This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/3A8AC908E41C11E9AD4A8D16C4F9AE02.roa File: 3A8AC908E41C11E9AD4A8D16C4F9AE02.roa (raw, json) Hash identifier: kp1NwcuWRnERAOxCFbqoz60WokKexk6IerZxBoJu4j4= Subject key identifier: 75:0C:D8:AF:C7:0A:43:B4:9B:83:7D:9B:F8:ED:74:4B:67:CA:46:46 Certificate issuer: /CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Certificate serial: 0D56 Authority key identifier: FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/3A8AC908E41C11E9AD4A8D16C4F9AE02.roa Signing time: Tue 16 Dec 2025 18:15:02 +0000 ROA not before: Tue 16 Dec 2025 18:15:02 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63914 IP address blocks: 103.23.31.0/24 maxlen: 24 103.43.230.0/24 maxlen: 24 103.228.134.0/23 maxlen: 23 202.0.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:37:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3414 (0xd56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E475, serialNumber=FF08530952971BA065224B521F56563B6D2124ED Validity Not Before: Dec 16 18:15:02 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6941a1a6-acfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:54:d7:2c:34:5f:c9:54:cb:ca:90:8b:00:a0: 2c:c8:1d:0d:1d:33:6e:dc:e9:8d:05:d4:73:da:20: 0f:7b:fc:41:a7:4c:0d:92:da:e8:be:d5:d5:c7:06: 02:5f:4f:4c:7f:80:f3:a1:f1:00:f5:a2:42:28:e4: eb:1a:c3:f0:34:81:c3:d6:03:61:15:c7:b5:2c:4d: 3d:92:5c:69:34:d4:7c:85:6a:3f:77:46:e4:db:0f: 26:93:d8:94:58:8d:b0:00:84:d6:cb:20:0f:76:9b: cf:e6:2d:73:24:9d:14:9c:ac:2b:69:03:30:59:ac: cb:1b:94:ba:b4:89:0b:c9:de:d6:a5:99:61:da:c6: 75:5d:d1:89:4b:38:50:10:08:b1:67:48:48:18:db: 9f:58:79:fa:24:80:92:96:92:2d:41:e2:8f:52:0f: b6:06:f9:fc:9f:19:ee:84:f7:d2:8d:02:72:44:d2: 1b:24:a0:ea:9b:fb:36:9d:3c:6a:3b:33:23:4d:d5: ea:5a:c1:0e:77:88:29:76:31:fc:43:fe:b1:df:63: 0e:87:71:00:24:1c:71:d6:d8:a0:a1:d3:44:b2:83: 3a:97:b0:96:a6:10:20:13:69:25:50:66:16:be:27: 4e:83:4e:4e:67:d8:bd:1a:49:ea:c2:b7:64:5b:62: d9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:0C:D8:AF:C7:0A:43:B4:9B:83:7D:9B:F8:ED:74:4B:67:CA:46:46 X509v3 Authority Key Identifier: keyid:FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/3A8AC908E41C11E9AD4A8D16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.31.0/24 103.43.230.0/24 103.228.134.0/23 202.0.94.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:3d:7e:92:69:68:03:9b:dd:d3:44:74:ff:29:5e:34:f9:e8: 3c:42:25:90:a8:5a:c8:a5:91:cb:2d:9b:27:50:23:c3:33:63: 35:63:b3:e9:46:0a:9e:5d:b6:4e:20:6b:e3:e9:12:e5:24:6f: 55:db:8d:b4:b0:32:89:50:58:e3:c4:d9:60:96:45:b2:35:83: cf:8f:c4:7f:8e:9c:64:ff:6d:fa:be:8d:08:f9:2d:1a:2b:f8: ef:95:1d:ad:e4:8d:91:19:61:27:d0:7c:ad:5c:d8:ef:ce:36: f6:77:f3:99:c7:1c:5d:47:84:27:6b:0d:8a:64:4b:dc:be:c7: df:8b:36:e5:13:9f:69:08:36:a3:20:0c:42:ab:fb:70:7e:ad: c9:b2:e2:3d:6c:cd:e0:eb:46:65:d3:e6:ec:aa:b3:8f:35:4e: 05:bb:1d:bb:78:1e:50:41:ca:fb:18:ee:ea:5c:cb:8b:a1:8b: 3a:1d:19:59:5f:bc:2a:5c:53:13:c8:cf:d6:19:fe:6e:e0:d7: 64:a0:75:ee:96:5a:b7:1f:54:bd:2f:ed:bf:1b:d8:e7:e4:d6: 71:3f:5e:e4:7c:7d:a1:2e:b3:48:f1:68:22:5e:b1:1c:fe:af: df:11:ff:cc:bb:00:3d:7c:da:7d:87:48:90:dd:67:cb:dd:ae: ae:39:d6:11 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICDVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0NzUxMTAvBgNVBAUTKEZGMDg1MzA5NTI5NzFCQTA2NTIyNEI1MjFGNTY1NjNC NkQyMTI0RUQwHhcNMjUxMjE2MTgxNTAyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQxYTFhNi1hY2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlTXLDRfyVTLypCLAKAsyB0NHTNu3OmNBdRz2iAPe/xBp0wNktrovtXVxwYC X09Mf4DzofEA9aJCKOTrGsPwNIHD1gNhFce1LE09klxpNNR8hWo/d0bk2w8mk9iU WI2wAITWyyAPdpvP5i1zJJ0UnKwraQMwWazLG5S6tIkLyd7WpZlh2sZ1XdGJSzhQ EAixZ0hIGNufWHn6JICSlpItQeKPUg+2Bvn8nxnuhPfSjQJyRNIbJKDqm/s2nTxq OzMjTdXqWsEOd4gpdjH8Q/6x32MOh3EAJBxx1tigodNEsoM6l7CWphAgE2klUGYW vidOg05OZ9i9GknqwrdkW2LZmwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFHUM2K/H CkO0m4N9m/jtdEtnykZGMB8GA1UdIwQYMBaAFP8IUwlSlxugZSJLUh9WVjttISTt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTQ3NS9EQkZCM0VCNEU0 MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2QmxJa3RTSDFaV08yMGhK TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193aFRDVktYRzZCbElrdFNIMVpXTzIwaEpPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U0NzUvREJGQjNFQjRFNDFBMTFFOUFENzlCODExQzRGOUFFMDIvM0E4QUM5MDhF NDFDMTFFOUFENEE4RDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABnFx8DBABnK+YDBAFn5IYDBADKAF4wDQYJKoZIhvcNAQEL BQADggEBAH09fpJpaAOb3dNEdP8pXjT56DxCJZCoWsilkcstmydQI8MzYzVjs+lG Cp5dtk4ga+PpEuUkb1XbjbSwMolQWOPE2WCWRbI1g8+PxH+OnGT/bfq+jQj5LRor +O+VHa3kjZEZYSfQfK1c2O/ONvZ385nHHF1HhCdrDYpkS9y+x9+LNuUTn2kINqMg DEKr+3B+rcmy4j1szeDrRmXT5uyqs481TgW7Hbt4HlBByvsY7upcy4uhizodGVlf vCpcUxPIz9YZ/m7g12Sgde6WWrcfVL0v7b8b2Ofk1nE/XuR8faEus0jxaCJesRz+ r98R/8y7AD182n2HSJDdZ8vdrq451hE= -----END CERTIFICATE-----Generated at Wed Dec 24 15:44:55 2025 by rpki-client