This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/20CEC7FA74DD11EBB2F11F48C4F9AE02.roa File: 20CEC7FA74DD11EBB2F11F48C4F9AE02.roa (raw, json) Hash identifier: 0B1fXs3HIMM3teWdzSPar1Z+LVzJQINTbyNi/y1PHIs= Subject key identifier: 7C:DB:B0:77:01:A0:D9:6A:6C:C0:63:F6:6D:D8:F5:1D:D7:50:D6:7E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B2EA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/20CEC7FA74DD11EBB2F11F48C4F9AE02.roa Signing time: Thu 08 May 2025 16:03:03 +0000 ROA not before: Thu 08 May 2025 16:03:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135181 IP address blocks: 103.83.12.0/23 maxlen: 24 2001:df0:5ec0::/48 maxlen: 48 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 45802 (0xb2ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:03:03 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd5b7-5e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:02:16:2a:3e:88:50:2b:5e:c6:74:3c:43:bc: ff:4d:12:55:8b:8f:e8:67:53:1b:92:52:16:5f:2e: 00:e4:b4:1d:d9:f8:41:19:95:fb:8b:18:db:c0:a1: 7f:59:c7:db:4c:ee:db:e5:e2:ac:85:db:53:7a:b7: 50:49:45:7b:cf:37:17:13:c5:2d:b3:96:c7:20:2a: 46:65:d5:5a:11:e1:e9:4d:b3:86:62:c0:8e:84:b0: 49:b6:1e:e8:d9:a4:e2:45:7e:5e:a0:94:b9:60:5a: b8:2d:f5:95:87:bb:b9:78:ba:82:8d:47:2c:71:8a: 4e:56:7f:c7:9c:24:2f:6e:0f:39:0f:e1:50:62:05: de:d2:be:1b:2c:e0:9d:d5:5e:e0:d5:8b:27:e5:46: e1:81:60:63:d2:f1:ae:02:1f:f4:ae:9e:0e:ad:12: bd:bf:84:83:9e:0e:2f:b8:ed:57:e7:93:82:58:d2: c2:fe:7e:a9:dd:2e:56:92:30:df:c0:12:39:12:0f: 04:06:23:65:97:bd:19:04:d0:21:17:d3:08:d2:2d: 9e:c6:2a:bf:bb:73:71:26:99:c1:ab:dc:5f:c8:4a: 1d:27:8a:0c:1c:16:17:90:9d:7a:76:05:e9:6e:53: 97:a9:c6:80:e9:e9:8d:07:ee:09:78:9e:47:5b:71: 88:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:DB:B0:77:01:A0:D9:6A:6C:C0:63:F6:6D:D8:F5:1D:D7:50:D6:7E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/20CEC7FA74DD11EBB2F11F48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.12.0/23 IPv6: 2001:df0:5ec0::/48 Signature Algorithm: sha256WithRSAEncryption a9:dd:95:50:60:e5:84:ce:fe:bb:49:24:30:bf:22:5f:1d:63: 48:7c:c9:64:66:63:d2:b4:11:aa:70:78:4f:d5:18:78:c8:08: 7c:6a:dc:dc:66:26:7d:a3:7d:49:9b:ea:00:5f:de:2c:78:57: ac:31:eb:0d:66:1e:e7:9c:e5:91:26:ba:f2:b3:b5:e5:48:ba: e5:48:55:1d:1f:6a:fd:bf:97:68:7d:52:50:0a:b8:3f:80:3e: 70:2d:69:cc:71:b8:06:5b:a2:15:4c:e9:98:52:cd:fd:fe:ac: 3b:02:86:e6:2d:85:dc:de:76:c5:6f:88:d5:05:57:28:9f:a4: c5:da:40:f6:49:77:f7:e6:fc:27:28:93:80:55:8c:1f:cf:4e: e3:ce:fe:a3:e9:06:1b:5a:8f:75:f6:b7:7c:32:1a:82:76:ff: 75:dc:3a:2d:42:2b:ce:f4:aa:7c:a3:2b:f7:3e:4e:42:bc:85: 51:30:23:03:84:08:93:dd:47:92:65:29:1e:28:04:94:f1:c9: 61:4f:41:0c:e3:2b:0e:a3:de:aa:20:73:7e:8a:3d:d5:74:de: dc:fc:33:44:f5:8e:a3:99:d5:40:28:8e:1c:87:ac:f3:7e:df: a0:e5:1b:c8:fa:fb:66:74:d6:93:ec:34:da:48:2b:af:e7:1a: b5:87:c2:5a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDALLqMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDMwM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q1YjctNWUyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8CFio+iFArXsZ0PEO8/00SVYuP6GdTG5JSFl8uAOS0Hdn4QRmV+4sY28Ch f1nH20zu2+XirIXbU3q3UElFe883FxPFLbOWxyAqRmXVWhHh6U2zhmLAjoSwSbYe 6Nmk4kV+XqCUuWBauC31lYe7uXi6go1HLHGKTlZ/x5wkL24POQ/hUGIF3tK+Gyzg ndVe4NWLJ+VG4YFgY9LxrgIf9K6eDq0Svb+Eg54OL7jtV+eTgljSwv5+qd0uVpIw 38ASORIPBAYjZZe9GQTQIRfTCNItnsYqv7tzcSaZwavcX8hKHSeKDBwWF5CdenYF 6W5Tl6nGgOnpjQfuCXieR1txiEECAwEAAaOCAqYwggKiMB0GA1UdDgQWBBR827B3 AaDZamzAY/Zt2PUd11DWfjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzIwQ0VDN0ZB NzRERDExRUJCMkYxMUY0OEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZ1MMMA8EAgACMAkDBwAgAQ3wXsAwDQYJKoZIhvcNAQEL BQADggEBAKndlVBg5YTO/rtJJDC/Il8dY0h8yWRmY9K0EapweE/VGHjICHxq3Nxm Jn2jfUmb6gBf3ix4V6wx6w1mHuec5ZEmuvKzteVIuuVIVR0fav2/l2h9UlAKuD+A PnAtacxxuAZbohVM6ZhSzf3+rDsChuYthdzedsVviNUFVyifpMXaQPZJd/fm/Cco k4BVjB/PTuPO/qPpBhtaj3X2t3wyGoJ2/3XcOi1CK870qnyjK/c+TkK8hVEwIwOE CJPdR5JlKR4oBJTxyWFPQQzjKw6j3qogc36KPdV03tz8M0T1jqOZ1UAojhyHrPN+ 36DlG8j6+2Z01pPsNNpIK6/nGrWHwlo= -----END CERTIFICATE-----Generated at Tue Dec 23 06:39:58 2025 by rpki-client