This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9717458BED411ECBA66025BC4F9AE02.roa File: A9717458BED411ECBA66025BC4F9AE02.roa (raw, json) Hash identifier: gvIfcvgAEdXkZxqbgrEU81WuE3Q0GhT5VHIlQJyvLBc= Subject key identifier: 21:06:12:12:4D:DA:9A:02:4F:6B:ED:D9:18:BB:5F:F0:AA:87:EE:DD Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C853 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9717458BED411ECBA66025BC4F9AE02.roa Signing time: Thu 27 Nov 2025 12:07:21 +0000 ROA not before: Thu 27 Nov 2025 12:07:21 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149528 IP address blocks: 43.239.76.0/24 maxlen: 24 43.239.79.0/24 maxlen: 24 103.183.72.0/23 maxlen: 24 2400:60e0::/34 maxlen: 34 2400:60e0::/48 maxlen: 48 2400:60e0:1::/48 maxlen: 48 2400:60e0:2::/48 maxlen: 48 2400:60e0:3::/48 maxlen: 48 2400:60e0:4000::/34 maxlen: 34 2400:60e0:8000::/34 maxlen: 34 2400:60e0:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 12:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51283 (0xc853) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 27 12:07:21 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69283ef9-3acc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:17:e5:69:6c:2e:35:99:00:f0:44:5c:78:80: 9f:6b:ed:96:44:ff:7e:47:31:02:14:9e:51:85:20: 08:e4:7e:66:57:0d:40:13:eb:cd:b5:da:68:d0:74: eb:83:2a:01:3f:9c:ec:71:80:06:fa:a2:b6:0c:d7: 89:eb:d0:45:cc:6b:12:e6:00:f4:85:ed:d0:26:0b: 2b:97:1b:9a:84:97:ff:38:d3:2f:9d:69:e5:f6:ed: 8b:7b:93:7c:b1:e9:c8:99:e4:98:81:5b:85:d5:ec: 5f:bf:d6:33:d1:28:92:8a:ed:67:9f:7f:98:63:4f: dd:04:09:72:96:4b:69:57:63:e1:fd:5f:41:5d:03: 64:7d:14:1f:ee:b3:dc:6f:2d:13:61:78:fd:2e:2a: 9e:85:ee:c4:d1:3e:18:3d:b5:44:f8:c5:8f:43:2d: c1:de:46:82:8d:f2:34:59:db:f3:30:46:7e:08:5a: 39:6d:27:65:36:ab:f5:38:21:76:6c:2b:ab:9a:d6: 79:69:37:02:85:1d:19:1b:0b:0e:97:29:22:f5:d3: 93:45:5a:aa:bb:a4:6e:54:a1:8a:da:49:ef:e6:89: c6:fe:d7:77:23:c5:55:28:ac:14:03:dc:77:4b:d6: 01:c9:5a:22:e1:5e:49:9d:4f:b1:eb:9f:a4:c5:d4: 82:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:06:12:12:4D:DA:9A:02:4F:6B:ED:D9:18:BB:5F:F0:AA:87:EE:DD X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9717458BED411ECBA66025BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.76.0/24 43.239.79.0/24 103.183.72.0/23 IPv6: 2400:60e0::/32 Signature Algorithm: sha256WithRSAEncryption 42:73:a2:03:97:5d:3d:1f:29:08:af:c7:5f:75:37:69:d6:3a: 9d:c5:b5:12:1e:86:af:d6:d9:49:33:be:27:3c:90:60:ef:cc: e5:58:02:42:cd:3e:72:d8:bc:e7:07:e5:f5:ca:78:88:0b:70: d0:d4:f3:0b:dc:fd:f2:2e:90:30:ef:fb:68:c5:d1:a7:56:ea: 25:30:3a:a7:08:40:89:f0:13:6f:a2:bf:2c:4e:47:4a:aa:52: ac:4b:cf:57:d3:9b:05:84:94:6a:73:af:0d:e9:f2:c4:df:94: aa:51:ea:35:d0:07:f1:04:bb:f0:25:a7:77:f9:59:af:89:da: 20:21:05:e5:d2:d4:12:dd:1e:a0:ac:77:1e:a5:ff:de:c5:04: 09:aa:35:ae:56:7e:24:16:60:13:42:20:13:39:37:a2:49:6e: 43:7e:85:bf:aa:c0:20:5f:70:3f:0a:a6:70:f2:71:63:f4:4f: ad:7e:35:03:97:88:69:e8:80:1d:12:71:28:e5:0a:4e:4d:0a: 53:27:5b:4e:02:3c:ed:c8:4f:a9:76:01:e2:7a:de:31:00:75: 12:51:89:24:84:f9:c1:23:57:b4:c1:03:ee:11:03:1f:be:66: 7e:84:27:66:45:fc:c0:75:5a:f2:66:3a:8d:8b:12:b1:2f:94: f2:a2:da:55 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgIDAMhTMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTEyNzEyMDcyMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjkyODNlZjktM2FjYzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMoX5WlsLjWZAPBEXHiAn2vtlkT/fkcxAhSeUYUgCOR+ZlcNQBPrzbXaaNB0 64MqAT+c7HGABvqitgzXievQRcxrEuYA9IXt0CYLK5cbmoSX/zjTL51p5fbti3uT fLHpyJnkmIFbhdXsX7/WM9EokortZ59/mGNP3QQJcpZLaVdj4f1fQV0DZH0UH+6z 3G8tE2F4/S4qnoXuxNE+GD21RPjFj0Mtwd5Ggo3yNFnb8zBGfghaOW0nZTar9Tgh dmwrq5rWeWk3AoUdGRsLDpcpIvXTk0VaqrukblShitpJ7+aJxv7XdyPFVSisFAPc d0vWAclaIuFeSZ1PseufpMXUgrsCAwEAAaOCArAwggKsMB0GA1UdDgQWBBQhBhIS TdqaAk9r7dkYu1/wqofu3TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0E5NzE3NDU4 QkVENDExRUNCQTY2MDI1QkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDoGCCsGAQUFBwEHAQH/ BCswKTAYBAIAATASAwQAK+9MAwQAK+9PAwQBZ7dIMA0EAgACMAcDBQAkAGDgMA0G CSqGSIb3DQEBCwUAA4IBAQBCc6IDl109HykIr8dfdTdp1jqdxbUSHoav1tlJM74n PJBg78zlWAJCzT5y2LznB+X1yniIC3DQ1PML3P3yLpAw7/toxdGnVuolMDqnCECJ 8BNvor8sTkdKqlKsS89X05sFhJRqc68N6fLE35SqUeo10AfxBLvwJad3+Vmvidog IQXl0tQS3R6grHcepf/exQQJqjWuVn4kFmATQiATOTeiSW5DfoW/qsAgX3A/CqZw 8nFj9E+tfjUDl4hp6IAdEnEo5QpOTQpTJ1tOAjztyE+pdgHiet4xAHUSUYkkhPnB I1e0wQPuEQMfvmZ+hCdmRfzAdVryZjqNixKxL5TyotpV -----END CERTIFICATE-----Generated at Fri Dec 5 17:16:10 2025 by rpki-client