This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/096A1DB6D2BA11ED8E06CC13C4F9AE02.roa File: 096A1DB6D2BA11ED8E06CC13C4F9AE02.roa (raw, json) Hash identifier: SxVaSYD8PBsvrx1NB8E9HKd/vHjJ1IDDsPlNRnpIlg4= Subject key identifier: 0A:16:B3:89:CD:6E:99:EF:FD:7E:05:FE:48:19:49:4A:64:41:E4:22 Certificate issuer: /CN=A9160D0A/serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Certificate serial: 0227 Authority key identifier: AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/096A1DB6D2BA11ED8E06CC13C4F9AE02.roa Signing time: Sun 21 Dec 2025 02:23:03 +0000 ROA not before: Sun 21 Dec 2025 02:23:03 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4755 IP address blocks: 103.120.104.0/24 maxlen: 24 103.120.105.0/24 maxlen: 24 103.120.106.0/24 maxlen: 24 103.120.107.0/24 maxlen: 24 175.100.160.0/24 maxlen: 24 175.100.161.0/24 maxlen: 24 175.100.162.0/24 maxlen: 24 175.100.163.0/24 maxlen: 24 2405:a100:10::/44 maxlen: 44 2405:a100:20::/44 maxlen: 44 2405:a100:30::/44 maxlen: 44 2405:a100:40::/44 maxlen: 44 2405:a100:50::/44 maxlen: 44 2405:a100:60::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:28:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 551 (0x227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160D0A, serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Validity Not Before: Dec 21 02:23:03 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69475a07-a98b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:78:61:61:04:ff:5d:b3:81:56:4e:7f:36:de: 4e:20:74:6d:2e:6b:d8:1e:45:c1:ef:9f:6e:f1:c9: ac:f4:42:f8:24:62:00:4a:c7:45:16:e7:92:f4:4e: 10:81:67:ae:68:ca:68:ec:78:fe:57:5a:e5:15:ec: c0:e2:f0:ca:a4:68:f3:f3:0d:cb:01:d4:3f:ce:e4: 4e:57:46:e1:27:e6:cf:b1:2d:e7:a2:16:bd:cf:d0: ae:c7:e1:b8:16:3e:80:c0:60:16:a8:8d:52:6b:e9: c3:f0:f1:96:01:a7:2e:31:be:ab:c5:8f:f7:c9:f8: ee:13:c3:97:87:57:46:c8:cd:99:c4:f0:68:88:73: 50:36:d7:59:cc:fa:00:91:e4:36:9d:40:1f:62:58: 7a:34:a2:2b:68:d0:24:70:dc:02:80:4d:e2:b8:1e: ef:25:de:a8:6b:9c:13:7a:54:df:08:e7:32:55:35: 0d:8c:af:89:c5:bb:94:dc:dd:9e:97:92:65:90:0d: 85:24:ea:3f:ec:13:85:83:41:44:6e:f4:09:7f:c8: a1:25:1d:60:aa:8a:d4:c5:8a:c6:21:ba:8e:6a:de: d7:a3:60:65:55:c7:7e:a9:b4:b2:1d:37:c3:18:b7: f3:aa:a0:6d:e2:de:37:2d:35:10:a0:da:ab:ac:2b: 29:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:16:B3:89:CD:6E:99:EF:FD:7E:05:FE:48:19:49:4A:64:41:E4:22 X509v3 Authority Key Identifier: keyid:AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/096A1DB6D2BA11ED8E06CC13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.104.0/22 175.100.160.0/22 IPv6: 2405:a100:10::-2405:a100:6f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 6e:2a:bc:20:4f:a3:ed:08:ec:37:81:8b:04:41:fe:29:d0:c2: 00:8b:ca:4e:62:16:4d:1f:74:03:da:e0:4f:f1:0f:c0:09:34: 01:f3:e6:4c:b1:80:43:1a:ae:ad:94:b1:83:b4:08:53:24:39: eb:bc:a6:54:cd:dd:c9:1d:cc:f9:3d:48:71:3e:e1:2b:2f:67: 85:47:cb:8b:f1:78:e4:e0:be:d5:50:cf:cc:88:88:30:e6:7f: 17:10:0a:c9:75:a6:13:7f:ec:3a:87:af:b7:7c:8a:bb:c8:97: f3:2a:e6:92:9a:da:b9:61:c2:1f:2d:9f:84:0e:95:58:96:0e: f6:7a:bf:27:1f:4b:81:bd:d8:34:59:33:20:a6:b6:1b:d6:6a: 4a:fd:4a:02:a8:f8:40:12:8b:71:a4:6d:d1:d8:a8:31:56:14: cf:ad:cf:6d:3f:33:dc:f6:c1:ae:7e:7c:7c:80:4e:25:27:5f: 3c:de:3f:df:b2:6e:3b:61:81:6a:0f:04:9e:ec:68:22:0d:2b: c5:f0:da:15:10:ee:2a:fb:98:1f:34:6f:cb:fe:61:6f:ec:45: 82:12:26:d6:5f:5b:f5:7e:01:16:2b:63:36:4a:8b:8f:70:a4: 82:d8:12:2b:f0:85:7f:a4:20:37:85:b1:3c:35:60:b7:f1:d7: 1e:c2:88:c3 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICAicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NjBEMEExMTAvBgNVBAUTKEFDNjM4NUVENTYzRTFGRDZBNjZCM0U0QjUxMERDQzY5 MzBDRDRCMEMwHhcNMjUxMjIxMDIyMzAzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ3NWEwNy1hOThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3hhYQT/XbOBVk5/Nt5OIHRtLmvYHkXB759u8cms9EL4JGIASsdFFueS9E4Q gWeuaMpo7Hj+V1rlFezA4vDKpGjz8w3LAdQ/zuROV0bhJ+bPsS3noha9z9Cux+G4 Fj6AwGAWqI1Sa+nD8PGWAacuMb6rxY/3yfjuE8OXh1dGyM2ZxPBoiHNQNtdZzPoA keQ2nUAfYlh6NKIraNAkcNwCgE3iuB7vJd6oa5wTelTfCOcyVTUNjK+JxbuU3N2e l5JlkA2FJOo/7BOFg0FEbvQJf8ihJR1gqorUxYrGIbqOat7Xo2BlVcd+qbSyHTfD GLfzqqBt4t43LTUQoNqrrCsprQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFAoWs4nN bpnv/X4F/kgZSUpkQeQiMB8GA1UdIwQYMBaAFKxjhe1WPh/Wpms+S1ENzGkwzUsM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEQwQS81NjRBMTM1RUQy MjIxMUVEOUEyMDZDNDZDNEY5QUUwMi9yR09GN1ZZLUg5YW1hejVMVVEzTWFURE5T d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHT0Y3VlktSDlhbWF6NUxVUTNNYVRETlN3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjBEMEEvNTY0QTEzNUVEMjIyMTFFRDlBMjA2QzQ2QzRGOUFFMDIvMDk2QTFEQjZE MkJBMTFFRDhFMDZDQzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBIEAgABMAwDBAJneGgDBAKvZKAwGgQCAAIwFDASAwcEJAWhAAAQAwcEJAWh AABgMA0GCSqGSIb3DQEBCwUAA4IBAQBuKrwgT6PtCOw3gYsEQf4p0MIAi8pOYhZN H3QD2uBP8Q/ACTQB8+ZMsYBDGq6tlLGDtAhTJDnrvKZUzd3JHcz5PUhxPuErL2eF R8uL8Xjk4L7VUM/MiIgw5n8XEArJdaYTf+w6h6+3fIq7yJfzKuaSmtq5YcIfLZ+E DpVYlg72er8nH0uBvdg0WTMgprYb1mpK/UoCqPhAEotxpG3R2KgxVhTPrc9tPzPc 9sGufnx8gE4lJ1883j/fsm47YYFqDwSe7GgiDSvF8NoVEO4q+5gfNG/L/mFv7EWC EibWX1v1fgEWK2M2SouPcKSC2BIr8IV/pCA3hbE8NWC38dcewojD -----END CERTIFICATE-----Generated at Wed Dec 24 17:39:43 2025 by rpki-client