This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/27F621183B5D11EB97506B7AC4F9AE02.roa File: 27F621183B5D11EB97506B7AC4F9AE02.roa (raw, json) Hash identifier: ilkJ29yBOqKW1VNl3LfMOLm13wPfo28yqbUOr5Kvvtg= Subject key identifier: BF:34:7B:20:8B:78:EA:CF:3C:EE:12:4A:7E:46:C4:39:0B:22:78:FA Certificate issuer: /CN=A919986F/serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Certificate serial: 2885 Authority key identifier: A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/27F621183B5D11EB97506B7AC4F9AE02.roa Signing time: Wed 10 Dec 2025 15:36:35 +0000 ROA not before: Wed 10 Dec 2025 15:36:35 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 63928 IP address blocks: 43.227.236.0/24 maxlen: 24 43.227.237.0/24 maxlen: 24 43.227.238.0/24 maxlen: 24 43.227.239.0/24 maxlen: 24 103.47.24.0/24 maxlen: 24 103.47.25.0/24 maxlen: 24 103.47.26.0/24 maxlen: 24 103.47.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:28:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10373 (0x2885) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919986F, serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Validity Not Before: Dec 10 15:36:35 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69399382-a9b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:71:c2:01:15:d6:f3:9a:ef:a3:45:e5:35:4a: 10:e9:00:d7:87:dd:75:ec:1e:25:d3:70:97:35:d5: f3:cb:d7:d4:3a:da:5d:11:34:8b:b7:92:51:84:d3: 40:6d:a6:e1:8a:c7:f8:f4:ad:71:d0:7f:f4:58:db: 97:39:87:4b:54:6c:fb:9c:b3:93:ee:e6:72:df:86: 61:75:7d:76:ba:f7:b2:fd:79:aa:eb:e8:da:d6:3d: 11:da:32:28:69:3a:e7:ca:14:ed:b2:4c:09:8f:35: b8:9a:34:f5:42:4f:36:b3:ed:f6:53:46:d2:5a:57: 53:5b:12:a0:ed:48:ef:20:de:dc:c8:47:fd:08:3c: 6f:fd:7d:35:17:e3:b7:f8:a3:f1:fb:16:81:42:55: 5c:00:6a:4d:ba:f7:1e:dc:e2:ec:a5:a2:d3:ed:54: 2d:24:9f:a1:0d:63:09:d5:2f:78:db:a5:5c:19:39: 17:52:ae:f6:09:68:be:04:0e:ab:00:59:63:0f:e4: 01:79:b5:12:7f:2e:b4:be:89:db:a7:7c:ab:bf:b8: 67:50:6b:85:67:f0:e0:a0:ad:32:f8:4b:91:21:8d: 07:17:c4:34:de:7a:1c:ab:a3:80:a6:cc:8c:45:d1: 83:2e:44:60:87:57:93:75:fb:0f:6c:28:d6:80:83: 25:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:34:7B:20:8B:78:EA:CF:3C:EE:12:4A:7E:46:C4:39:0B:22:78:FA X509v3 Authority Key Identifier: keyid:A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/27F621183B5D11EB97506B7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.227.236.0/22 103.47.24.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:fa:59:f6:78:54:41:cc:9e:7b:ca:21:8f:a5:7c:09:ad:30: c2:12:03:70:c3:1d:4b:2e:27:35:0f:5b:a4:a1:be:89:35:e8: 81:ca:54:2d:8d:82:3d:60:0c:54:50:51:e9:cd:b7:36:f6:89: ba:88:1a:36:d6:ee:f3:44:6e:2b:e3:bd:06:89:e4:5a:b5:03: 00:1e:05:39:e5:8e:d2:c8:f8:96:80:9d:fe:23:4c:dd:82:23: 18:06:0e:f0:31:ee:fd:44:47:b4:ee:e1:2c:60:47:47:4f:21: 3f:25:33:42:f3:91:36:32:3f:df:9a:37:83:08:9a:a3:c3:06: d7:71:0b:71:b8:ab:a0:81:c7:25:32:9b:24:71:8a:2b:c6:ee: ac:09:7d:bf:5a:8c:1c:e5:cc:6d:56:9a:ea:29:62:1e:49:b7: d7:ff:84:67:16:14:4a:d3:86:7d:29:1e:b9:85:8d:3f:9e:5c: a7:b9:3f:63:df:6a:e1:a6:0b:4f:63:0a:c2:70:79:06:1e:1f: 3a:32:1f:2e:37:19:b4:28:43:a9:6c:d3:1d:d9:2e:81:84:73: 6a:a2:0f:dc:6b:79:16:a1:3e:2f:e7:04:b7:22:e8:b0:d3:d5: 26:15:e6:a1:cf:16:52:3c:60:f0:90:db:95:8e:ad:7c:5a:85: a7:ae:6b:c0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICKIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4NkYxMTAvBgNVBAUTKEE2NTZGNjBEM0YxMTY0MUE1NzFCRDFGRkFEMjQ2MERE NDU3NjMzMkQwHhcNMjUxMjEwMTUzNjM1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM5OTM4Mi1hOWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXHCARXW85rvo0XlNUoQ6QDXh9117B4l03CXNdXzy9fUOtpdETSLt5JRhNNA babhisf49K1x0H/0WNuXOYdLVGz7nLOT7uZy34ZhdX12uvey/Xmq6+ja1j0R2jIo aTrnyhTtskwJjzW4mjT1Qk82s+32U0bSWldTWxKg7UjvIN7cyEf9CDxv/X01F+O3 +KPx+xaBQlVcAGpNuvce3OLspaLT7VQtJJ+hDWMJ1S9426VcGTkXUq72CWi+BA6r AFljD+QBebUSfy60vonbp3yrv7hnUGuFZ/DgoK0y+EuRIY0HF8Q03nocq6OApsyM RdGDLkRgh1eTdfsPbCjWgIMlnQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFL80eyCL eOrPPO4SSn5GxDkLInj6MB8GA1UdIwQYMBaAFKZW9g0/EWQaVxvR/60kYN1FdjMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg2Ri9FQzg3MEI4NjhG MkExMUU0QkY5OEI0MzJDNEY5QUUwMi9wbGIyRFQ4UlpCcFhHOUhfclNSZzNVVjJN eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BsYjJEVDhSWkJwWEc5SF9yU1JnM1VWMk15MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTk4NkYvRUM4NzBCODY4RjJBMTFFNEJGOThCNDMyQzRGOUFFMDIvMjdGNjIxMTgz QjVEMTFFQjk3NTA2QjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr4+wDBAJnLxgwDQYJKoZIhvcNAQELBQADggEBAC36WfZ4 VEHMnnvKIY+lfAmtMMISA3DDHUsuJzUPW6Shvok16IHKVC2Ngj1gDFRQUenNtzb2 ibqIGjbW7vNEbivjvQaJ5Fq1AwAeBTnljtLI+JaAnf4jTN2CIxgGDvAx7v1ER7Tu 4SxgR0dPIT8lM0LzkTYyP9+aN4MImqPDBtdxC3G4q6CBxyUymyRxiivG7qwJfb9a jBzlzG1WmuopYh5Jt9f/hGcWFErThn0pHrmFjT+eXKe5P2PfauGmC09jCsJweQYe HzoyHy43GbQoQ6ls0x3ZLoGEc2qiD9xreRahPi/nBLci6LDT1SYV5qHPFlI8YPCQ 25WOrXxahaeua8A= -----END CERTIFICATE-----Generated at Mon Dec 22 02:20:35 2025 by rpki-client