This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/14EDA02435A511EE99DF844FC4F9AE02.roa File: 14EDA02435A511EE99DF844FC4F9AE02.roa (raw, json) Hash identifier: 26I5DiQHiT1DlxVZpHwjBY7mqYEDc0ji1+cBrpFybPk= Subject key identifier: 1D:9C:78:27:C1:E7:57:B4:CF:7A:48:1A:B2:7B:50:1D:B9:26:D1:D5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B4DC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/14EDA02435A511EE99DF844FC4F9AE02.roa Signing time: Thu 08 May 2025 16:10:44 +0000 ROA not before: Thu 08 May 2025 16:10:44 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137677 IP address blocks: 103.117.236.0/22 maxlen: 24 103.168.12.0/23 maxlen: 24 2405:4bc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 12:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46300 (0xb4dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:10:44 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd784-615c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:97:d0:df:d1:69:a4:c8:8a:bb:76:c1:95:90: a6:34:e9:98:39:0b:42:6d:11:44:3c:69:d2:6b:c9: d0:63:9d:e1:04:d0:56:f9:c9:ce:1c:b4:3e:d8:b7: 67:e6:cf:f4:30:e5:26:ba:c4:ba:38:23:95:7f:f7: c3:cc:54:e7:30:fd:91:1e:dc:2d:fe:9e:67:48:32: 07:f5:db:ea:e4:c5:ec:c7:86:1d:4d:cd:bc:a8:a4: b2:e7:0e:51:f5:ca:f1:ab:80:75:4c:92:4e:46:e5: 8f:0f:55:0d:00:96:b2:de:fa:b4:2d:ea:6d:e9:b9: a2:84:47:5d:f2:1b:cf:79:24:6e:d6:2a:49:e8:53: 99:02:96:01:ba:63:f7:0d:5a:2a:64:c9:83:ce:c7: 2b:a4:e9:a0:12:0e:60:0a:3f:89:ab:64:f0:db:1a: 1b:49:64:c6:7b:0d:80:bb:2c:d6:d8:09:2c:99:05: 7c:40:d9:ca:cb:53:d8:d1:6c:f1:d1:0e:7a:0e:51: 94:83:57:b1:f4:63:17:f9:03:db:1c:70:21:92:a1: 66:b1:b3:7c:78:e0:d5:81:16:e0:87:66:08:d5:9b: fa:6d:ae:19:14:bd:48:4d:33:d5:2c:65:be:8a:36: cf:5f:b6:ba:34:b0:48:5a:3a:84:2c:42:20:18:c8: 74:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:9C:78:27:C1:E7:57:B4:CF:7A:48:1A:B2:7B:50:1D:B9:26:D1:D5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/14EDA02435A511EE99DF844FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.236.0/22 103.168.12.0/23 IPv6: 2405:4bc0::/32 Signature Algorithm: sha256WithRSAEncryption 22:ef:6b:da:fa:89:8a:8c:85:05:8e:6c:8e:a4:84:7c:47:4f: 66:44:be:8e:44:bd:3c:d7:cf:ac:61:ba:4b:e8:ea:23:cb:29: 6b:fc:9f:d6:50:c8:49:19:43:90:d2:0b:37:66:ef:22:a0:9c: 2b:a5:eb:dc:2d:ca:04:64:27:e2:82:53:b7:69:61:32:fc:22: fe:26:b2:c5:62:60:03:89:e8:6c:e8:be:b4:c6:26:c1:42:2e: 09:9a:49:ee:99:93:9f:89:cc:e1:19:68:95:99:82:b7:f3:9f: 66:45:51:92:bc:24:06:db:21:84:68:fb:e8:c1:83:10:61:91: 8f:bb:04:fd:6a:6f:67:a4:92:6d:cf:af:be:c0:31:51:e6:27: dc:4a:a1:b9:94:91:72:9b:63:9b:12:4f:96:3c:43:4b:6b:73: 69:29:f8:0d:34:8f:4b:ec:90:1c:eb:72:bc:06:10:d0:46:35: 00:6c:71:08:5f:39:14:01:d2:a1:ca:44:45:5c:ca:1b:0b:16: 31:5d:33:84:96:02:6e:b4:08:9a:b3:8d:ec:c1:7c:74:5b:62: de:24:90:07:1f:4e:62:d8:8d:dc:74:48:6a:02:f7:9b:5d:e3: 6c:00:c6:6a:d3:ea:12:1b:56:bb:7f:5c:62:57:57:66:7e:bc: 60:04:25:1e -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIDALTcMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTA0NFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q3ODQtNjE1YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKmX0N/RaaTIirt2wZWQpjTpmDkLQm0RRDxp0mvJ0GOd4QTQVvnJzhy0Pti3 Z+bP9DDlJrrEujgjlX/3w8xU5zD9kR7cLf6eZ0gyB/Xb6uTF7MeGHU3NvKiksucO UfXK8auAdUySTkbljw9VDQCWst76tC3qbem5ooRHXfIbz3kkbtYqSehTmQKWAbpj 9w1aKmTJg87HK6TpoBIOYAo/iatk8NsaG0lkxnsNgLss1tgJLJkFfEDZystT2NFs 8dEOeg5RlINXsfRjF/kD2xxwIZKhZrGzfHjg1YEW4IdmCNWb+m2uGRS9SE0z1Sxl voo2z1+2ujSwSFo6hCxCIBjIdLECAwEAAaOCAqowggKmMB0GA1UdDgQWBBQdnHgn wedXtM96SBqye1AduSbR1TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzE0RURBMDI0 MzVBNTExRUU5OURGODQ0RkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDQGCCsGAQUFBwEHAQH/ BCUwIzASBAIAATAMAwQCZ3XsAwQBZ6gMMA0EAgACMAcDBQAkBUvAMA0GCSqGSIb3 DQEBCwUAA4IBAQAi72va+omKjIUFjmyOpIR8R09mRL6ORL0818+sYbpL6Oojyylr /J/WUMhJGUOQ0gs3Zu8ioJwrpevcLcoEZCfiglO3aWEy/CL+JrLFYmADiehs6L60 xibBQi4JmknumZOficzhGWiVmYK3859mRVGSvCQG2yGEaPvowYMQYZGPuwT9am9n pJJtz6++wDFR5ifcSqG5lJFym2ObEk+WPENLa3NpKfgNNI9L7JAc63K8BhDQRjUA bHEIXzkUAdKhykRFXMobCxYxXTOElgJutAias43swXx0W2LeJJAHH05i2I3cdEhq AvebXeNsAMZq0+oSG1a7f1xiV1dmfrxgBCUe -----END CERTIFICATE-----Generated at Fri Dec 5 17:14:50 2025 by rpki-client