This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6840EFD02EDF11EB9CD0A819C4F9AE02.roa File: 6840EFD02EDF11EB9CD0A819C4F9AE02.roa (raw, json) Hash identifier: r1BOcKEC/wF6b0EUhCXgNRZ1utYEf1HKZOegQvsfqu4= Subject key identifier: EA:2F:BA:10:DA:FC:A7:3A:D9:BA:01:BD:EC:61:A5:2C:68:2D:44:3A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C969 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6840EFD02EDF11EB9CD0A819C4F9AE02.roa Signing time: Wed 03 Dec 2025 07:36:33 +0000 ROA not before: Wed 03 Dec 2025 07:36:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139531 IP address blocks: 103.146.240.0/23 maxlen: 24 103.173.206.0/23 maxlen: 24 103.187.64.0/23 maxlen: 24 2001:df2:7380::/48 maxlen: 48 2407:edc0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 12:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51561 (0xc969) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 3 07:36:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=692fe881-dccb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:73:d5:35:c7:c2:32:a2:12:33:49:b1:00:e2: 01:90:57:58:13:b1:ed:83:cf:fc:53:f3:57:0f:fb: 64:0b:e7:08:af:f1:6e:2c:23:4a:f0:c3:31:0b:e5: 02:8c:dc:90:3c:65:bf:ba:1c:84:bb:91:18:69:0a: a8:16:2b:b3:de:c9:2a:d4:a9:15:20:55:19:aa:76: ca:68:39:30:fb:4c:e0:dd:2c:b8:fd:86:d9:87:7c: 2c:95:61:83:0b:00:b1:f5:59:33:75:a1:2f:82:4f: 88:c5:fb:42:8b:60:09:65:da:c9:e0:30:40:74:33: 53:27:10:04:1a:1b:f5:16:8b:b7:35:98:81:60:a4: 5d:85:06:de:1f:43:4b:7e:2a:b7:31:57:d4:f5:5e: 93:73:cb:be:3f:35:39:3f:a5:57:22:59:2b:8f:5a: 08:3b:05:94:20:7f:19:e5:41:e6:63:31:38:7a:2b: 69:e3:ac:3f:65:a3:38:9f:52:66:b2:07:d9:f8:0e: 60:3d:45:49:59:05:9b:b0:f4:1b:7d:3f:21:37:60: 90:3f:19:a1:9f:68:da:9b:34:ae:d7:2f:67:ae:77: 61:55:87:60:0a:82:8e:6f:ae:44:f7:9e:27:11:55: d0:a2:21:52:8b:20:25:9b:4f:28:4d:48:41:d2:3c: c2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:2F:BA:10:DA:FC:A7:3A:D9:BA:01:BD:EC:61:A5:2C:68:2D:44:3A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6840EFD02EDF11EB9CD0A819C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.240.0/23 103.173.206.0/23 103.187.64.0/23 IPv6: 2001:df2:7380::/48 2407:edc0::/32 Signature Algorithm: sha256WithRSAEncryption 8d:74:07:1c:74:c4:e9:75:01:bf:cb:9d:41:f4:d1:3c:44:b4: 20:0a:d7:5e:b4:61:8c:56:30:7c:ec:58:c8:c6:04:b0:a1:c8: 63:c4:64:5d:81:84:fb:6b:e7:6b:a2:6f:30:fa:d0:f6:48:92: c2:cb:a5:07:f4:34:b0:dd:af:4e:9e:0e:bb:52:3f:da:32:af: 12:35:23:98:5c:f3:ac:42:33:91:57:d4:d4:cc:72:55:e9:c4: 2f:51:0f:30:95:c7:ec:59:65:ab:92:58:d5:e6:b4:e1:80:7c: e0:0e:5e:79:3d:e7:8d:c7:2b:7d:0c:84:e3:c3:4a:07:cd:e0: 39:cd:dd:a2:8a:bb:d9:01:65:46:89:95:66:d9:ba:d1:4b:30: de:88:1c:e2:99:7f:72:fa:19:1a:70:c9:4a:3c:51:3c:97:04: d4:c8:a4:b0:d3:29:e7:b7:7e:f9:b7:1e:47:02:21:83:40:a9: 02:a0:b6:4a:63:4f:bd:ae:e5:ba:05:9f:9a:c6:c2:4e:17:ce: d4:38:14:98:2e:d0:cb:fe:9d:d8:b1:91:11:cb:89:f5:a5:09: 16:9f:ac:12:28:e8:45:70:57:31:ce:80:a5:f2:ec:a2:3f:d9: 7a:5d:01:10:7a:ec:e2:29:7c:d4:e7:09:a9:d2:e0:2a:45:20: de:e3:7b:8f -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgIDAMlpMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTIwMzA3MzYzM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjkyZmU4ODEtZGNjYjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALlz1TXHwjKiEjNJsQDiAZBXWBOx7YPP/FPzVw/7ZAvnCK/xbiwjSvDDMQvl AozckDxlv7ochLuRGGkKqBYrs97JKtSpFSBVGap2ymg5MPtM4N0suP2G2Yd8LJVh gwsAsfVZM3WhL4JPiMX7QotgCWXayeAwQHQzUycQBBob9RaLtzWYgWCkXYUG3h9D S34qtzFX1PVek3PLvj81OT+lVyJZK49aCDsFlCB/GeVB5mMxOHoraeOsP2WjOJ9S ZrIH2fgOYD1FSVkFm7D0G30/ITdgkD8ZoZ9o2ps0rtcvZ653YVWHYAqCjm+uRPee JxFV0KIhUosgJZtPKE1IQdI8wo8CAwEAAaOCArkwggK1MB0GA1UdDgQWBBTqL7oQ 2vynOtm6Ab3sYaUsaC1EOjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzY4NDBFRkQw MkVERjExRUI5Q0QwQTgxOUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEMGCCsGAQUFBwEHAQH/ BDQwMjAYBAIAATASAwQBZ5LwAwQBZ63OAwQBZ7tAMBYEAgACMBADBwAgAQ3yc4AD BQAkB+3AMA0GCSqGSIb3DQEBCwUAA4IBAQCNdAccdMTpdQG/y51B9NE8RLQgCtde tGGMVjB87FjIxgSwochjxGRdgYT7a+drom8w+tD2SJLCy6UH9DSw3a9Ong67Uj/a Mq8SNSOYXPOsQjORV9TUzHJV6cQvUQ8wlcfsWWWrkljV5rThgHzgDl55PeeNxyt9 DITjw0oHzeA5zd2iirvZAWVGiZVm2brRSzDeiBzimX9y+hkacMlKPFE8lwTUyKSw 0ynnt375tx5HAiGDQKkCoLZKY0+9ruW6BZ+axsJOF87UOBSYLtDL/p3YsZERy4n1 pQkWn6wSKOhFcFcxzoCl8uyiP9l6XQEQeuziKXzU5wmp0uAqRSDe43uP -----END CERTIFICATE-----Generated at Fri Dec 5 17:20:18 2025 by rpki-client