This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1FE58C10EC7A11F098ACD3F1536F56BC.roa File: 1FE58C10EC7A11F098ACD3F1536F56BC.roa (raw, json) Hash identifier: GnTSb6loExFH6pRN8yfjfuGfRiEc7HqzBqQDKAst+0k= Subject key identifier: A2:97:76:31:53:36:49:3F:28:27:E3:FD:F6:12:61:E4:C5:14:96:A9 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: CCE7 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1FE58C10EC7A11F098ACD3F1536F56BC.roa Signing time: Thu 08 Jan 2026 10:14:23 +0000 ROA not before: Thu 08 Jan 2026 10:14:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133296 IP address blocks: 43.239.110.0/24 maxlen: 24 43.243.76.0/24 maxlen: 24 43.243.77.0/24 maxlen: 24 43.243.78.0/24 maxlen: 24 103.78.245.0/24 maxlen: 24 103.78.247.0/24 maxlen: 24 103.131.24.0/23 maxlen: 24 103.182.176.0/23 maxlen: 24 103.228.149.0/24 maxlen: 24 103.233.24.0/23 maxlen: 24 103.251.22.0/24 maxlen: 24 150.129.235.0/24 maxlen: 24 202.162.231.0/24 maxlen: 24 202.162.240.0/24 maxlen: 24 202.162.241.0/24 maxlen: 24 202.162.248.0/24 maxlen: 24 202.162.249.0/24 maxlen: 24 202.162.251.0/24 maxlen: 24 203.115.82.0/23 maxlen: 24 210.89.32.0/24 maxlen: 24 210.89.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 11:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52455 (0xcce7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 8 10:14:23 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=695f837f-5348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:eb:a4:12:52:47:11:50:1c:1f:cd:45:5b:2e: 88:cd:4b:7e:14:c6:71:11:be:8a:09:b5:8d:a3:ac: f6:a0:d7:78:20:da:5d:28:14:7b:42:22:2e:e9:59: ef:d7:00:b3:45:c1:ff:6c:13:f0:8d:43:d7:29:92: 62:65:bf:12:c9:a7:d4:a9:a8:c8:cf:f5:c1:13:31: 3a:49:a2:95:b2:5e:77:e3:75:23:ea:7a:1c:ae:50: 20:28:44:47:14:6d:ca:95:ff:f1:49:6b:b2:0a:8f: 0a:99:4d:3c:41:1e:85:a3:a1:c4:9c:93:5f:85:8a: 0d:52:4b:91:b6:b7:08:02:35:37:7f:5e:0a:65:c3: 97:4b:de:3b:a4:ef:f2:64:ba:dc:5b:73:ee:ef:41: a3:d1:22:1e:bc:2d:dd:40:08:85:6d:76:bb:1f:a5: b7:32:44:fb:39:78:ef:3a:3d:67:58:0e:0a:80:8e: 18:a8:89:d2:f2:19:aa:c4:5b:34:af:42:21:46:3b: cd:b4:20:82:39:ae:50:b4:95:6f:4b:34:63:28:4c: c5:77:7c:e8:e9:21:79:2e:48:79:8c:fd:32:77:63: 55:2d:7a:ab:9a:38:ce:5d:fc:64:21:6a:d8:70:40: 73:ec:4e:45:58:69:a2:80:ec:c0:cd:5e:93:5c:ac: 2d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:97:76:31:53:36:49:3F:28:27:E3:FD:F6:12:61:E4:C5:14:96:A9 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1FE58C10EC7A11F098ACD3F1536F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.110.0/24 43.243.76.0-43.243.78.255 103.78.245.0/24 103.78.247.0/24 103.131.24.0/23 103.182.176.0/23 103.228.149.0/24 103.233.24.0/23 103.251.22.0/24 150.129.235.0/24 202.162.231.0/24 202.162.240.0/23 202.162.248.0/23 202.162.251.0/24 203.115.82.0/23 210.89.32.0/24 210.89.49.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:ff:81:f5:18:af:dd:e2:4c:26:7d:c8:b6:80:8f:38:a9:bd: 9b:fd:04:8f:cb:1d:4c:e6:7b:5c:a9:56:c6:fe:e9:f9:fd:fa: 55:3e:df:44:f8:a4:25:d7:74:ae:dd:a4:d5:10:c3:e2:53:7d: 33:8b:5c:07:d5:a1:95:05:fd:02:00:d7:30:06:78:31:00:5a: 3d:b2:e6:63:8c:3c:32:18:8d:51:86:91:25:62:b2:2f:2f:37: f2:74:25:1c:9f:03:59:db:ad:d1:df:ec:57:19:f3:8b:24:a8: 72:6d:21:5d:2f:f6:e2:5a:07:ee:4e:e2:ab:04:60:0f:f6:68: 30:b2:b9:8f:8e:f6:31:63:c7:bf:b8:9d:e7:1b:cc:b1:0a:15: de:76:42:42:3d:7a:f4:2b:e8:87:c3:e2:a1:b9:e7:57:b1:40: 62:fa:b3:63:48:69:d8:e2:75:06:cb:4e:01:5b:00:1d:cb:da: 8e:94:01:95:b0:b0:cc:0a:0b:37:a3:80:59:c2:ae:35:26:ed: e3:80:78:08:e2:2a:a0:55:16:6a:cd:bf:07:6f:c9:9a:48:d3: f2:93:31:2f:13:4b:3b:e7:de:bd:ec:be:23:2d:08:08:af:ad: 69:27:a3:3d:64:0f:08:fb:9e:7e:20:c4:7b:22:b0:2f:60:33: 3f:88:3e:f7 -----BEGIN CERTIFICATE----- MIIF2zCCBMOgAwIBAgIDAMznMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMMCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDEwODEwMTQyM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAwwNNjk1ZjgzN2YtNTM0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMzrpBJSRxFQHB/NRVsuiM1LfhTGcRG+igm1jaOs9qDXeCDaXSgUe0IiLulZ 79cAs0XB/2wT8I1D1ymSYmW/Esmn1KmoyM/1wRMxOkmilbJed+N1I+p6HK5QIChE RxRtypX/8UlrsgqPCplNPEEehaOhxJyTX4WKDVJLkba3CAI1N39eCmXDl0veO6Tv 8mS63Ftz7u9Bo9EiHrwt3UAIhW12ux+ltzJE+zl47zo9Z1gOCoCOGKiJ0vIZqsRb NK9CIUY7zbQggjmuULSVb0s0YyhMxXd86OkheS5IeYz9MndjVS16q5o4zl38ZCFq 2HBAc+xORVhpooDswM1ek1ysLX8CAwEAAaOCAv4wggL6MB0GA1UdDgQWBBSil3Yx UzZJPygn4/32EmHkxRSWqTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzFGRTU4QzEw RUM3QTExRjA5OEFDRDNGMTUzNkY1NkJDLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGHBggrBgEFBQcBBwEB /wR4MHYwdAQCAAEwbgMEACvvbjAMAwQCK/NMAwQAK/NOAwQAZ071AwQAZ073AwQB Z4MYAwQBZ7awAwQAZ+SVAwQBZ+kYAwQAZ/sWAwQAloHrAwQAyqLnAwQByqLwAwQB yqL4AwQAyqL7AwQBy3NSAwQA0lkgAwQA0lkxMA0GCSqGSIb3DQEBCwUAA4IBAQBN /4H1GK/d4kwmfci2gI84qb2b/QSPyx1M5ntcqVbG/un5/fpVPt9E+KQl13Su3aTV EMPiU30zi1wH1aGVBf0CANcwBngxAFo9suZjjDwyGI1RhpElYrIvLzfydCUcnwNZ 263R3+xXGfOLJKhybSFdL/biWgfuTuKrBGAP9mgwsrmPjvYxY8e/uJ3nG8yxChXe dkJCPXr0K+iHw+KhuedXsUBi+rNjSGnY4nUGy04BWwAdy9qOlAGVsLDMCgs3o4BZ wq41Ju3jgHgI4iqgVRZqzb8Hb8maSNPykzEvE0s759697L4jLQgIr61pJ6M9ZA8I +55+IMR7IrAvYDM/iD73 -----END CERTIFICATE-----Generated at Mon Jan 19 21:42:47 2026 by rpki-client