This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/D43F20C6C70F11F0BEE61E6CC4F9AE02.roa File: D43F20C6C70F11F0BEE61E6CC4F9AE02.roa (raw, json) Hash identifier: fipJjxVQQqucnYRkrt/KQhZVIF8y9rvqf5C1ioWIVjk= Subject key identifier: 9C:B5:83:8F:61:6B:6E:BA:3E:A5:6F:6F:47:11:6B:46:23:24:83:5F Certificate issuer: /CN=A919A777/serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Certificate serial: 017E Authority key identifier: 64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/D43F20C6C70F11F0BEE61E6CC4F9AE02.roa Signing time: Fri 21 Nov 2025 19:25:25 +0000 ROA not before: Fri 21 Nov 2025 19:25:25 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4766 IP address blocks: 202.168.152.0/24 maxlen: 24 202.168.153.0/24 maxlen: 24 202.168.154.0/24 maxlen: 24 202.168.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 02:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A777, serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Validity Not Before: Nov 21 19:25:25 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6920bca5-5476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8f:a1:68:62:74:76:62:09:a4:b4:11:eb:29: 35:f4:96:77:e0:e6:65:67:f5:95:1c:35:da:58:fc: 14:19:74:85:10:3a:8d:bc:2e:72:e9:11:fb:b5:19: f7:7a:39:fb:c5:3b:b4:ae:97:39:9e:ae:fa:3e:c1: aa:76:a2:61:20:c6:da:28:5e:4c:18:7f:da:17:58: 11:b9:c3:e3:1d:03:1e:c9:41:10:86:07:f1:16:02: 17:ba:a7:a2:d4:49:90:c5:b0:a1:33:29:0e:60:8e: b6:f6:53:0f:74:b8:54:f2:6c:0e:78:84:46:1e:ff: 8e:51:45:52:3d:22:5c:10:dd:b6:94:b3:1c:70:19: fe:4d:fe:b9:76:c2:76:b2:39:3f:a9:7b:cf:fe:be: 7f:b3:5e:66:7c:80:57:d4:51:ab:f3:1d:d7:e8:18: 99:fd:92:a0:c8:8c:ae:c8:c7:85:93:d9:bb:e0:11: 43:5a:ce:15:76:ce:5a:dd:8f:1b:67:01:9d:67:f3: 18:f1:da:c7:dd:bb:3c:05:a9:ed:70:1e:9f:fa:1c: 57:7e:42:54:24:a0:af:e2:f8:c1:56:c3:bb:5e:4d: 23:0b:4d:fd:4a:d1:5f:c8:e2:10:96:4f:66:d5:40: 33:63:7d:37:9c:d3:78:93:d5:28:72:dc:bc:b3:1e: a4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B5:83:8F:61:6B:6E:BA:3E:A5:6F:6F:47:11:6B:46:23:24:83:5F X509v3 Authority Key Identifier: keyid:64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/D43F20C6C70F11F0BEE61E6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.168.152.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:fe:e6:a9:50:4f:e7:d8:25:6c:7c:57:50:bf:2c:94:6a:2d: 13:75:b8:6d:5e:af:55:15:02:52:60:04:7c:b7:13:9f:f7:a3: 1e:f7:c7:1c:f3:85:83:f1:31:78:cf:52:f7:11:bc:51:f7:50: 51:2e:ef:40:bc:0f:a1:2e:a9:08:e3:d5:98:7c:f0:1c:6e:49: 7a:21:8e:6a:09:8f:2c:f4:c8:ef:77:c2:c3:83:69:b5:09:45: 89:f3:c1:32:a1:f9:82:92:c3:88:ea:1c:6b:7c:38:55:42:39: 21:65:02:57:c7:c8:3a:c8:e2:dc:fb:98:b0:39:d2:6f:ad:e9: 61:ce:e6:ef:5a:9f:c9:a8:15:d1:4d:00:bc:f2:90:17:5d:24: 2f:18:22:5d:38:75:79:48:92:2d:28:25:a2:4c:e2:41:3e:41: d3:90:d9:93:40:b8:f3:e5:1f:f0:ce:66:79:82:e8:46:bb:6f: 7f:33:93:d9:f9:cb:70:d9:72:2d:9d:18:80:c8:07:6e:7f:51: cd:8a:9e:9b:3b:35:e3:91:50:78:f1:5f:b4:93:6f:bb:19:73: 77:d2:93:c2:6f:49:82:71:33:6c:ae:5f:41:11:da:57:fe:b2: 0d:bc:e9:17:90:50:c4:9f:e8:d3:b3:56:25:21:1b:40:dc:2a: 92:e6:0b:5f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3NzcxMTAvBgNVBAUTKDY0N0QwOTI3REIzQjE3OEUyRjY1NEEzMjY4NTU3RkU1 QjVENjcyOUMwHhcNMjUxMTIxMTkyNTI1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTIwYmNhNS01NDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyI+haGJ0dmIJpLQR6yk19JZ34OZlZ/WVHDXaWPwUGXSFEDqNvC5y6RH7tRn3 ejn7xTu0rpc5nq76PsGqdqJhIMbaKF5MGH/aF1gRucPjHQMeyUEQhgfxFgIXuqei 1EmQxbChMykOYI629lMPdLhU8mwOeIRGHv+OUUVSPSJcEN22lLMccBn+Tf65dsJ2 sjk/qXvP/r5/s15mfIBX1FGr8x3X6BiZ/ZKgyIyuyMeFk9m74BFDWs4Vds5a3Y8b ZwGdZ/MY8drH3bs8BantcB6f+hxXfkJUJKCv4vjBVsO7Xk0jC039StFfyOIQlk9m 1UAzY303nNN4k9Uocty8sx6ksQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJy1g49h a266PqVvb0cRa0YjJINfMB8GA1UdIwQYMBaAFGR9CSfbOxeOL2VKMmhVf+W11nKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTc3Ny8wQkE1NzJCMEVD NEYxMUVFQTFCMzg4NjZDNEY5QUUwMi9aSDBKSjlzN0Y0NHZaVW95YUZWXzViWFdj cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pIMEpKOXM3RjQ0dlpVb3lhRlZfNWJYV2Nwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3NzcvMEJBNTcyQjBFQzRGMTFFRUExQjM4ODY2QzRGOUFFMDIvRDQzRjIwQzZD NzBGMTFGMEJFRTYxRTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKqJgwDQYJKoZIhvcNAQELBQADggEBACz+5qlQT+fYJWx8 V1C/LJRqLRN1uG1er1UVAlJgBHy3E5/3ox73xxzzhYPxMXjPUvcRvFH3UFEu70C8 D6EuqQjj1Zh88BxuSXohjmoJjyz0yO93wsODabUJRYnzwTKh+YKSw4jqHGt8OFVC OSFlAlfHyDrI4tz7mLA50m+t6WHO5u9an8moFdFNALzykBddJC8YIl04dXlIki0o JaJM4kE+QdOQ2ZNAuPPlH/DOZnmC6Ea7b38zk9n5y3DZci2dGIDIB25/Uc2Knps7 NeORUHjxX7STb7sZc3fSk8JvSYJxM2yuX0ER2lf+sg286ReQUMSf6NOzViUhG0Dc KpLmC18= -----END CERTIFICATE-----Generated at Thu Dec 4 21:25:45 2025 by rpki-client