This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/C52B4E0A3FE011EF88794913C4F9AE02.roa File: C52B4E0A3FE011EF88794913C4F9AE02.roa (raw, json) Hash identifier: 3n3nLW0U6YcpS2DSLwMtSeUZ5bCt2NFI2SAX/eDJKCw= Subject key identifier: 0C:F0:07:A5:1B:19:D8:CA:5E:91:FC:9D:2C:EC:C8:51:EA:24:F4:B0 Certificate issuer: /CN=A911ACAC/serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Certificate serial: 0528 Authority key identifier: 91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/C52B4E0A3FE011EF88794913C4F9AE02.roa Signing time: Sat 20 Dec 2025 23:20:19 +0000 ROA not before: Sat 20 Dec 2025 23:20:19 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 147307 IP address blocks: 103.174.188.0/24 maxlen: 24 2001:df7:d180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 Jan 2026 22:55:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ACAC, serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Validity Not Before: Dec 20 23:20:19 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69472f32-71ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0d:4d:ff:f8:21:5e:68:63:b4:a5:7f:74:96: 60:a8:d4:42:09:e4:37:52:4c:ef:44:a0:2e:eb:f3: e8:84:b2:17:75:a9:92:01:b2:95:56:09:ae:b7:8a: 70:8a:4a:e5:7e:58:24:34:e5:1e:1b:7d:b1:ef:e2: 68:c9:2d:1c:8b:c4:a5:0e:37:ab:45:cc:b5:59:0f: de:5c:f8:dd:aa:09:89:23:a3:cc:b2:40:5a:15:3a: f2:0b:e8:6f:a6:b4:6e:74:63:7a:07:25:48:dc:fa: 92:57:a4:a8:2d:5b:89:10:62:4f:6b:d1:37:0b:5c: 92:dd:83:24:ee:37:86:1f:73:de:72:11:26:ed:87: 96:ef:83:b8:70:3e:7a:49:47:e0:5f:56:b7:69:d2: 22:42:09:86:04:cd:ed:8e:96:d6:7e:1d:53:7e:44: 17:30:8b:db:42:ba:34:bf:4a:b9:98:46:cf:dc:53: 94:d2:a8:9a:0a:59:d4:14:63:a6:52:2a:c0:bc:61: e5:70:84:cd:48:31:a7:76:c7:73:7e:e0:b5:01:e5: 78:2b:40:1b:62:83:f7:4f:51:f3:f6:7c:c5:91:2f: bc:8b:de:54:58:7a:27:b4:e4:f2:08:00:a4:d4:43: a2:b1:f5:8d:e5:ca:46:3f:2c:1c:aa:0f:4d:05:f6: 09:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F0:07:A5:1B:19:D8:CA:5E:91:FC:9D:2C:EC:C8:51:EA:24:F4:B0 X509v3 Authority Key Identifier: keyid:91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/C52B4E0A3FE011EF88794913C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.188.0/24 IPv6: 2001:df7:d180::/48 Signature Algorithm: sha256WithRSAEncryption 4c:38:8c:1c:14:dd:ec:f4:72:2d:dd:f2:ad:07:78:bb:43:8f: 61:b4:7c:c8:16:5d:24:d2:00:99:22:8c:23:92:d7:ff:a3:a4: 51:7b:be:f6:3a:3d:44:8a:0c:77:c7:cf:1c:ce:cb:e6:4f:88: 99:85:82:27:a7:a4:bb:7c:b5:61:6f:70:4a:b5:21:44:d5:70: 88:26:d9:70:00:b5:04:dc:0f:6f:d2:9d:aa:11:11:0b:67:71: b4:d6:e7:48:83:75:ca:f0:7b:6d:6f:b0:68:8c:6e:c7:d7:fe: c0:33:bc:d4:69:4c:03:57:77:66:1d:0d:50:e6:d8:42:4b:5c: dd:27:38:d0:5a:fc:14:5a:ad:31:66:2b:04:ef:a7:dc:54:e0: 5c:ab:06:a9:e8:26:53:f7:1a:6b:c2:6d:98:ff:6e:7a:28:1c: 1c:56:5d:22:a3:f8:48:85:fa:ab:b1:44:02:44:6b:c1:8f:f3: 3c:3e:e7:30:96:05:50:01:bf:5d:0a:14:c2:63:6b:ae:92:5e: d7:4b:30:c2:29:8d:ad:33:68:84:11:69:fa:ff:87:da:df:62: 70:97:5d:45:e8:25:54:78:a8:d7:62:5c:6e:57:c8:3f:ad:75: d0:e5:e6:7c:22:1f:05:2d:1e:94:21:f2:39:9a:0b:59:55:a2: ad:64:f4:ce -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MUFDQUMxMTAvBgNVBAUTKDkxRTY3OTcyMUVEMUUwOTI3RUJCN0U0NjFDODA1ODBE MjM5MzU5MkEwHhcNMjUxMjIwMjMyMDE5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ3MmYzMi03MWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuw1N//ghXmhjtKV/dJZgqNRCCeQ3UkzvRKAu6/PohLIXdamSAbKVVgmut4pw ikrlflgkNOUeG32x7+JoyS0ci8SlDjerRcy1WQ/eXPjdqgmJI6PMskBaFTryC+hv prRudGN6ByVI3PqSV6SoLVuJEGJPa9E3C1yS3YMk7jeGH3PechEm7YeW74O4cD56 SUfgX1a3adIiQgmGBM3tjpbWfh1TfkQXMIvbQro0v0q5mEbP3FOU0qiaClnUFGOm UirAvGHlcITNSDGndsdzfuC1AeV4K0AbYoP3T1Hz9nzFkS+8i95UWHontOTyCACk 1EOisfWN5cpGPywcqg9NBfYJ9wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAzwB6Ub GdjKXpH8nSzsyFHqJPSwMB8GA1UdIwQYMBaAFJHmeXIe0eCSfrt+RhyAWA0jk1kq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUNBQy9CM0JEQTU2NDMx RDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRKSi11MzVHSElCWURTT1RX U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWjVjaDdSNEpKLXUzNUdISUJZRFNPVFdTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFDQUMvQjNCREE1NjQzMUQzMTFFQzhEM0JCRjMwQzRGOUFFMDIvQzUyQjRFMEEz RkUwMTFFRjg4Nzk0OTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnrrwwDwQCAAIwCQMHACABDffRgDANBgkqhkiG9w0BAQsF AAOCAQEATDiMHBTd7PRyLd3yrQd4u0OPYbR8yBZdJNIAmSKMI5LX/6OkUXu+9jo9 RIoMd8fPHM7L5k+ImYWCJ6eku3y1YW9wSrUhRNVwiCbZcAC1BNwPb9KdqhERC2dx tNbnSIN1yvB7bW+waIxux9f+wDO81GlMA1d3Zh0NUObYQktc3Sc40Fr8FFqtMWYr BO+n3FTgXKsGqegmU/caa8JtmP9ueigcHFZdIqP4SIX6q7FEAkRrwY/zPD7nMJYF UAG/XQoUwmNrrpJe10swwimNrTNohBFp+v+H2t9icJddReglVHio12JcblfIP611 0OXmfCIfBS0elCHyOZoLWVWirWT0zg== -----END CERTIFICATE-----Generated at Sat Jan 10 20:56:43 2026 by rpki-client