This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/BCA3B016F72811EE8C4CBB51C4F9AE02.roa File: BCA3B016F72811EE8C4CBB51C4F9AE02.roa (raw, json) Hash identifier: bKP3OXB8HXzWQNmzw8HSfjC5FzHFmih7ZWDafeEtizA= Subject key identifier: 1F:42:02:C5:12:67:2C:90:09:D4:63:E6:C3:CB:FE:7D:6B:49:90:50 Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1A33 Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/BCA3B016F72811EE8C4CBB51C4F9AE02.roa Signing time: Thu 08 Jan 2026 17:13:58 +0000 ROA not before: Thu 08 Jan 2026 17:13:58 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 55836 IP address blocks: 118.215.152.0/21 maxlen: 21 122.252.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 16:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6707 (0x1a33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A, serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Jan 8 17:13:58 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695fe5d6-0aac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:fa:d5:80:c7:1e:34:6b:bb:f1:82:b8:d5:55: 7a:86:eb:46:9b:79:5a:58:7e:d1:1d:12:97:fa:27: be:c3:c0:7e:bf:73:b5:68:b8:cc:61:3e:e6:b3:63: e4:29:25:4e:95:f8:5d:70:e8:9f:f9:25:7b:af:42: 72:77:a9:e3:bb:37:19:b1:09:91:51:6a:6b:2c:c4: 68:34:c4:b0:d3:03:f7:00:63:46:8e:6a:03:ef:e8: 0f:4b:e4:2e:71:49:7f:43:9d:f5:18:08:a7:83:52: f4:68:45:f6:47:79:21:1b:d8:66:ba:b2:66:7f:58: 3f:1c:5f:84:4a:36:0f:59:a6:b6:49:a9:e4:16:2c: f9:b7:36:91:6a:b3:66:4d:9f:d2:55:6f:cf:99:4e: 13:1f:ae:92:70:d5:cb:b0:50:43:bf:f9:d2:ae:96: 4a:aa:cd:4e:69:37:03:70:43:e8:e7:1c:bb:18:fd: 32:aa:af:e3:74:eb:d6:72:3a:74:62:c1:3c:38:5c: 22:26:04:82:c1:4d:01:32:8b:7c:35:0a:6b:eb:1a: e8:9b:48:b1:36:82:ce:57:eb:9c:8b:5a:a7:4f:e8: 66:3a:2e:d6:80:63:9b:5a:db:0e:d6:d0:ee:a0:a4: f4:58:ee:8a:8a:7e:28:48:72:76:ce:bb:14:21:02: d8:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:42:02:C5:12:67:2C:90:09:D4:63:E6:C3:CB:FE:7D:6B:49:90:50 X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/BCA3B016F72811EE8C4CBB51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.215.152.0/21 122.252.136.0/21 Signature Algorithm: sha256WithRSAEncryption 37:3c:cc:ec:33:d0:73:3d:28:42:59:d3:cc:57:08:d0:b9:20: fd:97:6a:e9:1a:b9:eb:04:4a:d5:e5:6b:de:ff:66:42:13:42: c2:45:5d:94:df:b5:f8:e7:0c:c8:c6:b3:94:fa:22:ab:27:ed: c9:6a:f0:f7:3b:4c:1b:e2:d4:f9:06:22:94:f9:69:8d:81:6c: ed:da:6e:21:49:ff:82:a5:3e:0a:cf:2f:a8:38:a2:8a:57:22: 82:db:3c:c9:ba:10:cb:37:42:1e:d3:7f:be:76:cd:4b:1d:c7: bb:55:ed:b4:0a:de:16:25:76:e6:19:15:4e:6a:f7:7c:2e:8a: 37:ea:a1:04:9a:2d:54:ae:36:7c:40:68:67:2c:72:86:f5:23: 9b:ba:55:36:ac:45:84:4b:44:95:92:fd:15:4d:8e:71:37:fc: 03:7e:7d:4c:c9:8a:e7:4c:53:46:b1:99:11:0f:75:c5:21:cd: ca:67:85:a0:69:94:be:72:70:fa:33:dd:c6:f5:f9:6c:f0:6b: 33:8c:25:b6:ba:a1:c6:ab:8c:08:79:80:96:bc:7f:d4:98:52: e6:c9:ca:28:b6:6c:bc:f9:7a:b2:5c:3d:03:69:0a:65:6c:90: 3c:2b:77:e7:99:bf:80:fb:56:21:08:d0:e0:60:27:05:b7:a1: d9:34:63:4a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjYwMTA4MTcxMzU4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVmZTVkNi0wYWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkfrVgMceNGu78YK41VV6hutGm3laWH7RHRKX+ie+w8B+v3O1aLjMYT7ms2Pk KSVOlfhdcOif+SV7r0Jyd6njuzcZsQmRUWprLMRoNMSw0wP3AGNGjmoD7+gPS+Qu cUl/Q531GAing1L0aEX2R3khG9hmurJmf1g/HF+ESjYPWaa2SankFiz5tzaRarNm TZ/SVW/PmU4TH66ScNXLsFBDv/nSrpZKqs1OaTcDcEPo5xy7GP0yqq/jdOvWcjp0 YsE8OFwiJgSCwU0BMot8NQpr6xrom0ixNoLOV+uci1qnT+hmOi7WgGObWtsO1tDu oKT0WO6Kin4oSHJ2zrsUIQLYtQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB9CAsUS ZyyQCdRj5sPL/n1rSZBQMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvQkNBM0IwMTZG NzI4MTFFRThDNENCQjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAN215gDBAN6/IgwDQYJKoZIhvcNAQELBQADggEBADc8zOwz 0HM9KEJZ08xXCNC5IP2XaukauesEStXla97/ZkITQsJFXZTftfjnDMjGs5T6Iqsn 7clq8Pc7TBvi1PkGIpT5aY2BbO3abiFJ/4KlPgrPL6g4oopXIoLbPMm6EMs3Qh7T f752zUsdx7tV7bQK3hYlduYZFU5q93wuijfqoQSaLVSuNnxAaGcscob1I5u6VTas RYRLRJWS/RVNjnE3/AN+fUzJiudMU0axmREPdcUhzcpnhaBplL5ycPoz3cb1+Wzw azOMJba6ocarjAh5gJa8f9SYUubJyii2bLz5erJcPQNpCmVskDwrd+eZv4D7ViEI 0OBgJwW3odk0Y0o= -----END CERTIFICATE-----Generated at Wed Jan 21 13:23:33 2026 by rpki-client