This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/CB304C36307111EDB0CBD946C4F9AE02.roa File: CB304C36307111EDB0CBD946C4F9AE02.roa (raw, json) Hash identifier: jEdo1Rs/DDX/IrH+sOX8S2VLADZNFH0eDKIDU/uoHNw= Subject key identifier: FA:7F:9A:BE:50:F3:91:28:BF:B4:EE:AD:F3:64:94:71:6A:8D:15:5B Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 068E Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/CB304C36307111EDB0CBD946C4F9AE02.roa Signing time: Wed 17 Dec 2025 09:05:19 +0000 ROA not before: Wed 17 Dec 2025 09:05:19 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139628 IP address blocks: 43.255.114.0/23 maxlen: 24 45.120.132.0/22 maxlen: 22 45.120.132.0/24 maxlen: 24 45.120.133.0/24 maxlen: 24 45.120.134.0/24 maxlen: 24 45.120.135.0/24 maxlen: 24 103.20.80.0/22 maxlen: 22 103.20.80.0/24 maxlen: 24 103.20.81.0/24 maxlen: 24 103.20.82.0/24 maxlen: 24 103.20.83.0/24 maxlen: 24 103.106.204.0/22 maxlen: 22 103.106.204.0/24 maxlen: 24 103.106.205.0/24 maxlen: 24 103.106.206.0/24 maxlen: 24 103.106.207.0/24 maxlen: 24 103.119.96.0/22 maxlen: 22 103.119.96.0/24 maxlen: 24 103.119.97.0/24 maxlen: 24 103.119.98.0/24 maxlen: 24 103.119.99.0/24 maxlen: 24 103.136.176.0/22 maxlen: 22 103.136.176.0/24 maxlen: 24 103.136.177.0/24 maxlen: 24 103.136.178.0/24 maxlen: 24 103.136.179.0/24 maxlen: 24 103.142.208.0/23 maxlen: 23 103.142.208.0/24 maxlen: 24 103.142.209.0/24 maxlen: 24 103.147.234.0/23 maxlen: 24 103.152.194.0/23 maxlen: 24 111.67.96.0/22 maxlen: 22 111.67.96.0/24 maxlen: 24 111.67.97.0/24 maxlen: 24 111.67.98.0/24 maxlen: 24 111.67.99.0/24 maxlen: 24 111.67.100.0/22 maxlen: 22 111.67.100.0/24 maxlen: 24 111.67.101.0/24 maxlen: 24 111.67.102.0/24 maxlen: 24 111.67.103.0/24 maxlen: 24 115.178.24.0/23 maxlen: 23 115.178.24.0/24 maxlen: 24 115.178.25.0/24 maxlen: 24 124.108.4.0/22 maxlen: 22 124.108.4.0/24 maxlen: 24 124.108.5.0/24 maxlen: 24 124.108.6.0/24 maxlen: 24 124.108.7.0/24 maxlen: 24 150.129.20.0/22 maxlen: 22 150.129.20.0/24 maxlen: 24 150.129.21.0/24 maxlen: 24 150.129.22.0/24 maxlen: 24 150.129.23.0/24 maxlen: 24 202.58.16.0/23 maxlen: 23 202.58.16.0/24 maxlen: 24 202.58.17.0/24 maxlen: 24 202.58.18.0/23 maxlen: 23 202.58.18.0/24 maxlen: 24 202.58.19.0/24 maxlen: 24 203.80.170.0/23 maxlen: 23 203.80.170.0/24 maxlen: 24 203.80.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1678 (0x68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Dec 17 09:05:19 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6942724f-abcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:36:74:6c:14:e7:cc:31:2e:ad:bf:cb:ba:af: d4:f2:6f:cf:b3:e0:71:e3:d4:79:16:e5:3a:a1:cb: 4b:f3:01:00:43:8d:c2:2e:b8:2e:c9:0b:d5:3d:b1: 69:e4:4e:e6:70:26:7c:ca:46:b5:0d:20:3f:23:f5: 57:2e:6d:de:63:ee:e6:43:fd:27:77:8d:c8:bd:fa: 1b:b8:a7:82:d7:5a:24:26:e0:2d:0c:1a:7d:c6:25: f0:72:f3:c4:31:b8:28:b6:4c:f6:42:ce:9f:18:66: 68:a8:fd:4e:af:51:f5:de:61:d0:5d:70:63:89:90: a8:1b:63:a8:b0:0e:ed:2e:95:57:c3:94:a4:da:e8: 20:b1:76:30:a4:7c:da:d1:18:b8:74:e2:18:2d:cd: a3:3d:30:bd:1c:b6:7c:f5:4b:a5:54:c6:eb:af:8d: b3:e4:af:a3:14:96:cf:18:8d:01:f7:89:f8:22:3f: 93:dc:9b:fa:4c:8d:64:77:54:9b:4f:c2:8c:66:c3: b3:c6:68:b0:fb:01:37:62:73:34:a8:6e:7c:81:09: 27:35:90:8a:b1:3f:ae:35:1d:ac:09:56:d5:c7:fc: 26:5e:a9:58:eb:29:93:07:a4:5f:eb:5d:15:7b:7e: a1:b3:1c:bc:5a:e2:10:65:fa:ff:77:b3:6f:fb:79: 84:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:7F:9A:BE:50:F3:91:28:BF:B4:EE:AD:F3:64:94:71:6A:8D:15:5B X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/CB304C36307111EDB0CBD946C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.114.0/23 45.120.132.0/22 103.20.80.0/22 103.106.204.0/22 103.119.96.0/22 103.136.176.0/22 103.142.208.0/23 103.147.234.0/23 103.152.194.0/23 111.67.96.0/21 115.178.24.0/23 124.108.4.0/22 150.129.20.0/22 202.58.16.0/22 203.80.170.0/23 Signature Algorithm: sha256WithRSAEncryption b6:ed:68:0f:98:93:f2:48:a4:98:39:68:b8:06:96:b3:33:6e: 33:18:3f:b3:9c:aa:e8:ba:05:f3:14:32:c0:aa:21:79:d3:1a: 65:40:aa:14:4a:75:8b:33:be:d5:c7:28:90:2d:73:ac:e5:0c: bd:b9:68:ea:cb:45:71:aa:3f:24:cd:cc:c7:a3:d4:16:a3:86: c0:a1:47:9f:93:91:f0:77:3c:c9:7a:bd:6d:14:67:01:0b:82: 28:94:1b:b6:c5:cc:48:c4:a4:55:ac:6b:f5:58:24:2f:6e:a0: c4:49:a1:a1:8f:49:a1:06:79:b3:96:e5:1f:df:29:49:81:e7: ff:93:6d:80:b0:a4:c3:1a:5e:24:4d:50:d2:42:de:d0:6f:7f: db:f9:84:9a:60:23:8d:6f:71:23:93:4c:6e:32:49:b7:c9:56: c0:cf:8a:bc:9f:13:bf:be:7e:32:ac:8e:0d:6b:c4:b8:31:09: 87:67:4e:e6:71:58:37:6f:a7:e7:d1:ef:80:dd:30:9f:36:75: bd:c7:0b:33:cb:fa:12:e4:dd:cd:9f:de:66:67:fc:b9:ed:60: d9:00:0a:80:24:72:f0:1f:ca:8c:64:e4:d3:d6:78:e4:65:2d: 56:9c:f6:cf:2d:4a:53:e8:f8:5c:72:e7:72:78:9a:fd:70:21: 62:9d:72:32 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgICBo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUxMjE3MDkwNTE5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQyNzI0Zi1hYmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3jZ0bBTnzDEurb/Luq/U8m/Ps+Bx49R5FuU6octL8wEAQ43CLrguyQvVPbFp 5E7mcCZ8yka1DSA/I/VXLm3eY+7mQ/0nd43IvfobuKeC11okJuAtDBp9xiXwcvPE Mbgotkz2Qs6fGGZoqP1Or1H13mHQXXBjiZCoG2OosA7tLpVXw5Sk2uggsXYwpHza 0Ri4dOIYLc2jPTC9HLZ89UulVMbrr42z5K+jFJbPGI0B94n4Ij+T3Jv6TI1kd1Sb T8KMZsOzxmiw+wE3YnM0qG58gQknNZCKsT+uNR2sCVbVx/wmXqlY6ymTB6Rf610V e36hsxy8WuIQZfr/d7Nv+3mESQIDAQABo4IC6TCCAuUwHQYDVR0OBBYEFPp/mr5Q 85Eov7TurfNklHFqjRVbMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBODIvMEJFQjM3NUFCRTQ0MTFFQkFFM0Q0MzQ4QzRGOUFFMDIvQ0IzMDRDMzYz MDcxMTFFREIwQ0JEOTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwcwYIKwYBBQUHAQcBAf8E ZDBiMGAEAgABMFoDBAEr/3IDBAIteIQDBAJnFFADBAJnaswDBAJnd2ADBAJniLAD BAFnjtADBAFnk+oDBAFnmMIDBANvQ2ADBAFzshgDBAJ8bAQDBAKWgRQDBALKOhAD BAHLUKowDQYJKoZIhvcNAQELBQADggEBALbtaA+Yk/JIpJg5aLgGlrMzbjMYP7Oc qui6BfMUMsCqIXnTGmVAqhRKdYszvtXHKJAtc6zlDL25aOrLRXGqPyTNzMej1Baj hsChR5+TkfB3PMl6vW0UZwELgiiUG7bFzEjEpFWsa/VYJC9uoMRJoaGPSaEGebOW 5R/fKUmB5/+TbYCwpMMaXiRNUNJC3tBvf9v5hJpgI41vcSOTTG4ySbfJVsDPiryf E7++fjKsjg1rxLgxCYdnTuZxWDdvp+fR74DdMJ82db3HCzPL+hLk3c2f3mZn/Lnt YNkACoAkcvAfyoxk5NPWeORlLVac9s8tSlPo+Fxy53J4mv1wIWKdcjI= -----END CERTIFICATE-----Generated at Fri Dec 19 20:31:47 2025 by rpki-client