This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4D06CD2C667411EF8E723587C4F9AE02.roa File: 4D06CD2C667411EF8E723587C4F9AE02.roa (raw, json) Hash identifier: 0QyRNFWtcSxmigT2CNykIwrN1jMEGtA4VrEK6RQ3EYc= Subject key identifier: 54:0D:32:A4:37:D8:B2:B1:53:FC:84:E8:10:53:CA:62:D6:C2:D6:A0 Certificate issuer: /CN=A9170DD8/serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Certificate serial: FF Authority key identifier: E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4D06CD2C667411EF8E723587C4F9AE02.roa Signing time: Sun 21 Dec 2025 04:24:29 +0000 ROA not before: Sun 21 Dec 2025 04:24:28 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4049 IP address blocks: 103.79.88.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DD8, serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Validity Not Before: Dec 21 04:24:28 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6947767c-052a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:09:69:53:ff:c3:b7:06:e8:ba:23:a8:f2:ce: 2e:aa:b2:c6:ef:5e:be:4a:c1:60:9e:1a:09:c4:a0: 80:b6:ae:22:24:8e:68:51:2c:2f:34:12:33:f8:33: 59:d7:fa:bf:09:fe:4b:01:07:9a:da:50:27:60:70: 81:a7:dc:a7:83:89:ce:8d:26:f5:ef:62:92:36:f3: f3:69:af:1f:ec:1b:64:9a:05:ac:b1:ff:a4:8b:f4: 30:60:01:29:8a:ad:1d:4f:a7:21:2f:c6:2c:56:e9: 04:08:1e:64:5c:95:f0:d8:c6:e1:14:f1:6c:23:31: aa:4b:f4:9a:67:d5:36:59:ad:4e:f3:50:cb:be:19: b6:d4:45:74:fe:35:cf:50:a6:f4:a8:4f:d9:d9:60: 22:66:8f:68:c5:54:ec:06:02:19:5a:1e:f7:a3:79: 90:5b:ec:56:87:ff:73:e3:70:13:c7:47:9e:06:99: ec:73:67:96:c0:e2:1e:59:25:29:f5:c2:9f:40:9c: 01:a2:2b:c9:91:3b:41:a5:cc:42:92:bd:df:f9:70: 57:8f:b7:06:98:ff:e5:a4:63:24:7b:b3:67:72:be: e9:10:4c:93:f0:7c:6d:c2:1c:1f:53:42:38:8d:89: 3a:5d:ef:9e:0f:14:dd:68:24:10:96:19:7d:27:e3: 42:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:0D:32:A4:37:D8:B2:B1:53:FC:84:E8:10:53:CA:62:D6:C2:D6:A0 X509v3 Authority Key Identifier: keyid:E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4D06CD2C667411EF8E723587C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.88.0/23 Signature Algorithm: sha256WithRSAEncryption 34:6c:87:f9:20:a7:3c:88:4d:14:ec:7f:18:82:bb:7b:84:8d: 2a:5f:8a:07:5d:09:f4:dc:ca:57:3c:25:70:00:32:01:2f:21: 63:2a:64:f0:d7:21:2d:86:92:1c:60:88:df:8a:81:88:e0:9c: d8:a2:8b:72:5c:10:da:23:08:e6:27:38:ce:bb:f0:6c:16:4b: 1d:17:db:20:9a:95:ce:35:53:5d:18:c6:81:34:18:33:d2:00: 6c:df:b2:4f:ba:99:2c:c3:9b:54:e5:d8:39:82:b5:27:b0:56: a7:70:cc:f9:9e:b5:5f:d4:6d:5b:ff:27:3c:de:5c:cf:fa:0b: 82:7a:10:ad:00:e0:4d:91:10:f9:9d:ac:a6:30:2c:dc:84:e3: fe:07:14:28:fc:d2:c3:b3:30:53:53:24:d1:a4:a0:ee:a0:03: c9:7d:36:b3:50:51:eb:56:4c:70:21:7d:6d:6b:32:6b:41:ad: 52:a1:6a:7d:cc:cc:29:7a:fa:b5:20:7d:5c:dd:0e:43:2f:69: ad:24:d8:ce:eb:90:65:6d:61:ba:42:91:2d:60:00:8c:61:58: 94:e9:0b:3d:ba:ac:0a:ad:c2:ab:8c:0c:61:e3:e0:e4:9b:2d: ff:e5:b2:06:64:a9:e4:3c:b5:2d:94:52:81:86:bf:29:51:f3: 04:7d:43:5d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzBERDgxMTAvBgNVBAUTKEU2QjU0RDAyN0NFMzQ5OEJGMzVFNEQwNjVCQzQ3OEE5 MzZDMTYxNjkwHhcNMjUxMjIxMDQyNDI4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ3NzY3Yy0wNTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwlpU//DtwbouiOo8s4uqrLG716+SsFgnhoJxKCAtq4iJI5oUSwvNBIz+DNZ 1/q/Cf5LAQea2lAnYHCBp9yng4nOjSb172KSNvPzaa8f7BtkmgWssf+ki/QwYAEp iq0dT6chL8YsVukECB5kXJXw2MbhFPFsIzGqS/SaZ9U2Wa1O81DLvhm21EV0/jXP UKb0qE/Z2WAiZo9oxVTsBgIZWh73o3mQW+xWh/9z43ATx0eeBpnsc2eWwOIeWSUp 9cKfQJwBoivJkTtBpcxCkr3f+XBXj7cGmP/lpGMke7Nncr7pEEyT8HxtwhwfU0I4 jYk6Xe+eDxTdaCQQlhl9J+NCdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFQNMqQ3 2LKxU/yE6BBTymLWwtagMB8GA1UdIwQYMBaAFOa1TQJ840mL815NBlvEeKk2wWFp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEREOC9BNjZBNzVFRTY1 QkIxMUVGQUZBMzJGODJDNEY5QUUwMi81clZOQW56alNZdnpYazBHVzhSNHFUYkJZ V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVyVk5BbnpqU1l2elhrMEdXOFI0cVRiQllXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBERDgvQTY2QTc1RUU2NUJCMTFFRkFGQTMyRjgyQzRGOUFFMDIvNEQwNkNEMkM2 Njc0MTFFRjhFNzIzNTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnT1gwDQYJKoZIhvcNAQELBQADggEBADRsh/kgpzyITRTs fxiCu3uEjSpfigddCfTcylc8JXAAMgEvIWMqZPDXIS2GkhxgiN+KgYjgnNiii3Jc ENojCOYnOM678GwWSx0X2yCalc41U10YxoE0GDPSAGzfsk+6mSzDm1Tl2DmCtSew VqdwzPmetV/UbVv/JzzeXM/6C4J6EK0A4E2REPmdrKYwLNyE4/4HFCj80sOzMFNT JNGkoO6gA8l9NrNQUetWTHAhfW1rMmtBrVKhan3MzCl6+rUgfVzdDkMvaa0k2M7r kGVtYbpCkS1gAIxhWJTpCz26rAqtwquMDGHj4OSbLf/lsgZkqeQ8tS2UUoGGvylR 8wR9Q10= -----END CERTIFICATE-----Generated at Tue Dec 23 12:59:50 2025 by rpki-client