This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/014E7EC481B311F09497083AC4F9AE02.roa File: 014E7EC481B311F09497083AC4F9AE02.roa (raw, json) Hash identifier: eyT6anmSSg0soUILCE4JdULfMnQPL/pqMWy/L3JSvDg= Subject key identifier: 8C:41:25:8A:0D:60:42:A2:82:8A:43:65:C5:31:34:5C:1D:AF:EA:5C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C694 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/014E7EC481B311F09497083AC4F9AE02.roa Signing time: Wed 29 Oct 2025 05:32:51 +0000 ROA not before: Wed 29 Oct 2025 05:32:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154163 IP address blocks: 45.117.58.0/23 maxlen: 24 2001:df6:5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 12:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50836 (0xc694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Oct 29 05:32:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6901a703-3079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c3:dd:80:66:7f:26:b3:b9:cd:73:f7:3a:09: d7:47:08:8b:43:50:dd:b2:f8:62:82:7d:09:d6:e3: 44:91:fc:d7:b0:07:dc:db:a0:17:c0:b7:ed:4c:84: da:15:70:ee:c9:0c:31:da:6a:d1:ed:11:41:c1:31: a4:9a:88:f1:23:6d:33:19:c5:f1:06:4a:41:6e:8c: 98:25:d4:fb:2e:e5:d7:54:3d:6f:e5:5d:e7:e9:47: aa:b2:19:6c:22:ec:69:21:37:18:d8:9b:aa:1f:f8: 54:c7:7e:20:23:c7:fe:a2:ed:ff:03:fe:25:a9:7b: 12:24:24:2c:11:95:f6:81:79:80:7e:27:8d:b7:35: a8:f7:80:61:ed:08:66:74:91:97:c5:b9:f4:44:ad: bf:16:42:ba:e9:d8:ba:8f:d3:de:8b:e3:76:b4:9f: 23:8f:ee:6d:b2:d8:72:e5:7f:cf:09:52:11:27:fa: 2f:f2:f1:bc:cf:dd:82:c3:bb:32:70:85:37:9e:ea: 27:b3:ce:e3:cd:bb:5b:a1:fa:88:d9:7e:d2:86:34: a5:ae:79:96:7f:55:47:2c:8f:a1:46:c9:03:f0:51: bd:ef:23:9d:f5:ec:2c:58:62:f5:9c:5f:2e:e3:98: 43:16:1c:07:5d:8d:3d:83:a9:7c:bc:79:40:44:6a: f0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:41:25:8A:0D:60:42:A2:82:8A:43:65:C5:31:34:5C:1D:AF:EA:5C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/014E7EC481B311F09497083AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.58.0/23 IPv6: 2001:df6:5c0::/48 Signature Algorithm: sha256WithRSAEncryption 84:7f:77:f1:03:8c:2a:eb:1b:97:b5:b6:e9:e7:58:60:f5:71: 4a:61:4c:dd:d3:17:3d:90:71:88:67:1b:94:c7:de:53:ab:95: 04:e1:e3:0d:c3:d2:1b:91:64:63:3b:ff:2b:69:fd:6c:ae:87: d4:cb:ea:48:90:a8:69:ca:8e:ca:c3:c4:25:ca:19:46:5a:04: 6e:70:4f:29:12:2c:ec:2f:0f:9d:5a:70:80:96:8b:dd:9f:c4: 3d:27:9e:b6:96:29:a1:d0:73:b5:88:1c:06:04:83:60:79:1c: 87:7b:11:63:2d:f0:6c:b2:e5:c3:12:e2:97:fc:ad:48:41:2e: c5:d9:79:ff:9b:a6:a7:ae:14:0e:05:3d:2f:ad:c8:b9:f9:63: 65:41:3a:18:50:e6:0c:8a:0c:b4:ff:64:1f:c7:d7:d1:21:13: 20:53:4c:b4:52:64:e7:12:ff:a7:fd:01:ac:12:99:4e:36:44: 9c:ee:dc:a9:66:c8:0e:5f:30:f9:5e:14:d7:09:4d:f5:43:0a: f7:6a:45:d7:d3:98:fa:ee:0b:70:29:cb:b7:6c:c2:94:01:fe: aa:7f:12:78:a6:0d:8e:9e:10:48:d2:cd:e9:aa:1e:e8:2f:fd: 74:1a:be:32:03:45:a0:57:47:d7:75:0a:43:97:46:e7:6a:7f: a4:7e:da:b9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAMaUMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTAyOTA1MzI1MVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjkwMWE3MDMtMzA3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOvD3YBmfyazuc1z9zoJ10cIi0NQ3bL4YoJ9CdbjRJH817AH3NugF8C37UyE 2hVw7skMMdpq0e0RQcExpJqI8SNtMxnF8QZKQW6MmCXU+y7l11Q9b+Vd5+lHqrIZ bCLsaSE3GNibqh/4VMd+ICPH/qLt/wP+Jal7EiQkLBGV9oF5gH4njbc1qPeAYe0I ZnSRl8W59EStvxZCuunYuo/T3ovjdrSfI4/ubbLYcuV/zwlSESf6L/LxvM/dgsO7 MnCFN57qJ7PO4827W6H6iNl+0oY0pa55ln9VRyyPoUbJA/BRve8jnfXsLFhi9Zxf LuOYQxYcB12NPYOpfLx5QERq8CUCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBSMQSWK DWBCooKKQ2XFMTRcHa/qXDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzAxNEU3RUM0 ODFCMzExRjA5NDk3MDgzQUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBLXU6MA8EAgACMAkDBwAgAQ32BcAwDQYJKoZIhvcNAQEL BQADggEBAIR/d/EDjCrrG5e1tunnWGD1cUphTN3TFz2QcYhnG5TH3lOrlQTh4w3D 0huRZGM7/ytp/Wyuh9TL6kiQqGnKjsrDxCXKGUZaBG5wTykSLOwvD51acICWi92f xD0nnraWKaHQc7WIHAYEg2B5HId7EWMt8Gyy5cMS4pf8rUhBLsXZef+bpqeuFA4F PS+tyLn5Y2VBOhhQ5gyKDLT/ZB/H19EhEyBTTLRSZOcS/6f9AawSmU42RJzu3Klm yA5fMPleFNcJTfVDCvdqRdfTmPruC3Apy7dswpQB/qp/EnimDY6eEEjSzemqHugv /XQavjIDRaBXR9d1CkOXRudqf6R+2rk= -----END CERTIFICATE-----Generated at Fri Dec 5 17:15:40 2025 by rpki-client