This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/844EFBDA766C11EF8CE33A86C4F9AE02.roa File: 844EFBDA766C11EF8CE33A86C4F9AE02.roa (raw, json) Hash identifier: atopwMMKiv9hmzF2MWT9t/O+WABZDOgoXI2TZZKE0sM= Subject key identifier: 09:56:36:2B:CC:1E:27:7B:09:80:8F:63:8A:16:43:E6:15:63:40:1C Certificate issuer: /CN=A9162EE1/serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2 Certificate serial: 0478 Authority key identifier: 60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/844EFBDA766C11EF8CE33A86C4F9AE02.roa Signing time: Tue 02 Dec 2025 11:59:40 +0000 ROA not before: Tue 02 Dec 2025 11:59:40 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147049 IP address blocks: 103.173.150.0/23 maxlen: 23 103.173.150.0/24 maxlen: 24 103.173.151.0/24 maxlen: 24 116.204.193.0/24 maxlen: 24 116.204.194.0/24 maxlen: 24 116.204.195.0/24 maxlen: 24 2407:e8c0::/48 maxlen: 48 2407:e8c0:1::/48 maxlen: 48 2407:e8c0:2::/48 maxlen: 48 2407:e8c0:3::/48 maxlen: 48 2407:e8c0:4::/48 maxlen: 48 2407:e8c0:5::/48 maxlen: 48 2407:e8c0:6::/48 maxlen: 48 2407:e8c0:7::/48 maxlen: 48 2407:e8c0:8::/48 maxlen: 48 2407:e8c0:9::/48 maxlen: 48 2407:e8c0:a::/48 maxlen: 48 2407:e8c0:b::/48 maxlen: 48 2407:e8c0:c::/48 maxlen: 48 2407:e8c0:d::/48 maxlen: 48 2407:e8c0:e::/48 maxlen: 48 2407:e8c0:f::/48 maxlen: 48 2407:e8c0:11::/48 maxlen: 48 2407:e8c0:12::/48 maxlen: 48 2407:e8c0:13::/48 maxlen: 48 2407:e8c0:1f::/48 maxlen: 48 2407:e8c0:20::/48 maxlen: 48 2407:e8c0:21::/48 maxlen: 48 2407:e8c0:22::/48 maxlen: 48 2407:e8c0:4a00::/40 maxlen: 40 2407:e8c0:4b00::/40 maxlen: 40 2407:e8c0:4c00::/40 maxlen: 40 2407:e8c0:4d00::/40 maxlen: 40 2407:e8c0:4e00::/40 maxlen: 40 2407:e8c0:4f00::/40 maxlen: 40 2407:e8c0:5000::/40 maxlen: 40 2407:e8c0:5100::/40 maxlen: 40 2407:e8c0:5200::/40 maxlen: 40 2407:e8c0:5300::/40 maxlen: 40 2407:e8c0:5400::/40 maxlen: 40 2407:e8c0:5500::/40 maxlen: 40 2407:e8c0:5600::/40 maxlen: 40 2407:e8c0:5700::/40 maxlen: 40 2407:e8c0:5800::/40 maxlen: 40 2407:e8c0:5a00::/40 maxlen: 40 2407:e8c0:5b00::/40 maxlen: 40 2407:e8c0:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.crl rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:51:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1144 (0x478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162EE1, serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2 Validity Not Before: Dec 2 11:59:40 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=692ed4ac-46a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b5:6d:a7:e9:e3:a4:cd:04:a2:cd:38:67:90: b7:7c:b3:c4:13:13:3c:8a:7b:eb:85:e5:c1:c8:ec: 56:2e:a3:48:09:19:89:f0:da:26:50:42:02:a4:f2: 63:50:40:7d:71:1d:6d:f0:45:2f:ac:16:2e:0f:d4: fe:fd:43:69:37:c8:3e:f9:47:f1:33:36:51:a7:38: c5:ef:26:4f:c8:d4:f5:9e:98:19:f9:e1:f7:55:18: e8:61:e3:3b:bf:94:45:e2:6f:3d:1b:53:3d:69:02: 38:16:cf:0b:01:bf:02:b3:08:56:a0:da:1d:86:2f: 70:14:7f:97:f0:c1:9c:18:7e:6b:c5:a0:e8:91:2b: 09:06:2f:db:b6:63:ef:3a:ae:fb:d0:64:2f:0e:a6: e2:97:19:c3:67:1b:b0:e9:c1:18:34:70:fc:b2:e9: e3:ce:1a:6f:11:ea:90:66:e8:77:cc:be:9b:5f:a9: 78:b2:ce:9e:05:d8:ff:09:ac:f3:ae:79:7f:a3:30: f3:06:2c:6e:ed:1b:20:5d:41:98:be:9d:01:2a:60: 95:91:f3:b5:5d:30:3c:eb:c5:ed:91:a6:4a:45:24: ba:54:71:a2:c6:4f:8b:ac:ed:57:45:c9:23:69:65: 92:2f:d5:29:d2:f3:8f:2b:b2:3c:18:47:94:d9:73: 1c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:56:36:2B:CC:1E:27:7B:09:80:8F:63:8A:16:43:E6:15:63:40:1C X509v3 Authority Key Identifier: keyid:60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/844EFBDA766C11EF8CE33A86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.150.0/23 116.204.193.0-116.204.195.255 IPv6: 2407:e8c0::/44 2407:e8c0:11::-2407:e8c0:13:ffff:ffff:ffff:ffff:ffff 2407:e8c0:1f::-2407:e8c0:22:ffff:ffff:ffff:ffff:ffff 2407:e8c0:4a00::-2407:e8c0:58ff:ffff:ffff:ffff:ffff:ffff 2407:e8c0:5a00::/39 2407:e8c0:6000::/40 Signature Algorithm: sha256WithRSAEncryption b8:bc:1c:49:89:d1:80:af:1c:f8:a5:46:b6:26:09:16:df:d4: 33:ee:a8:94:2b:ca:09:41:84:90:b7:79:32:de:ae:57:5d:be: 55:89:27:56:93:da:aa:03:2f:59:b0:7f:43:87:da:61:1b:3e: 7a:bc:f4:a6:f6:b6:b6:9a:35:d5:77:d2:bf:da:49:da:9c:42: 1c:97:a1:fc:45:10:52:6e:19:c8:5d:25:3d:7c:e8:5f:f7:40: 69:a7:be:45:93:64:32:7a:2f:0d:04:20:3a:f9:ed:27:18:04: cf:05:24:48:8c:71:da:a2:9d:66:4f:8a:35:ad:f4:46:13:00: fa:51:fb:2d:b2:9f:76:87:dd:43:f9:ff:ac:95:28:de:4e:62: 29:57:ec:de:69:83:c1:02:80:75:89:67:31:4c:70:f7:1d:73: b0:22:cd:5c:fe:d3:85:69:69:80:67:83:3d:b5:a6:89:c1:c3: 6f:53:e6:ea:82:15:eb:f6:10:cb:2a:eb:19:3d:a4:a3:3b:6c: 3e:dd:95:ee:5e:bf:70:13:00:61:25:90:39:85:73:2c:f1:89: 70:7c:c6:1f:6c:1b:16:e8:a6:14:bc:59:03:0b:07:7c:6d:03: 4d:77:d2:90:56:ef:c1:7f:f5:43:ec:55:78:1b:77:95:b7:7a: 85:e2:12:6a -----BEGIN CERTIFICATE----- MIIF2zCCBMOgAwIBAgICBHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjJFRTExMTAvBgNVBAUTKDYwNzZCRDBCQTREQjc5N0E3MkE2OEZFRkY5QkZCNTU4 QzQ0Mzk4QjIwHhcNMjUxMjAyMTE1OTQwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJlZDRhYy00NmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7Vtp+njpM0Eos04Z5C3fLPEExM8invrheXByOxWLqNICRmJ8NomUEICpPJj UEB9cR1t8EUvrBYuD9T+/UNpN8g++UfxMzZRpzjF7yZPyNT1npgZ+eH3VRjoYeM7 v5RF4m89G1M9aQI4Fs8LAb8CswhWoNodhi9wFH+X8MGcGH5rxaDokSsJBi/btmPv Oq770GQvDqbilxnDZxuw6cEYNHD8sunjzhpvEeqQZuh3zL6bX6l4ss6eBdj/Cazz rnl/ozDzBixu7RsgXUGYvp0BKmCVkfO1XTA868XtkaZKRSS6VHGixk+LrO1XRckj aWWSL9Up0vOPK7I8GEeU2XMcOQIDAQABo4IC/zCCAvswHQYDVR0OBBYEFAlWNivM Hid7CYCPY4oWQ+YVY0AcMB8GA1UdIwQYMBaAFGB2vQuk23l6cqaP7/m/tVjEQ5iy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkVFMS83NTJENDJFODhG RDIxMUVDOTQ4QTkzN0VDNEY5QUUwMi9ZSGE5QzZUYmVYcHlwb192LWItMVdNUkRt TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lIYTlDNlRiZVhweXBvX3YtYi0xV01SRG1MSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjJFRTEvNzUyRDQyRTg4RkQyMTFFQzk0OEE5MzdFQzRGOUFFMDIvODQ0RUZCREE3 NjZDMTFFRjhDRTMzQTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgYgGCCsGAQUFBwEHAQH/ BHkwdzAaBAIAATAUAwQBZ62WMAwDBAB0zMEDBAJ0zMAwWQQCAAIwUwMHBCQH6MAA ADASAwcAJAfowAARAwcCJAfowAAQMBIDBwAkB+jAAB8DBwAkB+jAACIwEAMGASQH 6MBKAwYAJAfowFgDBgEkB+jAWgMGACQH6MBgMA0GCSqGSIb3DQEBCwUAA4IBAQC4 vBxJidGArxz4pUa2JgkW39Qz7qiUK8oJQYSQt3ky3q5XXb5ViSdWk9qqAy9ZsH9D h9phGz56vPSm9ra2mjXVd9K/2knanEIcl6H8RRBSbhnIXSU9fOhf90Bpp75Fk2Qy ei8NBCA6+e0nGATPBSRIjHHaop1mT4o1rfRGEwD6Ufstsp92h91D+f+slSjeTmIp V+zeaYPBAoB1iWcxTHD3HXOwIs1c/tOFaWmAZ4M9taaJwcNvU+bqghXr9hDLKusZ PaSjO2w+3ZXuXr9wEwBhJZA5hXMs8YlwfMYfbBsW6KYUvFkDCwd8bQNNd9KQVu/B f/VD7FV4G3eVt3qF4hJq -----END CERTIFICATE-----Generated at Fri Dec 5 11:37:56 2025 by rpki-client