This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9190753/8EF24A125B6D11EEBC796325C4F9AE02/4B2AA57A817E11F09C78E12EC4F9AE02.roa File: 4B2AA57A817E11F09C78E12EC4F9AE02.roa (raw, json) Hash identifier: REOJoaqVdrJhNGonqBJNmT+BZxMjjyhTcxLRbt3wFv8= Subject key identifier: 74:41:2F:5C:BC:68:45:E2:E4:A4:AE:DB:C6:24:98:C8:79:1C:37:A0 Certificate issuer: /CN=A9190753/serialNumber=DAD78CAC36D143F174ABE112D495ED5A06ECA740 Certificate serial: 01A4 Authority key identifier: DA:D7:8C:AC:36:D1:43:F1:74:AB:E1:12:D4:95:ED:5A:06:EC:A7:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2teMrDbRQ_F0q-ES1JXtWgbsp0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190753/8EF24A125B6D11EEBC796325C4F9AE02/4B2AA57A817E11F09C78E12EC4F9AE02.roa Signing time: Fri 21 Nov 2025 01:49:14 +0000 ROA not before: Fri 21 Nov 2025 01:49:14 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9384 IP address blocks: 103.152.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190753/8EF24A125B6D11EEBC796325C4F9AE02/2teMrDbRQ_F0q-ES1JXtWgbsp0A.crl rsync://rpki.apnic.net/member_repository/A9190753/8EF24A125B6D11EEBC796325C4F9AE02/2teMrDbRQ_F0q-ES1JXtWgbsp0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2teMrDbRQ_F0q-ES1JXtWgbsp0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:36:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190753, serialNumber=DAD78CAC36D143F174ABE112D495ED5A06ECA740 Validity Not Before: Nov 21 01:49:14 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=691fc51a-cd26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b3:db:5d:d5:5f:35:06:ae:04:56:fd:15:0a: f0:50:d0:33:21:f9:37:51:48:ff:39:08:59:9f:c6: 32:f0:cb:ef:d3:8f:9c:6f:d7:f4:c3:0a:e9:b0:02: be:b9:2c:29:d4:c9:e1:36:0b:c8:fe:ce:37:36:a5: 57:b1:fe:d2:a3:ce:cf:d0:84:65:0f:6f:b3:77:3a: 59:52:d5:31:58:cc:46:f7:b8:dd:42:71:7e:e4:9a: d9:d4:00:3c:ef:1a:ac:54:31:a8:07:c6:58:aa:9b: 2f:4f:56:33:d2:1f:13:84:b3:2e:09:39:59:9f:81: ca:ca:78:ed:ac:c0:13:c1:4e:ec:4f:2a:1e:5a:0b: c7:f7:db:d1:49:4e:8d:67:6c:1d:71:0c:f0:db:d2: 3d:04:ca:1f:cd:04:5b:69:62:01:3c:f2:08:67:84: ac:12:46:ad:1e:83:95:24:07:8f:b0:c0:ba:fa:1c: e4:82:67:f9:30:c6:a5:ef:75:3e:51:21:3b:9c:b1: 5b:6c:c9:66:46:68:66:97:ac:56:f5:b9:e2:0a:22: 54:ad:f8:f6:fb:7c:fc:21:64:51:93:b1:1c:d1:f5: 20:f2:22:e1:41:57:85:a8:29:e5:ec:f8:11:98:c5: 42:2f:ce:b1:92:68:35:94:db:0b:f8:3b:0c:5a:da: 90:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:41:2F:5C:BC:68:45:E2:E4:A4:AE:DB:C6:24:98:C8:79:1C:37:A0 X509v3 Authority Key Identifier: keyid:DA:D7:8C:AC:36:D1:43:F1:74:AB:E1:12:D4:95:ED:5A:06:EC:A7:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190753/8EF24A125B6D11EEBC796325C4F9AE02/2teMrDbRQ_F0q-ES1JXtWgbsp0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2teMrDbRQ_F0q-ES1JXtWgbsp0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190753/8EF24A125B6D11EEBC796325C4F9AE02/4B2AA57A817E11F09C78E12EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.227.0/24 Signature Algorithm: sha256WithRSAEncryption 43:02:7f:fa:31:44:1b:9b:90:6c:bd:0b:a3:fd:84:ef:65:d6: 30:f0:cf:da:68:b6:3d:49:0b:6b:31:fb:f7:cc:1f:73:94:60: 6a:af:b9:bd:7e:36:23:34:3b:af:78:94:e3:6f:ca:e2:e4:f8: 97:a6:51:ee:41:28:af:a0:3a:26:db:79:52:16:2a:93:22:e6: e0:31:45:3d:f4:a6:1e:49:7d:66:53:62:5f:8e:3f:67:a4:2b: 1f:ca:8b:27:2b:c4:1c:88:f0:7d:a6:70:80:d3:4d:7e:9f:7b: 3f:3a:50:6e:61:c6:43:7a:ee:4a:d9:67:b3:ea:54:fa:d2:23: db:6d:75:3f:f8:61:5f:dd:d9:ae:05:62:d6:73:96:5a:e9:13: 72:43:72:3a:ba:8d:1f:ad:6b:d0:74:09:b1:fd:49:a0:21:ff: ec:0a:de:8d:76:23:2f:b9:bc:de:ff:ae:bd:46:dc:9e:af:26: ff:7d:3e:d4:94:00:3b:e8:2b:50:c8:b3:da:14:3e:18:23:d5: 6c:7d:1f:b3:b1:d0:f1:12:e8:38:fb:58:d6:ec:b2:7d:9c:a5: 88:27:bd:a8:db:ff:19:b6:d6:25:ff:59:b3:96:e6:19:86:f0: 5e:f6:10:43:d8:fc:d2:9b:79:a8:d7:1a:72:af:a4:16:a4:d9: e8:8d:81:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTA3NTMxMTAvBgNVBAUTKERBRDc4Q0FDMzZEMTQzRjE3NEFCRTExMkQ0OTVFRDVB MDZFQ0E3NDAwHhcNMjUxMTIxMDE0OTE0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFmYzUxYS1jZDI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurPbXdVfNQauBFb9FQrwUNAzIfk3UUj/OQhZn8Yy8Mvv04+cb9f0wwrpsAK+ uSwp1MnhNgvI/s43NqVXsf7So87P0IRlD2+zdzpZUtUxWMxG97jdQnF+5JrZ1AA8 7xqsVDGoB8ZYqpsvT1Yz0h8ThLMuCTlZn4HKynjtrMATwU7sTyoeWgvH99vRSU6N Z2wdcQzw29I9BMofzQRbaWIBPPIIZ4SsEkatHoOVJAePsMC6+hzkgmf5MMal73U+ USE7nLFbbMlmRmhml6xW9bniCiJUrfj2+3z8IWRRk7Ec0fUg8iLhQVeFqCnl7PgR mMVCL86xkmg1lNsL+DsMWtqQwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHRBL1y8 aEXi5KSu28YkmMh5HDegMB8GA1UdIwQYMBaAFNrXjKw20UPxdKvhEtSV7VoG7KdA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDc1My84RUYyNEExMjVC NkQxMUVFQkM3OTYzMjVDNEY5QUUwMi8ydGVNckRiUlFfRjBxLUVTMUpYdFdnYnNw MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ0ZU1yRGJSUV9GMHEtRVMxSlh0V2dic3AwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTA3NTMvOEVGMjRBMTI1QjZEMTFFRUJDNzk2MzI1QzRGOUFFMDIvNEIyQUE1N0E4 MTdFMTFGMDlDNzhFMTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmOMwDQYJKoZIhvcNAQELBQADggEBAEMCf/oxRBubkGy9 C6P9hO9l1jDwz9potj1JC2sx+/fMH3OUYGqvub1+NiM0O694lONvyuLk+JemUe5B KK+gOibbeVIWKpMi5uAxRT30ph5JfWZTYl+OP2ekKx/KiycrxByI8H2mcIDTTX6f ez86UG5hxkN67krZZ7PqVPrSI9ttdT/4YV/d2a4FYtZzllrpE3JDcjq6jR+ta9B0 CbH9SaAh/+wK3o12Iy+5vN7/rr1G3J6vJv99PtSUADvoK1DIs9oUPhgj1Wx9H7Ox 0PES6Dj7WNbssn2cpYgnvajb/xm21iX/WbOW5hmG8F72EEPY/NKbeajXGnKvpBak 2eiNgUg= -----END CERTIFICATE-----Generated at Sat Dec 6 22:07:30 2025 by rpki-client