This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/2DB6F886286111E9BA245A71C4F9AE02.roa File: 2DB6F886286111E9BA245A71C4F9AE02.roa (raw, json) Hash identifier: eRK6+Zz8rhdfBO2+ST4cGsgHBpHnrY/0jrg7ws+2BsM= Subject key identifier: 8B:7F:0F:A0:3C:5B:B6:85:4F:E9:3E:28:5A:C7:AD:CE:AA:89:32:DF Certificate issuer: /CN=A9182948/serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Certificate serial: 111E Authority key identifier: 88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/2DB6F886286111E9BA245A71C4F9AE02.roa Signing time: Tue 16 Dec 2025 17:15:11 +0000 ROA not before: Tue 16 Dec 2025 17:15:11 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 138578 IP address blocks: 103.133.164.0/22 maxlen: 22 103.133.164.0/24 maxlen: 24 103.133.165.0/24 maxlen: 24 103.133.166.0/24 maxlen: 24 103.133.167.0/24 maxlen: 24 2404:50c0::/32 maxlen: 32 2404:50c0:bd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4382 (0x111e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182948, serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Validity Not Before: Dec 16 17:15:11 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6941939f-08fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f6:88:df:14:6d:7e:8a:ba:23:0a:d9:71:2f: 72:a3:b3:8c:60:12:2a:98:74:6e:d4:24:bc:df:ea: cd:b3:f8:33:e7:f9:70:11:83:6d:6d:1f:29:62:51: 76:2a:41:b1:bb:14:4b:46:36:2a:ac:f3:bf:95:f6: ed:75:a6:b3:8d:f9:3d:d4:cc:bb:ba:b9:96:66:f0: 6d:b6:a3:5f:88:08:b5:93:b7:8f:40:0d:ad:0b:46: 7d:70:1d:6f:d8:a6:4e:95:88:15:fd:99:6f:99:b5: 32:dc:57:90:e5:73:68:6e:53:6f:2e:67:02:da:1e: c5:dc:d0:49:f7:56:d1:f7:c4:17:7f:b6:bc:a7:6b: ce:11:c4:cf:fe:f5:88:3c:94:7b:38:22:a3:e2:bd: 54:29:3b:67:d0:f7:09:7a:64:fe:f7:8e:4a:ac:bd: 6d:76:38:48:45:b8:26:d2:38:99:84:61:fd:ba:3a: a2:cd:b0:f4:4a:27:e0:68:d0:b7:e6:ba:24:8a:a1: 88:4b:a6:ea:c5:f1:28:a2:a7:20:69:20:38:b6:dc: ff:b1:df:b5:e8:14:4f:3d:d4:f1:55:58:28:67:f0: 74:50:b3:0e:2d:1c:e5:88:88:33:fd:b0:88:aa:31: 5c:bb:1e:4b:46:90:59:f8:bb:79:f5:91:10:b5:18: be:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:7F:0F:A0:3C:5B:B6:85:4F:E9:3E:28:5A:C7:AD:CE:AA:89:32:DF X509v3 Authority Key Identifier: keyid:88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/2DB6F886286111E9BA245A71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.164.0/22 IPv6: 2404:50c0::/32 Signature Algorithm: sha256WithRSAEncryption 46:7e:d2:9b:41:f5:e6:03:65:6a:36:72:d0:18:f4:e9:4e:84: 34:00:ce:5d:9f:54:6f:7f:01:a7:f6:4e:c9:c4:95:4a:30:d2: 4d:0e:39:7d:fb:6c:0c:50:39:0f:b9:7f:88:a1:e5:34:76:57: cf:a9:44:4a:02:b6:a9:62:17:98:43:58:e0:d7:5d:1d:6d:56: 7e:5e:27:d9:4e:87:81:30:25:9a:9e:b1:23:d2:ff:ca:9f:02: 42:33:2d:b7:7e:8b:18:d4:70:98:fe:41:f7:b1:a8:e0:f3:3f: 73:4d:55:85:9b:8e:b7:79:1c:3e:03:6d:c2:6d:eb:90:31:8b: d5:e8:1f:94:1b:36:5b:36:39:a0:43:a2:8e:b7:e3:96:0e:60: e4:86:cf:dc:fd:64:3a:11:4a:d5:98:c1:a7:63:7e:8f:c2:c2: ae:5c:50:5f:cd:3a:60:24:6a:9a:1a:7c:9a:6e:0d:d4:2f:0e: 8d:3c:a7:11:34:c3:1c:91:38:21:c4:20:28:d9:da:17:46:d5: 4f:6d:a2:cd:62:9c:0d:6c:b5:8b:30:8e:89:75:ef:5c:0c:96: 47:fc:ec:2c:55:48:80:9a:1e:db:48:aa:90:22:64:2e:b4:67: e7:44:a3:53:43:c4:d6:e2:02:58:c6:0b:cf:62:bd:c8:10:9b: 53:2e:30:5c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICER4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5NDgxMTAvBgNVBAUTKDg4MTJDODY3RjZBNjU3ODgwOENEOTJBNTBCQjM5NTJB RjU3Nzc4RjgwHhcNMjUxMjE2MTcxNTExWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQxOTM5Zi0wOGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPaI3xRtfoq6IwrZcS9yo7OMYBIqmHRu1CS83+rNs/gz5/lwEYNtbR8pYlF2 KkGxuxRLRjYqrPO/lfbtdaazjfk91My7urmWZvBttqNfiAi1k7ePQA2tC0Z9cB1v 2KZOlYgV/ZlvmbUy3FeQ5XNoblNvLmcC2h7F3NBJ91bR98QXf7a8p2vOEcTP/vWI PJR7OCKj4r1UKTtn0PcJemT+945KrL1tdjhIRbgm0jiZhGH9ujqizbD0SifgaNC3 5rokiqGIS6bqxfEooqcgaSA4ttz/sd+16BRPPdTxVVgoZ/B0ULMOLRzliIgz/bCI qjFcux5LRpBZ+Lt59ZEQtRi+0wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIt/D6A8 W7aFT+k+KFrHrc6qiTLfMB8GA1UdIwQYMBaAFIgSyGf2pleICM2SpQuzlSr1d3j4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mjk0OC9FRkE1OEJENjI3 RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0Z0l6WktsQzdPVkt2VjNl UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lCTElaX2FtVjRnSXpaS2xDN09WS3ZWM2VQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODI5NDgvRUZBNThCRDYyN0YwMTFFOTg4NDY4QzFCQzRGOUFFMDIvMkRCNkY4ODYy ODYxMTFFOUJBMjQ1QTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhaQwDQQCAAIwBwMFACQEUMAwDQYJKoZIhvcNAQELBQAD ggEBAEZ+0ptB9eYDZWo2ctAY9OlOhDQAzl2fVG9/Aaf2TsnElUow0k0OOX37bAxQ OQ+5f4ih5TR2V8+pREoCtqliF5hDWODXXR1tVn5eJ9lOh4EwJZqesSPS/8qfAkIz Lbd+ixjUcJj+QfexqODzP3NNVYWbjrd5HD4DbcJt65Axi9XoH5QbNls2OaBDoo63 45YOYOSGz9z9ZDoRStWYwadjfo/Cwq5cUF/NOmAkapoafJpuDdQvDo08pxE0wxyR OCHEICjZ2hdG1U9tos1inA1stYswjol171wMlkf87CxVSICaHttIqpAiZC60Z+dE o1NDxNbiAljGC89ivcgQm1MuMFw= -----END CERTIFICATE-----Generated at Wed Dec 24 23:18:23 2025 by rpki-client