This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5742D28CCF5911F0A0FE570CC4F9AE02.roa File: 5742D28CCF5911F0A0FE570CC4F9AE02.roa (raw, json) Hash identifier: dTsmjFX49sEOROZd0nMX1AfQyNcmk0M0yZOgOWx9fuo= Subject key identifier: 52:08:EE:B6:4F:BD:D1:6D:2D:28:A1:92:D1:7B:FC:61:F7:50:1A:CD Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C957 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5742D28CCF5911F0A0FE570CC4F9AE02.roa Signing time: Tue 02 Dec 2025 08:36:59 +0000 ROA not before: Tue 02 Dec 2025 08:36:59 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150652 IP address blocks: 103.84.196.0/24 maxlen: 24 103.84.197.0/24 maxlen: 24 2400:dde0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 12:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51543 (0xc957) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 2 08:36:59 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=692ea52b-9ce6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:00:aa:5c:d6:6d:20:9c:c1:35:ee:b5:47:96: cd:82:fb:78:20:75:86:77:e8:63:42:91:39:6e:f3: 78:af:c0:49:77:12:1d:e1:f6:1c:fe:54:74:8d:ee: 1b:a4:25:37:4b:94:87:24:e9:0b:b8:91:d1:d7:ac: b8:8d:df:8c:5e:ba:3c:4d:3d:80:52:42:16:c5:9e: 1d:fb:ad:e1:f2:88:b5:9e:83:22:44:88:f1:f4:9a: 0d:85:58:a7:31:d7:ef:27:63:a9:10:2c:95:fd:97: 28:83:49:d4:de:12:a6:ba:1e:ce:16:8c:bf:ca:f7: 0e:29:ba:72:d7:ec:12:05:88:dd:62:95:af:2b:cd: bf:16:33:77:13:34:a5:40:6f:99:1f:c2:6b:32:97: ef:e8:84:b3:a5:82:8e:c6:98:eb:87:f9:f1:d6:c4: 6f:37:c4:eb:8d:99:de:0b:1a:41:9f:5c:3a:7b:45: 11:c9:3d:34:e5:08:63:7b:bf:5c:a7:35:39:22:99: cf:17:a0:62:96:5d:f1:fa:f6:5e:4d:05:40:ac:45: c9:ca:17:86:f7:f1:af:ee:49:ac:3c:68:45:4e:9e: e3:f7:56:cd:1f:7a:35:56:08:1c:45:23:f8:8d:b7: ef:2d:0b:c7:77:8a:d1:40:81:72:0e:d3:00:a3:86: fe:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:08:EE:B6:4F:BD:D1:6D:2D:28:A1:92:D1:7B:FC:61:F7:50:1A:CD X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5742D28CCF5911F0A0FE570CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.196.0/23 IPv6: 2400:dde0::/32 Signature Algorithm: sha256WithRSAEncryption 1d:e2:00:85:e1:41:49:5e:7e:ff:de:75:18:58:91:9a:c0:37: c4:25:9b:f4:79:14:54:6a:49:e3:6d:37:1a:d5:7c:9d:35:73: 7b:da:7d:32:a9:af:8b:ee:42:a5:11:0b:c5:d7:2a:b5:18:d9: d2:33:7f:9c:e6:e1:ca:59:4f:4a:7c:46:4e:7d:12:3d:71:d7: 7d:31:ba:69:5d:e7:81:b2:aa:38:08:a5:6c:5f:ac:ff:15:73: e7:49:0f:83:ee:8e:3f:28:ea:1d:78:8f:c6:51:32:06:9f:96: 10:03:6f:be:37:8d:07:d5:fd:37:5f:01:27:60:e1:73:86:5c: 43:71:40:02:82:ce:d9:6b:a4:cc:b1:10:f9:0e:b7:2e:88:89: 17:64:86:6c:0a:d6:a5:d7:f8:04:00:8d:58:cc:81:24:df:60: bc:69:d8:f5:1e:31:be:8f:7d:f6:97:80:62:94:cc:9f:4f:d4: 87:37:24:55:d4:9b:b2:d5:ed:e8:77:dd:c1:86:58:27:e6:57: 1e:d8:2d:3c:87:c0:a7:d9:b2:d0:2e:27:c3:20:54:5b:c8:ac: 6c:dd:c7:9e:b1:79:33:74:c0:bd:57:a1:48:69:b2:be:e6:aa: 97:a0:4e:8f:bf:f6:78:ec:78:80:8c:74:08:44:9e:0b:35:73: 26:d3:ad:6d -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIDAMlXMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTIwMjA4MzY1OVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjkyZWE1MmItOWNlNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALEAqlzWbSCcwTXutUeWzYL7eCB1hnfoY0KROW7zeK/ASXcSHeH2HP5UdI3u G6QlN0uUhyTpC7iR0desuI3fjF66PE09gFJCFsWeHfut4fKItZ6DIkSI8fSaDYVY pzHX7ydjqRAslf2XKINJ1N4SproezhaMv8r3Dim6ctfsEgWI3WKVryvNvxYzdxM0 pUBvmR/CazKX7+iEs6WCjsaY64f58dbEbzfE642Z3gsaQZ9cOntFEck9NOUIY3u/ XKc1OSKZzxegYpZd8fr2Xk0FQKxFycoXhvfxr+5JrDxoRU6e4/dWzR96NVYIHEUj +I237y0Lx3eK0UCBcg7TAKOG/i8CAwEAAaOCAqQwggKgMB0GA1UdDgQWBBRSCO62 T73RbS0ooZLRe/xh91AazTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU3NDJEMjhD Q0Y1OTExRjBBMEZFNTcwQ0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQBZ1TEMA0EAgACMAcDBQAkAN3gMA0GCSqGSIb3DQEBCwUA A4IBAQAd4gCF4UFJXn7/3nUYWJGawDfEJZv0eRRUaknjbTca1XydNXN72n0yqa+L 7kKlEQvF1yq1GNnSM3+c5uHKWU9KfEZOfRI9cdd9MbppXeeBsqo4CKVsX6z/FXPn SQ+D7o4/KOodeI/GUTIGn5YQA2++N40H1f03XwEnYOFzhlxDcUACgs7Za6TMsRD5 DrcuiIkXZIZsCtal1/gEAI1YzIEk32C8adj1HjG+j332l4BilMyfT9SHNyRV1Juy 1e3od93Bhlgn5lce2C08h8Cn2bLQLifDIFRbyKxs3ceesXkzdMC9V6FIabK+5qqX oE6Pv/Z47HiAjHQIRJ4LNXMm061t -----END CERTIFICATE-----Generated at Fri Dec 5 17:19:23 2025 by rpki-client