This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/B84CC7D2A41A11F08EC1655BC4F9AE02.roa File: B84CC7D2A41A11F08EC1655BC4F9AE02.roa (raw, json) Hash identifier: BDzw5D5CcIPm56khil5lg8M53qDwHx2+4ZYsOb/1Mtc= Subject key identifier: 40:E7:79:AE:F1:71:E3:A4:FD:2F:7C:B0:07:3C:20:1B:E5:63:9D:BF Certificate issuer: /CN=A918404E/serialNumber=9C7C776F6BF6003283F0CAB43E2DC61494997162 Certificate serial: 0998 Authority key identifier: 9C:7C:77:6F:6B:F6:00:32:83:F0:CA:B4:3E:2D:C6:14:94:99:71:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/B84CC7D2A41A11F08EC1655BC4F9AE02.roa Signing time: Sat 20 Dec 2025 10:09:10 +0000 ROA not before: Sat 20 Dec 2025 10:09:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 4755 IP address blocks: 45.117.203.0/24 maxlen: 24 45.126.163.0/24 maxlen: 24 103.225.176.0/24 maxlen: 24 150.107.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.crl rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 20:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2456 (0x998) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918404E, serialNumber=9C7C776F6BF6003283F0CAB43E2DC61494997162 Validity Not Before: Dec 20 10:09:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=694675c6-304a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6a:77:b3:90:c6:f9:c3:3a:b9:0e:12:02:29: eb:0d:08:e3:a1:87:63:c5:b0:3a:a3:d6:ac:11:52: 1f:87:a1:1d:57:21:c9:29:50:b0:7f:08:b8:08:61: 20:c1:8e:f5:a4:04:d3:3e:c4:1d:b6:a5:ac:64:0e: a3:83:40:59:5c:b2:c0:02:ee:89:08:fd:02:2e:52: 0f:4e:1f:50:3f:6b:f8:3d:40:3c:b9:d3:ce:cb:f0: bf:de:c0:3b:a3:49:8f:22:df:7a:ec:ef:d0:ee:4e: 6f:96:a6:1e:d0:08:67:c6:2f:25:a4:c3:3a:ce:c4: d6:fc:ad:19:0b:df:11:34:93:21:a1:a6:e1:b2:36: 04:9c:aa:0d:c4:2b:8e:65:8b:21:a3:61:b6:e9:54: ac:13:f2:3b:a0:af:87:2f:87:b3:fe:3c:0e:7e:2e: 95:7e:d5:86:f3:d5:d1:a5:4b:b3:d4:12:24:37:f8: 38:44:6a:fe:f4:29:d2:dd:38:d7:44:46:ea:a0:2d: 31:ce:2f:5f:51:33:99:57:bf:b8:fb:bf:6a:e1:34: 43:9e:06:fa:cd:96:68:92:c0:fb:eb:7a:6a:76:2e: 0a:f1:f7:a0:c2:d8:15:24:ee:9b:73:9e:3d:98:e5: 3c:6c:48:5b:6b:bf:8b:e6:81:dd:38:d0:54:b6:72: c4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E7:79:AE:F1:71:E3:A4:FD:2F:7C:B0:07:3C:20:1B:E5:63:9D:BF X509v3 Authority Key Identifier: keyid:9C:7C:77:6F:6B:F6:00:32:83:F0:CA:B4:3E:2D:C6:14:94:99:71:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/B84CC7D2A41A11F08EC1655BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.203.0/24 45.126.163.0/24 103.225.176.0/24 150.107.10.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:8a:f5:70:81:e5:db:df:89:57:8f:5d:43:64:e9:6f:81:d8: 32:a5:26:64:5a:c6:0b:8e:80:93:dd:93:75:dd:4c:7f:5a:4b: 1c:e6:cc:1c:12:1e:f2:21:43:34:01:b3:90:be:2f:7c:da:4f: aa:e3:6d:b2:58:52:91:c8:06:51:0a:a7:52:36:d0:9c:d4:14: 1a:f0:73:56:93:62:51:d7:3a:6c:b9:5a:e1:ca:98:e9:f5:c6: d2:5f:65:98:fa:74:bd:f7:91:e2:cb:0e:72:01:19:44:3c:39: 23:3b:7a:2f:08:f5:2c:d2:63:b8:be:2c:6c:df:73:c1:bf:fe: 8e:f2:f9:f6:a7:02:40:8d:96:16:03:83:d3:74:f1:48:8f:31: 15:7d:33:b0:74:da:93:43:9a:c2:54:a3:48:0c:f2:fe:fb:22: 72:ac:ba:42:99:5c:3c:ac:be:de:d6:51:da:75:f9:37:53:f1: 16:d7:b2:e7:2a:dd:3c:18:d3:da:ae:a9:6c:64:11:92:66:4c: e8:30:fa:7c:eb:c8:ac:36:c6:aa:4c:71:6d:44:2a:2f:7b:02: 20:2e:28:8a:9e:c8:26:f5:51:6a:04:30:7c:c1:51:a0:87:dc: 11:d6:c5:36:b9:26:6d:95:ba:a6:d0:2b:cd:9b:55:ae:c6:02: 17:a5:30:00 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwNEUxMTAvBgNVBAUTKDlDN0M3NzZGNkJGNjAwMzI4M0YwQ0FCNDNFMkRDNjE0 OTQ5OTcxNjIwHhcNMjUxMjIwMTAwOTEwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ2NzVjNi0zMDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2p3s5DG+cM6uQ4SAinrDQjjoYdjxbA6o9asEVIfh6EdVyHJKVCwfwi4CGEg wY71pATTPsQdtqWsZA6jg0BZXLLAAu6JCP0CLlIPTh9QP2v4PUA8udPOy/C/3sA7 o0mPIt967O/Q7k5vlqYe0Ahnxi8lpMM6zsTW/K0ZC98RNJMhoabhsjYEnKoNxCuO ZYsho2G26VSsE/I7oK+HL4ez/jwOfi6VftWG89XRpUuz1BIkN/g4RGr+9CnS3TjX REbqoC0xzi9fUTOZV7+4+79q4TRDngb6zZZoksD763pqdi4K8fegwtgVJO6bc549 mOU8bEhba7+L5oHdONBUtnLEbQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFEDnea7x ceOk/S98sAc8IBvlY52/MB8GA1UdIwQYMBaAFJx8d29r9gAyg/DKtD4txhSUmXFi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDA0RS9CQzAzMEM3NkYx REExMUVBQUZDNkM3MEFDNEY5QUUwMi9uSHgzYjJ2MkFES0Q4TXEwUGkzR0ZKU1pj V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25IeDNiMnYyQURLRDhNcTBQaTNHRkpTWmNXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQwNEUvQkMwMzBDNzZGMURBMTFFQUFGQzZDNzBBQzRGOUFFMDIvQjg0Q0M3RDJB NDFBMTFGMDhFQzE2NTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAtdcsDBAAtfqMDBABn4bADBACWawowDQYJKoZIhvcNAQEL BQADggEBAG2K9XCB5dvfiVePXUNk6W+B2DKlJmRaxguOgJPdk3XdTH9aSxzmzBwS HvIhQzQBs5C+L3zaT6rjbbJYUpHIBlEKp1I20JzUFBrwc1aTYlHXOmy5WuHKmOn1 xtJfZZj6dL33keLLDnIBGUQ8OSM7ei8I9SzSY7i+LGzfc8G//o7y+fanAkCNlhYD g9N08UiPMRV9M7B02pNDmsJUo0gM8v77InKsukKZXDysvt7WUdp1+TdT8RbXsucq 3TwY09quqWxkEZJmTOgw+nzryKw2xqpMcW1EKi97AiAuKIqeyCb1UWoEMHzBUaCH 3BHWxTa5Jm2VuqbQK82bVa7GAhelMAA= -----END CERTIFICATE-----Generated at Tue Jan 20 03:00:40 2026 by rpki-client