This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa File: 89340B10B5E011EE91DD4D53C4F9AE02.roa (raw, json) Hash identifier: cgyiI2kl1gPRAyy5DRyl604N/9Qi28VjLJjN+yXH9a8= Subject key identifier: 59:FB:73:58:24:0D:D7:CC:E1:50:72:47:6C:91:64:91:BE:28:3B:AD Certificate issuer: /CN=A9175299/serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Certificate serial: 0BB0 Authority key identifier: 81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa Signing time: Mon 02 Feb 2026 19:16:09 +0000 ROA not before: Mon 02 Feb 2026 19:16:09 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 138385 IP address blocks: 103.124.52.0/22 maxlen: 23 103.124.52.0/24 maxlen: 24 103.124.53.0/24 maxlen: 24 103.124.54.0/24 maxlen: 24 103.124.55.0/24 maxlen: 24 2403:da40::/32 maxlen: 32 2403:da40::/33 maxlen: 33 2403:da40:b::/48 maxlen: 48 2403:da40:100::/40 maxlen: 40 2403:da40:100::/48 maxlen: 48 2403:da40:101::/48 maxlen: 48 2403:da40:102::/48 maxlen: 48 2403:da40:103::/48 maxlen: 48 2403:da40:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Feb 2026 18:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2992 (0xbb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175299, serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Validity Not Before: Feb 2 19:16:09 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6980f7f9-7101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2e:42:b5:28:22:ef:8c:35:de:70:99:53:a8: 84:cd:e5:48:83:24:88:be:45:b0:c7:6f:67:0e:9b: 00:7d:8a:72:94:b0:41:99:1e:1d:a6:52:69:6a:78: 4f:6d:a9:2e:59:3d:5a:b9:c4:7f:f9:49:06:4d:1e: 6d:d3:06:e5:83:cf:60:58:ba:a3:17:e3:ce:2c:59: 1a:2b:72:48:84:01:bd:60:16:bd:e5:80:43:c5:64: be:66:ab:70:a9:9c:2e:74:77:57:71:de:04:f0:84: fb:f9:01:b9:f3:49:fe:68:ed:fd:e4:95:9e:e4:49: 10:66:f6:4a:60:d2:1e:3c:0a:b1:1f:ba:c0:76:cb: 10:88:3e:20:80:c1:38:97:5d:d0:f1:ab:10:49:5c: de:20:c4:27:94:17:32:87:3e:51:2a:a0:3b:44:50: ad:bc:66:d1:c1:97:17:6e:47:3a:fd:19:f0:58:9c: 3e:85:8b:64:f6:b9:73:31:e0:ac:34:c8:8d:73:36: ed:f2:cf:99:ea:d1:bf:49:16:26:a9:66:0f:4f:e7: 60:4e:4d:3b:3c:fa:8a:c4:e9:51:4d:ac:c1:11:57: d3:9a:43:c4:53:f8:48:93:5f:31:57:e1:66:5d:c2: 96:8b:3c:c5:a4:05:2d:de:0d:28:f4:fe:c3:fe:20: de:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:FB:73:58:24:0D:D7:CC:E1:50:72:47:6C:91:64:91:BE:28:3B:AD X509v3 Authority Key Identifier: keyid:81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.52.0/22 IPv6: 2403:da40::/32 Signature Algorithm: sha256WithRSAEncryption 5a:ca:c2:8f:37:fd:44:57:e6:88:21:0e:da:90:0d:a0:06:5e: 6c:aa:85:46:6a:d9:99:3a:9f:d9:4a:c1:72:5c:f0:f8:6a:01: d5:45:37:f0:5c:24:59:a0:f8:58:2d:12:aa:10:79:68:3d:d9: eb:1d:bf:32:8f:f0:0e:d4:cd:6d:cf:61:4d:20:30:38:0b:59: 79:30:fa:ae:55:38:0d:ea:cf:0a:f5:5b:a9:3b:f1:6a:51:b6: 8d:f7:74:3d:8f:b9:42:13:fc:4d:59:2a:11:a4:3b:3f:7c:be: 9c:60:c2:1c:9b:57:24:14:b3:ec:5d:7e:a8:df:73:73:fd:ee: 62:c4:80:2c:2e:ac:a9:52:c1:2e:61:0d:9a:d3:59:2b:ad:01: a0:b8:44:e4:2b:e5:da:40:b1:f7:cf:a8:23:17:7d:e5:05:87: 24:68:b0:03:7b:d4:ab:7b:1c:43:07:89:bd:05:0b:ac:20:f9: 84:0f:bc:50:b3:e3:5e:09:ff:19:11:09:c4:9f:c5:32:f4:d3: 04:c7:cd:0f:03:fa:a5:41:98:98:66:cc:9f:7f:68:f6:1b:24: 15:fd:38:e1:01:68:3e:fb:2b:84:12:6a:26:51:5f:10:2d:be: 32:97:5e:ee:99:13:d5:5d:d4:d2:d0:c4:2b:68:ab:14:c5:c1: d6:1e:8f:52 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzUyOTkxMTAvBgNVBAUTKDgxQTcxNTFCMTc3NTkyRjg2ODIzQjY5RjQzNzYyNEU5 QzAwMkRFNDEwHhcNMjYwMjAyMTkxNjA5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTgwZjdmOS03MTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtC5CtSgi74w13nCZU6iEzeVIgySIvkWwx29nDpsAfYpylLBBmR4dplJpanhP bakuWT1aucR/+UkGTR5t0wblg89gWLqjF+POLFkaK3JIhAG9YBa95YBDxWS+Zqtw qZwudHdXcd4E8IT7+QG580n+aO395JWe5EkQZvZKYNIePAqxH7rAdssQiD4ggME4 l13Q8asQSVzeIMQnlBcyhz5RKqA7RFCtvGbRwZcXbkc6/RnwWJw+hYtk9rlzMeCs NMiNczbt8s+Z6tG/SRYmqWYPT+dgTk07PPqKxOlRTazBEVfTmkPEU/hIk18xV+Fm XcKWizzFpAUt3g0o9P7D/iDe8wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFn7c1gk DdfM4VByR2yRZJG+KDutMB8GA1UdIwQYMBaAFIGnFRsXdZL4aCO2n0N2JOnAAt5B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI5OS8yNjg5MEVEQTQy QzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2aG9JN2FmUTNZazZjQUMz a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhY1ZHeGQxa3Zob0k3YWZRM1lrNmNBQzNrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUyOTkvMjY4OTBFREE0MkM1MTFFQUIyNkNGRDFCQzRGOUFFMDIvODkzNDBCMTBC NUUwMTFFRTkxREQ0RDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfDQwDQQCAAIwBwMFACQD2kAwDQYJKoZIhvcNAQELBQAD ggEBAFrKwo83/URX5oghDtqQDaAGXmyqhUZq2Zk6n9lKwXJc8PhqAdVFN/BcJFmg +FgtEqoQeWg92esdvzKP8A7UzW3PYU0gMDgLWXkw+q5VOA3qzwr1W6k78WpRto33 dD2PuUIT/E1ZKhGkOz98vpxgwhybVyQUs+xdfqjfc3P97mLEgCwurKlSwS5hDZrT WSutAaC4ROQr5dpAsffPqCMXfeUFhyRosAN71Kt7HEMHib0FC6wg+YQPvFCz414J /xkRCcSfxTL00wTHzQ8D+qVBmJhmzJ9/aPYbJBX9OOEBaD77K4QSaiZRXxAtvjKX Xu6ZE9Vd1NLQxCtoqxTFwdYej1I= -----END CERTIFICATE-----Generated at Tue Feb 10 17:09:05 2026 by rpki-client