This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911FD55/E78FD2AA473211EA810B5042C4F9AE02/C8A09F34F11C11EA83A6D247C4F9AE02.roa File: C8A09F34F11C11EA83A6D247C4F9AE02.roa (raw, json) Hash identifier: m9OXzKOwjaUWIMrqXMH3pyn+uCJc/4tEJMZX5q4hdZM= Subject key identifier: BA:14:4B:19:22:D1:B7:CE:F9:0B:56:F4:90:79:E9:89:B0:73:13:AD Certificate issuer: /CN=A911FD55/serialNumber=ACDEBBDC8AEA7A61136931833863B1E39E017E27 Certificate serial: 0B7B Authority key identifier: AC:DE:BB:DC:8A:EA:7A:61:13:69:31:83:38:63:B1:E3:9E:01:7E:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rN673IrqemETaTGDOGOx454Bfic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FD55/E78FD2AA473211EA810B5042C4F9AE02/C8A09F34F11C11EA83A6D247C4F9AE02.roa Signing time: Tue 06 Jan 2026 19:15:55 +0000 ROA not before: Tue 06 Jan 2026 19:15:55 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 138418 IP address blocks: 103.114.60.0/23 maxlen: 23 103.114.60.0/24 maxlen: 24 103.114.61.0/24 maxlen: 24 103.125.28.0/22 maxlen: 22 103.125.28.0/23 maxlen: 23 103.125.28.0/24 maxlen: 24 103.125.29.0/24 maxlen: 24 103.125.30.0/23 maxlen: 23 103.125.30.0/24 maxlen: 24 103.125.31.0/24 maxlen: 24 2403:eb40::/32 maxlen: 32 2403:eb40::/48 maxlen: 48 2403:eb40:1000::/48 maxlen: 48 2403:eb40:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FD55/E78FD2AA473211EA810B5042C4F9AE02/rN673IrqemETaTGDOGOx454Bfic.crl rsync://rpki.apnic.net/member_repository/A911FD55/E78FD2AA473211EA810B5042C4F9AE02/rN673IrqemETaTGDOGOx454Bfic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rN673IrqemETaTGDOGOx454Bfic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 18:41:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2939 (0xb7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FD55, serialNumber=ACDEBBDC8AEA7A61136931833863B1E39E017E27 Validity Not Before: Jan 6 19:15:55 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695d5f6b-2e0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:72:89:4d:3a:41:a3:5b:d6:88:ff:bb:c5:b8: 19:33:da:52:70:05:e1:ad:67:17:74:ed:37:8f:cd: fb:22:08:7c:76:d0:23:0a:f5:77:86:42:54:49:67: 32:01:5d:14:f3:47:9b:a5:a6:11:75:c1:29:97:86: 2e:4e:4c:e9:c0:02:21:91:98:3b:f0:1e:9b:e9:18: 09:2e:ae:0a:ab:8f:d3:93:67:87:1c:a4:41:15:75: be:f9:65:c4:fc:03:5d:5a:b2:57:bf:6e:1a:b2:5e: 30:a0:7a:56:83:d8:3e:a3:6f:a4:37:d3:08:a0:d4: 5f:8d:be:db:87:b6:d5:d1:8c:60:5b:af:55:b6:86: 3c:f9:5d:f6:71:48:49:ad:4f:86:5e:a4:21:4d:90: c2:2b:c3:84:1f:40:30:10:85:68:c7:42:75:f6:63: 73:14:fa:18:fd:ce:d9:3e:e5:df:cd:75:cd:cf:d8: 43:8b:98:d4:8f:a1:0d:c1:56:76:84:da:a6:3e:8e: d5:73:03:9c:de:b4:d1:28:f1:96:3a:b6:35:dd:6c: f1:f9:66:80:ff:d2:c2:92:4b:2d:a1:24:ec:8d:bc: 11:6c:08:20:13:a9:cf:ec:c5:dc:7b:2c:e6:36:cc: 9f:bc:a7:f3:62:48:92:ba:0b:8c:ea:98:96:25:a0: e3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:14:4B:19:22:D1:B7:CE:F9:0B:56:F4:90:79:E9:89:B0:73:13:AD X509v3 Authority Key Identifier: keyid:AC:DE:BB:DC:8A:EA:7A:61:13:69:31:83:38:63:B1:E3:9E:01:7E:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FD55/E78FD2AA473211EA810B5042C4F9AE02/rN673IrqemETaTGDOGOx454Bfic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rN673IrqemETaTGDOGOx454Bfic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FD55/E78FD2AA473211EA810B5042C4F9AE02/C8A09F34F11C11EA83A6D247C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.60.0/23 103.125.28.0/22 IPv6: 2403:eb40::/32 Signature Algorithm: sha256WithRSAEncryption 4c:71:fe:60:db:f6:34:00:46:ef:a3:cf:5e:0a:99:0e:50:21: d7:7d:05:d2:82:3a:55:cb:8b:bd:0c:c5:80:64:27:39:c4:11: 5e:ba:e0:f6:0c:6e:b7:18:93:2d:d3:1f:95:9f:bd:ea:91:0f: e0:53:03:0b:40:ac:b7:21:03:e3:87:c8:e1:78:7d:ac:32:7f: d2:67:9d:c7:f5:65:96:4c:f9:b4:92:0d:88:3c:5c:72:45:c5: ff:23:b6:20:ec:1e:f1:c9:2e:63:80:1e:2c:68:9b:dc:1f:9d: 21:b1:7a:2b:e0:8d:51:b5:2b:0e:7d:3c:05:d7:11:de:fe:6b: d8:5c:d0:68:c4:6a:47:50:2e:f0:e0:e2:96:44:10:e4:6c:c2: fe:9e:a3:86:b2:59:43:bf:52:ad:92:28:61:97:aa:47:70:ce: 42:c6:d4:31:90:1f:b7:ff:59:ee:d3:5b:e5:4e:bd:57:6a:b1: c5:d5:b9:cb:cc:2d:e1:08:b2:e5:75:9c:fa:4f:74:59:e0:92: fa:37:57:e0:47:03:45:40:86:6a:56:50:ee:96:3f:09:ec:8f: 64:90:73:5a:d7:58:53:61:89:9d:99:cb:5d:37:6c:35:21:83: 9d:97:12:5a:66:63:32:53:fc:22:d9:9c:6f:4b:27:76:e9:c8: f7:0c:56:1e -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MUZENTUxMTAvBgNVBAUTKEFDREVCQkRDOEFFQTdBNjExMzY5MzE4MzM4NjNCMUUz OUUwMTdFMjcwHhcNMjYwMTA2MTkxNTU1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVkNWY2Yi0yZTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnXKJTTpBo1vWiP+7xbgZM9pScAXhrWcXdO03j837Igh8dtAjCvV3hkJUSWcy AV0U80ebpaYRdcEpl4YuTkzpwAIhkZg78B6b6RgJLq4Kq4/Tk2eHHKRBFXW++WXE /ANdWrJXv24asl4woHpWg9g+o2+kN9MIoNRfjb7bh7bV0YxgW69VtoY8+V32cUhJ rU+GXqQhTZDCK8OEH0AwEIVox0J19mNzFPoY/c7ZPuXfzXXNz9hDi5jUj6ENwVZ2 hNqmPo7VcwOc3rTRKPGWOrY13Wzx+WaA/9LCkkstoSTsjbwRbAggE6nP7MXceyzm NsyfvKfzYkiSuguM6piWJaDj/wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLoUSxki 0bfO+QtW9JB56YmwcxOtMB8GA1UdIwQYMBaAFKzeu9yK6nphE2kxgzhjseOeAX4n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkQ1NS9FNzhGRDJBQTQ3 MzIxMUVBODEwQjUwNDJDNEY5QUUwMi9yTjY3M0lycWVtRVRhVEdET0dPeDQ1NEJm aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JONjczSXJxZW1FVGFUR0RPR094NDU0QmZpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUZENTUvRTc4RkQyQUE0NzMyMTFFQTgxMEI1MDQyQzRGOUFFMDIvQzhBMDlGMzRG MTFDMTFFQTgzQTZEMjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFncjwDBAJnfRwwDQQCAAIwBwMFACQD60AwDQYJKoZIhvcN AQELBQADggEBAExx/mDb9jQARu+jz14KmQ5QIdd9BdKCOlXLi70MxYBkJznEEV66 4PYMbrcYky3TH5WfveqRD+BTAwtArLchA+OHyOF4fawyf9Jnncf1ZZZM+bSSDYg8 XHJFxf8jtiDsHvHJLmOAHixom9wfnSGxeivgjVG1Kw59PAXXEd7+a9hc0GjEakdQ LvDg4pZEEORswv6eo4ayWUO/Uq2SKGGXqkdwzkLG1DGQH7f/We7TW+VOvVdqscXV ucvMLeEIsuV1nPpPdFngkvo3V+BHA0VAhmpWUO6WPwnsj2SQc1rXWFNhiZ2Zy103 bDUhg52XElpmYzJT/CLZnG9LJ3bpyPcMVh4= -----END CERTIFICATE-----Generated at Sun Jan 11 23:17:37 2026 by rpki-client