This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165283/1EDDB9A0BFBB11F0ACBDC03AC4F9AE02/8738BCECCC8711F0BFB7CA60C4F9AE02.roa File: 8738BCECCC8711F0BFB7CA60C4F9AE02.roa (raw, json) Hash identifier: CHkc1Tv2fsRtLEOQuHMw135q1+U1mriRxTeGQiqhNAA= Subject key identifier: 70:E2:78:EB:5A:3D:24:FF:6B:9A:BC:3D:E8:B5:9E:B7:0B:03:ED:27 Certificate issuer: /CN=A9165283/serialNumber=C0EA2CBE95B246C7F667EBEF69A14BACB33F54E3 Certificate serial: 0D Authority key identifier: C0:EA:2C:BE:95:B2:46:C7:F6:67:EB:EF:69:A1:4B:AC:B3:3F:54:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOosvpWyRsf2Z-vvaaFLrLM_VOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165283/1EDDB9A0BFBB11F0ACBDC03AC4F9AE02/8738BCECCC8711F0BFB7CA60C4F9AE02.roa Signing time: Fri 28 Nov 2025 18:24:51 +0000 ROA not before: Fri 28 Nov 2025 18:24:51 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153842 IP address blocks: 202.136.66.0/24 maxlen: 24 202.136.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165283/1EDDB9A0BFBB11F0ACBDC03AC4F9AE02/wOosvpWyRsf2Z-vvaaFLrLM_VOM.crl rsync://rpki.apnic.net/member_repository/A9165283/1EDDB9A0BFBB11F0ACBDC03AC4F9AE02/wOosvpWyRsf2Z-vvaaFLrLM_VOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOosvpWyRsf2Z-vvaaFLrLM_VOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165283, serialNumber=C0EA2CBE95B246C7F667EBEF69A14BACB33F54E3 Validity Not Before: Nov 28 18:24:51 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6929e8f3-a154 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ec:fd:0e:77:e3:4c:02:76:c5:f4:f1:fb:e8: e1:30:fd:0f:d1:d5:32:2e:b8:49:ba:dc:b8:34:40: 43:0e:65:32:af:33:bd:68:4d:d2:2b:74:55:91:f7: 3b:33:18:80:4a:56:cf:7c:17:d1:1d:43:3c:e1:08: 68:57:6f:b9:d2:8b:c6:79:2c:6c:ea:0d:43:5d:56: f0:88:ce:63:00:34:a7:b0:7d:6b:14:28:f6:75:cd: 5e:91:be:a3:c7:55:d5:73:9f:ba:69:4a:9e:ba:05: 7b:78:38:b5:b0:b4:7c:2a:0e:f7:69:c3:64:42:10: 3d:c0:e6:4c:83:86:9c:22:d9:79:4c:da:5b:c9:73: ab:d6:a2:fd:b9:12:0e:59:a8:26:50:a1:f1:8d:d1: ea:e0:5a:09:dc:48:83:cd:96:a5:1d:8f:d1:0b:ab: 58:23:94:ed:df:40:a1:0e:e5:9f:eb:69:0c:e9:e4: b9:c4:40:cb:7a:85:48:cd:d5:66:be:e8:9e:15:da: 3b:89:bf:40:67:3b:d8:ff:b2:60:ea:f2:30:2f:5f: bf:22:0c:06:cb:0d:8b:fd:a7:3b:48:8a:a8:58:23: f6:70:93:cb:e0:d7:d9:86:48:c4:26:83:35:5f:05: 23:84:f2:3f:57:56:b8:0c:6a:bd:f8:7c:45:26:36: b7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E2:78:EB:5A:3D:24:FF:6B:9A:BC:3D:E8:B5:9E:B7:0B:03:ED:27 X509v3 Authority Key Identifier: keyid:C0:EA:2C:BE:95:B2:46:C7:F6:67:EB:EF:69:A1:4B:AC:B3:3F:54:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165283/1EDDB9A0BFBB11F0ACBDC03AC4F9AE02/wOosvpWyRsf2Z-vvaaFLrLM_VOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOosvpWyRsf2Z-vvaaFLrLM_VOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165283/1EDDB9A0BFBB11F0ACBDC03AC4F9AE02/8738BCECCC8711F0BFB7CA60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.136.66.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:08:fe:29:98:a2:cd:c6:32:c4:21:89:9b:c9:69:49:25:dc: ae:53:2e:42:c8:c4:02:64:9c:b2:f9:f7:9e:1d:e0:b2:26:af: 5d:b0:74:a8:75:ee:e9:2a:69:1e:2b:4a:61:97:6d:1b:81:76: ed:0e:17:9c:95:83:11:bf:44:ef:9c:bd:3f:70:5d:9b:a9:01: 7e:99:f8:89:3e:bf:77:d3:63:0f:d8:bd:02:57:4d:30:73:61: 42:8b:97:54:a2:8a:68:99:fb:4a:72:1f:65:9a:c9:4c:be:d0: f8:d2:54:45:ba:cf:94:86:8c:66:19:53:46:2e:02:a4:c2:fb: 59:2a:39:70:34:c3:0c:03:48:f3:9e:a1:f1:7b:a7:80:bd:ae: a0:ce:d9:ad:35:61:b9:8a:5c:93:a2:74:1b:a3:84:09:cf:03: d4:41:58:29:c4:d4:3d:65:b5:af:c0:09:5c:e0:20:a5:b4:3f: 75:16:7b:c4:00:7f:8d:00:15:f2:b0:fb:4d:d7:0f:33:a8:64: 38:7c:1c:99:aa:40:45:3e:ae:3d:54:7f:ed:19:03:28:34:1e: e8:70:0d:76:0d:00:a0:0a:cc:f1:a6:07:77:8f:88:7d:e0:87: 94:60:0b:68:da:33:9d:6a:16:19:a3:9f:37:85:ec:cb:d7:8a: 1c:c3:f4:2d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTI4MzExMC8GA1UEBRMoQzBFQTJDQkU5NUIyNDZDN0Y2NjdFQkVGNjlBMTRCQUNC MzNGNTRFMzAeFw0yNTExMjgxODI0NTFaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MjllOGYzLWExNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK7P0Od+NMAnbF9PH76OEw/Q/R1TIuuEm63Lg0QEMOZTKvM71oTdIrdFWR9zsz GIBKVs98F9EdQzzhCGhXb7nSi8Z5LGzqDUNdVvCIzmMANKewfWsUKPZ1zV6RvqPH VdVzn7ppSp66BXt4OLWwtHwqDvdpw2RCED3A5kyDhpwi2XlM2lvJc6vWov25Eg5Z qCZQofGN0ergWgncSIPNlqUdj9ELq1gjlO3fQKEO5Z/raQzp5LnEQMt6hUjN1Wa+ 6J4V2juJv0BnO9j/smDq8jAvX78iDAbLDYv9pztIiqhYI/Zwk8vg19mGSMQmgzVf BSOE8j9XVrgMar34fEUmNrcxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUcOJ461o9 JP9rmrw96LWetwsD7ScwHwYDVR0jBBgwFoAUwOosvpWyRsf2Z+vvaaFLrLM/VOMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MjgzLzFFRERCOUEwQkZC QjExRjBBQ0JEQzAzQUM0RjlBRTAyL3dPb3N2cFd5UnNmMlotdnZhYUZMckxNX1ZP TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd09vc3ZwV3lSc2YyWi12dmFhRkxyTE1fVk9NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTI4My8xRUREQjlBMEJGQkIxMUYwQUNCREMwM0FDNEY5QUUwMi84NzM4QkNFQ0ND ODcxMUYwQkZCN0NBNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcqIQjANBgkqhkiG9w0BAQsFAAOCAQEAegj+KZiizcYyxCGJ m8lpSSXcrlMuQsjEAmScsvn3nh3gsiavXbB0qHXu6SppHitKYZdtG4F27Q4XnJWD Eb9E75y9P3Bdm6kBfpn4iT6/d9NjD9i9AldNMHNhQouXVKKKaJn7SnIfZZrJTL7Q +NJURbrPlIaMZhlTRi4CpML7WSo5cDTDDANI856h8XungL2uoM7ZrTVhuYpck6J0 G6OECc8D1EFYKcTUPWW1r8AJXOAgpbQ/dRZ7xAB/jQAV8rD7TdcPM6hkOHwcmapA RT6uPVR/7RkDKDQe6HANdg0AoArM8aYHd4+IfeCHlGALaNoznWoWGaOfN4Xsy9eK HMP0LQ== -----END CERTIFICATE-----Generated at Fri Dec 5 19:48:15 2025 by rpki-client