This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6DCE252875CD11EB966F546EC4F9AE02.roa File: 6DCE252875CD11EB966F546EC4F9AE02.roa (raw, json) Hash identifier: v7Rv9NFbSGfxZGtHtBGS+sPcUO9v/MYeh/SVttOvcH8= Subject key identifier: 5C:9E:90:B4:BD:D6:49:95:A6:D8:6A:A9:45:59:CA:4C:7B:D9:75:62 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B5BA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6DCE252875CD11EB966F546EC4F9AE02.roa Signing time: Thu 08 May 2025 16:14:07 +0000 ROA not before: Thu 08 May 2025 16:14:06 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140121 IP address blocks: 103.47.126.0/24 maxlen: 24 103.152.156.0/24 maxlen: 24 103.152.157.0/24 maxlen: 24 2400:dfa0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 12:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46522 (0xb5ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:14:06 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd84e-f34e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c8:f1:a0:6e:c0:32:26:d3:bc:be:4f:c7:78: a6:4f:f3:7e:ef:2b:6c:f5:6b:17:d8:43:14:a4:94: ab:25:21:0c:26:52:67:65:0b:a8:b7:ff:a0:c6:49: de:59:3b:8e:40:e9:3e:f8:19:34:b5:c2:3e:41:a3: da:d1:3f:65:c7:a2:c5:7e:f6:52:20:37:6c:fa:85: 0b:97:fe:e6:b8:2a:bd:76:a8:7e:4c:d1:ec:60:08: 1a:b9:be:82:bf:a1:d2:ee:e8:fa:de:a8:9f:53:83: e0:8b:3d:a7:86:1d:95:28:a2:20:21:f6:5c:f6:70: 94:9b:e6:fa:08:84:ff:f9:e9:17:01:da:f9:55:2b: 8f:49:d8:d7:94:ae:1e:86:18:26:ce:ba:a2:3a:05: fe:bf:ed:dc:ad:b7:f5:07:57:c2:aa:6c:8e:6d:7f: 7d:87:43:da:b7:db:a9:05:e2:81:fd:03:a7:ee:04: 43:68:d2:23:83:1a:c9:79:3f:50:e2:1a:fd:cc:8b: 74:dd:04:85:b1:43:58:97:c4:a9:8f:f9:38:ca:a7: f1:58:64:e7:ae:c3:2b:dc:4b:f7:8f:cf:00:da:dc: 91:2c:ee:0b:9c:fa:6c:24:f0:29:b7:64:bd:cf:a2: f2:c1:3d:dd:e6:34:74:e1:1b:54:cc:94:74:a5:93: 8d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:9E:90:B4:BD:D6:49:95:A6:D8:6A:A9:45:59:CA:4C:7B:D9:75:62 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6DCE252875CD11EB966F546EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.47.126.0/24 103.152.156.0/23 IPv6: 2400:dfa0::/32 Signature Algorithm: sha256WithRSAEncryption 63:b3:f7:f2:97:4c:7e:0b:a2:d0:69:97:db:3c:ec:33:c7:52: ed:d0:0e:76:22:c6:9b:4a:b3:2c:f0:5d:c6:9e:da:9d:1a:a6: 7c:40:81:63:e3:cb:22:9b:19:d6:db:8c:5a:4e:5b:ca:03:7c: 88:95:da:3d:b0:ce:1e:e5:54:46:d7:3a:1a:59:0b:53:2c:99: 43:ef:30:9a:d2:03:53:09:52:69:7f:ce:9a:39:57:0e:22:db: a8:04:13:07:8b:4f:0c:2c:36:1a:99:82:3b:02:e3:fb:5a:09: 11:4c:f0:c4:9b:24:05:8d:b7:4c:00:4f:38:3d:61:0d:9e:bf: e2:d2:96:a6:de:fc:2a:ba:44:e8:f3:00:73:95:9b:ff:90:16: fa:5f:31:64:33:ee:32:37:72:09:ae:96:b9:00:3c:e6:63:52: 28:5e:09:28:d8:05:b9:7b:14:06:fe:9f:f9:88:cf:15:a7:76: a8:fc:40:64:bd:74:d9:49:21:16:44:63:3b:78:a9:09:43:aa: c2:ac:92:ee:b9:dd:94:81:fc:7d:f9:02:07:0e:11:fa:1c:2a: 1b:41:88:78:d6:af:95:ef:00:ec:f3:6a:12:85:27:1d:57:1b: 17:70:db:ae:b6:9e:15:a3:08:5b:fa:51:60:92:43:6f:fe:e3: 01:f0:43:8f -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIDALW6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTQwNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q4NGUtZjM0ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL7I8aBuwDIm07y+T8d4pk/zfu8rbPVrF9hDFKSUqyUhDCZSZ2ULqLf/oMZJ 3lk7jkDpPvgZNLXCPkGj2tE/ZceixX72UiA3bPqFC5f+5rgqvXaofkzR7GAIGrm+ gr+h0u7o+t6on1OD4Is9p4YdlSiiICH2XPZwlJvm+giE//npFwHa+VUrj0nY15Su HoYYJs66ojoF/r/t3K239QdXwqpsjm1/fYdD2rfbqQXigf0Dp+4EQ2jSI4MayXk/ UOIa/cyLdN0EhbFDWJfEqY/5OMqn8Vhk567DK9xL94/PANrckSzuC5z6bCTwKbdk vc+i8sE93eY0dOEbVMyUdKWTjcUCAwEAAaOCAqowggKmMB0GA1UdDgQWBBRcnpC0 vdZJlabYaqlFWcpMe9l1YjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzZEQ0UyNTI4 NzVDRDExRUI5NjZGNTQ2RUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDQGCCsGAQUFBwEHAQH/ BCUwIzASBAIAATAMAwQAZy9+AwQBZ5icMA0EAgACMAcDBQAkAN+gMA0GCSqGSIb3 DQEBCwUAA4IBAQBjs/fyl0x+C6LQaZfbPOwzx1Lt0A52IsabSrMs8F3GntqdGqZ8 QIFj48simxnW24xaTlvKA3yIldo9sM4e5VRG1zoaWQtTLJlD7zCa0gNTCVJpf86a OVcOItuoBBMHi08MLDYamYI7AuP7WgkRTPDEmyQFjbdMAE84PWENnr/i0pam3vwq ukTo8wBzlZv/kBb6XzFkM+4yN3IJrpa5ADzmY1IoXgko2AW5exQG/p/5iM8Vp3ao /EBkvXTZSSEWRGM7eKkJQ6rCrJLuud2Ugfx9+QIHDhH6HCobQYh41q+V7wDs82oS hScdVxsXcNuutp4Vowhb+lFgkkNv/uMB8EOP -----END CERTIFICATE-----Generated at Fri Dec 5 17:14:50 2025 by rpki-client