This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/95D9A9461BEC11EC97B39812C4F9AE02.roa File: 95D9A9461BEC11EC97B39812C4F9AE02.roa (raw, json) Hash identifier: VqWOdJpzHU4g7FfrJlbFpwfob9hyB+C2diH5Mhn8hxI= Subject key identifier: CF:8B:78:E6:F8:64:81:FB:39:3A:3F:18:CC:DC:C5:D7:83:9E:3B:0B Certificate issuer: /CN=A9118827/serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Certificate serial: 0530 Authority key identifier: 6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/95D9A9461BEC11EC97B39812C4F9AE02.roa Signing time: Fri 31 Oct 2025 23:44:09 +0000 ROA not before: Fri 31 Oct 2025 23:44:09 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147050 IP address blocks: 103.173.152.0/23 maxlen: 23 103.173.152.0/24 maxlen: 24 103.173.153.0/24 maxlen: 24 2001:df7:9f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118827, serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Validity Not Before: Oct 31 23:44:09 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690549c9-d5b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2a:89:39:0a:8a:bc:3a:2c:75:32:2b:e6:9e: 00:35:20:ac:e6:8e:3b:bd:f1:a8:64:e2:4a:12:fa: 88:07:22:bc:6f:82:27:44:45:d3:d4:a7:52:0d:ac: 53:b9:f2:06:a9:7f:a9:29:23:54:03:f6:1c:fe:17: a6:5e:e1:6c:a8:d4:3c:5b:32:e2:b0:0a:76:bc:fe: 62:97:6a:11:fb:4e:85:8d:00:a1:5e:fa:a2:b3:4f: 84:ff:2c:cc:ed:01:e0:60:fe:e3:f2:e6:14:fe:6c: 95:8d:47:4c:b0:4d:ce:98:ca:af:cb:a1:ab:cd:1b: 71:e3:10:a9:15:b0:51:cd:20:06:4e:44:35:8c:24: ad:65:79:e3:8d:ff:73:5a:60:68:2d:42:4c:79:a0: df:c3:56:da:46:ae:67:1c:39:1a:51:05:f9:a7:64: 8b:fa:6b:37:00:6d:a0:6a:70:93:2a:84:d3:31:f8: bf:ed:77:c0:13:0b:2f:5a:a7:bf:f5:a0:43:fe:e5: 04:f0:78:9b:e5:e6:cf:ce:d5:37:26:70:df:33:7a: 19:bd:c9:67:b3:c0:2e:90:c8:48:7d:6e:9a:fa:de: 8d:bf:7d:76:48:95:2d:83:45:17:ff:fc:63:03:81: d7:eb:10:99:5d:83:ab:ec:d4:4d:2c:e6:6d:58:0f: 4c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:8B:78:E6:F8:64:81:FB:39:3A:3F:18:CC:DC:C5:D7:83:9E:3B:0B X509v3 Authority Key Identifier: keyid:6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/95D9A9461BEC11EC97B39812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.152.0/23 IPv6: 2001:df7:9f80::/48 Signature Algorithm: sha256WithRSAEncryption 99:14:4e:12:b5:a8:e1:f1:a4:3a:b5:6f:e1:c1:2d:7f:4f:af: be:52:72:6f:68:18:85:0e:25:15:0e:9e:2b:47:18:75:f3:f5: 81:a8:0d:ab:15:8a:7c:9e:21:69:f9:47:4f:24:bb:76:62:a0: 79:7a:6c:7d:42:e4:93:8e:e8:01:9f:2a:de:b1:f4:0c:dc:57: 69:b1:51:df:3c:e9:bb:f4:8c:e0:58:ae:42:fb:29:57:c9:be: a4:32:40:08:a1:96:22:18:3c:ce:c5:a1:65:ed:1c:9b:96:b6: 61:8b:4e:bb:0f:c9:8d:38:58:b6:55:9c:10:20:e2:50:6a:ed: 01:a2:ae:07:ee:bc:4b:7a:5c:73:41:e9:25:b6:a9:fc:80:a5: 4d:ea:5f:e4:72:54:9c:70:ac:78:84:d2:e7:a9:2f:93:05:70: d9:07:bc:7e:51:4e:e6:93:04:ba:9d:de:87:80:72:e3:2f:50: 6f:97:37:45:7e:8b:0b:0d:51:8c:8a:dd:d4:40:a2:26:fe:14: 79:25:d2:4a:37:f5:7c:77:a8:25:3b:6b:86:a1:09:e5:81:c8: 20:a6:3d:9e:30:ea:c9:48:53:9e:6b:5b:db:7f:49:df:bc:64: 6d:6a:bc:99:77:bc:b6:6b:1d:e3:cc:f7:b5:40:31:83:71:fd: 29:e9:1f:78 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg4MjcxMTAvBgNVBAUTKDZFRUU3NzFCQjNDRTdFOThEQjM5NjBDNEQ4MkY3NDJB MkNGN0U4NDkwHhcNMjUxMDMxMjM0NDA5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA1NDljOS1kNWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtiqJOQqKvDosdTIr5p4ANSCs5o47vfGoZOJKEvqIByK8b4InREXT1KdSDaxT ufIGqX+pKSNUA/Yc/hemXuFsqNQ8WzLisAp2vP5il2oR+06FjQChXvqis0+E/yzM 7QHgYP7j8uYU/myVjUdMsE3OmMqvy6GrzRtx4xCpFbBRzSAGTkQ1jCStZXnjjf9z WmBoLUJMeaDfw1baRq5nHDkaUQX5p2SL+ms3AG2ganCTKoTTMfi/7XfAEwsvWqe/ 9aBD/uUE8Hib5ebPztU3JnDfM3oZvclns8AukMhIfW6a+t6Nv312SJUtg0UX//xj A4HX6xCZXYOr7NRNLOZtWA9M+wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFM+LeOb4 ZIH7OTo/GMzcxdeDnjsLMB8GA1UdIwQYMBaAFG7udxuzzn6Y2zlgxNgvdCos9+hJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODgyNy8zQzdDQjQ1MDFC RTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2ZwamJPV0RFMkM5MEtpejM2 RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J1NTNHN1BPZnBqYk9XREUyQzkwS2l6MzZFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg4MjcvM0M3Q0I0NTAxQkU4MTFFQ0JCQTY1QjUwQzRGOUFFMDIvOTVEOUE5NDYx QkVDMTFFQzk3QjM5ODEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrZgwDwQCAAIwCQMHACABDfefgDANBgkqhkiG9w0BAQsF AAOCAQEAmRROErWo4fGkOrVv4cEtf0+vvlJyb2gYhQ4lFQ6eK0cYdfP1gagNqxWK fJ4haflHTyS7dmKgeXpsfULkk47oAZ8q3rH0DNxXabFR3zzpu/SM4FiuQvspV8m+ pDJACKGWIhg8zsWhZe0cm5a2YYtOuw/JjThYtlWcECDiUGrtAaKuB+68S3pcc0Hp Jbap/IClTepf5HJUnHCseITS56kvkwVw2Qe8flFO5pMEup3eh4By4y9Qb5c3RX6L Cw1RjIrd1ECiJv4UeSXSSjf1fHeoJTtrhqEJ5YHIIKY9njDqyUhTnmtb239J37xk bWq8mXe8tmsd48z3tUAxg3H9KekfeA== -----END CERTIFICATE-----Generated at Fri Dec 19 19:12:03 2025 by rpki-client