This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167B9D/C5556F1E3CAF11ECB31F3C38C4F9AE02/D70119A43CB211EC9A01695FC4F9AE02.roa File: D70119A43CB211EC9A01695FC4F9AE02.roa (raw, json) Hash identifier: rZvvo9AwoNMeNFzbxqLXq41Ni+K+744JLjz8sT84uE4= Subject key identifier: 8B:A6:4B:60:86:89:03:DF:F5:07:42:01:53:08:6E:CC:90:C5:70:DB Certificate issuer: /CN=A9167B9D/serialNumber=99FCF804CAC87D5885718F190BAA2E2C85F1B18D Certificate serial: 04F8 Authority key identifier: 99:FC:F8:04:CA:C8:7D:58:85:71:8F:19:0B:AA:2E:2C:85:F1:B1:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mfz4BMrIfViFcY8ZC6ouLIXxsY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167B9D/C5556F1E3CAF11ECB31F3C38C4F9AE02/D70119A43CB211EC9A01695FC4F9AE02.roa Signing time: Wed 10 Dec 2025 22:17:43 +0000 ROA not before: Wed 10 Dec 2025 22:17:43 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 148975 IP address blocks: 103.175.20.0/23 maxlen: 23 103.175.20.0/24 maxlen: 24 103.175.21.0/24 maxlen: 24 2001:df7:e880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167B9D/C5556F1E3CAF11ECB31F3C38C4F9AE02/mfz4BMrIfViFcY8ZC6ouLIXxsY0.crl rsync://rpki.apnic.net/member_repository/A9167B9D/C5556F1E3CAF11ECB31F3C38C4F9AE02/mfz4BMrIfViFcY8ZC6ouLIXxsY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mfz4BMrIfViFcY8ZC6ouLIXxsY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1272 (0x4f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167B9D, serialNumber=99FCF804CAC87D5885718F190BAA2E2C85F1B18D Validity Not Before: Dec 10 22:17:43 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6939f187-7b98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:88:90:ec:7b:7d:67:a7:2e:ec:d9:5f:88:5f: 48:b1:b1:aa:e1:fa:91:93:4a:b0:b9:a4:b2:e9:56: ab:80:ad:87:31:7f:62:4b:74:c8:0b:a8:9f:86:b1: 56:6e:7c:7c:49:81:ca:89:4f:41:d8:7b:7b:cf:27: a2:1f:2e:ac:72:82:e8:3e:c5:30:91:e8:d9:a1:c5: 08:93:78:7f:23:0c:de:dd:0f:2e:d4:31:80:dd:50: ec:9d:e3:c5:cc:eb:e3:bd:0a:e5:ae:a5:ab:fa:5f: 19:9e:da:d7:68:3c:9c:7a:fc:1a:70:39:65:5f:09: 9d:b8:c2:9d:2d:ba:85:f4:76:c1:13:5d:fd:34:24: f0:b7:d8:e3:51:72:79:35:4a:f0:b5:5c:4f:cf:c1: e7:61:58:c6:8a:1c:79:47:c2:1c:15:52:bc:a6:12: de:d2:79:a8:5f:f3:07:b0:2c:08:6b:37:82:f0:3c: 96:29:2a:8c:c9:ad:92:ae:ed:85:8d:98:5f:2d:00: d8:2a:52:e0:14:d1:c6:db:b2:15:1f:a8:64:c7:3e: d7:f4:c1:8e:30:29:3c:e6:a4:a6:e6:40:c2:f8:da: ee:2e:59:5d:4d:b2:5e:f2:b0:ca:8f:67:60:d1:74: be:dc:d6:e6:c6:8e:bc:35:11:1c:ad:f4:55:c4:84: 6b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:A6:4B:60:86:89:03:DF:F5:07:42:01:53:08:6E:CC:90:C5:70:DB X509v3 Authority Key Identifier: keyid:99:FC:F8:04:CA:C8:7D:58:85:71:8F:19:0B:AA:2E:2C:85:F1:B1:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167B9D/C5556F1E3CAF11ECB31F3C38C4F9AE02/mfz4BMrIfViFcY8ZC6ouLIXxsY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mfz4BMrIfViFcY8ZC6ouLIXxsY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167B9D/C5556F1E3CAF11ECB31F3C38C4F9AE02/D70119A43CB211EC9A01695FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.20.0/23 IPv6: 2001:df7:e880::/48 Signature Algorithm: sha256WithRSAEncryption dd:d7:d6:c9:6c:a1:80:c9:22:ee:88:c6:36:ae:13:d5:16:35: d0:01:a4:38:93:28:f4:b9:ee:d2:74:a1:58:8d:00:13:57:4e: dd:cb:68:3a:6d:d9:e5:f6:16:ea:f4:77:da:fd:be:84:5b:c7: e2:49:44:10:76:42:2b:cd:1d:81:bc:0e:ee:8d:fb:eb:92:5b: c9:90:f5:05:fd:f7:e5:f0:37:39:59:8b:b9:6c:24:4e:e4:ba: 97:a8:5e:95:22:e7:b2:1d:f7:79:e7:48:f2:fe:a1:66:e0:93: ce:fd:8a:d1:3f:d3:b7:e7:be:b7:36:e2:d3:e2:c1:26:0d:fd: 8e:7e:6c:ec:fb:98:b9:b9:8a:21:b7:77:0a:f4:12:91:27:90: 78:c1:c7:6a:d1:03:6d:6a:43:95:40:cf:bc:1d:a0:85:5d:5c: 8a:cd:e2:fd:8b:5d:3e:2c:08:67:f2:09:3f:27:9b:2b:2e:2a: 20:3a:1e:dc:d1:3d:3c:1a:1a:00:02:12:d3:ec:cf:d0:fe:75: 8e:f9:59:ad:ba:31:dd:77:cd:40:f1:98:46:a5:ef:17:0e:84: 5f:6d:33:ef:de:0c:47:0b:90:7f:3e:70:e4:1e:d8:25:47:57: 82:37:b5:e7:c3:41:43:fd:74:ef:28:c0:a7:73:dd:57:93:45: 40:3c:63:d3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCOUQxMTAvBgNVBAUTKDk5RkNGODA0Q0FDODdENTg4NTcxOEYxOTBCQUEyRTJD ODVGMUIxOEQwHhcNMjUxMjEwMjIxNzQzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM5ZjE4Ny03Yjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YiQ7Ht9Z6cu7NlfiF9IsbGq4fqRk0qwuaSy6VargK2HMX9iS3TIC6ifhrFW bnx8SYHKiU9B2Ht7zyeiHy6scoLoPsUwkejZocUIk3h/Iwze3Q8u1DGA3VDsnePF zOvjvQrlrqWr+l8ZntrXaDycevwacDllXwmduMKdLbqF9HbBE139NCTwt9jjUXJ5 NUrwtVxPz8HnYVjGihx5R8IcFVK8phLe0nmoX/MHsCwIazeC8DyWKSqMya2Sru2F jZhfLQDYKlLgFNHG27IVH6hkxz7X9MGOMCk85qSm5kDC+NruLlldTbJe8rDKj2dg 0XS+3Nbmxo68NREcrfRVxIRr/wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIumS2CG iQPf9QdCAVMIbsyQxXDbMB8GA1UdIwQYMBaAFJn8+ATKyH1YhXGPGQuqLiyF8bGN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0I5RC9DNTU1NkYxRTND QUYxMUVDQjMxRjNDMzhDNEY5QUUwMi9tZno0Qk1ySWZWaUZjWThaQzZvdUxJWHhz WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21mejRCTXJJZlZpRmNZOFpDNm91TElYeHNZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdCOUQvQzU1NTZGMUUzQ0FGMTFFQ0IzMUYzQzM4QzRGOUFFMDIvRDcwMTE5QTQz Q0IyMTFFQzlBMDE2OTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrxQwDwQCAAIwCQMHACABDffogDANBgkqhkiG9w0BAQsF AAOCAQEA3dfWyWyhgMki7ojGNq4T1RY10AGkOJMo9Lnu0nShWI0AE1dO3ctoOm3Z 5fYW6vR32v2+hFvH4klEEHZCK80dgbwO7o3765JbyZD1Bf335fA3OVmLuWwkTuS6 l6helSLnsh33eedI8v6hZuCTzv2K0T/Tt+e+tzbi0+LBJg39jn5s7PuYubmKIbd3 CvQSkSeQeMHHatEDbWpDlUDPvB2ghV1cis3i/YtdPiwIZ/IJPyebKy4qIDoe3NE9 PBoaAAIS0+zP0P51jvlZrbox3XfNQPGYRqXvFw6EX20z794MRwuQfz5w5B7YJUdX gje158NBQ/107yjAp3PdV5NFQDxj0w== -----END CERTIFICATE-----Generated at Sat Dec 20 07:36:40 2025 by rpki-client