This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/895D7806EB0811F097AB0307726F56BC.roa File: 895D7806EB0811F097AB0307726F56BC.roa (raw, json) Hash identifier: 4nceTCeK81MZ9Zxn1OVf5ukCe843KjbIxIXUQ0BYxi8= Subject key identifier: 5F:5F:6B:9A:6C:F5:99:F5:D4:1D:5B:53:07:15:E8:92:07:7D:9C:6D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: CCBF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/895D7806EB0811F097AB0307726F56BC.roa Signing time: Wed 07 Jan 2026 07:56:22 +0000 ROA not before: Wed 07 Jan 2026 07:56:21 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133252 IP address blocks: 103.38.150.0/24 maxlen: 24 203.78.128.0/22 maxlen: 22 203.78.128.0/24 maxlen: 24 203.78.129.0/24 maxlen: 24 2001:df6:ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 11:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52415 (0xccbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 7 07:56:21 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=695e11a5-298f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:44:14:10:cc:b5:c5:b6:75:17:a6:ed:ed:38: a9:de:ad:ec:c9:69:a1:d0:62:9d:02:43:37:5f:8d: 5c:68:49:61:95:a9:c7:37:53:50:90:ce:8e:21:81: 5b:d5:ba:29:9b:d2:af:f1:07:16:f0:cd:84:c2:a8: 2d:05:1b:5e:b0:fd:8c:3d:7a:20:f4:1c:94:a6:be: 08:19:e1:84:0d:57:35:d3:33:af:6d:32:ff:0d:ba: 6f:82:a8:d6:8d:66:85:9a:00:47:6e:a9:ab:98:8e: bb:3c:ae:3b:37:51:79:3f:96:a1:80:da:c5:f0:cc: 87:cd:a8:6c:35:7f:00:08:5b:a4:7e:88:59:1a:db: 27:c9:74:ad:51:0b:f1:e7:cc:bb:0e:f1:b7:75:41: 99:8d:37:10:1d:c8:f4:12:48:3e:51:58:cd:49:6d: cc:49:a1:2d:93:de:64:77:8a:d0:b0:8c:0e:95:93: a4:30:6b:9e:b5:85:c2:36:4c:c3:ba:49:41:8f:6a: f8:7c:31:db:9d:11:53:24:c1:4b:40:be:3a:75:54: fc:13:f0:3e:cc:8c:01:87:8c:42:3d:52:a7:c8:1b: 2e:e8:8f:80:85:b1:cd:5c:ca:1d:68:51:f3:40:92: 5b:9a:dc:2c:29:1c:ab:b8:7c:38:59:c9:7b:05:f7: dc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:5F:6B:9A:6C:F5:99:F5:D4:1D:5B:53:07:15:E8:92:07:7D:9C:6D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/895D7806EB0811F097AB0307726F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.150.0/24 203.78.128.0/22 IPv6: 2001:df6:ac0::/48 Signature Algorithm: sha256WithRSAEncryption 2e:a0:88:30:6c:b3:67:59:55:b1:9b:37:6b:f6:ed:36:aa:3e: 12:7e:d6:00:ec:4c:6b:a0:02:c7:fc:af:b8:19:60:84:35:a5: 37:36:32:9c:9a:26:72:49:ee:15:4a:e9:da:9d:22:e3:94:82: df:d8:7f:ff:55:19:36:d1:ed:29:6d:8d:7d:b6:f8:0b:e9:98: 25:db:60:36:f4:12:b9:f5:9b:57:eb:eb:b0:c2:c8:e0:28:02: 51:30:9c:41:b7:64:76:9b:75:ed:9c:7a:15:b5:04:4a:68:34: a9:59:36:0d:77:06:a7:c8:ed:9e:2f:74:02:16:53:91:d8:ef: af:40:f7:b9:d7:ce:82:dd:84:eb:39:6a:c5:fd:13:2c:c0:2d: 7e:38:b3:44:40:d5:8a:bb:65:d1:2c:28:c6:c6:f1:2c:78:a3: f0:33:23:e5:8c:4e:39:3f:e3:90:66:c7:3b:ee:b5:ae:a5:09: 9e:4d:2d:97:f6:47:7d:2e:8e:82:55:d3:a3:91:79:e7:0f:5f: 60:df:ac:ca:5d:e8:e9:b1:9c:c6:59:fe:04:dc:d5:09:46:2f: cf:eb:8d:de:41:77:82:f1:96:f5:b3:b5:36:e8:4c:6c:ce:3a: 6e:c1:c2:6b:84:ab:c6:2d:d1:ad:4b:85:6c:ca:d2:ff:18:1f: 7f:11:ad:55 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDAMy/MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMMCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDEwNzA3NTYyMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAwwNNjk1ZTExYTUtMjk4ZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALtEFBDMtcW2dRem7e04qd6t7MlpodBinQJDN1+NXGhJYZWpxzdTUJDOjiGB W9W6KZvSr/EHFvDNhMKoLQUbXrD9jD16IPQclKa+CBnhhA1XNdMzr20y/w26b4Ko 1o1mhZoAR26pq5iOuzyuOzdReT+WoYDaxfDMh82obDV/AAhbpH6IWRrbJ8l0rVEL 8efMuw7xt3VBmY03EB3I9BJIPlFYzUltzEmhLZPeZHeK0LCMDpWTpDBrnrWFwjZM w7pJQY9q+Hwx250RUyTBS0C+OnVU/BPwPsyMAYeMQj1Sp8gbLuiPgIWxzVzKHWhR 80CSW5rcLCkcq7h8OFnJewX33G0CAwEAAaOCAqwwggKoMB0GA1UdDgQWBBRfX2ua bPWZ9dQdW1MHFeiSB32cbTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzg5NUQ3ODA2 RUIwODExRjA5N0FCMDMwNzcyNkY1NkJDLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQAZyaWAwQCy06AMA8EAgACMAkDBwAgAQ32CsAwDQYJKoZI hvcNAQELBQADggEBAC6giDBss2dZVbGbN2v27TaqPhJ+1gDsTGugAsf8r7gZYIQ1 pTc2MpyaJnJJ7hVK6dqdIuOUgt/Yf/9VGTbR7SltjX22+AvpmCXbYDb0Ern1m1fr 67DCyOAoAlEwnEG3ZHabde2cehW1BEpoNKlZNg13BqfI7Z4vdAIWU5HY769A97nX zoLdhOs5asX9EyzALX44s0RA1Yq7ZdEsKMbG8Sx4o/AzI+WMTjk/45Bmxzvuta6l CZ5NLZf2R30ujoJV06OReecPX2DfrMpd6OmxnMZZ/gTc1QlGL8/rjd5Bd4LxlvWz tTboTGzOOm7BwmuEq8Yt0a1LhWzK0v8YH38RrVU= -----END CERTIFICATE-----Generated at Mon Jan 19 21:42:29 2026 by rpki-client