This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916D8D9/5483BFB6C8FB11EBBA5BAE51C4F9AE02/3B428CDA8AE011EF90B73462C4F9AE02.roa File: 3B428CDA8AE011EF90B73462C4F9AE02.roa (raw, json) Hash identifier: julUD60IOe4snzH6KAoHIbddR6Wsz9f7OuPIVZMmxtE= Subject key identifier: 04:33:8C:91:B3:FA:87:2C:B5:32:CF:0E:E0:B4:CF:9A:9B:56:C3:C1 Certificate issuer: /CN=A916D8D9/serialNumber=031C9C26E5BAB1B01AF18A0BB1B970AB5773456B Certificate serial: 06AA Authority key identifier: 03:1C:9C:26:E5:BA:B1:B0:1A:F1:8A:0B:B1:B9:70:AB:57:73:45:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AxycJuW6sbAa8YoLsblwq1dzRWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D8D9/5483BFB6C8FB11EBBA5BAE51C4F9AE02/3B428CDA8AE011EF90B73462C4F9AE02.roa Signing time: Tue 30 Dec 2025 22:18:38 +0000 ROA not before: Tue 30 Dec 2025 22:18:38 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 131275 IP address blocks: 103.79.16.0/24 maxlen: 24 103.79.18.0/24 maxlen: 24 122.50.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D8D9/5483BFB6C8FB11EBBA5BAE51C4F9AE02/AxycJuW6sbAa8YoLsblwq1dzRWs.crl rsync://rpki.apnic.net/member_repository/A916D8D9/5483BFB6C8FB11EBBA5BAE51C4F9AE02/AxycJuW6sbAa8YoLsblwq1dzRWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AxycJuW6sbAa8YoLsblwq1dzRWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:03:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1706 (0x6aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D8D9, serialNumber=031C9C26E5BAB1B01AF18A0BB1B970AB5773456B Validity Not Before: Dec 30 22:18:38 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69544fbe-79a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:29:20:d7:20:ff:17:43:6b:42:ba:10:52:67: 07:ad:3a:50:f7:09:58:c1:7e:c1:43:0a:77:25:65: 1b:48:34:9b:0b:5d:97:5f:1d:f4:bf:a5:8c:c4:b7: 58:4d:7e:de:24:ec:7c:46:3b:16:43:10:1c:ce:9d: 75:8f:3d:e2:9a:a4:84:2a:0e:9b:18:0b:41:ee:81: 9d:67:fe:ce:e6:83:8d:e0:f1:64:7c:49:52:31:11: 2b:59:a0:40:19:83:9a:b7:a2:5a:c3:a5:9a:97:24: d7:72:f3:fe:85:13:65:7f:e8:ee:53:78:0c:ac:7e: c4:ca:b9:1b:c1:8f:b4:8d:8f:b0:27:37:8f:a2:94: 48:d5:78:a9:92:a8:e8:cb:98:be:c9:89:d4:9a:1e: 21:cf:2e:83:fa:12:4d:21:0e:af:9c:c5:1e:4a:16: 37:28:d9:4f:71:35:e2:84:6d:0b:2d:96:93:8e:28: 80:6f:91:1d:bc:79:74:8a:d6:e7:83:31:fe:1c:f0: 12:bd:9a:61:0d:3f:7a:fa:3c:ae:c8:65:34:7b:74: e7:63:a8:43:df:bd:eb:4d:40:9a:45:40:1c:88:27: c6:8b:7f:75:09:3b:34:c0:72:b6:22:1f:f4:91:f5: 2a:eb:b9:3c:20:6e:26:81:1c:05:82:b7:31:5b:53: 34:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:33:8C:91:B3:FA:87:2C:B5:32:CF:0E:E0:B4:CF:9A:9B:56:C3:C1 X509v3 Authority Key Identifier: keyid:03:1C:9C:26:E5:BA:B1:B0:1A:F1:8A:0B:B1:B9:70:AB:57:73:45:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D8D9/5483BFB6C8FB11EBBA5BAE51C4F9AE02/AxycJuW6sbAa8YoLsblwq1dzRWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AxycJuW6sbAa8YoLsblwq1dzRWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D8D9/5483BFB6C8FB11EBBA5BAE51C4F9AE02/3B428CDA8AE011EF90B73462C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.16.0/24 103.79.18.0/24 122.50.1.0/24 Signature Algorithm: sha256WithRSAEncryption 96:a3:49:49:09:92:ee:8e:67:47:00:5d:a0:33:38:dc:3a:10: a7:3a:4c:e6:f3:d7:09:d7:64:5b:ce:b1:bb:34:f9:97:48:4a: da:a6:bf:2c:0a:db:5a:29:2b:ef:6b:4c:3b:31:0c:90:0b:82: 5b:41:b4:7f:00:ce:af:19:80:da:92:db:86:a8:fb:8a:b4:b9: 51:06:36:f2:05:23:2a:50:e3:64:ec:00:1d:12:b9:76:61:3a: 9f:54:e7:82:2a:8c:74:7e:83:89:d0:c5:42:ff:8e:de:b5:7d: 61:d3:0d:98:c6:c0:aa:13:95:ec:6a:8b:26:dd:ef:12:52:fb: 5d:9b:b1:60:53:fd:92:e6:90:9b:c0:8c:d1:c1:98:c0:f3:7f: 3a:d9:d9:8f:e4:97:90:45:68:f7:60:ef:43:d9:1c:7d:f8:db: 1e:21:c2:56:63:94:f1:b3:df:df:cc:b9:4a:c9:35:fe:56:b0: 1e:ca:e9:f1:2e:af:b4:9f:78:4e:7a:75:f2:ba:a4:a3:09:a3: 38:f4:c2:a6:70:a3:ce:0a:98:9c:76:e9:98:f6:1e:72:32:d9: 2f:7e:2b:f7:c7:66:2d:be:8d:16:88:db:03:4e:cf:1c:53:1c: 50:f7:28:f5:57:bb:2b:3b:ab:bf:4d:27:25:85:1a:f4:f3:a9: 65:fe:2c:21 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NkQ4RDkxMTAvBgNVBAUTKDAzMUM5QzI2RTVCQUIxQjAxQUYxOEEwQkIxQjk3MEFC NTc3MzQ1NkIwHhcNMjUxMjMwMjIxODM4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU0NGZiZS03OWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ykg1yD/F0NrQroQUmcHrTpQ9wlYwX7BQwp3JWUbSDSbC12XXx30v6WMxLdY TX7eJOx8RjsWQxAczp11jz3imqSEKg6bGAtB7oGdZ/7O5oON4PFkfElSMRErWaBA GYOat6Jaw6WalyTXcvP+hRNlf+juU3gMrH7EyrkbwY+0jY+wJzePopRI1Xipkqjo y5i+yYnUmh4hzy6D+hJNIQ6vnMUeShY3KNlPcTXihG0LLZaTjiiAb5EdvHl0itbn gzH+HPASvZphDT96+jyuyGU0e3TnY6hD373rTUCaRUAciCfGi391CTs0wHK2Ih/0 kfUq67k8IG4mgRwFgrcxW1M0sQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFAQzjJGz +ocstTLPDuC0z5qbVsPBMB8GA1UdIwQYMBaAFAMcnCblurGwGvGKC7G5cKtXc0Vr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDhEOS81NDgzQkZCNkM4 RkIxMUVCQkE1QkFFNTFDNEY5QUUwMi9BeHljSnVXNnNiQWE4WW9Mc2Jsd3ExZHpS V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F4eWNKdVc2c2JBYThZb0xzYmx3cTFkelJXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQ4RDkvNTQ4M0JGQjZDOEZCMTFFQkJBNUJBRTUxQzRGOUFFMDIvM0I0MjhDREE4 QUUwMTFFRjkwQjczNDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnTxADBABnTxIDBAB6MgEwDQYJKoZIhvcNAQELBQADggEB AJajSUkJku6OZ0cAXaAzONw6EKc6TObz1wnXZFvOsbs0+ZdIStqmvywK21opK+9r TDsxDJALgltBtH8Azq8ZgNqS24ao+4q0uVEGNvIFIypQ42TsAB0SuXZhOp9U54Iq jHR+g4nQxUL/jt61fWHTDZjGwKoTlexqiybd7xJS+12bsWBT/ZLmkJvAjNHBmMDz fzrZ2Y/kl5BFaPdg70PZHH342x4hwlZjlPGz39/MuUrJNf5WsB7K6fEur7SfeE56 dfK6pKMJozj0wqZwo84KmJx26Zj2HnIy2S9+K/fHZi2+jRaI2wNOzxxTHFD3KPVX uys7q79NJyWFGvTzqWX+LCE= -----END CERTIFICATE-----Generated at Mon Jan 26 21:53:06 2026 by rpki-client