:50:e3:a9:50:4f:79:41:a5:cf:d7:7e:7a:4f:bf: a5:d1:f3:d6:1b:a1:ca:9a:92:46:dd:5f:90:ee:fe: 78:25:70:b4:11:b1:f9:d3:51:5f:bf:c3:65:12:37: 27:a0:dd:b7:b1:ab:35:3d:64:67:52:17:ec:bb:2e: 58:98:04:6f:3f:31:1b:82:99:0d:f3:e7:e9:12:b4: ec:f0:2d:4c:05:89:24:d5:5c:ee:07:da:42:45:bb: ff:e0:f7:41:6f:fb:fc:8e:a9:e4:4a:67:2f:92:38: 80:b3:d8:bf:88:31:62:da:86:9f:e6:96:27:58:de: 9e:09:62:ca:41:ea:eb:ce:06:c7:1c:d0:f0:7a:23: e9:68:ea:12:50:21:a0:be:3b:ec:5e:e2:09:a4:2c: ea:ae:07:78:d4:39:fb:56:cd:3d:a2:7b:16:cd:89: fe:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:82:57:B8:44:66:EB:B9:0E:2D:58:DD:E3:C4:C2:E6:18:D4:4F:29 X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/89EA369C2A7411F09A757F45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.20.0/22 Signature Algorithm: sha256WithRSAEncryption 10:c6:6d:f7:1a:db:f4:e1:89:02:8f:38:23:b9:86:1a:70:47: f8:0c:48:11:db:8f:84:20:a0:a9:fc:d8:dc:b3:6a:f0:a5:9a: 1d:25:0b:db:52:c1:ee:82:90:fe:7a:59:fd:a9:9c:f1:47:ed: 8c:aa:36:4f:b5:32:93:02:ee:82:52:62:d9:68:4f:50:5a:7b: a0:13:fb:68:aa:91:1d:ff:da:12:fd:08:7b:35:8b:d0:7f:e0: ec:68:cc:16:ee:cd:6b:9a:25:13:52:e1:a4:0f:37:fc:55:6b: 96:db:b5:d8:7b:91:91:93:4e:21:73:dc:a4:4d:e3:b0:8c:70: c7:49:34:74:3b:c6:7c:8e:4a:b4:d5:9f:f3:85:2a:14:a3:8a: 2a:6b:7e:58:e4:4e:d9:0b:a2:33:ef:af:c8:a0:41:0b:86:ba: 31:b2:13:b8:bd:c0:52:3a:69:be:92:dc:c8:83:e8:ff:94:fa: 9e:f7:f4:b2:fb:26:47:6d:7e:c5:33:85:32:e1:9c:bd:b3:c1: be:9a:d6:47:16:43:f1:bf:c8:62:7a:b2:ee:1b:32:41:11:02: ab:c0:7e:7a:bb:2e:f7:d4:5f:fe:3f:3c:0e:10:2c:c2:78:9b: 2d:3a:47:d4:31:34:1a:6f:31:2b:35:2b:e6:31:a2:f7:65:26: 88:83:01:db -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUxMjI0MTgxNjA0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTRjMmRlNC0xYzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoTXaYfUTFG7VcGH5saLw4XkUxZ+qd2H4y6hJ5N/XdPfuhT7428IgIE6LSXYn syOSdwADeg2w+f7eh5jEqRAwdnTCNzMehrqtMd50hC8TAH5KedWvOnayV4L+UOOp UE95QaXP1356T7+l0fPWG6HKmpJG3V+Q7v54JXC0EbH501Ffv8NlEjcnoN23sas1 PWRnUhfsuy5YmARvPzEbgpkN8+fpErTs8C1MBYkk1VzuB9pCRbv/4PdBb/v8jqnk SmcvkjiAs9i/iDFi2oaf5pYnWN6eCWLKQerrzgbHHNDweiPpaOoSUCGgvjvsXuIJ pCzqrgd41Dn7Vs09onsWzYn+5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGKCV7hE Zuu5Di1Y3ePEwuYY1E8pMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENCRjMvMUJDNkVCMjAxMUU3MTFFQUI5MDNBQTc5QzRGOUFFMDIvODlFQTM2OUMy QTc0MTFGMDlBNzU3RjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfhQwDQYJKoZIhvcNAQELBQADggEBABDGbfca2/ThiQKP OCO5hhpwR/gMSBHbj4QgoKn82NyzavClmh0lC9tSwe6CkP56Wf2pnPFH7YyqNk+1 MpMC7oJSYtloT1Bae6AT+2iqkR3/2hL9CHs1i9B/4OxozBbuzWuaJRNS4aQPN/xV a5bbtdh7kZGTTiFz3KRN47CMcMdJNHQ7xnyOSrTVn/OFKhSjiiprfljkTtkLojPv r8igQQuGujGyE7i9wFI6ab6S3MiD6P+U+p739LL7JkdtfsUzhTLhnL2zwb6a1kcW Q/G/yGJ6su4bMkERAqvAfnq7LvfUX/4/PA4QLMJ4my06R9QxNBpvMSs1K+Yxovdl JoiDAds= -----END CERTIFICATE-----Generated at Wed Jan 28 00:43:43 2026 by rpki-client