This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/23CDAE44F89B11EFA0888D74C4F9AE02.roa File: 23CDAE44F89B11EFA0888D74C4F9AE02.roa (raw, json) Hash identifier: juke8Toa5q/feC9M2hcHsovPbUehmduk9jtKUQzDn/s= Subject key identifier: 48:88:59:3B:8D:F5:15:14:3D:07:76:81:A2:A6:C4:E6:CE:2B:F5:EB Certificate issuer: /CN=A9178EB0/serialNumber=AAA62DB47F012B26DD8698E2CC35DE8F29437761 Certificate serial: 0892 Authority key identifier: AA:A6:2D:B4:7F:01:2B:26:DD:86:98:E2:CC:35:DE:8F:29:43:77:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/23CDAE44F89B11EFA0888D74C4F9AE02.roa Signing time: Tue 18 Nov 2025 20:11:19 +0000 ROA not before: Tue 18 Nov 2025 20:11:19 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 963 IP address blocks: 112.121.184.0/22 maxlen: 24 180.178.32.0/20 maxlen: 24 180.178.48.0/21 maxlen: 24 180.178.56.0/22 maxlen: 24 180.178.60.0/22 maxlen: 24 182.16.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.crl rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Dec 2025 20:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2194 (0x892) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EB0, serialNumber=AAA62DB47F012B26DD8698E2CC35DE8F29437761 Validity Not Before: Nov 18 20:11:19 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=691cd2e7-9270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4f:6d:dc:90:ba:19:4f:24:d9:b8:a7:5a:d7: 52:99:85:e2:e4:fc:25:23:9b:d9:ab:74:35:de:1b: d3:dc:f6:c7:99:06:0a:f8:e0:d1:b8:e9:87:e3:97: 87:7f:43:36:10:d0:b6:ae:80:73:14:64:87:9a:15: fb:16:42:fb:18:02:9d:26:82:7d:95:b0:81:3c:9e: 80:af:e3:55:d1:58:52:52:70:81:c9:fc:28:d1:78: c8:22:b9:62:18:04:80:d3:a8:7c:10:82:2c:11:35: 05:55:1f:8a:86:7c:f6:ad:4e:94:41:d2:3e:50:b5: 8e:16:33:39:03:26:ef:e4:da:78:a9:5f:48:0e:fd: 76:7b:f9:54:f8:e0:41:30:59:7c:c4:e3:9f:f8:47: db:39:c6:6c:99:4c:94:25:90:70:38:53:7f:61:1c: 6e:8a:e0:1b:53:45:f8:6b:59:4e:15:2b:ac:64:0c: 5c:67:5a:52:97:18:6b:7c:67:5b:40:8a:ea:94:7d: ac:18:78:c0:4b:24:2a:35:9f:a0:9a:fc:e0:cd:72: d2:6e:98:c8:7f:91:03:75:a0:32:12:7d:62:05:7c: 25:81:33:fd:a4:ee:07:0b:21:5e:a0:6c:08:a4:94: 32:59:2c:c4:37:c2:d5:c7:23:2c:26:86:3b:7d:ad: 6e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:88:59:3B:8D:F5:15:14:3D:07:76:81:A2:A6:C4:E6:CE:2B:F5:EB X509v3 Authority Key Identifier: keyid:AA:A6:2D:B4:7F:01:2B:26:DD:86:98:E2:CC:35:DE:8F:29:43:77:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/23CDAE44F89B11EFA0888D74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.121.184.0/22 180.178.32.0/19 182.16.0.0/17 Signature Algorithm: sha256WithRSAEncryption b8:ab:3f:39:e7:89:d9:0d:ed:65:6b:f1:5c:7c:c8:39:bf:1c: e9:3f:28:e8:e3:29:42:0a:b3:60:2d:3d:2a:f5:8e:d3:1e:f6: 97:23:ff:a2:10:5c:76:a1:65:93:31:e9:af:96:91:99:df:d8: 14:c0:f2:fa:cc:86:02:57:88:99:73:92:65:38:e7:85:0e:03: 0b:19:6c:a0:5a:68:eb:db:7c:45:bf:4d:a1:16:95:fa:9c:9c: 75:f3:64:eb:e8:fb:1d:d1:09:0a:f6:4c:b9:b8:5a:54:a3:ee: 0f:10:9b:9e:49:d6:00:c1:2c:dd:e2:8a:05:58:52:a2:31:fc: fa:61:f8:72:94:a1:13:83:59:6b:d6:af:9a:c2:5c:2e:b4:4e: c2:e1:1f:04:00:df:e2:08:f8:0e:c3:80:ea:ff:ac:5d:d8:dc: 67:cf:25:c2:50:64:0f:a7:85:94:59:c4:cb:90:ca:08:35:10: 5e:c1:45:eb:31:9b:e3:a2:78:3e:68:fb:f9:1e:56:66:dd:b8: e9:0a:6d:ae:31:38:06:b1:45:68:5f:4c:7f:75:6f:88:a5:7f: 20:73:09:b7:75:4a:9f:91:a1:a3:13:3c:e6:5f:dd:1e:04:23: 9a:b8:08:15:b7:67:a2:1f:c7:1c:34:f2:8d:66:47:d2:98:83: 8c:7d:7b:8b -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQjAxMTAvBgNVBAUTKEFBQTYyREI0N0YwMTJCMjZERDg2OThFMkNDMzVERThG Mjk0Mzc3NjEwHhcNMjUxMTE4MjAxMTE5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFjZDJlNy05MjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0k9t3JC6GU8k2binWtdSmYXi5PwlI5vZq3Q13hvT3PbHmQYK+ODRuOmH45eH f0M2ENC2roBzFGSHmhX7FkL7GAKdJoJ9lbCBPJ6Ar+NV0VhSUnCByfwo0XjIIrli GASA06h8EIIsETUFVR+Khnz2rU6UQdI+ULWOFjM5Aybv5Np4qV9IDv12e/lU+OBB MFl8xOOf+EfbOcZsmUyUJZBwOFN/YRxuiuAbU0X4a1lOFSusZAxcZ1pSlxhrfGdb QIrqlH2sGHjASyQqNZ+gmvzgzXLSbpjIf5EDdaAyEn1iBXwlgTP9pO4HCyFeoGwI pJQyWSzEN8LVxyMsJoY7fa1uiQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEiIWTuN 9RUUPQd2gaKmxObOK/XrMB8GA1UdIwQYMBaAFKqmLbR/ASsm3YaY4sw13o8pQ3dh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVCMC82NUQxREIyQ0RB RUExMUVBOTU4RUIzNUJDNEY5QUUwMi9xcVl0dEg4Qkt5YmRocGppekRYZWp5bERk MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FxWXR0SDhCS3liZGhwaml6RFhlanlsRGQyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhFQjAvNjVEMURCMkNEQUVBMTFFQTk1OEVCMzVCQzRGOUFFMDIvMjNDREFFNDRG ODlCMTFFRkEwODg4RDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJwebgDBAW0siADBAe2EAAwDQYJKoZIhvcNAQELBQADggEB ALirPznnidkN7WVr8Vx8yDm/HOk/KOjjKUIKs2AtPSr1jtMe9pcj/6IQXHahZZMx 6a+WkZnf2BTA8vrMhgJXiJlzkmU454UOAwsZbKBaaOvbfEW/TaEWlfqcnHXzZOvo +x3RCQr2TLm4WlSj7g8Qm55J1gDBLN3iigVYUqIx/Pph+HKUoRODWWvWr5rCXC60 TsLhHwQA3+II+A7DgOr/rF3Y3GfPJcJQZA+nhZRZxMuQygg1EF7BResxm+OieD5o +/keVmbduOkKba4xOAaxRWhfTH91b4ilfyBzCbd1Sp+RoaMTPOZf3R4EI5q4CBW3 Z6Ifxxw08o1mR9KYg4x9e4s= -----END CERTIFICATE-----Generated at Sun Dec 14 06:25:44 2025 by rpki-client