This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/C4149072C8FF11F0AC8AE779C4F9AE02.roa File: C4149072C8FF11F0AC8AE779C4F9AE02.roa (raw, json) Hash identifier: 60cLUiwIo3OFkat+dtGQ2GzMMVBuPgmzgGRtVgQi3Xo= Subject key identifier: E8:4B:82:FD:1A:79:8B:5C:8D:E1:62:F8:8C:EC:E4:FD:79:78:DE:73 Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 028C Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/C4149072C8FF11F0AC8AE779C4F9AE02.roa Signing time: Mon 24 Nov 2025 06:35:28 +0000 ROA not before: Mon 24 Nov 2025 06:35:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 401783 IP address blocks: 103.120.22.0/24 maxlen: 24 103.120.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 652 (0x28c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Nov 24 06:35:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6923fcb0-0995 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:43:13:31:d5:76:5f:17:be:9a:06:18:d7:80: 72:f1:48:4c:a7:f4:ad:37:69:dc:7a:03:a4:be:53: ea:02:a5:db:e4:97:5a:0f:be:69:15:ff:b4:bc:23: 5f:7e:ed:45:14:9a:48:87:7b:54:02:94:58:2b:e9: 75:53:22:14:15:37:82:fc:3a:b8:52:a8:7e:4f:e8: 4a:f9:5e:0f:fd:50:51:21:33:16:1c:3a:d5:00:0d: 6d:d0:7f:41:ee:a4:56:f1:ef:66:07:e1:17:1d:19: 0d:99:67:fb:bc:36:81:84:79:ec:56:81:97:00:03: 6b:5a:27:07:9b:76:cd:7b:17:06:4d:36:8a:13:60: c0:1b:e3:b9:02:d2:22:8e:ae:cd:9a:08:d1:c6:2d: c8:bb:8e:b5:1b:0d:64:72:6b:0f:0a:96:94:9b:f4: bb:50:1c:44:ec:6e:6d:e7:e2:2c:4c:30:b1:04:11: ec:fd:dd:ca:eb:86:56:ba:9c:2a:92:24:26:ea:1f: fb:d3:e4:e9:d6:3d:7c:b4:d4:49:27:6f:4e:07:89: dd:55:8e:ef:5c:c1:07:f1:91:cb:65:3a:b6:3c:d4: f0:a2:0e:e6:04:8e:82:86:f5:48:d8:61:a2:25:02: 3c:24:8d:f7:c8:aa:dc:7e:16:d5:55:c1:97:ff:cf: ac:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:4B:82:FD:1A:79:8B:5C:8D:E1:62:F8:8C:EC:E4:FD:79:78:DE:73 X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/C4149072C8FF11F0AC8AE779C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.22.0/23 Signature Algorithm: sha256WithRSAEncryption 35:e1:07:74:bd:47:1d:1f:18:a9:27:9d:3f:65:0a:cc:6b:17: 24:e8:03:27:f8:36:bf:b0:a9:33:2c:1a:de:a0:b0:7c:6a:f4: ec:63:71:b6:8e:ee:b6:cd:df:84:d3:c0:9b:56:98:2e:13:7c: 64:93:ac:c3:71:db:e2:08:f0:b7:95:65:2c:9a:4c:09:cd:0a: ef:36:f1:42:98:eb:ea:90:b3:0f:b4:db:3a:db:49:d6:06:91: 21:b8:36:15:bb:2b:87:b5:cf:0b:fb:ae:47:a4:b4:8c:52:93: 32:c2:f9:13:e1:01:99:ef:01:ac:b2:50:bf:d9:fe:5b:0e:e1: 6a:0a:2d:24:db:0d:20:62:59:0b:b1:c2:97:4e:a8:15:46:72: 8f:0b:f7:9e:21:f3:53:98:3a:cf:e7:2a:80:06:3a:a4:c9:98: fb:1f:ce:69:b4:93:66:70:59:d2:fb:1d:6a:96:4f:f6:ac:ab: 61:21:11:b4:bf:32:b9:71:ae:a4:47:0c:81:19:f2:f0:15:78: 4a:e2:21:f5:e9:4d:7a:21:37:9b:a1:85:88:5e:02:b4:67:63: e4:f6:a9:84:a1:4a:6f:50:0e:7a:03:78:95:3f:c6:ad:ba:85: 2c:ac:d4:d9:fb:f0:ab:2f:f3:07:7b:7d:b9:06:55:1b:71:90: a9:4b:83:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjUxMTI0MDYzNTI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTIzZmNiMC0wOTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEMTMdV2Xxe+mgYY14By8UhMp/StN2ncegOkvlPqAqXb5JdaD75pFf+0vCNf fu1FFJpIh3tUApRYK+l1UyIUFTeC/Dq4Uqh+T+hK+V4P/VBRITMWHDrVAA1t0H9B 7qRW8e9mB+EXHRkNmWf7vDaBhHnsVoGXAANrWicHm3bNexcGTTaKE2DAG+O5AtIi jq7NmgjRxi3Iu461Gw1kcmsPCpaUm/S7UBxE7G5t5+IsTDCxBBHs/d3K64ZWupwq kiQm6h/70+Tp1j18tNRJJ29OB4ndVY7vXMEH8ZHLZTq2PNTwog7mBI6ChvVI2GGi JQI8JI33yKrcfhbVVcGX/8+sCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOhLgv0a eYtcjeFi+Izs5P15eN5zMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZCMzIvNzM4Nzk2MTgyRjM4MTFFRDlFN0UwMjdEQzRGOUFFMDIvQzQxNDkwNzJD OEZGMTFGMEFDOEFFNzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFneBYwDQYJKoZIhvcNAQELBQADggEBADXhB3S9Rx0fGKkn nT9lCsxrFyToAyf4Nr+wqTMsGt6gsHxq9OxjcbaO7rbN34TTwJtWmC4TfGSTrMNx 2+II8LeVZSyaTAnNCu828UKY6+qQsw+02zrbSdYGkSG4NhW7K4e1zwv7rkektIxS kzLC+RPhAZnvAayyUL/Z/lsO4WoKLSTbDSBiWQuxwpdOqBVGco8L954h81OYOs/n KoAGOqTJmPsfzmm0k2ZwWdL7HWqWT/asq2EhEbS/MrlxrqRHDIEZ8vAVeEriIfXp TXohN5uhhYheArRnY+T2qYShSm9QDnoDeJU/xq26hSys1Nn78Ksv8wd7fbkGVRtx kKlLg1w= -----END CERTIFICATE-----Generated at Thu Dec 4 21:25:04 2025 by rpki-client