This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CE049DA23C2011EE9D70D34FC4F9AE02.roa File: CE049DA23C2011EE9D70D34FC4F9AE02.roa (raw, json) Hash identifier: tG2ucej3Kybs36AbcoZARwSYfgitHYEslaAcQOXDvi8= Subject key identifier: F2:AA:26:20:26:C2:9E:B5:64:20:B9:FE:70:BC:0E:C0:9C:D4:FD:6E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B9E8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CE049DA23C2011EE9D70D34FC4F9AE02.roa Signing time: Thu 08 May 2025 16:30:15 +0000 ROA not before: Thu 08 May 2025 16:30:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 20473 IP address blocks: 103.181.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 12:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47592 (0xb9e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:30:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdc16-5829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:56:d4:21:d0:52:fd:b2:a3:ea:fa:1e:02:14: 2e:1f:e7:60:5c:59:73:a6:f1:ec:8b:5a:b1:ce:8d: 9f:6f:1b:e3:1b:cb:6c:6c:fa:44:68:57:10:b3:11: 81:bc:50:07:75:42:7e:7c:1e:5f:5a:70:c1:a8:0f: aa:10:c6:23:8b:7b:5a:0c:51:12:92:02:7b:17:9c: af:55:bc:e0:36:9b:ad:c0:55:25:e5:08:2d:21:27: ea:91:85:3f:cc:6b:ce:1f:4f:8d:4a:94:43:15:8d: 6d:48:05:10:5e:8d:d5:91:83:0a:e2:fe:92:0f:4c: 93:4d:59:fb:83:01:de:e5:38:16:9f:97:77:f5:4a: 1d:0a:65:38:bf:8f:43:a1:c6:45:ac:92:11:0a:2e: 57:bf:cc:4e:8c:76:0f:cc:26:1b:0d:e7:b2:14:42: f9:22:f7:5f:66:8d:cd:40:50:8a:d4:1f:3a:af:e5: 12:e8:a7:ae:da:ef:33:9b:36:b4:e7:11:60:73:56: 58:cc:70:72:2a:25:10:47:8d:48:b4:91:49:45:fa: da:ae:77:d4:ad:8f:53:be:3a:bf:04:54:ba:4d:9b: f3:e7:51:39:4d:b6:c1:22:1c:2f:90:f2:f3:d8:da: 55:28:da:fd:8a:3f:b1:24:2c:27:1b:77:93:a7:15: a6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:AA:26:20:26:C2:9E:B5:64:20:B9:FE:70:BC:0E:C0:9C:D4:FD:6E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CE049DA23C2011EE9D70D34FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.194.0/24 Signature Algorithm: sha256WithRSAEncryption a2:99:54:f1:6d:dc:87:43:5d:79:d9:06:88:87:bc:14:70:ae: af:35:6b:69:d2:2d:02:53:16:ed:dc:d1:7e:01:2a:4a:25:89: a2:d6:5c:d7:ff:7a:35:31:4d:3c:8e:05:ab:37:d0:49:30:72: fe:b8:c3:30:4a:78:79:08:1f:51:8a:b4:d6:77:e1:ea:4e:15: dc:fe:b9:dd:fd:c2:97:06:64:87:37:3e:f3:6d:fb:a2:e1:70: eb:f6:d5:47:8f:18:4f:87:63:5e:5c:71:22:2b:4c:67:e0:b6: ba:f7:c8:c7:71:53:12:32:6d:fd:35:83:12:db:94:ae:36:39: 8e:a4:ca:0d:dc:c1:0a:90:66:3e:59:77:9c:e3:40:34:0b:bd: 17:41:c7:f3:98:11:a1:d7:b7:08:27:a1:0b:37:87:b2:72:11: d6:79:fe:e9:8f:5d:5b:b9:b2:46:53:ef:e4:51:1c:c1:df:c8: bb:e3:f4:9f:bf:de:69:e6:7f:92:c9:9b:20:a3:05:12:4d:b1: ca:62:3c:9d:fc:7e:e3:38:b5:cc:93:08:44:17:ab:31:41:a8: b2:15:44:a6:58:67:9e:fe:2f:d6:d5:bf:09:5c:65:77:b6:33: 65:f6:2b:b2:c7:5e:c7:9b:bc:65:b6:c1:e5:95:4c:20:96:69: 6d:4d:db:d9 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALnoMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MzAxNVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RjMTYtNTgyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPFW1CHQUv2yo+r6HgIULh/nYFxZc6bx7Itasc6Nn28b4xvLbGz6RGhXELMR gbxQB3VCfnweX1pwwagPqhDGI4t7WgxREpICexecr1W84DabrcBVJeUILSEn6pGF P8xrzh9PjUqUQxWNbUgFEF6N1ZGDCuL+kg9Mk01Z+4MB3uU4Fp+Xd/VKHQplOL+P Q6HGRaySEQouV7/MTox2D8wmGw3nshRC+SL3X2aNzUBQitQfOq/lEuinrtrvM5s2 tOcRYHNWWMxwciolEEeNSLSRSUX62q531K2PU746vwRUuk2b8+dROU22wSIcL5Dy 89jaVSja/Yo/sSQsJxt3k6cVpjsCAwEAAaOCApUwggKRMB0GA1UdDgQWBBTyqiYg JsKetWQguf5wvA7AnNT9bjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0NFMDQ5REEy M0MyMDExRUU5RDcwRDM0RkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ7XCMA0GCSqGSIb3DQEBCwUAA4IBAQCimVTxbdyHQ115 2QaIh7wUcK6vNWtp0i0CUxbt3NF+ASpKJYmi1lzX/3o1MU08jgWrN9BJMHL+uMMw Snh5CB9RirTWd+HqThXc/rnd/cKXBmSHNz7zbfui4XDr9tVHjxhPh2NeXHEiK0xn 4La698jHcVMSMm39NYMS25SuNjmOpMoN3MEKkGY+WXec40A0C70XQcfzmBGh17cI J6ELN4eychHWef7pj11bubJGU+/kURzB38i74/Sfv95p5n+SyZsgowUSTbHKYjyd /H7jOLXMkwhEF6sxQaiyFUSmWGee/i/W1b8JXGV3tjNl9iuyx17Hm7xltsHllUwg lmltTdvZ -----END CERTIFICATE-----Generated at Fri Nov 28 05:03:24 2025 by rpki-client